Sublime Core Feed
This repo contains open-source Rules for Sublime, a free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing.
Sublime Security
Last updated Sep 13th, 2024
Feed Source
Tactic or Technique is
Rule Name & Severity | Author | Last Updated | Labels | |
---|---|---|---|---|
Attachment: HTML smuggling - QR Code with suspicious links | Sublime Security | 5 months ago Apr 25th, 2024 | /feeds/core/detection-rules/attachment-html-smuggling-qr-code-with-suspicious-links-010e757d | |
Attachment: QR code with credential phishing indicators | Sublime Security | 2 months ago Jul 29th, 2024 | /feeds/core/detection-rules/attachment-qr-code-with-credential-phishing-indicators-9f1681e1 | |
Brand impersonation: Adobe (QR code) | Sublime Security | 19 days ago Aug 27th, 2024 | /feeds/core/detection-rules/brand-impersonation-adobe-qr-code-2fc36c6d | |
Brand impersonation: DocuSign (QR code) | Sublime Security | 3 months ago Jun 12th, 2024 | /feeds/core/detection-rules/brand-impersonation-docusign-qr-code-0b16c28a | |
Brand Impersonation: DocuSign with embedded QR code | Sublime Security | 4 months ago May 2nd, 2024 | /feeds/core/detection-rules/brand-impersonation-docusign-with-embedded-qr-code-f5cde463 | |
Brand Impersonation: Google (QR Code) | Sublime Security | 5 months ago Apr 3rd, 2024 | /feeds/core/detection-rules/brand-impersonation-google-qr-code-7ffd184c | |
Brand impersonation: Microsoft (QR code) | Sublime Security | a month ago Aug 9th, 2024 | /feeds/core/detection-rules/brand-impersonation-microsoft-qr-code-ed0f772a | |
Extortion / Sextortion - PDF attachment leveraging breach data from freemail sender | Sublime Security | 3 days ago Sep 12th, 2024 | /feeds/core/detection-rules/extortion-sextortion-pdf-attachment-leveraging-breach-data-from-freemail-sender-efb5a213 | |
Link: QR code in EML attachment with credential phishing indicators | Sublime Security | 5 months ago Apr 25th, 2024 | /feeds/core/detection-rules/link-qr-code-in-eml-attachment-with-credential-phishing-indicators-9908ed3a | |
Link: QR code with phishing disposition in img or pdf | Sublime Security | 5 months ago Apr 25th, 2024 | /feeds/core/detection-rules/link-qr-code-with-phishing-disposition-in-img-or-pdf-8e8949f6 | |
Link: QR Code with suspicious language (untrusted sender) | Sublime Security | 5 months ago Apr 23rd, 2024 | /feeds/core/detection-rules/link-qr-code-with-suspicious-language-untrusted-sender-25a84d1c | |
QR Code with suspicious indicators | Sublime Security | 2 days ago Sep 13th, 2024 | /feeds/core/detection-rules/qr-code-with-suspicious-indicators-04f5c34f |
12 Rules