If you do a filesystem scan and encounter bincapz, it fires all sorts of alerts.
Since the filename isn't reliable in all circumsltances, my thought is to hide the results of bincapz if >X number of critical rules are hit, as well as some sort of bincapz specific rule.
If you do a filesystem scan and encounter bincapz, it fires all sorts of alerts.
Since the filename isn't reliable in all circumsltances, my thought is to hide the results of bincapz if >X number of critical rules are hit, as well as some sort of bincapz specific rule.