[clamav-users] ClamAV Fireeye Rules?
Joel Esler (jesler)
jesler at cisco.com
Thu Dec 17 20:49:55 UTC 2020
Again, same as I wrote on the Snort list, we rewrote all of this detection and it is in the official ClamAV database, so If you are using fresh clam to update from clamav, you already have it.
On Dec 17, 2020, at 3:44 PM, bobby via clamav-users <clamav-users at lists.clamav.net<mailto:clamav-users at lists.clamav.net>> wrote:
I was going through the released Fireeye tool countermeasures, and came upon this: https://github.com/fireeye/red_team_tool_countermeasures/blob/master/all-clam.ldb. Is this meant to be installed with clamav somehow?
_______________________________________________
clamav-users mailing list
clamav-users at lists.clamav.net<mailto:clamav-users at lists.clamav.net>
https://lists.clamav.net/mailman/listinfo/clamav-users
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq
http://www.clamav.net/contact.html#ml
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.clamav.net/pipermail/clamav-users/attachments/20201217/75805dd3/attachment.htm>
More information about the clamav-users
mailing list