Skip to content

Commit

Permalink
Update aggregated metadata.
Browse files Browse the repository at this point in the history
  • Loading branch information
@zeek-bot
zeek-bot committed Aug 26, 2024
1 parent f2ce759 commit 7cfbedc
Showing 1 changed file with 31 additions and 0 deletions.
31 changes: 31 additions & 0 deletions aggregate.meta
View file
Original file line number Diff line number Diff line change
Expand Up @@ -730,6 +730,16 @@ tags = dns, sumstats, log, measurement, top
url = https://github.com/corelight/top-dns
version = master

[corelight/zeek-agenttesla-detector]
depends =
zeek >=4.0.0
description = An AgentTesla malware C2 detector.
script_dir = scripts
summary = An AgentTesla malware C2 detector.
test_command = cd testing && btest -c btest.cfg
url = https://github.com/corelight/zeek-agenttesla-detector
version = v0.1.1

[corelight/zeek-asyncrat-detector]
depends =
zeek >=4.0.0
Expand Down Expand Up @@ -817,6 +827,16 @@ test_command = cd testing && btest -c btest.cfg
url = https://github.com/corelight/zeek-nats-log-writer
version = v0.1.0

[corelight/zeek-netsupport-detector]
depends =
zeek >=4.0.0
description = A Zeek base NetSupport detector. NetSupport is often abused by attackers in malware.
script_dir = scripts
summary = A Zeek base NetSupport detector. NetSupport is often abused by attackers in malware.
test_command = cd testing && btest -c btest.cfg
url = https://github.com/corelight/zeek-netsupport-detector
version = master

[corelight/zeek-notice-telegram]
description = Package that extends the Notice Framework to include
`ACTION_TELEGRAM` for sending messages on notices over Telegram.
Expand Down Expand Up @@ -898,6 +918,17 @@ test_command = cd tests && PATH=$(zkg config plugin_dir)/packages/spicy-plugin/b
url = https://github.com/corelight/zeek-spicy-wireguard
version = v0.1.4

[corelight/zeek-strrat-detector]
build_command = mkdir -p build && cd build && SPICYZ=$(command -v spicyz || echo %(package_base)s/spicy-plugin/build/bin/spicyz) cmake .. && cmake --build .
depends =
zeek >=4.0.0
description = A Zeek based STRRAT malware detector.
script_dir = scripts
summary = A Zeek based STRRAT malware detector.
test_command = cd testing && btest -c btest.cfg
url = https://github.com/corelight/zeek-strrat-detector
version = v0.1.0

[corelight/zeek-xor-exe-plugin]
build_command = ./configure && make
description = A plugin to find Windows executables that have been XOR encoded.
Expand Down

0 comments on commit 7cfbedc

Please sign in to comment.