 Steve Clement
|
9e0b2ebc75
|
new: [list] Added Mozilla Top 500 domains
|
2019-04-24 09:45:56 +09:00 |
 Alexandre Dulaunoy
|
f24f97fe87
|
chg: [security-provider-blogpost] version updated
|
2019-04-21 16:27:25 +02:00 |
Olivier BERT
|
65a32242ae
|
Removed pastebin.com, as it is not a security provider.
It is often used by malware to download configuration or payloads.
|
2019-04-15 13:31:15 +02:00 |
|
Dario Lombardo
|
910db07435
|
Remove wrong line from vpn-ipv4.
|
2019-04-11 10:14:29 +02:00 |
|
zMathieu
|
edaea7c3a6
|
Transform URL to domains for few entries
Remove / or http for some domains.
|
2019-04-08 15:45:26 +02:00 |
|
Vincent Brillault
|
af7e5a188c
|
CAs: Fix final new line in json
|
2019-03-29 16:57:54 +01:00 |
|
Vincent Brillault
|
d4e749c3e6
|
CAs: Fix json indentation (2 spaces, not 4)
|
2019-03-29 16:55:34 +01:00 |
|
Vincent Brillault
|
a1c0e83bd4
|
Add warning lists based on Mozilla's trusted CA and Intermediates
|
2019-03-29 16:23:22 +01:00 |
|
Raphaël Vinot
|
db8313a531
|
fix: Flienames of new warning lists
|
2019-03-25 11:34:15 +01:00 |
|
Alexandre Dulaunoy
|
48a5e32d50
|
new: [disposal-email] added
|
2019-03-24 12:02:30 +01:00 |
|
Alexandre Dulaunoy
|
5ed5403157
|
new: [VPN] lists of common VPN IPv4 and IPv6 addresses added
Source of the IPv4/IPv6 is https://github.com/ejrv/VPNs
|
2019-03-24 11:17:59 +01:00 |
|
Liviu Valsan
|
d0941e0418
|
Make sure that matching attributes are consistent for lists that include domains
|
2019-03-15 11:21:35 +01:00 |
|
Faber
|
ea0968bd5e
|
updated office 365 file names, changed string to substring, and changed lists.json to list.json
|
2019-03-11 20:56:19 -04:00 |
|
Alexandre Dulaunoy
|
97a951de82
|
chg: [o365 ip] title of the warning list changed
|
2019-03-10 09:30:03 +01:00 |
|
Alexandre Dulaunoy
|
6e97b8bf8a
|
chg: [o365] separate Microsoft Office 365 lists (hostname and IP addresses)
|
2019-03-10 09:27:12 +01:00 |
|
Alexandre Dulaunoy
|
37bf8ca5f2
|
chg: [o365] jq all the things
|
2019-03-10 09:13:37 +01:00 |
|
Alexandre Dulaunoy
|
0cc3ad9d82
|
Merge branch 'master' of https://github.com/kx499/misp-warninglists into kx499-master
|
2019-03-10 09:13:03 +01:00 |
|
Faber
|
91d77374ff
|
updated MS O365 script to handle json and updated list.json
|
2019-03-09 19:43:13 -05:00 |
|
Alexandre Dulaunoy
|
5db8316e93
|
chg: [alexa] updated to the latest version (seems to be back)
|
2019-03-09 17:25:02 +01:00 |
|
Alexandre Dulaunoy
|
cf4819fb48
|
chg: [cisco/umbrella top list] updated to the latest version
|
2019-03-09 17:23:13 +01:00 |
|
Alexandre Dulaunoy
|
64139ec29f
|
chg: [amazon-aws] updated to the latest version available
|
2019-03-09 17:18:57 +01:00 |
|
Alexandre Dulaunoy
|
882580e90c
|
chg: [akamai] jq everything
|
2019-03-09 17:10:07 +01:00 |
|
Faber
|
b6fed81a87
|
adding akamai warning list
|
2019-03-09 10:56:15 -05:00 |
|
Alexandre Dulaunoy
|
d24febd23c
|
Merge pull request #93 from ater49/master
Adding university domains warninglist
|
2019-03-01 22:43:14 +01:00 |
|
ater49
|
8fb2126255
|
Correction of duplicate
|
2019-03-01 22:28:35 +01:00 |
|
ater49
|
2e776cec5d
|
Adding university domains warninglist from issue #38
|
2019-03-01 18:47:05 +01:00 |
|
Alexandre Dulaunoy
|
68f97da4d9
|
Merge pull request #91 from ater49/master
Adding CRL Whistelist (Issue #83)
|
2019-03-01 13:05:49 +01:00 |
|
ater49
|
78b88a0b43
|
Modifying type from string to substring
|
2019-03-01 12:59:32 +01:00 |
|
ater49
|
9301f73b71
|
Modifying version number to int
|
2019-03-01 12:53:57 +01:00 |
|
ater49
|
f3bf7a634d
|
Correction for non-unique values in json
|
2019-03-01 12:24:56 +01:00 |
|
ater49
|
7bca524be2
|
Adding CRL Whistelist (Issue #83)
|
2019-03-01 09:40:32 +01:00 |
|
Alexandre Dulaunoy
|
8b7f943dd2
|
Merge pull request #90 from ater49/master
Adding cape.contextis.com in sandbox warninglist
|
2019-02-28 20:38:59 +01:00 |
|
ater49
|
7254758919
|
JQing all the things
|
2019-02-27 08:19:20 +01:00 |
|
ater49
|
6f3989cb17
|
Adding "cape.contextis.com" to sandbox warninglists.
|
2019-02-27 08:17:27 +01:00 |
|
Andras Iklody
|
21c3f2cd98
|
Merge pull request #89 from robertnixon2003/master
Updated Cisco warninglist
|
2018-12-17 18:54:01 +01:00 |
|
Robert Nixon
|
427e224914
|
Added type
|
2018-12-17 11:06:30 -05:00 |
|
Robert Nixon
|
e7ee0fef51
|
Fixed with jq all the things
|
2018-12-17 10:58:03 -05:00 |
|
Robert Nixon
|
b34c832fcb
|
Add files via upload
|
2018-12-17 10:54:23 -05:00 |
|
Robert Nixon
|
409047475a
|
Update list.json
|
2018-12-17 10:52:13 -05:00 |
|
Robert Nixon
|
371f1bf6d4
|
Create list.json
|
2018-12-17 10:50:52 -05:00 |
|
Robert Nixon
|
92cdd668ab
|
Delete list.json
|
2018-12-17 10:49:15 -05:00 |
|
Bjoern Mainz
|
e3ff169a27
|
added the shortener of the german state rlp
added the shortener of the german state rhineland-palatinate (rlp)
|
2018-11-19 16:04:09 +01:00 |
|
StefanKelm
|
9b238dc531
|
more german bank sites
|
2018-11-16 14:30:04 +01:00 |
|
Alexandre Dulaunoy
|
9f034b34cb
|
chg: [public-dns-v6] cloudflare dns added
|
2018-11-14 20:57:16 +01:00 |
|
Alexandre Dulaunoy
|
b06e087893
|
chg: [public-dns-v4] cloudflare recursive dns added
|
2018-11-14 20:55:57 +01:00 |
|
Alexandre Dulaunoy
|
3027a8a049
|
chg: [amazon-aws] updated to the recent version
|
2018-11-09 08:11:05 +01:00 |
|
Matteo Lodi
|
e4e919b584
|
fixed value in ovh-cluster and added new url shortener
|
2018-11-07 10:59:31 +01:00 |
|
Liviu Valsan
|
f308245af8
|
Removing imgur.com from the list of known security providers/vendors blog domains
|
2018-11-06 13:53:23 +01:00 |
|
Alexandre Dulaunoy
|
0bd8f8d161
|
Merge pull request #82 from robertnixon2003/master
Updated Cisco Top 1000 List
|
2018-10-12 16:40:11 +02:00 |
|
Robert Nixon
|
593ed90418
|
Updated list "version": 20181012
|
2018-10-12 10:03:21 -04:00 |
|
Robert Nixon
|
54acd57414
|
Deleting list to add updated list.
|
2018-10-12 10:00:56 -04:00 |
|
Alexandre Dulaunoy
|
a205adba1f
|
chg: [sinkholes] duplicate entry removed
|
2018-09-26 23:05:32 +02:00 |
|
Alexandre Dulaunoy
|
c6fc6e89fe
|
chg: [sinkholes] added
|
2018-09-26 22:56:47 +02:00 |
|
Alexandre Dulaunoy
|
db7507335b
|
Merge pull request #80 from ater49/master
New warninglist for bank websites.
|
2018-09-07 20:44:56 +02:00 |
|
ater49
|
4544fa2f02
|
New warninglist for bank websites.
The list is based on university proxylist (ftp://ftp.ut-capitole.fr/pub/reseau/cache/squidguard_contrib/bank.tar.gz).
|
2018-09-07 16:17:04 +02:00 |
|
Stefan Kelm
|
20332a7577
|
win10 connection endpoints
|
2018-08-31 14:22:03 +02:00 |
|
Robert Nixon
|
8f3ca0c945
|
Pulled list again after fixing generation script
|
2018-08-20 09:18:00 -04:00 |
|
Robert Nixon
|
e333db3df2
|
Added Alexa list back.
|
2018-08-10 09:19:10 -04:00 |
|
Robert Nixon
|
f4d480bdf0
|
Updated list
|
2018-08-10 09:14:26 -04:00 |
|
Robert Nixon
|
0b4f1f32d4
|
Created new list.
|
2018-08-10 08:46:15 -04:00 |
|
Robert Nixon
|
5d09fee1b2
|
Removed Alexa List
|
2018-08-10 08:42:04 -04:00 |
|
Alexandre Dulaunoy
|
d378c4e9ef
|
add: [microsoft-attack-simulator] warning list about phishing campaign for "security awareness"
|
2018-07-11 08:33:28 +02:00 |
|
Alexandre Dulaunoy
|
017d9b220f
|
add: common IOC false-positives as mentioned by Florian Roth
|
2018-07-06 17:43:04 +02:00 |
|
raw-data
|
db77c14a28
|
[add] new domain for whats-my-ip section
|
2018-07-03 21:33:28 +01:00 |
|
xbmc-goph
|
33773ebf2a
|
Update version file
|
2018-06-14 19:00:15 +02:00 |
|
xbmc-goph
|
af9b455611
|
Added the required separtor #2
|
2018-06-13 19:00:58 +02:00 |
|
xbmc-goph
|
c647fc2d5c
|
Added the required separator
|
2018-06-13 19:00:08 +02:00 |
|
xbmc-goph
|
525835a1d6
|
Updated with italian "what's my ip" services
|
2018-06-13 18:54:42 +02:00 |
|
raw-data
|
83dbe9492e
|
[ADD] 1 new domain for url-shortener section
|
2018-05-27 15:54:00 +01:00 |
|
raw-data
|
1dde94bdb2
|
[ADD] 3 new domains for whats-my-ip section
|
2018-05-27 15:52:10 +01:00 |
|
raw-data
|
0ee3bbc5aa
|
[ADD] 1 new domain for url-shortener section
|
2018-05-11 23:49:27 +01:00 |
|
raw-data
|
a6ad9f8c13
|
[ADD] 3 new domains for whats-my-ip section
|
2018-05-11 23:41:10 +01:00 |
|
raw-data
|
74da00dc71
|
[ADD] 3 new domains for whats-my-ip section
|
2018-05-11 00:15:10 +01:00 |
|
Alexandre Dulaunoy
|
bd95487001
|
add: BIT gTLD was missing
|
2018-04-24 21:02:04 +02:00 |
|
StefanKelm
|
ae36fcdd50
|
Update list.json
|
2018-03-29 14:47:55 +02:00 |
|
StefanKelm
|
1508f08f73
|
Update list.json
|
2018-03-29 14:35:54 +02:00 |
|
StefanKelm
|
5c3eef522e
|
Update list.json
|
2018-03-29 14:34:47 +02:00 |
|
StefanKelm
|
1112c45f9f
|
Create list.json
|
2018-03-29 14:32:53 +02:00 |
|
Alexandre Dulaunoy
|
d44ab414c9
|
Fix #64
|
2018-03-20 16:56:30 +01:00 |
|
Alexandre Dulaunoy
|
42c5cf055c
|
Indeed LoL is not a security provider ;-) Fix #62
|
2018-02-28 18:49:56 +01:00 |
|
Alexandre Dulaunoy
|
ac091864d6
|
Merge pull request #61 from ater49/dev
Adding Ovh-cluster WarningList
|
2018-02-23 16:18:01 +01:00 |
|
ater49
|
780e039183
|
Modification of errors in json
|
2018-02-23 13:46:41 +01:00 |
|
ater49
|
34de79554d
|
Modify errors
|
2018-02-23 13:44:59 +01:00 |
|
ater49
|
ea30930ad8
|
Revert "New WarningList for OVH Cluster"
Thir reverts commit 2bf5201110.
|
2018-02-23 13:43:43 +01:00 |
|
ater49
|
2bf5201110
|
New WarningList for OVH Cluster
|
2018-02-23 13:38:25 +01:00 |
|
ater49
|
156c6015db
|
OVH Cluster IP add to misp-warninglists
|
2018-02-23 13:24:53 +01:00 |
|
Alexandre Dulaunoy
|
742804d231
|
Merge pull request #57 from eCrimeLabs/master
Bugfix and update
|
2018-02-23 11:21:43 +01:00 |
|
eCrimeLabs
|
51df1b8a00
|
Updated with IPv6 addresses
|
2018-02-22 10:58:51 +01:00 |
|
Alexandre Dulaunoy
|
327e26558b
|
Merge pull request #55 from eCrimeLabs/master
Amazon AWS IP range for Warninglists
|
2018-02-22 09:46:28 +01:00 |
|
Sébastien Larinier
|
e0fdabb9df
|
add app.any.run in warninglists
|
2018-02-22 09:22:49 +01:00 |
|
eCrimeLabs
|
2093121c96
|
Added "type": "cidr",
|
2018-02-21 23:28:06 +01:00 |
|
root
|
b58e05fb87
|
Added Warninglists for Amazon AWS
|
2018-02-21 22:00:15 +00:00 |
|
Deborah Servili
|
2e146933dc
|
elements must be unique
|
2018-02-19 11:44:56 +01:00 |
|
Deborah Servili
|
92a0fafbf2
|
add security provider blogpost warninglist
|
2018-02-19 11:12:27 +01:00 |
|
cgi1
|
cc1dcad151
|
Resolving outdated list from #51
@adulau
|
2018-02-06 10:24:57 +01:00 |
|
David André
|
db651287ea
|
Added some security vendors sites
|
2018-01-23 10:13:47 +01:00 |
|
Alexandre Dulaunoy
|
6781447c8d
|
fix: perfect match is string ;-)
|
2018-01-18 16:46:46 +01:00 |
|
David André
|
2d44843c56
|
Changed matching algorithm to domain to avoid false positive matches
Changed matching algorithm to domain to avoid false positive matches + version bump
|
2018-01-17 16:55:02 +01:00 |
|
iglocska
|
c78dcd03e8
|
version bump
|
2018-01-15 13:48:16 +01:00 |
|
iglocska
|
02e0b8fd84
|
Wrong algorithm
|
2018-01-15 13:47:53 +01:00 |
|
iglocska
|
be72d81975
|
Changed matching algorithm to domain to avoid false positive matches
|
2018-01-15 12:13:34 +01:00 |
|
Alexandre Dulaunoy
|
a5bf49c85c
|
fix: reverse.it added to the list of dynamic malware analysis tools
|
2018-01-03 11:32:46 +01:00 |
|
Alexandre Dulaunoy
|
8ec2a3a98d
|
add: automated-malware-analysis known domain list
Fix #45
|
2017-12-29 20:01:55 +01:00 |
|
Alexandre Dulaunoy
|
ac2beeea02
|
add: Microsoft Azure Datacenter IP Ranges added including tool to
generate the JSON.
Fix #43
|
2017-12-29 15:39:52 +01:00 |
|
Alexandre Dulaunoy
|
bebc51fd86
|
fix (temp): office 365 warning list only matching as substring (new list
for CIDR block matching required)
|
2017-12-29 15:33:21 +01:00 |
|
Alexandre Dulaunoy
|
23d4b68de3
|
add: list of Microsoft office365/azure in China + extraction tool added
fix #42
|
2017-12-29 15:30:57 +01:00 |
|
Alexandre Dulaunoy
|
5ae117f7a3
|
Office 365 warning-list updated to the latest version
|
2017-12-29 15:09:50 +01:00 |
|
Raphaël Vinot
|
60aeb28fe8
|
chg: Enforce type in schema
|
2017-12-22 15:32:24 +01:00 |
|
Raphaël Vinot
|
0f23d9cb18
|
fix: public-dns-hostname not following schema
|
2017-12-22 14:53:56 +01:00 |
|
iglocska
|
05142183d9
|
Changed type and parser for hostname based public resolver list
|
2017-12-22 14:30:41 +01:00 |
|
Alexandre Dulaunoy
|
ffe3e97a06
|
fix: resolver expressed as hostname removed
|
2017-12-22 13:59:00 +01:00 |
|
Alexandre Dulaunoy
|
e0f5a924bf
|
Merge branch 'master' of github.com:MISP/misp-warninglists
|
2017-12-22 13:57:17 +01:00 |
|
Alexandre Dulaunoy
|
8d1b6e261c
|
List of known public DNS resolvers expressed as hostname added
The list has been separated from ipv4 list to be sure matching works in
MISP
|
2017-12-22 13:56:07 +01:00 |
|
Christophe Vandeplas
|
705d6c6040
|
quad9 project
|
2017-12-13 08:51:31 +01:00 |
|
ater49
|
fa3e724fdc
|
Update list.json
Comma added to the line
|
2017-09-28 11:14:45 +02:00 |
|
ater49
|
3d88354268
|
Update list.json
Just to add checkip.amazonaws.com into WarningList
|
2017-09-27 21:41:36 +02:00 |
|
Andras Iklody
|
7c5a09a735
|
Changed warninglist from sting matches to hostname type
|
2017-08-04 15:51:07 +02:00 |
|
rmarsollier
|
70b0742c45
|
solving last problem with google domain list
|
2017-06-19 09:19:21 +02:00 |
|
rmarsollier
|
93b6a5c120
|
importing google domains from wikipedia
|
2017-06-19 09:08:58 +02:00 |
|
Alexandre Dulaunoy
|
d40f5244b2
|
Merge pull request #31 from rmarsollier/patch-2
Fixing #23
|
2017-05-15 22:22:02 +02:00 |
|
RbN
|
b15b1de53e
|
Fix typo
|
2017-05-15 21:32:20 +02:00 |
|
RbN
|
40fa1df9b6
|
Adding domains of #23
|
2017-05-15 21:29:33 +02:00 |
|
RbN
|
c66018c925
|
Adding sha224
d14a028c2a3a2bc9476102bb288234c415a2b01f828ea62ac5b3e42f is a sha224, let's use it.
|
2017-05-15 20:40:24 +02:00 |
|
Alexandre Dulaunoy
|
bc05ddcdd0
|
Fixed #25 adding more URL shorteners
|
2017-03-16 16:13:18 +01:00 |
|
Raphaël Vinot
|
758ceda872
|
Run JQ on empty-hashes
|
2017-02-17 09:56:06 +01:00 |
|
Andras Iklody
|
c153c0b097
|
Merge pull request #22 from devnull-/eicar.com
No attribute filtering -- eicar.com
|
2017-02-17 08:25:37 +01:00 |
|
devnull-
|
52aa4995c3
|
Add matching_attributes
|
2017-02-16 22:27:54 +01:00 |
|
devnull-
|
52c2df2ec3
|
Formating
|
2017-02-16 22:14:58 +01:00 |
|
devnull-
|
931ff12935
|
Add matching_attributes
|
2017-02-16 22:13:56 +01:00 |
|
Raphaël Vinot
|
05cd86087d
|
Fix JQ all the things
|
2017-02-12 21:43:19 +01:00 |
|
Raphaël Vinot
|
dc456084e0
|
Revert "JQ all the things"
This reverts commit d422560a4e.
|
2017-02-12 21:18:09 +01:00 |
|
Raphaël Vinot
|
d422560a4e
|
JQ all the things
|
2017-02-12 21:02:02 +01:00 |
|
Raphaël Vinot
|
cdef6f192e
|
Update lists, add schema.
|
2017-02-12 21:01:36 +01:00 |
|
Michael Hamm
|
4986d618b1
|
Hashes for EICAR, EICAR zip and EICAR 2x zip.
|
2017-02-01 14:38:00 +01:00 |
|
Michael Hamm
|
c81a900924
|
RFC 6598 - Carrier- Grade NAT (CGN) devices
|
2017-01-31 20:49:44 +01:00 |
|
Nicolas Bareil
|
9c709a15e1
|
Adds matching_attribute
|
2017-01-27 15:52:59 +01:00 |
|
Nicolas Bareil
|
f3b9178b55
|
typo in the name
|
2017-01-27 15:42:54 +01:00 |
|
Iglocska
|
9fa3d1ef43
|
Bumped the date to force an update
|
2017-01-19 18:06:22 +01:00 |
|
Iglocska
|
c898585ccc
|
Merge branch 'master' of https://github.com/MISP/misp-warninglists
|
2017-01-19 18:05:50 +01:00 |
|
Iglocska
|
6d67b71e3f
|
Switched alexa to the "hostname" list
|
2017-01-19 18:05:16 +01:00 |
|
Alexandre Dulaunoy
|
af071c7b40
|
date updated
|
2017-01-18 15:43:59 +01:00 |
|
Iglocska
|
6fc0eb5adf
|
added url type to the alexa list
|
2017-01-18 12:30:07 +01:00 |
|
Alexandre Dulaunoy
|
946e15b468
|
type was not declared as substring
|
2017-01-18 12:20:39 +01:00 |
|
Alexandre Dulaunoy
|
41963f2d79
|
Merge branch 'master' of github.com:MISP/misp-warninglists
|
2017-01-18 12:12:34 +01:00 |
|
Alexandre Dulaunoy
|
5cce43035a
|
substring added (to support the new substring matching)
|
2017-01-18 12:12:10 +01:00 |
|
devnull-
|
0af8731277
|
Merge branch 'master' into URL-shortener-services
|
2017-01-06 18:56:33 +01:00 |
|
devnull-
|
788f275b9f
|
Warning list URL shorteners services
|
2017-01-06 18:41:30 +01:00 |
|
devnull-
|
63468bc1ac
|
Add types URI & URL
|
2017-01-06 18:07:03 +01:00 |
|
devnull-
|
8864d00c7c
|
Add ip-score.com
|
2017-01-06 18:04:37 +01:00 |
|
devnull-
|
c818e1a1de
|
Warning list "What's my IP" service
|
2017-01-06 17:56:56 +01:00 |