On Wednesday 06 December 2017 at 18:15:55, John Hardin wrote:
> On Wed, 6 Dec 2017, Kevin A. McGrail wrote:
> >
> > Something like this:
> >
> > header __KAM_MAILSPLOIT1 From =~ /[\0]/
> > describe __KAM_MAILSPLOIT1 RFC2047 Exploit
> > https://www.mailsploit.com/index
> >
> > And a paired rules for \n looking for maxhits. Beyond that, what's a
> > good control character regex?
>
> From memory (sorry, in a meeting): [\x00-\x19]
Why not up to 0x1F?
Antony.
--
Don't procrastinate - put it off until tomorrow.
Please reply to the list;
please *don't* CC me.
