New Update Huorong Internet Security (Updates)

  • Like
Reactions: Nevi, starsfighter, silversurfer and 2 others
@Jerry.Lin
+ hosts protection
newscreen81815843.jpg
 
  • Like
Reactions: Andrew999, Nevi, silversurfer and 3 others
Jerry.Lin said:
My HIPS rules for Huorong
Check out if you're interested: GitHub - JerryLinLinLin/Huorong-ATP-Rules: 一款火绒增强HIPS自定义规则
Click to expand...
v0.1.6
What's Changed
-Add Trojan.Nanocore ruleset
-Fix ReadBrowserData false positives
-Fix a description error in the document generation script

github.com

Release v0.1.6 · JerryLinLinLin/Huorong-ATP-Rules

更新日志 新增Trojan.Nanocore规则组 修复ReadBrowserData部分误报 修复文档生成脚本部分描述错误 What's Changed Add Trojan.Nanocore ruleset Fix ReadBrowserData false positives Fix a description error in the document generation s...
github.com github.com
 
  • Like
  • +Reputation
Reactions: Nevi, Andrew999, Shadowra and 7 others
5.0.69.1
Defence driver
Scan engine (Bundle)
Scan engine (XSSE)
Scan engine (Cobra)
Log program
Tray program
Netflux program
UI resource (Main)
UI resource (Log)
UI resource (HRConfig)
UI resource (NetFlow)
UI resource (FileShred)
UI resource (VULScan)
Virtual sandbox (DAT)
Virus definitions (PROP)
Virus definitions (PSET)
Virus definitions (TROJ)
Behavior analysis definitions
Malicious website definitions
VULScan database
Click to expand...
 
  • Like
  • +Reputation
Reactions: Nevi, Andrew999, [correlate] and 7 others
5.0.69.2
Scan engine (XSSE)
Virtual sandbox (DAT)
Virtual sandbox (TDL)
Virus definitions (PROP)
Virus definitions (PSET)
Virus definitions (TROJ)
Defence database
Behavior analysis definitions
Malicious website definitions
Application reinforcement database
PopupBlocker database
VULScan database
Click to expand...
 
  • Like
Reactions: Nevi, Andrew999, [correlate] and 6 others
Huorong_ATP_Rules_v0.1.7
github.com

Release v0.1.7 · JerryLinLinLin/Huorong-ATP-Rules

更新日志 新增遥测组别 Telemetry ,默认状态为关闭 新增以下规则组: Suspicious.AppCertDLLs Suspicious.AppInitDLLs Suspicious.NetDebugger Suspicious.NetWinAppXRT Telemetry.ActiveSetup Telemetry.CredentialProviders Telemetry....
github.com github.com
Added new group category Telemetry, the default state is off
The following rule groups have been added:
Suspicious.AppCertDLLs
Suspicious.AppInitDLLs
Suspicious.NetDebugger
Suspicious.NetWinAppXRT
Telemetry.ActiveSetup
Telemetry.CredentialProviders
Telemetry.LSAConfig
Telemetry.PowerShell
Telemetry.ReadBrowserData
Telemetry.TerminalServer
Other ruleset adjustments
Click to expand...
 
  • Like
  • Applause
Reactions: Nevi, Andrew999, [correlate] and 6 others
5.0.69.5
Firewall driver
Defence driver
Scan center
Scan engine (libcodecs)
Scan engine (Bundle)
Scan engine (XSSE)
Main program
Tray program
Security service
UI resource (HRConfig)
Uninstaller
SysRepair program
Virtual sandbox (DAT)
Virus definitions (PROP)
Virus definitions (PSET)
Virus definitions (TROJ)
Behavior analysis definitions
Website control database
Click to expand...
 
  • Like
Reactions: Nevi, Andrew999, Moonhorse and 5 others

You may also like...