Add additional domains for known IP obtaining services

mandiant / capa-rules

Standard collection of rules for capa: the tool for enumerating the capabilities of programs

https://github.com/mandiant/capa/

Apache License 2.0

514 stars 157 forks source link

Add additional domains for known IP obtaining services #867

Closed Still34 closed 7 months ago

Still34 commented 7 months ago

Summary

This PR adds additional domains associated with WAN IP capturing in collection/network/capture-public-ip.yml, primarily ones typically found in Chinese malware.

williballenthin commented 7 months ago

thank you!