testing for otwo

Forum|Forum|1 year ago
October 10, 2024
12 replies
57 views

Test

Pinned Reply By inSided superAdmin

Test3 Chrome

rule C2_Domain_Regex {
    meta:
        description = "Detects a pattern that looks like a C2 domain in a string."

    strings:
        // Regular expression (enclosed in forward slashes /)
        // Matches "http://" or "https://" followed by one or more letters/digits
        // and ending in ".com"
        $re_c2 = /h(tt)ps?:\/\/[a-z0-9]+\.com/

    condition:
        // Matches if the regular expression is found.
        $re_c2
}