search

mrheinen / lophiid

A distributed honeypot for monitoring large scale web attacks
GNU General Public License v2.0
6 stars 1 forks source link

XL: Update rules import and add default rules to git #34

Open mrheinen opened 1 month ago

mrheinen commented 1 month ago

This is to track the work to update the rules import mechanism. The goal is to allow lophiid to be shipped with a standard set of rules that are stored and maintained in git. Each rule will have a version and there will be an update mechanism that imports new and updates existing rules.

mrheinen commented 1 month ago

First part merged into dev https://github.com/mrheinen/lophiid/pull/39

mrheinen commented 1 month ago

Merged into main : https://github.com/mrheinen/lophiid/pull/41

mrheinen commented 1 month ago

Implemented and released. Will keep open until we add at least another 10 apps to import

mrheinen commented 1 month ago

Addded OFBiz CVE-2024-45507 with https://github.com/mrheinen/lophiid/pull/45

mrheinen commented 1 month ago

Added Vitogate here: https://github.com/mrheinen/lophiid/pull/47

CVE-2023-5222 CVE-2023-5702 CVE-2023-45852

mrheinen commented 1 week ago

Added metabase with PR https://github.com/mrheinen/lophiid/pull/61

CVE-2023-38646

mrheinen commented 1 week ago

Added F5 Big IP with PR https://github.com/mrheinen/lophiid/pull/63

CVE-2024-41723 CVE-2024-27202 CVE-2024-45844

mrheinen commented 1 week ago

Added SonicWALL NSA 2700 with PR https://github.com/mrheinen/lophiid/pull/65 Added SonicWALL SuperMassive 9200 with PR https://github.com/mrheinen/lophiid/pull/64