sublime-rules

sublime-rules copied to clipboard

New rule: open_redirect_weblinkconnect.yml

2

aidenmitchell

Create attachment_docusign_qr_code_pdf_no_logo.yml

1

morriscode

Create callback_phishing_social_security_fraud.yml

3

morriscode

Create brand_impersonation_interac.yml

1

aidenmitchell

New rule: Callback phishing via Intuit service abuse

1

# Description Created by @morriscode # Associated samples - https://platform.sublimesecurity.com/messages/2321786d197bb13fa23f73366d3070d20366d06cfaab8f8ab3d227a310e56dbf ## Associated hunts - https://platform.sublimesecurity.com/hunts/14746f38-4acc-42f0-99bd-b6d1d51391d4

aidenmitchell

# Description Extending phone number patterns, also adding optional considerations for the word Kindly. Updated the paypal template to accomidate "Notes from X" in addition to "Seller note" # Associated...

morriscode

Create impersonation_stripe.yml

8

# Description Match on the display name of Stripe for impersonations # Associated samples - [Sample 1](https://platform.sublimesecurity.com/messages/efe0061f0fa1ae7bf6e7db7e3b1919d5b72a7fc9f82d8c068923763f53dec77c) ## Associated hunts - [Hunt 1](https://platform.sublimesecurity.com/hunts/4e145262-8f34-46fe-a97f-3326e279a216)

zoomequipd

Create open_redirect_pirlsandiego.yml

1

# Description Match message containing an open redirect from PIRL San Diego # Associated samples - [Sample 1](https://platform.sublimesecurity.com/messages/ce5e11d10c4b26493f4e00c851dce757b40ca047470924b033a88b721361933e) ## Associated hunts - [Hunt 1](https://platform.sublimesecurity.com/hunts/e33f67e7-0877-447a-ace8-4b5d887b6ee7)

zoomequipd

# Description Insight extraction for Microsoft Sensitivity label https://learn.microsoft.com/en-us/purview/sensitivity-labels # Screenshot (insights) 

morriscode

# Description Bumping body length check. # Associated samples - https://platform.sublimesecurity.com/messages/3d808e169f4ca1cc99150d7f01c06b764e41858b9a22e4cf147d706f6ef61b79

aidenmitchell