Commit graph

Select branches

Hide pull requests

Test

master

#101

#104

#109

#110

#128

#129

#130

#131

#132

#133

#135

#139

#140

#147

#151

#155

#156

#157

#158

#159

#160

#163

#164

#165

#166

#167

#168

#169

#170

#172

#175

#186

#187

#191

#192

#197

#198

#199

#200

#201

#204

#205

#206

#207

#208

#21

#210

#211

#212

#214

#215

#217

#224

#225

#23

#230

#235

#239

#24

#246

#25

#250

#254

#255

#256

#257

#258

#259

#26

#260

#261

#262

#263

#264

#265

#266

#267

#268

#269

#27

#270

#271

#272

#273

#274

#276

#277

#278

#280

#281

#282

#283

#284

#285

#286

#287

#288

#289

#290

#291

#292

#293

#294

#296

#30

#31

#313

#316

#323

#324

#334

#339

#340

#347

#349

#35

#350

#351

#352

#353

#354

#355

#357

#358

#359

#361

#362

#37

#40

#51

#57

#7

#72

#77

#8

#8

#80

#81

#82

#85

#87

#90

#91

#92

#96

#98

Beta

current-database

db

db_extra

Mono Color

• 1db7ae8b55 Refactor DB entries, update heuristics DosX 2026-05-27 08:51:11 +03:00
• f41cc895a2 Whitelist GUIDs, timestamps, tokens, OIDs DosX 2026-05-27 08:29:31 +03:00
• 6d71a02e68 Enhance token heuristics and add PL/I DosX 2026-05-27 08:24:45 +03:00
• b103b0c3c2 Merge branch 'master' of https://github.com/horsicq/Detect-It-Easy DosX 2026-05-27 08:17:41 +03:00
• 75ac6bedbd Add regex for delimiter-separated identifiers DosX 2026-05-27 08:17:39 +03:00
• 0611610f97 add Battlenet signature Benjamin Funke 2026-05-26 19:33:26 +02:00
• f79fbb5ab9 remove old comment in QT signature Benjamin Funke 2026-05-26 18:24:53 +02:00
• b140ce5050 dbs_min update DosX 2026-05-26 02:34:28 +03:00
• cf168193cd Nest system file loop under packer/protector check DosX 2026-05-26 01:05:22 +03:00
• 940f26c0f6 Use logType constants and rename dotNet to net DosX 2026-05-26 01:00:11 +03:00
• db385c4281 Use logType constants in log switch DosX 2026-05-26 00:56:32 +03:00
• 94a0584b9a dbs_min update DosX 2026-05-26 00:53:26 +03:00
• 3f04825893 Heuristic: recognize .CRT sections as C/C++ DosX 2026-05-26 00:52:48 +03:00
• 25cd07ea3a Refactor IL2CPP section detection logic DosX 2026-05-26 00:47:24 +03:00
• 55f957fc77 Treat DB first EP instruction as incorrect DosX 2026-05-26 00:25:21 +03:00
• 9c2f2c2519 Ensure worker event handlers run only once DosX 2026-05-25 21:13:41 +03:00
• c1011944aa dbs_min update DosX 2026-05-25 21:04:56 +03:00
• 6767b50dbf Remove line breaks DosX 2026-05-25 21:03:46 +03:00
• 800723a60c Add reference URLs to protection signatures DosX 2026-05-25 20:59:32 +03:00
• 4aeaa3ea4e Extend PE heuristic whitelist patterns DosX 2026-05-25 20:45:08 +03:00
• 90e55cabf8 Refine date whitelist regex and tidy comments DosX 2026-05-25 20:32:49 +03:00
• 732d790bf8 Add Equation Group heuristic via BINRES DosX 2026-05-25 13:38:45 +03:00
• 0132017fc3 Add Name alias for FileName DosX 2026-05-25 13:37:01 +03:00
• a6c95ff277 Add Olympic Destroyer heuristic to PE scan DosX 2026-05-25 13:22:06 +03:00
• 63f7efd14e Add Slingshot APT heuristic for LineRecs DosX 2026-05-25 13:10:36 +03:00
• 87511f3e9f Use non-capturing group in FXS regex DosX 2026-05-25 12:49:35 +03:00
• c991951a83 Merge branch 'master' of https://github.com/horsicq/Detect-It-Easy DosX 2026-05-25 12:49:04 +03:00
• 9e284c697e Rename packer_Virbox rule to protector DosX 2026-05-25 12:49:01 +03:00
• 8b9f861409 add Microsoft Fax signature Benjamin Funke 2026-05-25 10:54:32 +02:00
• cb0ad89bb5 add CLBCATQ signature Benjamin Funke 2026-05-24 18:46:10 +02:00
• b4b5b2792b add AVIFIL signature Benjamin Funke 2026-05-24 18:36:30 +02:00
• ccf41d4d54 Simplify DirectPlay detection regex DosX 2026-05-24 19:03:19 +03:00
• 83c87bfe58 Merge branch 'master' of https://github.com/horsicq/Detect-It-Easy DosX 2026-05-24 19:01:29 +03:00
• d17e94c720 dbs_min update DosX 2026-05-24 19:01:25 +03:00
• d68b89de6a add DirectPlay signature Benjamin Funke 2026-05-24 08:11:15 +02:00
• 766ef4d963 Detect mutated import table (IAT mutation) DosX 2026-05-23 09:28:51 +03:00
• d2db0f9f70 Lower PE entropy threshold to 7.25 DosX 2026-05-23 08:21:19 +03:00
• 53aabe54a4 Refine PE heuristics: exclude NjRAT, set WiX v3 DosX 2026-05-23 07:44:37 +03:00
• 09a14623eb Merge branch 'master' of https://github.com/horsicq/Detect-It-Easy DosX 2026-05-23 07:40:14 +03:00
• f32c01520f Add StormKitty detection heuristic DosX 2026-05-23 07:40:12 +03:00
• d300f9aa42 Add NjRAT detection and tighten RAT heuristics DosX 2026-05-23 07:39:24 +03:00
• 3578dd8d51 Add Irdeto to Denuvo regex & tweak header art DosX 2026-05-23 07:39:01 +03:00
• efc16678e0 chore: update date to 2026-05-22 in db info files horsicq 2026-05-22 19:41:02 +02:00
• a2f22343cd Add Scylla entry; update labels and heuristics DosX 2026-05-22 00:43:14 +03:00
• df120a9798 Update __GenericHeuristicAnalysis_By_DosX.7.sg DosX 2026-05-22 00:20:48 +03:00
• f4bee6f458 Rename clearSectionName to cleanSectionName DosX 2026-05-21 23:50:35 +03:00
• 7a91221502 Broaden ASM Guard resource detection DosX 2026-05-21 23:36:51 +03:00
• 31b9141354 Only append 'modified' when sOptions empty DosX 2026-05-21 23:25:39 +03:00
• a054fe5472 Add BASE_GIT_URL to partner CONFIG DosX 2026-05-21 23:09:28 +03:00
• 50dc9aa509 Merge branch 'master' of https://github.com/horsicq/Detect-It-Easy DosX 2026-05-21 23:07:20 +03:00
• 31fc8b23b8 Require section[2] not RWX in PE heuristic DosX 2026-05-21 23:07:15 +03:00
• 8f64ee4e34 chore: update date to 2026-05-21 in db info files horsicq 2026-05-21 19:04:22 +02:00
• 9b32efd03d Rename and reformat several detection files DosX 2026-05-21 19:35:08 +03:00
• 0aa476434e Rename and reorganize db/Amiga and db/PE files DosX 2026-05-21 19:31:59 +03:00
• eb0f6d1f9d dbs_min update DosX 2026-05-21 18:45:07 +03:00
• 2d75e51a7e Merge branch 'master' of https://github.com/horsicq/Detect-It-Easy DosX 2026-05-21 18:43:39 +03:00
• a7681bc996 Tighten fake-signs detection; update DNGuard author DosX 2026-05-21 18:43:36 +03:00
• 9bf431ba2f Add NecroVM and RAT/UXCryptor heuristics DosX 2026-05-21 18:43:19 +03:00
• 76425fc5b5 Add PE detection rule for bzip2 library DosX 2026-05-21 18:42:58 +03:00
• 18461cf452 chore: update db date to 2026-05-19 horsicq 2026-05-19 20:42:18 +02:00
• c4c9d34761 add Omni Demo to Lego1 signature Benjamin Funke 2026-05-18 17:37:43 +02:00
• 87dd0b73f8
  Update README.md DosX 2026-05-17 18:00:45 +03:00
• b5cdaefac9 dbs_min update DosX 2026-05-16 19:04:38 +03:00
• aade9d41d9 Regen dbs_min -> (bad logic), fixed DosX 2026-05-16 19:04:22 +03:00
• 043a583c43 dbs_min update DosX 2026-05-16 19:01:55 +03:00
• 99e4073c6e Add rule for prometheus-net DosX 2026-05-16 19:01:34 +03:00
• 13af0d1509 Add TimeZoneConverter detection rule DosX 2026-05-16 18:59:09 +03:00
• f43141e9b9 Merge branch 'master' of https://github.com/horsicq/Detect-It-Easy DosX 2026-05-16 18:53:54 +03:00
• eba57c7fa6 Use _setLang and String() in Perl detection DosX 2026-05-16 18:53:49 +03:00
• e00b5ab2ea add PE.isNet() check for Digital Mars signature Benjamin Funke 2026-05-16 14:50:02 +02:00
• 8b6345a3b5 Add heuristic detection for Polip malware DosX 2026-05-15 17:57:29 +03:00
• ca7e9d21ad Merge branch 'master' of https://github.com/horsicq/Detect-It-Easy DosX 2026-05-15 17:56:38 +03:00
• 13db106134 Add 32-bit check and reorder cacheMap entries DosX 2026-05-15 17:56:35 +03:00
• db64fe4fc3 add Mikmod signature Benjamin Funke 2026-05-15 16:41:24 +02:00
• 9863826990 Refactor JS heuristic and improve template parsing DosX 2026-05-15 13:33:54 +03:00
• 8641f9da43 Lower size threshold for JS heuristic DosX 2026-05-15 13:31:26 +03:00
• 5c33d67919 dbs_min update DosX 2026-05-15 13:26:52 +03:00
• 6aa64aeb04 Fix regex char class in MiniJavaScript heuristic DosX 2026-05-15 13:26:36 +03:00
• 21782fbd78 Add skipNestedTemplate helper for templates DosX 2026-05-15 13:26:20 +03:00
• 3e1fa4cab4 Enhance JS heuristic parsing and regex fixes DosX 2026-05-15 13:16:03 +03:00
• 5cce7a286d Add jsx/mjs/cjs extensions to JS heuristic DosX 2026-05-15 13:00:12 +03:00
• e97e6825a6 Use strict equality and clean up compiler_DMC DosX 2026-05-15 12:44:47 +03:00
• 525bf76520 Merge branch 'master' of https://github.com/horsicq/Detect-It-Easy DosX 2026-05-15 12:42:47 +03:00
• 8f3dcd066f Use PE_Cached offsets in PE scans DosX 2026-05-15 12:42:37 +03:00
• 67ae0bdde7 Cache PE values; fix detections and minor tweaks DosX 2026-05-15 12:41:49 +03:00
• 2db6c1b988 add 8.52 to sVersion for DMC signature Benjamin Funke 2026-05-15 10:42:58 +02:00
• a8d7028397 dbs_min update Benjamin Funke 2026-05-15 08:14:51 +02:00
• b01868ec3b add Digital Mars compiler signature Benjamin Funke 2026-05-14 22:22:28 +02:00
• 5c23a5aa54 Tighten PE packer detection checks (#359) DosX 2026-05-14 17:33:41 +03:00
• 20b042df85
  Merge pull request #359 from Tenzzzzzz/Add/pkr_ce1a DosX 2026-05-14 17:07:40 +03:00
• 26f79591e5 add lchcdap game engine signature Benjamin Funke 2026-05-14 11:07:45 +02:00
• 41f48b120e
  Update packer_pkr_ce1a.2.sg Yosef Khaled 2026-05-14 10:48:48 +03:00
• 0d7ae97db4 dbs_min update DosX 2026-05-14 06:48:37 +03:00
• 23a3ae79c6 Update ANDpakk detection; remove extra blank line DosX 2026-05-14 06:45:20 +03:00
• 2248e623b0 Add Detect It Easy rule for Rusty packer DosX 2026-05-14 06:20:44 +03:00
• a7e0010f92 Added the detection of "pkr_ce1a" packer yosef khaled shehata 2026-05-14 00:59:53 +03:00
• 3b2dfac1de Add source URLs to tool metadata DosX 2026-05-13 23:14:21 +03:00
• 4d9608eb09 Update game_engine_ClickteamFusion.3.sg DosX 2026-05-13 23:08:49 +03:00
• 59d231aafe
  Delete db/Binary/PyArmor.sg intcost 2026-05-13 22:28:34 +03:00
• f20a6cb7a4 Add PyArmor protector detection intcost 2026-05-13 22:17:42 +03:00