├── .gitignore ├── README.md ├── dynamic_analysis ├── README.md └── src │ ├── BR2_build_config │ ├── README.md │ ├── arm_uclibc_config │ ├── m68k_uclibc_config │ ├── mips_uclibc_config │ ├── mipsel_uclibc_config │ ├── ppc_uclibc_config │ ├── sh4_uclibc_config │ └── sparc_uclibc_config │ ├── Dockerfiles │ ├── README.md │ ├── arm-uclibc │ │ └── Dockerfile │ ├── mips-uclibc │ │ └── Dockerfile │ ├── mipsel-uclibc │ │ └── Dockerfile │ ├── ppc-uclibc │ │ └── Dockerfile │ ├── sh4-uclibc │ │ └── Dockerfile │ └── sparc-uclibc │ │ └── Dockerfile │ └── scripts │ ├── logger.sh │ ├── run_analysis.sh │ ├── start_vm_arm.sh │ ├── start_vm_mips.sh │ ├── start_vm_mipsel.sh │ ├── start_vm_ppc.sh │ ├── start_vm_sh4.sh │ └── start_vm_sparc.sh └── yara_rules ├── antianalysis.yara ├── exploits ├── exploitdb │ ├── 3Com_OfficeConnect_RCE.yara │ ├── ACTi_ASOC2200_RCE.yara │ ├── AVCON6_Remote_Code_Execution.yara │ ├── AirLink101_SkyIPCam160W_RCE.yara │ ├── CCBill_RCE.yara │ ├── CVE_2006_4000.yara │ ├── CVE_2013_5912.yara │ ├── CVE_2017_16602.yara │ ├── CVE_2017_6316.yara │ ├── CVE_2019_14931.yara │ ├── CVE_2019_16072.yara │ ├── CVE_2019_17270.yara │ ├── CVE_2019_18396_CVE_2017_14127.yara │ ├── CVE_2022_1388_F5_RCE.yara │ ├── DZSVideoGallery_RCE.yara │ ├── NUUO_NVRmini_CVE.yara │ ├── Sar2HTML_RCE.yara │ ├── d-link │ │ ├── CVE_2013_7004.yara │ │ ├── CVE_2017_7398.yara │ │ ├── CVE_2018_12710.yara │ │ └── CVE_2018_8898.yara │ ├── dlink │ │ ├── CVE_2012_1308.yara │ │ ├── CVE_2012_5319.yara │ │ ├── CVE_2013_7471.yara │ │ ├── CVE_2016_6563.yara │ │ ├── CVE_2017_6190.yara │ │ ├── CVE_2017_6206.yara │ │ ├── CVE_2017_6411.yara │ │ ├── CVE_2017_9100.yara │ │ ├── CVE_2017_9675.yara │ │ ├── CVE_2018_5708.yara │ │ └── CVE_2019_11017.yara │ ├── google │ │ ├── CVE_2007_6212.yara │ │ ├── CVE_2010_3133.yara │ │ ├── CVE_2016_0728.yara │ │ ├── CVE_2016_5348.yara │ │ ├── CVE_2016_6754.yara │ │ └── CVE_2016_9651.yara │ ├── h264_dvr_rce.yara │ ├── hootoo │ │ └── CVE_2018_20841.yara │ ├── linksys │ │ ├── CVE_2006_5202.yara │ │ └── CVE_2008_1247.yara │ ├── lutron │ │ └── CVE_2018_8880.yara │ ├── mikrotik │ │ ├── CVE_2018_14847.yara │ │ └── CVE_2019_3924.yara │ ├── motorola │ │ └── CVE_2009_0393.yara │ ├── netgear │ │ ├── CVE_2009_0680.yara │ │ ├── CVE_2009_2256.yara │ │ ├── CVE_2009_2257.yara │ │ ├── CVE_2009_2258.yara │ │ ├── CVE_2013_2751.yara │ │ ├── CVE_2016_10174.yara │ │ ├── CVE_2016_10175.yara │ │ ├── CVE_2016_10176.yara │ │ ├── CVE_2016_1524.yara │ │ ├── CVE_2016_1525.yara │ │ ├── CVE_2016_1555.yara │ │ ├── CVE_2016_5674.yara │ │ ├── CVE_2016_5675.yara │ │ ├── CVE_2016_5676.yara │ │ ├── CVE_2016_5677.yara │ │ ├── CVE_2016_5679.yara │ │ ├── CVE_2016_5680.yara │ │ ├── CVE_2016_6277.yara │ │ ├── CVE_2017_5521.yara │ │ ├── CVE_2017_6077.yara │ │ └── CVE_2017_6334.yara │ ├── samsung │ │ ├── CVE_2012_4250.yara │ │ ├── CVE_2012_4333.yara │ │ └── CVE_2012_4335.yara │ ├── synology │ │ ├── CVE_2013_6987.yara │ │ ├── CVE_2014_11154.yara │ │ ├── CVE_2017_11151.yara │ │ ├── CVE_2017_11152.yara │ │ ├── CVE_2017_11153.yara │ │ ├── CVE_2017_11154.yara │ │ ├── CVE_2017_11155.yara │ │ ├── CVE_2017_9554.yara │ │ └── CVE_2018_1160.yara │ ├── tenda │ │ └── CVE_2014_5246.yara │ ├── tp-link │ │ ├── CVE_2014_9350.yara │ │ ├── CVE_2017_13772.yara │ │ ├── CVE_2018_11714.yara │ │ ├── CVE_2018_12692.yara │ │ └── CVE_2018_13134.yara │ └── trendnet │ │ └── CVE_2012_4876.yara ├── exploits.yara ├── mirai_exploits.yara └── routersploit │ ├── cameras │ ├── brickcom │ │ ├── corp_network_cameras_conf_disclosure.yara │ │ └── users_cgi_cred_disclosure.yara │ ├── dlink │ │ └── dcs_930l_932l_auth_bypass.yara │ ├── grandstream │ │ └── gxv3611hd_ip_camera_rce.yara │ ├── honeywell │ │ └── hicc_1100pt_password_disclosure.yara │ ├── multi │ │ ├── P2P_wificam_credential_disclosure.yara │ │ ├── P2P_wificam_rce.yara │ │ ├── jvc_vanderbilt_honeywell_path_traversal.yara │ │ └── netwave_IP_camera.yara │ └── siemens │ │ └── CVMS2025_credentials_disclosure.yara │ ├── misc │ ├── asus │ │ └── b1m_projector_.yara │ └── werepresent │ │ └── wipg1000_rce.yara │ └── routers │ ├── 2wire │ ├── 4011g_5012nv_path_traversal.yara │ └── gateway_auth_bypass.yara │ ├── 3com │ ├── 3cradsl72_info_disclosure.yara │ ├── ap8760_password_disclosure.yara │ ├── imc_info_disclosure.yara │ ├── imc_path_traversal.yara │ ├── officeconnect_info_disclosure.yara │ └── officeconnect_rce.yara │ ├── asmax │ ├── ar_1004g_password_disclosure.yara │ └── ar_804_gu_rce.yara │ ├── asus │ └── rt_n16_password_disclosure.yara │ ├── belkin │ ├── auth_bypass.yara │ ├── g_n150_password_disclosure.yara │ ├── g_plus_info_disclosure.yara │ ├── h750_rce.yara │ ├── n150_path_traversal.yara │ └── play_max_prce.yara │ ├── bhu │ └── bhu_uroute_rce.yara │ ├── billion │ ├── 5200w_rce.yara │ └── 7700nr4_password_disclosure.yara │ ├── cisco │ ├── dpc2420_info_disclosure.yara │ ├── firepower_management60_path_traversal.yara │ ├── firepower_management60_rce.yara │ ├── ios_http_authorization_bypass.yara │ ├── secure_acs_bypass.yara │ ├── ucm_info_disclosure.yara │ ├── ucs_manager_rce.yara │ ├── unified_multi_path_traversal.yara │ └── video_surv_path_traversal.yara │ ├── comtrend │ └── ct_5361t_password_disclosure.yara │ ├── dlink │ ├── dcs_1510_add_user.yara │ ├── dcs_930l_auth_rce.yara │ ├── dir_300_320_600_615_info_disclosure.yara │ ├── dir_300_320_615_auth_bypass.yara │ ├── dir_300_600_rce.yara │ ├── dir_300_645_815_upnp_rce.yara │ ├── dir_645_815_rce.yara │ ├── dir_645_password_disclosure.yara │ ├── dir_815_850l_rce.yara │ ├── dir_825_path_traversal.yara │ ├── dns_320l_327l_rce.yara │ ├── dsl_2640b_dns_change.yara │ ├── dsl_2730_2750_path_traversal.yara │ ├── dsl_2730b_2780b_526b_dns_change.yara │ ├── dsl_2740r_dns_change.yara │ ├── dsl_2750b_info_disclosure.yara │ ├── dvg_n5402sp_path_traversal.yara │ ├── dwl_3200ap_password_disclosure.yara │ ├── dwr_932_info_disclosure.yara │ ├── dwr_932b_backdoor.yara │ └── multi_hnap_rce.yara │ ├── engenius │ └── engenius_rce.yara │ ├── fortinet │ └── fortigate_os_backdoor.yara │ ├── gpon │ └── gpon_bypass_injection.yara │ ├── huawei │ ├── HuaweiHomeDeviceUpgrade.yara │ ├── e5331_mifi_info_disclosure.yara │ ├── hg530_hg520b_password_disclosure.yara │ └── hg866_password_change.yara │ ├── ipfire │ ├── ipfire_proxy_rce.yara │ └── ipfire_shellshock.yara │ ├── juniper │ └── screenos_backdoor.yara │ ├── linksys │ ├── 1500_2500_rce.yara │ ├── smartwifi_password_disclosure.yara │ ├── wap54gv3_rce.yara │ └── wrt100_110_rce.yara │ ├── movistar │ └── adsl_router_bhs_rta_path_traversal.yara │ ├── multi │ ├── heartbleed.yara │ ├── misfortune_cookie.yara │ ├── rom0.yara │ ├── shellshock.yara │ └── ssh_auth_keys.yara │ ├── netcore │ └── udp_53413_rce.yara │ ├── netgear │ ├── dgn2200_dnslookup_cgi_rce.yara │ ├── dgn2200_ping_cgi_rce.yara │ ├── jnr1010_path_traversal.yara │ ├── multi_password_disclosure_2017_5521.yara │ ├── n300_auth_bypass.yara │ ├── prosafe_rce.yara │ ├── r7000_r6400_rce.yara │ └── wnr500_612v3_jnr1010_2010_path_traversal.yara │ ├── netsys │ └── wmulti_rce_netsys.yara │ ├── shuttle │ └── 915wm_dns_change.yara │ ├── technicolor │ ├── dwg855_authbypass.yara │ ├── tc7200_password_disclosure_v2.yara │ └── tg784_authbypass.yara │ ├── thomson │ ├── twg849_info_disclosure.yara │ └── twg850_password_disclosure.yara │ ├── tplink │ ├── archer_c2_c20i_rce.yara │ ├── wdr740nd_wdr740n_backdoor.yara │ ├── wdr740nd_wdr740n_path_traversal.yara │ └── wdr842nd_wdr842n_configure_disclosure.yara │ ├── ubiquiti │ └── airos_6_x.yara │ ├── zte │ ├── f460_f660_backdoor.yara │ ├── f609_config_disclosure.yara │ ├── f660_config_disclosure.yara │ ├── f6xx_default_root.yara │ └── zxv10_rce.yara │ └── zyxel │ ├── CVE_2022_22947_Spring_Cloud_Gateway_RCE.yara │ ├── d1000_rce.yara │ ├── d1000_wifi_password_disclosure.yara │ ├── p660hn_t_v1_rce.yara │ ├── p660hn_t_v2_rce.yara │ └── zywall_usg_extract_hashes.yara └── malware_family ├── Linux_Moose.yara ├── apt_derusbi.yara ├── apt_sofacy_fysbis.yara ├── apt_turbo_campaign.yara ├── billgates.yara ├── derusbi_linux.yara ├── kaiten.yara ├── lin_coolmemes.yara ├── lin_darlloz.yara ├── lin_elfiot.yara ├── lin_irctelnet.yara ├── lin_jellyfish.yara ├── lin_kaiten.yara ├── lin_ladylinux.yara ├── lin_mirai.yara ├── lin_stdbot.yara ├── lin_torlus.yara ├── lin_venom.yara ├── master_family.yara ├── rootkit.yara └── source.txt /.gitignore: -------------------------------------------------------------------------------- 1 | .DS_Store 2 | -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/README.md -------------------------------------------------------------------------------- /dynamic_analysis/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/dynamic_analysis/README.md -------------------------------------------------------------------------------- /dynamic_analysis/src/BR2_build_config/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/dynamic_analysis/src/BR2_build_config/README.md -------------------------------------------------------------------------------- /dynamic_analysis/src/BR2_build_config/arm_uclibc_config: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/dynamic_analysis/src/BR2_build_config/arm_uclibc_config -------------------------------------------------------------------------------- /dynamic_analysis/src/BR2_build_config/m68k_uclibc_config: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/dynamic_analysis/src/BR2_build_config/m68k_uclibc_config -------------------------------------------------------------------------------- /dynamic_analysis/src/BR2_build_config/mips_uclibc_config: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/dynamic_analysis/src/BR2_build_config/mips_uclibc_config -------------------------------------------------------------------------------- /dynamic_analysis/src/BR2_build_config/mipsel_uclibc_config: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/dynamic_analysis/src/BR2_build_config/mipsel_uclibc_config -------------------------------------------------------------------------------- /dynamic_analysis/src/BR2_build_config/ppc_uclibc_config: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/dynamic_analysis/src/BR2_build_config/ppc_uclibc_config -------------------------------------------------------------------------------- /dynamic_analysis/src/BR2_build_config/sh4_uclibc_config: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/dynamic_analysis/src/BR2_build_config/sh4_uclibc_config -------------------------------------------------------------------------------- /dynamic_analysis/src/BR2_build_config/sparc_uclibc_config: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/dynamic_analysis/src/BR2_build_config/sparc_uclibc_config -------------------------------------------------------------------------------- /dynamic_analysis/src/Dockerfiles/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/dynamic_analysis/src/Dockerfiles/README.md -------------------------------------------------------------------------------- /dynamic_analysis/src/Dockerfiles/arm-uclibc/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/dynamic_analysis/src/Dockerfiles/arm-uclibc/Dockerfile -------------------------------------------------------------------------------- /dynamic_analysis/src/Dockerfiles/mips-uclibc/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/dynamic_analysis/src/Dockerfiles/mips-uclibc/Dockerfile -------------------------------------------------------------------------------- /dynamic_analysis/src/Dockerfiles/mipsel-uclibc/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/dynamic_analysis/src/Dockerfiles/mipsel-uclibc/Dockerfile -------------------------------------------------------------------------------- /dynamic_analysis/src/Dockerfiles/ppc-uclibc/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/dynamic_analysis/src/Dockerfiles/ppc-uclibc/Dockerfile -------------------------------------------------------------------------------- /dynamic_analysis/src/Dockerfiles/sh4-uclibc/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/dynamic_analysis/src/Dockerfiles/sh4-uclibc/Dockerfile -------------------------------------------------------------------------------- /dynamic_analysis/src/Dockerfiles/sparc-uclibc/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/dynamic_analysis/src/Dockerfiles/sparc-uclibc/Dockerfile -------------------------------------------------------------------------------- /dynamic_analysis/src/scripts/logger.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/dynamic_analysis/src/scripts/logger.sh -------------------------------------------------------------------------------- /dynamic_analysis/src/scripts/run_analysis.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/dynamic_analysis/src/scripts/run_analysis.sh -------------------------------------------------------------------------------- /dynamic_analysis/src/scripts/start_vm_arm.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/dynamic_analysis/src/scripts/start_vm_arm.sh -------------------------------------------------------------------------------- /dynamic_analysis/src/scripts/start_vm_mips.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/dynamic_analysis/src/scripts/start_vm_mips.sh -------------------------------------------------------------------------------- /dynamic_analysis/src/scripts/start_vm_mipsel.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/dynamic_analysis/src/scripts/start_vm_mipsel.sh -------------------------------------------------------------------------------- /dynamic_analysis/src/scripts/start_vm_ppc.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/dynamic_analysis/src/scripts/start_vm_ppc.sh -------------------------------------------------------------------------------- /dynamic_analysis/src/scripts/start_vm_sh4.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/dynamic_analysis/src/scripts/start_vm_sh4.sh -------------------------------------------------------------------------------- /dynamic_analysis/src/scripts/start_vm_sparc.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/dynamic_analysis/src/scripts/start_vm_sparc.sh -------------------------------------------------------------------------------- /yara_rules/antianalysis.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/antianalysis.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/3Com_OfficeConnect_RCE.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/3Com_OfficeConnect_RCE.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/ACTi_ASOC2200_RCE.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/ACTi_ASOC2200_RCE.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/AVCON6_Remote_Code_Execution.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/AVCON6_Remote_Code_Execution.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/AirLink101_SkyIPCam160W_RCE.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/AirLink101_SkyIPCam160W_RCE.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/CCBill_RCE.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/CCBill_RCE.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/CVE_2006_4000.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/CVE_2006_4000.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/CVE_2013_5912.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/CVE_2013_5912.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/CVE_2017_16602.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/CVE_2017_16602.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/CVE_2017_6316.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/CVE_2017_6316.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/CVE_2019_14931.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/CVE_2019_14931.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/CVE_2019_16072.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/CVE_2019_16072.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/CVE_2019_17270.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/CVE_2019_17270.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/CVE_2019_18396_CVE_2017_14127.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/CVE_2019_18396_CVE_2017_14127.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/CVE_2022_1388_F5_RCE.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/CVE_2022_1388_F5_RCE.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/DZSVideoGallery_RCE.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/DZSVideoGallery_RCE.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/NUUO_NVRmini_CVE.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/NUUO_NVRmini_CVE.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/Sar2HTML_RCE.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/Sar2HTML_RCE.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/d-link/CVE_2013_7004.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/d-link/CVE_2013_7004.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/d-link/CVE_2017_7398.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/d-link/CVE_2017_7398.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/d-link/CVE_2018_12710.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/d-link/CVE_2018_12710.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/d-link/CVE_2018_8898.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/d-link/CVE_2018_8898.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/dlink/CVE_2012_1308.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/dlink/CVE_2012_1308.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/dlink/CVE_2012_5319.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/dlink/CVE_2012_5319.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/dlink/CVE_2013_7471.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/dlink/CVE_2013_7471.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/dlink/CVE_2016_6563.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/dlink/CVE_2016_6563.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/dlink/CVE_2017_6190.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/dlink/CVE_2017_6190.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/dlink/CVE_2017_6206.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/dlink/CVE_2017_6206.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/dlink/CVE_2017_6411.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/dlink/CVE_2017_6411.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/dlink/CVE_2017_9100.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/dlink/CVE_2017_9100.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/dlink/CVE_2017_9675.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/dlink/CVE_2017_9675.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/dlink/CVE_2018_5708.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/dlink/CVE_2018_5708.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/dlink/CVE_2019_11017.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/dlink/CVE_2019_11017.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/google/CVE_2007_6212.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/google/CVE_2007_6212.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/google/CVE_2010_3133.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/google/CVE_2010_3133.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/google/CVE_2016_0728.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/google/CVE_2016_0728.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/google/CVE_2016_5348.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/google/CVE_2016_5348.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/google/CVE_2016_6754.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/google/CVE_2016_6754.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/google/CVE_2016_9651.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/google/CVE_2016_9651.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/h264_dvr_rce.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/h264_dvr_rce.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/hootoo/CVE_2018_20841.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/hootoo/CVE_2018_20841.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/linksys/CVE_2006_5202.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/linksys/CVE_2006_5202.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/linksys/CVE_2008_1247.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/linksys/CVE_2008_1247.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/lutron/CVE_2018_8880.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/lutron/CVE_2018_8880.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/mikrotik/CVE_2018_14847.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/mikrotik/CVE_2018_14847.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/mikrotik/CVE_2019_3924.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/mikrotik/CVE_2019_3924.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/motorola/CVE_2009_0393.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/motorola/CVE_2009_0393.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/netgear/CVE_2009_0680.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/netgear/CVE_2009_0680.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/netgear/CVE_2009_2256.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/netgear/CVE_2009_2256.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/netgear/CVE_2009_2257.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/netgear/CVE_2009_2257.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/netgear/CVE_2009_2258.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/netgear/CVE_2009_2258.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/netgear/CVE_2013_2751.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/netgear/CVE_2013_2751.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/netgear/CVE_2016_10174.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/netgear/CVE_2016_10174.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/netgear/CVE_2016_10175.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/netgear/CVE_2016_10175.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/netgear/CVE_2016_10176.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/netgear/CVE_2016_10176.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/netgear/CVE_2016_1524.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/netgear/CVE_2016_1524.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/netgear/CVE_2016_1525.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/netgear/CVE_2016_1525.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/netgear/CVE_2016_1555.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/netgear/CVE_2016_1555.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/netgear/CVE_2016_5674.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/netgear/CVE_2016_5674.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/netgear/CVE_2016_5675.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/netgear/CVE_2016_5675.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/netgear/CVE_2016_5676.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/netgear/CVE_2016_5676.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/netgear/CVE_2016_5677.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/netgear/CVE_2016_5677.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/netgear/CVE_2016_5679.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/netgear/CVE_2016_5679.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/netgear/CVE_2016_5680.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/netgear/CVE_2016_5680.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/netgear/CVE_2016_6277.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/netgear/CVE_2016_6277.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/netgear/CVE_2017_5521.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/netgear/CVE_2017_5521.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/netgear/CVE_2017_6077.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/netgear/CVE_2017_6077.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/netgear/CVE_2017_6334.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/netgear/CVE_2017_6334.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/samsung/CVE_2012_4250.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/samsung/CVE_2012_4250.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/samsung/CVE_2012_4333.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/samsung/CVE_2012_4333.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/samsung/CVE_2012_4335.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/samsung/CVE_2012_4335.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/synology/CVE_2013_6987.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/synology/CVE_2013_6987.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/synology/CVE_2014_11154.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/synology/CVE_2014_11154.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/synology/CVE_2017_11151.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/synology/CVE_2017_11151.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/synology/CVE_2017_11152.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/synology/CVE_2017_11152.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/synology/CVE_2017_11153.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/synology/CVE_2017_11153.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/synology/CVE_2017_11154.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/synology/CVE_2017_11154.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/synology/CVE_2017_11155.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/synology/CVE_2017_11155.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/synology/CVE_2017_9554.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/synology/CVE_2017_9554.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/synology/CVE_2018_1160.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/synology/CVE_2018_1160.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/tenda/CVE_2014_5246.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/tenda/CVE_2014_5246.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/tp-link/CVE_2014_9350.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/tp-link/CVE_2014_9350.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/tp-link/CVE_2017_13772.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/tp-link/CVE_2017_13772.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/tp-link/CVE_2018_11714.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/tp-link/CVE_2018_11714.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/tp-link/CVE_2018_12692.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/tp-link/CVE_2018_12692.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/tp-link/CVE_2018_13134.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/tp-link/CVE_2018_13134.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploitdb/trendnet/CVE_2012_4876.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploitdb/trendnet/CVE_2012_4876.yara -------------------------------------------------------------------------------- /yara_rules/exploits/exploits.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/exploits.yara -------------------------------------------------------------------------------- /yara_rules/exploits/mirai_exploits.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/mirai_exploits.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/cameras/brickcom/corp_network_cameras_conf_disclosure.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/cameras/brickcom/corp_network_cameras_conf_disclosure.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/cameras/brickcom/users_cgi_cred_disclosure.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/cameras/brickcom/users_cgi_cred_disclosure.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/cameras/dlink/dcs_930l_932l_auth_bypass.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/cameras/dlink/dcs_930l_932l_auth_bypass.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/cameras/grandstream/gxv3611hd_ip_camera_rce.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/cameras/grandstream/gxv3611hd_ip_camera_rce.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/cameras/honeywell/hicc_1100pt_password_disclosure.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/cameras/honeywell/hicc_1100pt_password_disclosure.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/cameras/multi/P2P_wificam_credential_disclosure.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/cameras/multi/P2P_wificam_credential_disclosure.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/cameras/multi/P2P_wificam_rce.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/cameras/multi/P2P_wificam_rce.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/cameras/multi/jvc_vanderbilt_honeywell_path_traversal.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/cameras/multi/jvc_vanderbilt_honeywell_path_traversal.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/cameras/multi/netwave_IP_camera.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/cameras/multi/netwave_IP_camera.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/cameras/siemens/CVMS2025_credentials_disclosure.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/cameras/siemens/CVMS2025_credentials_disclosure.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/misc/asus/b1m_projector_.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/misc/asus/b1m_projector_.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/misc/werepresent/wipg1000_rce.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/misc/werepresent/wipg1000_rce.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/2wire/4011g_5012nv_path_traversal.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/2wire/4011g_5012nv_path_traversal.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/2wire/gateway_auth_bypass.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/2wire/gateway_auth_bypass.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/3com/3cradsl72_info_disclosure.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/3com/3cradsl72_info_disclosure.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/3com/ap8760_password_disclosure.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/3com/ap8760_password_disclosure.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/3com/imc_info_disclosure.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/3com/imc_info_disclosure.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/3com/imc_path_traversal.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/3com/imc_path_traversal.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/3com/officeconnect_info_disclosure.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/3com/officeconnect_info_disclosure.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/3com/officeconnect_rce.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/3com/officeconnect_rce.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/asmax/ar_1004g_password_disclosure.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/asmax/ar_1004g_password_disclosure.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/asmax/ar_804_gu_rce.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/asmax/ar_804_gu_rce.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/asus/rt_n16_password_disclosure.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/asus/rt_n16_password_disclosure.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/belkin/auth_bypass.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/belkin/auth_bypass.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/belkin/g_n150_password_disclosure.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/belkin/g_n150_password_disclosure.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/belkin/g_plus_info_disclosure.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/belkin/g_plus_info_disclosure.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/belkin/h750_rce.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/belkin/h750_rce.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/belkin/n150_path_traversal.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/belkin/n150_path_traversal.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/belkin/play_max_prce.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/belkin/play_max_prce.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/bhu/bhu_uroute_rce.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/bhu/bhu_uroute_rce.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/billion/5200w_rce.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/billion/5200w_rce.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/billion/7700nr4_password_disclosure.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/billion/7700nr4_password_disclosure.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/cisco/dpc2420_info_disclosure.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/cisco/dpc2420_info_disclosure.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/cisco/firepower_management60_path_traversal.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/cisco/firepower_management60_path_traversal.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/cisco/firepower_management60_rce.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/cisco/firepower_management60_rce.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/cisco/ios_http_authorization_bypass.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/cisco/ios_http_authorization_bypass.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/cisco/secure_acs_bypass.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/cisco/secure_acs_bypass.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/cisco/ucm_info_disclosure.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/cisco/ucm_info_disclosure.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/cisco/ucs_manager_rce.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/cisco/ucs_manager_rce.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/cisco/unified_multi_path_traversal.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/cisco/unified_multi_path_traversal.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/cisco/video_surv_path_traversal.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/cisco/video_surv_path_traversal.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/comtrend/ct_5361t_password_disclosure.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/comtrend/ct_5361t_password_disclosure.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/dlink/dcs_1510_add_user.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/dlink/dcs_1510_add_user.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/dlink/dcs_930l_auth_rce.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/dlink/dcs_930l_auth_rce.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/dlink/dir_300_320_600_615_info_disclosure.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/dlink/dir_300_320_600_615_info_disclosure.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/dlink/dir_300_320_615_auth_bypass.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/dlink/dir_300_320_615_auth_bypass.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/dlink/dir_300_600_rce.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/dlink/dir_300_600_rce.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/dlink/dir_300_645_815_upnp_rce.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/dlink/dir_300_645_815_upnp_rce.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/dlink/dir_645_815_rce.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/dlink/dir_645_815_rce.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/dlink/dir_645_password_disclosure.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/dlink/dir_645_password_disclosure.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/dlink/dir_815_850l_rce.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/dlink/dir_815_850l_rce.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/dlink/dir_825_path_traversal.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/dlink/dir_825_path_traversal.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/dlink/dns_320l_327l_rce.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/dlink/dns_320l_327l_rce.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/dlink/dsl_2640b_dns_change.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/dlink/dsl_2640b_dns_change.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/dlink/dsl_2730_2750_path_traversal.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/dlink/dsl_2730_2750_path_traversal.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/dlink/dsl_2730b_2780b_526b_dns_change.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/dlink/dsl_2730b_2780b_526b_dns_change.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/dlink/dsl_2740r_dns_change.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/dlink/dsl_2740r_dns_change.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/dlink/dsl_2750b_info_disclosure.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/dlink/dsl_2750b_info_disclosure.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/dlink/dvg_n5402sp_path_traversal.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/dlink/dvg_n5402sp_path_traversal.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/dlink/dwl_3200ap_password_disclosure.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/dlink/dwl_3200ap_password_disclosure.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/dlink/dwr_932_info_disclosure.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/dlink/dwr_932_info_disclosure.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/dlink/dwr_932b_backdoor.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/dlink/dwr_932b_backdoor.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/dlink/multi_hnap_rce.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/dlink/multi_hnap_rce.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/engenius/engenius_rce.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/engenius/engenius_rce.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/fortinet/fortigate_os_backdoor.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/fortinet/fortigate_os_backdoor.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/gpon/gpon_bypass_injection.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/gpon/gpon_bypass_injection.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/huawei/HuaweiHomeDeviceUpgrade.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/huawei/HuaweiHomeDeviceUpgrade.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/huawei/e5331_mifi_info_disclosure.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/huawei/e5331_mifi_info_disclosure.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/huawei/hg530_hg520b_password_disclosure.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/huawei/hg530_hg520b_password_disclosure.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/huawei/hg866_password_change.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/huawei/hg866_password_change.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/ipfire/ipfire_proxy_rce.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/ipfire/ipfire_proxy_rce.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/ipfire/ipfire_shellshock.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/ipfire/ipfire_shellshock.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/juniper/screenos_backdoor.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/juniper/screenos_backdoor.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/linksys/1500_2500_rce.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/linksys/1500_2500_rce.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/linksys/smartwifi_password_disclosure.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/linksys/smartwifi_password_disclosure.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/linksys/wap54gv3_rce.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/linksys/wap54gv3_rce.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/linksys/wrt100_110_rce.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/linksys/wrt100_110_rce.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/movistar/adsl_router_bhs_rta_path_traversal.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/movistar/adsl_router_bhs_rta_path_traversal.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/multi/heartbleed.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/multi/heartbleed.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/multi/misfortune_cookie.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/multi/misfortune_cookie.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/multi/rom0.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/multi/rom0.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/multi/shellshock.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/multi/shellshock.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/multi/ssh_auth_keys.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/multi/ssh_auth_keys.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/netcore/udp_53413_rce.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/netcore/udp_53413_rce.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/netgear/dgn2200_dnslookup_cgi_rce.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/netgear/dgn2200_dnslookup_cgi_rce.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/netgear/dgn2200_ping_cgi_rce.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/netgear/dgn2200_ping_cgi_rce.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/netgear/jnr1010_path_traversal.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/netgear/jnr1010_path_traversal.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/netgear/multi_password_disclosure_2017_5521.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/netgear/multi_password_disclosure_2017_5521.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/netgear/n300_auth_bypass.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/netgear/n300_auth_bypass.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/netgear/prosafe_rce.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/netgear/prosafe_rce.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/netgear/r7000_r6400_rce.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/netgear/r7000_r6400_rce.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/netgear/wnr500_612v3_jnr1010_2010_path_traversal.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/netgear/wnr500_612v3_jnr1010_2010_path_traversal.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/netsys/wmulti_rce_netsys.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/netsys/wmulti_rce_netsys.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/shuttle/915wm_dns_change.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/shuttle/915wm_dns_change.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/technicolor/dwg855_authbypass.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/technicolor/dwg855_authbypass.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/technicolor/tc7200_password_disclosure_v2.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/technicolor/tc7200_password_disclosure_v2.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/technicolor/tg784_authbypass.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/technicolor/tg784_authbypass.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/thomson/twg849_info_disclosure.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/thomson/twg849_info_disclosure.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/thomson/twg850_password_disclosure.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/thomson/twg850_password_disclosure.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/tplink/archer_c2_c20i_rce.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/tplink/archer_c2_c20i_rce.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/tplink/wdr740nd_wdr740n_backdoor.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/tplink/wdr740nd_wdr740n_backdoor.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/tplink/wdr740nd_wdr740n_path_traversal.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/tplink/wdr740nd_wdr740n_path_traversal.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/tplink/wdr842nd_wdr842n_configure_disclosure.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/tplink/wdr842nd_wdr842n_configure_disclosure.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/ubiquiti/airos_6_x.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/ubiquiti/airos_6_x.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/zte/f460_f660_backdoor.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/zte/f460_f660_backdoor.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/zte/f609_config_disclosure.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/zte/f609_config_disclosure.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/zte/f660_config_disclosure.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/zte/f660_config_disclosure.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/zte/f6xx_default_root.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/zte/f6xx_default_root.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/zte/zxv10_rce.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/zte/zxv10_rce.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/zyxel/CVE_2022_22947_Spring_Cloud_Gateway_RCE.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/zyxel/CVE_2022_22947_Spring_Cloud_Gateway_RCE.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/zyxel/d1000_rce.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/zyxel/d1000_rce.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/zyxel/d1000_wifi_password_disclosure.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/zyxel/d1000_wifi_password_disclosure.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/zyxel/p660hn_t_v1_rce.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/zyxel/p660hn_t_v1_rce.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/zyxel/p660hn_t_v2_rce.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/zyxel/p660hn_t_v2_rce.yara -------------------------------------------------------------------------------- /yara_rules/exploits/routersploit/routers/zyxel/zywall_usg_extract_hashes.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/exploits/routersploit/routers/zyxel/zywall_usg_extract_hashes.yara -------------------------------------------------------------------------------- /yara_rules/malware_family/Linux_Moose.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/malware_family/Linux_Moose.yara -------------------------------------------------------------------------------- /yara_rules/malware_family/apt_derusbi.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/malware_family/apt_derusbi.yara -------------------------------------------------------------------------------- /yara_rules/malware_family/apt_sofacy_fysbis.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/malware_family/apt_sofacy_fysbis.yara -------------------------------------------------------------------------------- /yara_rules/malware_family/apt_turbo_campaign.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/malware_family/apt_turbo_campaign.yara -------------------------------------------------------------------------------- /yara_rules/malware_family/billgates.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/malware_family/billgates.yara -------------------------------------------------------------------------------- /yara_rules/malware_family/derusbi_linux.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/malware_family/derusbi_linux.yara -------------------------------------------------------------------------------- /yara_rules/malware_family/kaiten.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/malware_family/kaiten.yara -------------------------------------------------------------------------------- /yara_rules/malware_family/lin_coolmemes.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/malware_family/lin_coolmemes.yara -------------------------------------------------------------------------------- /yara_rules/malware_family/lin_darlloz.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/malware_family/lin_darlloz.yara -------------------------------------------------------------------------------- /yara_rules/malware_family/lin_elfiot.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/malware_family/lin_elfiot.yara -------------------------------------------------------------------------------- /yara_rules/malware_family/lin_irctelnet.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/malware_family/lin_irctelnet.yara -------------------------------------------------------------------------------- /yara_rules/malware_family/lin_jellyfish.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/malware_family/lin_jellyfish.yara -------------------------------------------------------------------------------- /yara_rules/malware_family/lin_kaiten.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/malware_family/lin_kaiten.yara -------------------------------------------------------------------------------- /yara_rules/malware_family/lin_ladylinux.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/malware_family/lin_ladylinux.yara -------------------------------------------------------------------------------- /yara_rules/malware_family/lin_mirai.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/malware_family/lin_mirai.yara -------------------------------------------------------------------------------- /yara_rules/malware_family/lin_stdbot.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/malware_family/lin_stdbot.yara -------------------------------------------------------------------------------- /yara_rules/malware_family/lin_torlus.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/malware_family/lin_torlus.yara -------------------------------------------------------------------------------- /yara_rules/malware_family/lin_venom.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/malware_family/lin_venom.yara -------------------------------------------------------------------------------- /yara_rules/malware_family/master_family.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/malware_family/master_family.yara -------------------------------------------------------------------------------- /yara_rules/malware_family/rootkit.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/malware_family/rootkit.yara -------------------------------------------------------------------------------- /yara_rules/malware_family/source.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alrawi/badthings-tools/HEAD/yara_rules/malware_family/source.txt --------------------------------------------------------------------------------