Sublime Core Feed
This repo contains open-source Rules for Sublime, a free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing.
Sublime Security
Last updated Sep 13th, 2024
Feed Source
Detection Method is
Rule Name & Severity | Author | Last Updated | Labels | |
---|---|---|---|---|
Attachment: HTML smuggling - QR Code with suspicious links | Sublime Security | 5 months ago Apr 25th, 2024 | /feeds/core/detection-rules/attachment-html-smuggling-qr-code-with-suspicious-links-010e757d | |
Attachment: QR code with credential phishing indicators | Sublime Security | 2 months ago Jul 29th, 2024 | /feeds/core/detection-rules/attachment-qr-code-with-credential-phishing-indicators-9f1681e1 | |
Brand impersonation: Adobe (QR code) | Sublime Security | 19 days ago Aug 27th, 2024 | /feeds/core/detection-rules/brand-impersonation-adobe-qr-code-2fc36c6d | |
Brand impersonation: DocuSign (QR code) | Sublime Security | 3 months ago Jun 12th, 2024 | /feeds/core/detection-rules/brand-impersonation-docusign-qr-code-0b16c28a | |
Brand Impersonation: DocuSign with embedded QR code | Sublime Security | 4 months ago May 2nd, 2024 | /feeds/core/detection-rules/brand-impersonation-docusign-with-embedded-qr-code-f5cde463 | |
Brand Impersonation: Google (QR Code) | Sublime Security | 5 months ago Apr 3rd, 2024 | /feeds/core/detection-rules/brand-impersonation-google-qr-code-7ffd184c | |
Brand impersonation: Microsoft (QR code) | Sublime Security | a month ago Aug 9th, 2024 | /feeds/core/detection-rules/brand-impersonation-microsoft-qr-code-ed0f772a | |
Constant Contact link infrastructure abuse | Sublime Security | 2 months ago Jul 16th, 2024 | /feeds/core/detection-rules/constant-contact-link-infrastructure-abuse-8c5e8e4c | |
Extortion / Sextortion - PDF attachment leveraging breach data from freemail sender | Sublime Security | 3 days ago Sep 12th, 2024 | /feeds/core/detection-rules/extortion-sextortion-pdf-attachment-leveraging-breach-data-from-freemail-sender-efb5a213 | |
Link: QR code in EML attachment with credential phishing indicators | Sublime Security | 5 months ago Apr 25th, 2024 | /feeds/core/detection-rules/link-qr-code-in-eml-attachment-with-credential-phishing-indicators-9908ed3a | |
Link: QR code with phishing disposition in img or pdf | Sublime Security | 5 months ago Apr 25th, 2024 | /feeds/core/detection-rules/link-qr-code-with-phishing-disposition-in-img-or-pdf-8e8949f6 | |
Link: QR Code with suspicious language (untrusted sender) | Sublime Security | 5 months ago Apr 23rd, 2024 | /feeds/core/detection-rules/link-qr-code-with-suspicious-language-untrusted-sender-25a84d1c | |
QR Code with suspicious indicators | Sublime Security | 2 days ago Sep 13th, 2024 | /feeds/core/detection-rules/qr-code-with-suspicious-indicators-04f5c34f |
13 Rules