summaryrefslogtreecommitdiffstats
path: root/rules
Commit message (Expand)AuthorAgeFilesLines
* [Rules] Rework LEAKED_PASSWORD_SCAM rule one more timeVsevolod Stakhov2019-06-181-82/+3
* [Rules] Add dedicated bitcoin addresses filter ruleVsevolod Stakhov2019-06-183-1/+92
* [Rules] Add more detection to LEAKED_PASSWORD_SCAMVsevolod Stakhov2019-06-171-2/+4
* Merge pull request #2850 from heraklit256/rule-descr-cleanupVsevolod Stakhov2019-04-164-23/+23
|\
| * improve descriptions for HAS_X_PRIO_* rulesheraklit2562019-03-051-5/+5
| * improve descriptions for RCVD_COUNT_* rulesheraklit2562019-03-051-7/+7
| * improve description for FWD_SRSheraklit2562019-03-051-1/+1
| * unify rules scores and weightsheraklit2562019-03-053-10/+10
* | [Rules] Add additional conditions to perform BTC checksVsevolod Stakhov2019-04-121-2/+3
* | [Rules] Fix pay-to-hash addresses validationVsevolod Stakhov2019-04-121-3/+3
* | [Minor] Set alias flagVsevolod Stakhov2019-04-041-1/+1
* | [Minor] Header regexps: Add Postbox User-AgentAlexander Moisseev2019-03-251-2/+16
* | [Minor] Another fix of leaked password scam ruleVsevolod Stakhov2019-03-221-1/+1
* | [Minor] Sigh, another try to fix coroutines errorsVsevolod Stakhov2019-03-191-1/+0
* | [Feature] Validate BTC addresses in LEAKED_PASSWORD_SCAMVsevolod Stakhov2019-03-191-2/+84
|/
* [Rules] Improve html images detection logicVsevolod Stakhov2019-02-211-20/+25
* [Minor] Use more strict regex in LEAKED_PASSWORD_SCAMAlexander Moisseev2019-02-191-2/+2
* [Rules] OMOGRAPH_URL: Avoid extra calls for repeated urlsVsevolod Stakhov2019-01-291-4/+9
* [Rules] Add more defs for LEAKED_PASSWORD_SPAMVsevolod Stakhov2019-01-211-3/+7
* [Feature] Add dedicated ZW spaces detection for URLsVsevolod Stakhov2019-01-211-2/+18
* [Rules] Fix the case when there are no received headersVsevolod Stakhov2019-01-151-1/+1
* [Rules] LEAKED_PASSWORD_SCAM: Improve images scam detectionVsevolod Stakhov2019-01-151-1/+18
* [Rules] Improve LEAKED_PASSWORD_SCAM detectionVsevolod Stakhov2019-01-111-3/+3
* [Minor] Relax CTYPE_MISSING_DISPOSITION rule for pgp encryptionVsevolod Stakhov2019-01-091-0/+13
* [Minor] Add more mime flagsVsevolod Stakhov2019-01-071-11/+29
* [Minor] Add some mime only rulesVsevolod Stakhov2019-01-074-21/+44
* [Minor] Check for Kaspersky Security for Mail Server spam flagAlexander Moisseev2018-12-251-0/+7
* [Minor] Pet luacheckVsevolod Stakhov2018-12-253-4/+8
* [Rules] Use bad_unicode flag for LEAKED_PASSWORD_SCAM ruleVsevolod Stakhov2018-11-301-4/+4
* [Minor] Add new Message-ID regexp for SeamonkeyAlexander Moisseev2018-11-221-1/+1
* [Minor] Make LEAKED_PASSWORD_SCAM rule more strictVsevolod Stakhov2018-11-121-3/+4
* [Minor] Increase of LEAKED_PASSWORD_SCAM scoreVsevolod Stakhov2018-11-121-1/+1
* [Rules] Reduce FP rate for LEAKE_PASSWORD_SCAM ruleVsevolod Stakhov2018-11-121-1/+1
* [Rules] Add LEAKED_PASSWORD_SCAM ruleVsevolod Stakhov2018-10-291-0/+12
* add HAS_ONION_URI ruleheraklit2562018-10-131-0/+9
* [Minor] Don't load torch unless really neededVsevolod Stakhov2018-10-061-1/+1
* [Conf] Slashing: use lua rules from local confdir instead of confdirVsevolod Stakhov2018-10-061-1/+1
* [Fix] Fix groups messVsevolod Stakhov2018-09-296-74/+103
* add low positive score to RCVD_NO_TLS_LASTheraklit2562018-09-081-3/+3
* [Minor] Another fix for MISSING_MIMEOLEVsevolod Stakhov2018-08-131-2/+2
* Fix typo in SUBJ_EXCESS_QP descriptionJelle Raaijmakers2018-08-061-1/+1
* [Minor] Reduce default multiplier for Date headerVsevolod Stakhov2018-07-211-1/+1
* [Rules] Add MULTIPLE_FROM ruleVsevolod Stakhov2018-07-171-0/+21
* [Rules] Improve MULTIPLE_UNIQUE_HEADERS ruleVsevolod Stakhov2018-07-171-20/+24
* [Feature] Improve WHITE_ON_WHITE ruleVsevolod Stakhov2018-07-041-10/+23
* Eliminate false-positive on REPLYTO_EQ_TO_ADDRSteve Freegard2018-06-221-0/+1
* [Minor] Temporarily reset scores of new symbols unless testedVsevolod Stakhov2018-06-211-2/+2
* [Feature] Address ZeroFont exploitVsevolod Stakhov2018-06-211-4/+85
* [Minor] Detect To addresses wrapped in spacesAlexander Moisseev2018-06-171-0/+7
* [Feature] Improve error reporting for DKIM key access issuesVsevolod Stakhov2018-06-111-13/+4