CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 17:22:49 +01:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #9309 from Security-Onion-Solutions/fix/ignore_additional_strelka_rules_causing_compilation_errors

Browse Source 
Ignore additional rules causing YARA compilation errors
This commit is contained in:
weslambert
2022-12-06 14:01:14 -05:00
committed by GitHub
parent 73304e049c 7ce0924382
commit 31832ae150
1 changed files with 12 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

15
salt/strelka/defaults.yaml
View File

@@ -1,9 +1,18 @@
strelka: strelka:
ignore: ignore:
- apt_flame2_orchestrator.yar
- apt_tetris.yar
- gen_susp_js_obfuscatorio.yar
- gen_webshells.yar
- generic_anomalies.yar - generic_anomalies.yar
- general_cloaking.yar - general_cloaking.yar
- thor_inverse_matches.yar - thor_inverse_matches.yar
- yara_mixed_ext_vars.yar - yara_mixed_ext_vars.yar
- gen_susp_js_obfuscatorio.yar - apt_apt27_hyperbro.yar
- apt_flame2_orchestrator.yar - apt_turla_gazer.yar
- apt_tetris.yar - gen_google_anomaly.yar
- gen_icon_anomalies.yar
- gen_nvidia_leaked_cert.yar
- gen_sign_anomalies.yar
- gen_susp_xor.yar
- gen_webshells_ext_vars.yar