Commit Graph

102 Commits

Author SHA1 Message Date
MDLeom 93b85b00f9
chore: remove remaining phishunt
no longer used since #43 #45
2024-03-07 10:14:08 +00:00
MDLeom b3f6e90b9a
feat: remove phishtank source
frequent interference from cloudflare captcha
2024-03-07 10:09:32 +00:00
MDLeom 6175179162
refactor: esm
got is esm only since v12
2023-10-01 09:56:57 +00:00
MDLeom 07ca1adfd1
refactor: lazy load os-release 2023-05-20 11:23:07 +00:00
MDLeom 667fad0b6f
style: remove debug message 2023-05-20 11:15:29 +00:00
MDLeom 13289d3365
fix: dash does not support pipefail 2023-05-20 10:38:47 +00:00
MDLeom eac902123e
fix: check installed grep is GNU variant 2023-05-20 09:51:12 +00:00
MDLeom eebf51ac47
fix: check existent of busybox
if dos2unix is not installed
2023-05-20 09:44:54 +00:00
MDLeom ca23363ef4
fix: reprocess decoded safelink
- extend 1ea3ce51f5
- also include scope of 0578e6c16a
2023-05-20 08:20:22 +00:00
MDLeom 0578e6c16a
fix: handle URL of top domains without path
- ref #62, #43, #44
- 745c81b134, c623542b9a, 8923941376
were not effective previously
2023-05-19 10:34:04 +00:00
MDLeom 7dbdc85163
fix: sed syntax to recognise newline
https://gitlab.com/malware-filter/urlhaus-filter/-/issues/79
2023-04-29 04:11:14 +00:00
MDLeom 745c81b134
fix(exclude): education.gouv.fr
- close #62
- checked whois record
2023-04-25 11:24:54 +00:00
MDLeom 4456662716
fix(exclude): *.digitaloceanspaces.com
- close #61
- close #52
- https://docs.digitalocean.com/products/spaces/details/availability/
2023-04-25 11:17:05 +00:00
MDLeom 953537642e
fix(exclude): *.safelinks.protection.outlook.com
- close #58
- enumerated dnsdumpster.com
- related 1ea3ce51f5
2023-04-25 11:07:03 +00:00
MDLeom 6e68b44c73
fix(exclude): smex-ctp.trendmicro.com
- closes #59
2023-04-25 10:51:58 +00:00
MDLeom 99536fa229
fix(exclude): update s3 endpoints
add new regions
https://docs.aws.amazon.com/general/latest/gr/s3.html#regional-endpoints
2023-04-25 10:35:23 +00:00
__ f45c7e5299 fix: exclude scaleway S3 object storage
- https://www.scaleway.com/en/docs/storage/object/quickstart/
- https://www.scaleway.com/en/docs/storage/object/api-cli/object-storage-aws-cli/
2023-04-25 09:54:10 +00:00
MDLeom 8aa4d2334c
fix: cloudflare radar dataset is now in csv format
instead of zip
2023-01-16 07:09:35 +00:00
MDLeom b5048417b0
style(sed): avoid backslash in insert option
- simpler and more readable
- https://unix.stackexchange.com/a/99351
2022-12-17 00:19:11 +00:00
MDLeom 97cec9d0e8
feat: add csv file for Splunk lookup
- https://docs.splunk.com/Documentation/Splunk/9.0.2/Knowledge/Aboutlookupsandfieldactions
2022-12-17 00:06:59 +00:00
MDLeom 53c62b74c3
docs(header): switch date format from RFC 5322 to ISO 8601
- universally readable
2022-12-16 08:18:00 +00:00
MDLeom 0f9696c4f5
fix(exclude): interspar.at
- https://spar-international.com/country/austria/
- close #25
2022-12-05 08:11:25 +00:00
MDLeom f5e5e95dd8
fix(exclude): atshop.io
- close #42
2022-12-05 08:05:47 +00:00
MDLeom 6303ff306f
fix(exclude): lt27.de
- https://www.tiekoetter.com/en/services/
- close #41
2022-12-05 08:03:50 +00:00
MDLeom 48b5a4fce1
fix(exclude): short.upm.es
- https://en.wikipedia.org/wiki/Technical_University_of_Madrid
- closes #37
2022-12-05 07:56:47 +00:00
MDLeom 13b9740e66
fix(exclude): netbank.takarekbank.hu
- https://en.wikipedia.org/wiki/Takar%C3%A9kbank
- closes #47
2022-12-05 07:53:55 +00:00
MDLeom 1ea3ce51f5
feat: decode O365 safelink
- https://support.microsoft.com/en-us/office/advanced-outlook-com-security-for-microsoft-365-subscribers-882d2243-eab9-4545-a58a-b36fee4a46e2
2022-12-04 03:53:09 +00:00
MDLeom 5a4a8bb9bc
refactor: xmlstarlet -> html-xml-utils 2022-12-01 10:00:32 +00:00
MDLeom e653ba90c6
fix: remove extra curl option 2022-11-26 01:31:21 +00:00
MDLeom 4bf534bdbc
feat: add Cloudflare Radar top 1m domains dataset 2022-11-25 07:19:20 +00:00
MDLeom c376e2a08f
feat: fallback to busybox dos2unix 2022-11-03 08:48:16 +00:00
MDLeom e51886ff44
feat: fallback to busybox dos2unix 2022-11-03 08:46:39 +00:00
MDLeom a50b2be515
fix: disable phishunt
- closes #43
- closes #45
2022-11-03 08:41:25 +00:00
MDLeom c623542b9a
fix(exclude): outlook.com
- closes #44
2022-11-03 07:07:26 +00:00
Ming Di Leom d7e71fe41b Merge branch 'main' into 'main'
fix(exclude): login.microsoftonline.com

See merge request malware-filter/phishing-filter!4
2022-11-02 10:41:13 +00:00
MDLeom f992002230
ci(cf): snort2.rules path 2022-11-01 09:41:33 +00:00
MDLeom 25207f5708
ci(cf): snort2.rules path 2022-11-01 09:37:52 +00:00
MDLeom b2edb64044
ci(cf): snort2.rules path 2022-11-01 09:22:15 +00:00
MDLeom 4f3a67a21f
ci(cf): remove plain snort2.rules
- over 25MB limit of cf pages
- use phishing-filter-snort2.rules.gz or phishing-filter-snort2.rules.br
2022-11-01 07:27:52 +00:00
Aaron Viehl 8923941376 Added login.microsoftonline.com to exclusion list 2022-10-27 17:22:34 +00:00
MDLeom eea9efd0f1
style: alias "curl -L" 2022-10-10 09:15:57 +00:00
MDLeom 93824af81b
fix: add user agent to phishtank request
https://phishtank.org/developer_info.php
2022-10-10 09:13:39 +00:00
MDLeom c523b653bb
fix: make PHISHTANK_API optional
- add TOC
2022-10-03 03:44:53 +00:00
MDLeom 0447cfb792
fix(exclude): storage.yandexcloud.net
- close #24
- close #34
2022-09-27 09:53:18 +00:00
MDLeom e68268f506
fix: remove mitchellkrogza/Phishing.Database source
- close #35
2022-09-27 09:43:30 +00:00
MDLeom 6c27bf33aa
fix(exclude): application.axisbank.co.in
- Close #21
- resolved IP (103.208.248.156) belongs to Axis Bank
2022-09-27 08:51:15 +00:00
MDLeom 8fa366b37f
feat(sources): add phishunt.io & mitchellkrogza/Phishing.Database
- inspired by Phishing.Army
2022-07-31 08:29:10 +00:00
MDLeom b4229b2d56
fix: migrate to malware-filter group
- BREAKING CHANGE
- gitlab.com/malware-filter/phishing-filter
2022-05-21 03:04:56 +00:00
MDLeom 61762c4272
docs: to be migrated to gitlab.com/malware-filter
- https://about.gitlab.com/blog/2021/11/11/public-project-minute-limits
- https://about.gitlab.com/blog/2022/02/04/ultimate-perks-for-open-source-projects
2022-05-11 07:50:55 +00:00
MDLeom 4dd7298246
fix(exclude): wasabi
- Closes #20
- https://wasabi.com/locations/
2022-05-03 05:09:01 +00:00