On Friday 07 August 2015 04:46:31 Steve Basford wrote: > Just in case it's useful... > > ---------------------------- Original Message > ---------------------------- Subject: [sanesecurity] Hacking Team > detection > From: "Steve Basford" <steveb_cla...@sanesecurity.com> > Date: Fri, August 7, 2015 9:43 am > To: sanesecurity_annou...@freelists.org > Cc: sanesecur...@freelists.org > ---------------------------------------------------------------------- >---- > > Rook Security (www.rooksecurity.com) have analysed the recent Hacking > Team data dump (400GB) and produced a utility to scan systems for > these files. > > Sanesecuriy have converted their analysis into 435 hashes into ClamAV > database format. > > With Rook Securitys permission, Ive placed a new database: > > hackingteam.hsb > > on the mirrors for distribution. > > Note the hashes are for Windows, Linux and Mac OSx systems. > > Cheers, > > Steve > Web : sanesecurity.com > Blog: sanesecurity.blogspot.com > > > > > Cheers, > > Steve > Web : sanesecurity.com > Blog: sanesecurity.blogspot.com > > _______________________________________________ > Help us build a comprehensive ClamAV guide: > https://github.com/vrtadmin/clamav-faq > > http://www.clamav.net/contact.html#ml Steve: Thank you, but for those of us who haven't played with our configuration for quite a while as its been Just Working(TM) for a year or more, a pointer to a URL showing how to incorporate this into the working configs we have would be appropriate.
Cheers, Gene Heskett -- "There are four boxes to be used in defense of liberty: soap, ballot, jury, and ammo. Please use in that order." -Ed Howdershelt (Author) Genes Web page <http://geneslinuxbox.net:6309/gene> _______________________________________________ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/contact.html#ml
