Sublime Core Feed
This repo contains open-source Rules for Sublime, a free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing.
Sublime Security
Last updated Jan 11th, 2025
Feed Source
Tactic or Technique is
Rule Name & Severity | Author | Last Updated | Labels | |
---|---|---|---|---|
Brand impersonation: American Express (AMEX) | Sublime Security | 4mo ago Sep 12th, 2024 | /feeds/core/detection-rules/brand-impersonation-american-express-amex-992a9fa9 | |
Brand impersonation: Aramco | Sublime Security | 3mo ago Oct 10th, 2024 | /feeds/core/detection-rules/brand-impersonation-aramco-96e87699 | |
Brand impersonation: Bank of America | Sublime Security | 7mo ago Jun 14th, 2024 | /feeds/core/detection-rules/brand-impersonation-bank-of-america-d2fc6ea1 | |
Brand impersonation: Barracuda Networks | Sublime Security | 6mo ago Jul 8th, 2024 | /feeds/core/detection-rules/brand-impersonation-barracuda-networks-583fd5eb | |
Brand impersonation: Binance | Sublime Security | 8mo ago May 3rd, 2024 | /feeds/core/detection-rules/brand-impersonation-binance-c3302a76 | |
Brand impersonation: Blockchain[.]com | Sublime Security | 8mo ago Apr 23rd, 2024 | /feeds/core/detection-rules/brand-impersonation-blockchaincom-0d85e555 | |
Brand impersonation: Charles Schwab | Sublime Security | 1mo ago Nov 25th, 2024 | /feeds/core/detection-rules/brand-impersonation-charles-schwab-7abde595 | |
Brand impersonation: Chase Bank | Sublime Security | 6mo ago Jul 9th, 2024 | /feeds/core/detection-rules/brand-impersonation-chase-bank-c680f1e7 | |
Brand impersonation: Coinbase | Sublime Security | 8mo ago Apr 23rd, 2024 | /feeds/core/detection-rules/brand-impersonation-coinbase-3dca757a | |
Brand impersonation: DHL | Sublime Security | 11d ago Jan 2nd, 2025 | /feeds/core/detection-rules/brand-impersonation-dhl-be4b4ae0 | |
Brand impersonation: Digital Ocean | Sublime Security | 10mo ago Mar 4th, 2024 | /feeds/core/detection-rules/brand-impersonation-digital-ocean-7f2f0e97 | |
Brand Impersonation: DocSend | Sublime Security | 4mo ago Sep 11th, 2024 | /feeds/core/detection-rules/brand-impersonation-docsend-cd9a3f7a | |
Brand impersonation: DocuSign | Sublime Security | 3d ago Jan 10th, 2025 | /feeds/core/detection-rules/brand-impersonation-docusign-4d29235c | |
Brand impersonation: FedEx | Sublime Security | 2mo ago Oct 23rd, 2024 | /feeds/core/detection-rules/brand-impersonation-fedex-94a2b602 | |
Brand impersonation: FINRA | Sublime Security | 2mo ago Oct 30th, 2024 | /feeds/core/detection-rules/brand-impersonation-finra-15c81db4 | |
Brand impersonation: Github | Sublime Security | 4mo ago Aug 29th, 2024 | /feeds/core/detection-rules/brand-impersonation-github-9402f92b | |
Brand impersonation: Google using Microsoft Forms | Sublime Security | 2y ago Aug 21st, 2023 | /feeds/core/detection-rules/brand-impersonation-google-using-microsoft-forms-1daac608 | |
Brand impersonation: Gusto | Sublime Security | 8mo ago Apr 23rd, 2024 | /feeds/core/detection-rules/brand-impersonation-gusto-54025c1c | |
Brand impersonation: Hulu | Sublime Security | 2d ago Jan 11th, 2025 | /feeds/core/detection-rules/brand-impersonation-hulu-6833de58 | |
Brand impersonation: Interac | Sublime Security | 3mo ago Sep 16th, 2024 | /feeds/core/detection-rules/brand-impersonation-interac-50a883dc | |
Brand impersonation: KnowBe4 | Sublime Security | 1mo ago Nov 25th, 2024 | /feeds/core/detection-rules/brand-impersonation-knowbe4-7c798386 | |
Brand impersonation: Ledger | Sublime Security | 10d ago Jan 3rd, 2025 | /feeds/core/detection-rules/brand-impersonation-ledger-5f934755 | |
Brand impersonation: LinkedIn | Sublime Security | 6mo ago Jul 9th, 2024 | /feeds/core/detection-rules/brand-impersonation-linkedin-1a0cde6d | |
Brand impersonation: Meta/Facebook | Sublime Security | 26d ago Dec 18th, 2024 | /feeds/core/detection-rules/brand-impersonation-metafacebook-e38f1e3b | |
Brand impersonation: Netflix | min0k | 1mo ago Nov 15th, 2024 | /feeds/core/detection-rules/brand-impersonation-netflix-9f39eea5 | |
Brand impersonation: Okta | Sublime Security | 8mo ago Apr 23rd, 2024 | /feeds/core/detection-rules/brand-impersonation-okta-b7a2989a | |
Brand impersonation: Outlook | Sublime Security | 7mo ago May 29th, 2024 | /feeds/core/detection-rules/brand-impersonation-outlook-1fe5bf7b | |
Brand impersonation: PayPal | Sublime Security | 28d ago Dec 16th, 2024 | /feeds/core/detection-rules/brand-impersonation-paypal-a6b2ceee | |
Brand impersonation: PNC | Sublime Security | 8mo ago Apr 23rd, 2024 | /feeds/core/detection-rules/brand-impersonation-pnc-1b5ae4fb | |
Brand Impersonation: ShareFile | Sublime Security | 6d ago Jan 7th, 2025 | /feeds/core/detection-rules/brand-impersonation-sharefile-f8330307 | |
Brand impersonation: Silicon Valley Bank | Sublime Security | 8mo ago Apr 25th, 2024 | /feeds/core/detection-rules/brand-impersonation-silicon-valley-bank-a01f61d9 | |
Brand impersonation: Spotify | Sublime Security | 8mo ago Apr 23rd, 2024 | /feeds/core/detection-rules/brand-impersonation-spotify-70e80f91 | |
Brand Impersonation: Stripe | Sublime Security | 5d ago Jan 8th, 2025 | /feeds/core/detection-rules/brand-impersonation-stripe-862d4654 | |
Brand impersonation: Sublime Security | Sublime Security | 5mo ago Jul 23rd, 2024 | /feeds/core/detection-rules/brand-impersonation-sublime-security-949484ed | |
Brand impersonation: TurboTax | Sublime Security | 2y ago Aug 21st, 2023 | /feeds/core/detection-rules/brand-impersonation-turbotax-90084031 | |
Brand impersonation: Twitter | Sublime Security | 5mo ago Aug 2nd, 2024 | /feeds/core/detection-rules/brand-impersonation-twitter-013c32c2 | |
Brand impersonation: UPS | Sublime Security | 5mo ago Jul 17th, 2024 | /feeds/core/detection-rules/brand-impersonation-ups-73b68869 | |
Brand impersonation: Vanta | @itsRobPicard | 8mo ago Apr 23rd, 2024 | /feeds/core/detection-rules/brand-impersonation-vanta-883d4382 | |
Brand impersonation: Venmo | Sublime Security | 8mo ago Apr 23rd, 2024 | /feeds/core/detection-rules/brand-impersonation-venmo-0ab15d4f | |
Brand impersonation: Wells Fargo | Sublime Security | 1mo ago Dec 5th, 2024 | /feeds/core/detection-rules/brand-impersonation-wells-fargo-02d7301f | |
Fraudulent E-commerce Operators | Sublime Security | 1mo ago Nov 20th, 2024 | /feeds/core/detection-rules/fraudulent-e-commerce-operators-3776a6fc | |
Impersonation: Suspected supplier impersonation with suspicious content | Sublime Security | 7mo ago May 21st, 2024 | /feeds/core/detection-rules/impersonation-suspected-supplier-impersonation-with-suspicious-content-63d8b1ce | |
Link: Recipient Domain in URL Path | Sublime Security | 6mo ago Jul 3rd, 2024 | /feeds/core/detection-rules/link-recipient-domain-in-url-path-de08731f | |
Link to a Domain with Punycode Characters | @ajpc500 | 2y ago Dec 20th, 2023 | /feeds/core/detection-rules/link-to-a-domain-with-punycode-characters-74b3698c | |
Lookalike sender domain (untrusted sender) | Sublime Security | 7mo ago Jun 3rd, 2024 | /feeds/core/detection-rules/lookalike-sender-domain-untrusted-sender-67721993 | |
Punycode sender domain | Sublime Security | 2y ago Aug 21st, 2023 | /feeds/core/detection-rules/punycode-sender-domain-bc3d8db5 | |
Suspected Lookalike domain with suspicious language | Sublime Security | 20d ago Dec 24th, 2024 |