Update suspicious_windows_firewall_rules_list.csv

mthcht · Jul 8, 2024 · b7a1153 · b7a1153
1 parent 37a73df
commit b7a1153
Showing 1 changed file with 2 additions and 0 deletions.
diff --git a/Lists/suspicious_windows_firewall_rules_list.csv b/Lists/suspicious_windows_firewall_rules_list.csv
@@ -1,4 +1,6 @@
 rule_name,metadata_tool,metadata_tool_type,metadata_tool_category,metadata_severity,metadata_link,metadata_detection_type,metadata_reference,metadata_comment
+SoftEther VPN Client*,SoftEtherVPN,greyware_tool,Defense Evasion,low,https://github.com/SoftEtherVPN/SoftEtherVPN,Hunting,https://github.com/mthcht/ThreatHunting-Keywords/blob/main/tools/R-T/SoftEtherVPN.csv,
+SoftEther VPN Command-Line Admin Tool,SoftEtherVPN,greyware_tool,Defense Evasion,low,https://github.com/SoftEtherVPN/SoftEtherVPN,Hunting,https://github.com/mthcht/ThreatHunting-Keywords/blob/main/tools/R-T/SoftEtherVPN.csv,
 StartTestDaemon,OpenSSH,greyware_tool,C2,high,https://github.com/PowerShell/openssh-portable/blob/661803c9ec4d7dee6574eb6ff0c85b2b7006edb1/regress/pesterTests/CommonUtils.psm1#L88C14-L88C29,Hunting,https://github.com/mthcht/ThreatHunting-Keywords/blob/main/tools/L-N/Openssh.csv,
 AweSunDesktopAgent,aweray,greyware_tool,RMM,high,https://sun.aweray.com/,Hunting,https://github.com/mthcht/ThreatHunting-Keywords/blob/main/tools/A-C/aweray.csv,
 AweSun,aweray,greyware_tool,RMM,high,https://sun.aweray.com/,Hunting,https://github.com/mthcht/ThreatHunting-Keywords/blob/main/tools/A-C/aweray.csv,