Commit Graph

585 Commits (main)

Author SHA1 Message Date
eCrimeLabs 2093121c96
Added "type": "cidr", 2018-02-21 23:28:06 +01:00
root b58e05fb87 Added Warninglists for Amazon AWS 2018-02-21 22:00:15 +00:00
Deborah Servili 2e146933dc elements must be unique 2018-02-19 11:44:56 +01:00
Deborah Servili 92a0fafbf2 add security provider blogpost warninglist 2018-02-19 11:12:27 +01:00
cgi1 cc1dcad151
Resolving outdated list from #51
@adulau
2018-02-06 10:24:57 +01:00
David André db651287ea
Added some security vendors sites 2018-01-23 10:13:47 +01:00
Alexandre Dulaunoy 6781447c8d
fix: perfect match is string ;-) 2018-01-18 16:46:46 +01:00
David André 2d44843c56
Changed matching algorithm to domain to avoid false positive matches
Changed matching algorithm to domain to avoid false positive matches + version bump
2018-01-17 16:55:02 +01:00
iglocska c78dcd03e8 version bump 2018-01-15 13:48:16 +01:00
iglocska 02e0b8fd84 Wrong algorithm 2018-01-15 13:47:53 +01:00
iglocska be72d81975 Changed matching algorithm to domain to avoid false positive matches 2018-01-15 12:13:34 +01:00
Alexandre Dulaunoy a5bf49c85c
fix: reverse.it added to the list of dynamic malware analysis tools 2018-01-03 11:32:46 +01:00
Alexandre Dulaunoy 8ec2a3a98d
add: automated-malware-analysis known domain list
Fix #45
2017-12-29 20:01:55 +01:00
Alexandre Dulaunoy ac2beeea02
add: Microsoft Azure Datacenter IP Ranges added including tool to
generate the JSON.

Fix #43
2017-12-29 15:39:52 +01:00
Alexandre Dulaunoy bebc51fd86
fix (temp): office 365 warning list only matching as substring (new list
for CIDR block matching required)
2017-12-29 15:33:21 +01:00
Alexandre Dulaunoy 23d4b68de3
add: list of Microsoft office365/azure in China + extraction tool added
fix #42
2017-12-29 15:30:57 +01:00
Alexandre Dulaunoy 5ae117f7a3
Office 365 warning-list updated to the latest version 2017-12-29 15:09:50 +01:00
Raphaël Vinot 60aeb28fe8 chg: Enforce type in schema 2017-12-22 15:32:24 +01:00
Raphaël Vinot 0f23d9cb18 fix: public-dns-hostname not following schema 2017-12-22 14:53:56 +01:00
iglocska 05142183d9 Changed type and parser for hostname based public resolver list 2017-12-22 14:30:41 +01:00
Alexandre Dulaunoy ffe3e97a06
fix: resolver expressed as hostname removed 2017-12-22 13:59:00 +01:00
Alexandre Dulaunoy e0f5a924bf
Merge branch 'master' of github.com:MISP/misp-warninglists 2017-12-22 13:57:17 +01:00
Alexandre Dulaunoy 8d1b6e261c
List of known public DNS resolvers expressed as hostname added
The list has been separated from ipv4 list to be sure matching works in
MISP
2017-12-22 13:56:07 +01:00
Christophe Vandeplas 705d6c6040 quad9 project 2017-12-13 08:51:31 +01:00
ater49 fa3e724fdc Update list.json
Comma added to the line
2017-09-28 11:14:45 +02:00
ater49 3d88354268 Update list.json
Just to add checkip.amazonaws.com into WarningList
2017-09-27 21:41:36 +02:00
Andras Iklody 7c5a09a735 Changed warninglist from sting matches to hostname type 2017-08-04 15:51:07 +02:00
rmarsollier 70b0742c45 solving last problem with google domain list 2017-06-19 09:19:21 +02:00
rmarsollier 93b6a5c120 importing google domains from wikipedia 2017-06-19 09:08:58 +02:00
Alexandre Dulaunoy d40f5244b2 Merge pull request #31 from rmarsollier/patch-2
Fixing #23
2017-05-15 22:22:02 +02:00
RbN b15b1de53e Fix typo 2017-05-15 21:32:20 +02:00
RbN 40fa1df9b6 Adding domains of #23 2017-05-15 21:29:33 +02:00
RbN c66018c925 Adding sha224
d14a028c2a3a2bc9476102bb288234c415a2b01f828ea62ac5b3e42f is a sha224, let's use it.
2017-05-15 20:40:24 +02:00
Alexandre Dulaunoy bc05ddcdd0 Fixed #25 adding more URL shorteners 2017-03-16 16:13:18 +01:00
Raphaël Vinot 758ceda872 Run JQ on empty-hashes 2017-02-17 09:56:06 +01:00
Andras Iklody c153c0b097 Merge pull request #22 from devnull-/eicar.com
No attribute filtering -- eicar.com
2017-02-17 08:25:37 +01:00
devnull- 52aa4995c3 Add matching_attributes 2017-02-16 22:27:54 +01:00
devnull- 52c2df2ec3 Formating 2017-02-16 22:14:58 +01:00
devnull- 931ff12935 Add matching_attributes 2017-02-16 22:13:56 +01:00
Raphaël Vinot 05cd86087d Fix JQ all the things 2017-02-12 21:43:19 +01:00
Raphaël Vinot dc456084e0 Revert "JQ all the things"
This reverts commit d422560a4e.
2017-02-12 21:18:09 +01:00
Raphaël Vinot d422560a4e JQ all the things 2017-02-12 21:02:02 +01:00
Raphaël Vinot cdef6f192e Update lists, add schema. 2017-02-12 21:01:36 +01:00
Michael Hamm 4986d618b1 Hashes for EICAR, EICAR zip and EICAR 2x zip. 2017-02-01 14:38:00 +01:00
Michael Hamm c81a900924 RFC 6598 - Carrier- Grade NAT (CGN) devices 2017-01-31 20:49:44 +01:00
Nicolas Bareil 9c709a15e1 Adds matching_attribute 2017-01-27 15:52:59 +01:00
Nicolas Bareil f3b9178b55 typo in the name 2017-01-27 15:42:54 +01:00
Iglocska 9fa3d1ef43 Bumped the date to force an update 2017-01-19 18:06:22 +01:00
Iglocska c898585ccc Merge branch 'master' of https://github.com/MISP/misp-warninglists 2017-01-19 18:05:50 +01:00
Iglocska 6d67b71e3f Switched alexa to the "hostname" list 2017-01-19 18:05:16 +01:00
Alexandre Dulaunoy af071c7b40 date updated 2017-01-18 15:43:59 +01:00
Iglocska 6fc0eb5adf added url type to the alexa list 2017-01-18 12:30:07 +01:00
Alexandre Dulaunoy 946e15b468 type was not declared as substring 2017-01-18 12:20:39 +01:00
Alexandre Dulaunoy 41963f2d79 Merge branch 'master' of github.com:MISP/misp-warninglists 2017-01-18 12:12:34 +01:00
Alexandre Dulaunoy 5cce43035a substring added (to support the new substring matching) 2017-01-18 12:12:10 +01:00
devnull- 0af8731277 Merge branch 'master' into URL-shortener-services 2017-01-06 18:56:33 +01:00
devnull- 788f275b9f Warning list URL shorteners services 2017-01-06 18:41:30 +01:00
devnull- 63468bc1ac Add types URI & URL 2017-01-06 18:07:03 +01:00
devnull- 8864d00c7c Add ip-score.com 2017-01-06 18:04:37 +01:00
devnull- c818e1a1de Warning list "What's my IP" service 2017-01-06 17:56:56 +01:00
Alexandre Dulaunoy 338241e499 Add version and name to the office365 warning list 2016-12-06 12:39:45 +01:00
Alexandre Dulaunoy 14edcbd433 Merge branch 'master' of github.com:MISP/misp-warninglists 2016-12-06 12:17:08 +01:00
Alexandre Dulaunoy 42816083a3 Office 365 URLs and IP address ranges added 2016-12-06 12:16:34 +01:00
Maijin 12ab7c579a Add Comodo public DNS 2016-12-05 13:49:34 +01:00
Alexandre Dulaunoy 3551d2aba9 warning list of known microsoft domains added 2016-10-01 20:07:25 +02:00
Alexandre Dulaunoy 9d620dd7a5 Merge pull request #6 from claudex/dns
Use DNS list from http://public-dns.info/
2016-08-04 09:57:22 +02:00
Xavier Claude 9572f54d47 Add IPv6 link local prefix 2016-08-03 20:19:07 +02:00
Xavier Claude d41d770eb1 Add public dns v4 and v6 resolvers IP from the tool 2016-08-03 20:04:38 +02:00
Xavier Claude 97a7e16396 Add RFC 3849 - IPv6 prefix for documentation 2016-08-03 14:40:07 +02:00
Iglocska 30ef83db0b Updated warninglists with domains or IP addresses to also include domain|ip type attributes
- fixes issue as reported by @Delta-Sierra
2016-06-27 11:32:04 +02:00
Alexandre Dulaunoy 6e00a93ee0 RFC 5735 added 2016-06-24 10:53:23 +02:00
Alexandre Dulaunoy 34ce028295 Alexa top 1000 MISP warning list added including generation tool 2016-05-28 21:31:40 +02:00
Alexandre Dulaunoy 7e6793e024 rfc5771 added 2016-04-26 22:24:28 +02:00
Alexandre Dulaunoy 181c32bfc4 More public DNS servers added 2016-04-26 22:15:12 +02:00
Alexandre Dulaunoy b38bb64789 List of known google domains and hostnames 2016-04-22 09:23:48 +02:00
Alexandre Dulaunoy 1e58376e67 Merge pull request #3 from wllm-rbnt/second-level-tlds
Expand second level tlds from Wikipedia
2016-04-21 14:29:19 +02:00
William Robinet fadc1df714 Expand second level tlds from Wikipedia 2016-04-21 11:46:16 +02:00
Alexandre Dulaunoy 88c6548b19 Merge pull request #2 from wllm-rbnt/second-level-tlds
Add second level tlds from Mozilla Foundation
2016-04-20 17:44:27 +02:00
William Robinet e5c1e19c8e Add second level tlds from Mozilla Foundation 2016-04-20 17:26:08 +02:00
William Robinet b1e13fd029 Add level3 open resolver 2016-04-20 11:14:29 +02:00
Alexandre Dulaunoy b5b5bffac0 Version added 2016-04-19 18:11:22 +02:00
Alexandre Dulaunoy 1b0ac3c631 RFC 1918 networks 2016-04-19 15:19:47 +02:00
Alexandre Dulaunoy a7a2b3b805 Hashes of empty files 2016-04-19 15:10:47 +02:00
Alexandre Dulaunoy 2a108c358a Public-dns warning list 2016-04-19 13:16:38 +02:00
Alexandre Dulaunoy 987b01beda Initial list with TLDs 2016-04-19 12:23:13 +02:00