Commit graph

Select branches

Hide pull requests

Test

master

#101

#104

#109

#110

#128

#129

#130

#131

#132

#133

#135

#139

#140

#147

#151

#155

#156

#157

#158

#159

#160

#163

#164

#165

#166

#167

#168

#169

#170

#172

#175

#186

#187

#191

#192

#197

#198

#199

#200

#201

#204

#205

#206

#207

#208

#21

#210

#211

#212

#214

#215

#217

#224

#225

#23

#230

#235

#239

#24

#246

#25

#250

#254

#255

#256

#257

#258

#259

#26

#260

#261

#262

#263

#264

#265

#266

#267

#268

#269

#27

#270

#271

#272

#273

#274

#276

#277

#278

#280

#281

#282

#283

#284

#285

#286

#287

#288

#289

#290

#291

#292

#293

#294

#296

#30

#31

#313

#316

#323

#324

#334

#339

#340

#347

#349

#35

#350

#351

#352

#353

#354

#355

#357

#358

#359

#361

#362

#37

#40

#51

#57

#7

#72

#77

#8

#8

#80

#81

#82

#85

#87

#90

#91

#92

#96

#98

Beta

current-database

db

db_extra

Mono Color

• c36254255d dbs_min update DosX 2026-05-13 20:39:27 +03:00
• 0430b77931 Improve Clickteam Fusion detection pattern DosX 2026-05-13 20:30:51 +03:00
• 5445b4b92c Enhance Clickteam Fusion detection logic DosX 2026-05-13 20:16:40 +03:00
• 5cb71dd29b Fix variable shadowing intcost 2026-05-13 20:16:39 +03:00
• 9972d6e912 Add PyArmor detect intcost 2026-05-13 20:07:47 +03:00
• 13f47a591b Merge branch 'master' of https://github.com/horsicq/Detect-It-Easy DosX 2026-05-13 20:01:12 +03:00
• ece9b51579 Add Clickteam Fusion detection rule DosX 2026-05-13 20:01:09 +03:00
• 7e1c18cdcb add Unreal game engine signature Benjamin Funke 2026-05-13 18:21:01 +02:00
• 74268286dd dbs_min update DosX 2026-05-13 19:13:00 +03:00
• 18903e438f Regen dbs_min -> (wrong Lvy RAT name bug), fixed DosX 2026-05-13 19:12:49 +03:00
• f44981d2ab Update __GenericHeuristicAnalysis_By_DosX.7.sg DosX 2026-05-13 19:11:51 +03:00
• c269309221 dbs_min update DosX 2026-05-13 19:11:32 +03:00
• b227feda23 Add safety checks for resource and disasm offsets DosX 2026-05-13 19:04:08 +03:00
• b65fd76005 Replace substr with substring and simplify checks DosX 2026-05-13 18:53:19 +03:00
• f3c443dd11 Use strict !== instead of != in heuristics DosX 2026-05-13 18:47:30 +03:00
• f0fba511a8 Add safety check for missing disassembly DosX 2026-05-13 18:38:32 +03:00
• 72db591361 Use strict equality and cache section entropy DosX 2026-05-13 18:32:20 +03:00
• 44ed59ed02 Use raw instruction text in EP regex checks DosX 2026-05-13 18:25:46 +03:00
• 02b7e6dcfe Limit PDB scan range and accept '/' in paths DosX 2026-05-13 18:20:15 +03:00
• 76edcd71b2 Use strict !== instead of != in scans DosX 2026-05-13 18:15:48 +03:00
• 7f0a630c56 Bound section scan loop and use strict equality DosX 2026-05-13 18:13:45 +03:00
• a201d52bc8 Scan NET short-names from index 0; fix hex padding DosX 2026-05-13 15:03:24 +03:00
• 4fe3900b65 dbs_min update DosX 2026-05-13 03:07:23 +03:00
• ec2a4a0bd4 Refine name obfuscation detection DosX 2026-05-13 03:01:44 +03:00
• 0749844697 Guard against missing <Module> .ctor signature DosX 2026-05-13 02:57:42 +03:00
• 6e3aead49a Clear PE cache, correct ldloca and findSignature DosX 2026-05-13 02:45:17 +03:00
• f4f90dc552 Merge branch 'master' of https://github.com/horsicq/Detect-It-Easy DosX 2026-05-13 02:44:40 +03:00
• 73cbb7f846 Update JSDoc for unloadCache behavior DosX 2026-05-13 02:44:25 +03:00
• d003e8f9cb Simplify capitalization for option labels DosX 2026-05-13 01:13:05 +03:00
• 5d34bf3cf9 dbs_min update DosX 2026-05-13 01:09:42 +03:00
• 4acb6d77f6 Refine ' RAT' signature heuristic with object checks DosX 2026-05-13 01:07:33 +03:00
• 2348272a08 Update library_Direct3D.4.sg DosX 2026-05-12 23:43:00 +03:00
• a9f2880eca Merge branch 'master' of https://github.com/horsicq/Detect-It-Easy DosX 2026-05-12 23:42:24 +03:00
• 269db4ffbb Safely handle regex match in Direct3D detection DosX 2026-05-12 23:42:12 +03:00
• 71c5e60f00 dbs_min update Benjamin Funke 2026-05-12 22:26:46 +02:00
• 5d884dca8e add libvpx ELF signature Benjamin Funke 2026-05-12 22:25:45 +02:00
• 684dc97516 Merge branch 'master' of https://github.com/horsicq/Detect-It-Easy DosX 2026-05-12 23:09:10 +03:00
• 828363eea9 dbs_min update DosX 2026-05-12 23:08:44 +03:00
• b4a75790d2 add Argon2 ELF signature Benjamin Funke 2026-05-12 22:08:41 +02:00
• c31eb5c7f4 Tighten Direct3D import regex and version checks DosX 2026-05-12 23:07:07 +03:00
• 0ca9674f6b Refine KD token regex and clarify build comment DosX 2026-05-12 22:52:59 +03:00
• 218f5a0fee Whitelist common identifier naming patterns DosX 2026-05-12 22:49:54 +03:00
• 8d681e44fe Tighten Direct3D module regex to require digits DosX 2026-05-12 22:41:03 +03:00
• d5fc32ec3d dbs_min update DosX 2026-05-12 22:36:58 +03:00
• fef3bf931a Enhance PE heuristic whitelist patterns DosX 2026-05-12 22:36:11 +03:00
• 00b9f14fbd Consolidate token whitelist into array DosX 2026-05-12 22:32:01 +03:00
• 50ded292a8 Refine token whitelist regexes DosX 2026-05-12 21:24:55 +03:00
• e53afb42f4 Update __GenericHeuristicAnalysis_By_DosX.7.sg DosX 2026-05-12 20:15:16 +03:00
• d66e10266f Merge branch 'master' of https://github.com/horsicq/Detect-It-Easy DosX 2026-05-12 20:11:52 +03:00
• d1b9abfe12 Refine PE heuristic obfuscation rules DosX 2026-05-12 20:11:50 +03:00
• 89ad65810a add XCOMPILE signature Benjamin Funke 2026-05-12 18:59:42 +02:00
• 06f62b0798 Use PE.getFileVersion() in XPAT signature Benjamin Funke 2026-05-12 18:49:46 +02:00
• edecf14bc1 Improve token obfuscation heuristics DosX 2026-05-12 19:28:34 +03:00
• c3fc6b8e14 Add SecurityHealthService and simplify signing DosX 2026-05-12 19:04:24 +03:00
• 59e5bd7c97 Improve fake system/file and company checks DosX 2026-05-12 19:00:56 +03:00
• 1433beadaf dbs_min update DosX 2026-05-12 18:11:16 +03:00
• a40da7ca3a Fix export name check precedence DosX 2026-05-12 02:29:32 +03:00
• b5d27b6599 dbs_min update DosX 2026-05-12 02:21:07 +03:00
• 921c5f4ed1 Fix mangled name parsing for E/G/R and $ methods DosX 2026-05-12 02:19:26 +03:00
• 1bacd6bc4b Use non-capturing groups in PE regexes DosX 2026-05-12 02:17:24 +03:00
• eda20ef5a8 dbs_min update DosX 2026-05-12 02:03:31 +03:00
• 0ba0ea7396 Add Rusty packer and annotate packer entries DosX 2026-05-12 02:01:33 +03:00
• 5b95a17a4c Add reference URLs to packer entries DosX 2026-05-12 01:22:53 +03:00
• 45f0a4ca16 Add extra tokens to CI/build regex DosX 2026-05-11 21:57:26 +03:00
• d0bc44a4c3 Add '.imrsiv' (UWP) to standard sections list DosX 2026-05-11 21:50:56 +03:00
• 342a1b1ddb dbs_min update DosX 2026-05-11 21:40:39 +03:00
• adf55c8b27 Merge branch 'master' of https://github.com/horsicq/Detect-It-Easy DosX 2026-05-11 21:39:25 +03:00
• 0651601ce1 Detect fake system files via version info DosX 2026-05-11 21:39:24 +03:00
• aa786eb6d3 refactor DEV7 game signature Benjamin Funke 2026-05-11 19:48:51 +02:00
• 63f963caff Normalize PE file version strings in engine detectors DosX 2026-05-11 20:29:12 +03:00
• 14901fa064 Merge branch 'master' of https://github.com/horsicq/Detect-It-Easy DosX 2026-05-11 20:27:14 +03:00
• 3a69bb160c Improve Warbird detection and token rules DosX 2026-05-11 20:27:11 +03:00
• 8b7dbb6391 use PE.getFileVersion() for game engine signatures Benjamin Funke 2026-05-11 19:20:33 +02:00
• 336994ff14 add FMOD signature Benjamin Funke 2026-05-11 18:59:58 +02:00
• eb9d248319 dbs_min update DosX 2026-05-11 19:40:43 +03:00
• 1017f556d5 Add inject2pe signature to PE heuristics (#355) DosX 2026-05-11 18:41:56 +03:00
• 0a42c33b00 Rename tool_inject2pe.2.sg -> tool_inject2pe.6.sg (#355) DosX 2026-05-11 18:36:45 +03:00
• 74bb0a17bf Merge branch 'master' of https://github.com/horsicq/Detect-It-Easy DosX 2026-05-11 18:34:12 +03:00
• 5b57795d2b Refine inject2pe detection rule DosX 2026-05-11 18:34:02 +03:00
• 84742d83eb style: auto-format JavaScript files in db directories github-actions[bot] 2026-05-11 15:33:37 +00:00
• bf74b6d8e6 fix inject2pe filename Benjamin Funke 2026-05-11 17:32:13 +02:00
• 8d2c3eaf6f style: auto-format JavaScript files in db directories github-actions[bot] 2026-05-11 15:27:03 +00:00
• ef60be45d1
  Merge pull request #355 from Tenzzzzzz/inject2pe/detection DosX 2026-05-11 18:26:26 +03:00
• 9da0680939
  Update tool.inject2pe.2.sg Yosef Khaled 2026-05-11 18:20:42 +03:00
• 947974eb12 dbs_min update DosX 2026-05-11 02:15:17 +03:00
• a1f6c641e4 Add checks for CFG without DEP and No-SEH on x64 DosX 2026-05-11 02:10:02 +03:00
• 9a0f73b9a1 Flag PE images with CFG but no ASLR DosX 2026-05-11 02:09:45 +03:00
• 27be07a78e Detect FORCE_INTEGRITY without ASLR DosX 2026-05-11 02:09:37 +03:00
• 35240ed05e Handle high-entropy VA on 32-bit PE DosX 2026-05-11 02:09:27 +03:00
• c2730fdb82 Warn if High-Entropy VA set without ASLR DosX 2026-05-11 02:07:11 +03:00
• 360128a0dd Add DLL characteristics flags and validity check DosX 2026-05-11 02:06:56 +03:00
• c0ba049aad Tweak PE heuristic checks and comments DosX 2026-05-11 02:06:29 +03:00
• bd31ca55f3 Add PE rule for SSH.NET DosX 2026-05-11 00:17:46 +03:00
• c1b5696c2c Merge branch 'master' of https://github.com/horsicq/Detect-It-Easy DosX 2026-05-10 23:58:45 +03:00
• dba850efa2 Improve token obfuscation heuristics DosX 2026-05-10 23:58:43 +03:00
• 0850c5400a
  Fix detection logic in tool.inject2pe.2.sg Yosef Khaled 2026-05-10 22:33:15 +03:00
• 1d84b6b603 Add inject2pe detection rule yosef khaled shehata 2026-05-10 22:19:13 +03:00
• a8aac75db7 add libxml2 signature Benjamin Funke 2026-05-10 17:11:24 +02:00
• d63afaeb91 Update packer_Fatpack.2.sg DosX 2026-05-10 17:58:49 +03:00
• 36837d7f45 Fatpack: add attribution and remove else branch (#354) DosX 2026-05-10 17:49:28 +03:00