Releases: warriordog/little-log-scan
Releases · warriordog/little-log-scan
Version 2.2.0
Major Changes:
- Output can now include information about the matched rules, including vulnerability details, links to more information, and relevant CVEs. These details can be enabled with
--rule-desc=y
,--rule-links=y
, and--rule-cve=y
. - TSV output now includes a header for easier viewing in TSV/CSV editor applications. Enable with
--tsv-header=y
. - Core refactor -
Scanner
has been split into three parts:Matcher
- contains the rule matching logicWriter
- writes match details to outputScanner
- glue logic to linkMatcher
andWriter
.
Minor Changes:
- Fix
Malware/Mozi
being case-sensitive and matching substrings - Rework
Payload/Downloader/wget
,Payload/Downloader/curl
, andPayload/Downloader/nc
to use a more efficient and more permissive regular expression. This may result in more false positives, but there will be less false negatives. The rules should also capture more arguments and URLs. Payload/Eval
is renamed toPayload/generic/Eval
Version 2.1.5
New standalone builds are available