Neo23x0 / signature-base

YARA signature and IOC database for my scanners and tools
Other
2.47k stars 604 forks source link

Update vuln_paloalto_cve_2024_3400_apr24.yar #320

Open mgreen27 opened 5 months ago

mgreen27 commented 5 months ago

Just saw a case where curl / wget commands missed due to different order and this ruleset failed. Assumption is you added all of them command due to account for FP on mirai entries so modified this rule to take that into account and use "any of them" instead.