Skip to content

Latest commit

 

History

History
81 lines (76 loc) · 3.04 KB

changelog.md

File metadata and controls

81 lines (76 loc) · 3.04 KB

March 07 2022

  • Updated Telegram Exfiltration Indicators.
  • Updated Author Indicators.
  • Updated Brand Indicators.
  • Updated Function Indicators.
  • Updated General Indicators.
  • Updated Microsoft Phishing detection rules.
  • Added Monzo Phishing detection rules.
  • Added Fake Anti-Virus detection rules.

February 07 2022

  • Updated DHL Phishing detection rules.
  • Updated Microsoft Phishing detection rules.
  • Updated Author Indicators.
  • Updated Brand Indicators.
  • Updated Function Indicators.
  • Updated URL Indicators.
  • Updated Adobe Phishing detection rules.
  • Updated Dropbox Phishing detection rules.
  • Updated Telegram Exfiltration Indicators.

January 22 2022

  • Kit Hunter v2.6.5 Minor Release

    • Added detection support for *.ini and *.xml files, based on recent scanning.
    • Several phishing kits have started using *.ini files and *.xml files for variable control, this update ensures that the tags will detect elements in those file types.

  • Updated DHL Phishing detection rules.

  • Updated Microsoft Phishing detection rules.

  • Updated Author Indicators.

  • Updated Brand Indicators.

  • Updated Function Indicators.

  • Updated URL Indicators.

  • Updated Shell Detection Indicators.

  • Updated Obfuscation Detections.

January 09 2022

  • Updated all tag files and detections. Too many changes to list.
    • Tag files reduced in size.
    • Duplicate or overlapping detections were cleaned up / removed.
    • New detections added based on scanning towards the end of December 2021, and the first week of January 2022.
    • Quick Scan detection rules were updated.
    • Unless otherwise needed due to significant changes or new detections, tag updates will now happen as needed instead of weekly.

2021 Updates

  • Kit Hunter v2.6.0 Minor Release
  • Kit Hunter v2.5.9 Major Release
  • Added detections for BulletPro Phishing-as-a-Service kits
  • Added Generic Webmail Phishing Detection
  • Added INTERAC detection rules for financial phishing
  • Added Netflix detection rules
  • Added UPS indicators to USPS detection rules
  • Added YASSCOM detection rules
  • Bank of America Indicators
  • Updated Adobe detection rules
  • Updated Amazon detection rules
  • Updated Author Indicators
  • Updated Bank of America Indicators
  • Updated Brand Indicators
  • Updated Chalbhai Indicators
  • Updated Chase detection rules
  • Updated cPanel detection rules
  • Updated Discover detection rules
  • Updated Function Indicators
  • Updated General Indicators
  • Updated Generic Phishing Setup Indicators
  • Updated LogoKit detection rules
  • Updated Microsoft detection rules
  • Updated Obfuscation Indicators
  • Updated PayPal detection rules
  • Updated Quick Scan Indicators
  • Updated script documentation under help.
  • Updated Security Indicators
  • Updated Telegram Exfiltration Indicators
  • Updated True-Login detection rules
  • Updated URL Indicators
  • Updated Z118 detection rules