{"payload":{"feedbackUrl":"https://github.com/orgs/community/discussions/53140","repo":{"id":6231082,"defaultBranch":"master","name":"tech-CSI","ownerLogin":"CpanelInc","currentUserCanPush":false,"isFork":false,"isEmpty":false,"createdAt":"2012-10-15T17:27:47.000Z","ownerAvatar":"https://avatars.githubusercontent.com/u/549400?v=4","public":true,"private":false,"isOrgOwned":true},"refInfo":{"name":"","listCacheKey":"v0:1629380932.3805969","currentOid":""},"activityList":{"items":[{"before":"e7ca1ad5a74b393f07aa9371c9c664a524bbd145","after":"6f3cf69edc0508e73b05ae8fa99189d01b29185f","ref":"refs/heads/master","pushedAt":"2024-09-17T17:51:15.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"cPJon","name":"Jon Christopherson","path":"/cPJon","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/54332078?s=80&v=4"},"commit":{"message":"CX-1173 - Fix version compare subroutine for CVE checks.","shortMessageHtmlLink":"CX-1173 - Fix version compare subroutine for CVE checks."}},{"before":"ba2042fa2404156e8a620017a9275fbd93b277ae","after":"e7ca1ad5a74b393f07aa9371c9c664a524bbd145","ref":"refs/heads/master","pushedAt":"2024-09-16T14:28:40.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"cPJon","name":"Jon Christopherson","path":"/cPJon","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/54332078?s=80&v=4"},"commit":{"message":"CX-1172 - Fix syntax error in latest csi.pl on line 2481. Reported by MsJamie - Thanks","shortMessageHtmlLink":"CX-1172 - Fix syntax error in latest csi.pl on line 2481. Reported by…"}},{"before":"d7012aa5f876d250c3db316a03b46640e257518f","after":"ba2042fa2404156e8a620017a9275fbd93b277ae","ref":"refs/heads/master","pushedAt":"2024-09-13T18:23:23.000Z","pushType":"push","commitsCount":2,"pusher":{"login":"cPJon","name":"Jon Christopherson","path":"/cPJon","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/54332078?s=80&v=4"},"commit":{"message":"Add detection for Hadooken malware","shortMessageHtmlLink":"Add detection for Hadooken malware"}},{"before":"e1f5596905e1613d4e7e2ca21b7f77b3ddbcadb5","after":"d7012aa5f876d250c3db316a03b46640e257518f","ref":"refs/heads/master","pushedAt":"2024-08-21T13:40:28.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"cPJon","name":"Jon Christopherson","path":"/cPJon","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/54332078?s=80&v=4"},"commit":{"message":"Update CVE file","shortMessageHtmlLink":"Update CVE file"}},{"before":"4112cb7b9cd910fd29a895839ef882c22a69788e","after":"e1f5596905e1613d4e7e2ca21b7f77b3ddbcadb5","ref":"refs/heads/master","pushedAt":"2024-08-15T15:03:43.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"cPJon","name":"Jon Christopherson","path":"/cPJon","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/54332078?s=80&v=4"},"commit":{"message":"Update CVE's","shortMessageHtmlLink":"Update CVE's"}},{"before":"ebb6835c3e975be2dd62a09be066c9e75445bf8d","after":"4112cb7b9cd910fd29a895839ef882c22a69788e","ref":"refs/heads/master","pushedAt":"2024-07-22T13:16:55.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"cPJon","name":"Jon Christopherson","path":"/cPJon","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/54332078?s=80&v=4"},"commit":{"message":"Update CVE checks for CVE-2024-40725 (ea-apache24)","shortMessageHtmlLink":"Update CVE checks for <a title=\"CVE-2024-40725\" data-hovercard-type=\"advisory\" data-hovercard-url=\"/advisories/GHSA-x749-289q-pg9q/hovercard\" href=\"https://github.com/advisories/GHSA-x749-289q-pg9q\">CVE-2024-40725</a> (ea-apache24)"}},{"before":"aba49e8af2a630550e458d72d7e0aa54ebcc1996","after":"ebb6835c3e975be2dd62a09be066c9e75445bf8d","ref":"refs/heads/master","pushedAt":"2024-07-11T14:54:07.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"cPJon","name":"Jon Christopherson","path":"/cPJon","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/54332078?s=80&v=4"},"commit":{"message":"Update detections","shortMessageHtmlLink":"Update detections"}},{"before":"73dd592f82154640d80d529ed473710c63a7e850","after":"aba49e8af2a630550e458d72d7e0aa54ebcc1996","ref":"refs/heads/master","pushedAt":"2024-07-02T14:06:44.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"cPJon","name":"Jon Christopherson","path":"/cPJon","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/54332078?s=80&v=4"},"commit":{"message":"Update CVE data for OpenSSH reGressSSHion","shortMessageHtmlLink":"Update CVE data for OpenSSH reGressSSHion"}},{"before":"a6bf50d42a468a4cfeadf7fa94ef4a46256e2d9f","after":"73dd592f82154640d80d529ed473710c63a7e850","ref":"refs/heads/master","pushedAt":"2024-06-25T19:30:07.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"cPJon","name":"Jon Christopherson","path":"/cPJon","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/54332078?s=80&v=4"},"commit":{"message":"Fix Yara scan ignore section and update detections for latest P2PInject malware","shortMessageHtmlLink":"Fix Yara scan ignore section and update detections for latest P2PInje…"}},{"before":"6f8b6c1b4e34443f4452bbe04103dc09075547f8","after":"a6bf50d42a468a4cfeadf7fa94ef4a46256e2d9f","ref":"refs/heads/master","pushedAt":"2024-06-24T19:09:01.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"cPJon","name":"Jon Christopherson","path":"/cPJon","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/54332078?s=80&v=4"},"commit":{"message":"Fix Global symbol  requires explicit package name error","shortMessageHtmlLink":"Fix Global symbol requires explicit package name error"}},{"before":"5e3b682f55db2b32adca1e15261e404a96b62779","after":"6f8b6c1b4e34443f4452bbe04103dc09075547f8","ref":"refs/heads/master","pushedAt":"2024-06-24T19:03:14.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"cPJon","name":"Jon Christopherson","path":"/cPJon","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/54332078?s=80&v=4"},"commit":{"message":"Update Yara detection check","shortMessageHtmlLink":"Update Yara detection check"}},{"before":"8690ed084948cec770eef76d2130be9669e02482","after":"5e3b682f55db2b32adca1e15261e404a96b62779","ref":"refs/heads/master","pushedAt":"2024-06-24T18:38:57.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"cPJon","name":"Jon Christopherson","path":"/cPJon","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/54332078?s=80&v=4"},"commit":{"message":"Update HelimodSteal yara rule in csi_rules.yara","shortMessageHtmlLink":"Update HelimodSteal yara rule in csi_rules.yara"}},{"before":"cbe6702a6534098f12cb933035e0ac691ff48c6f","after":"8690ed084948cec770eef76d2130be9669e02482","ref":"refs/heads/master","pushedAt":"2024-06-21T15:49:40.000Z","pushType":"push","commitsCount":2,"pusher":{"login":"cPJon","name":"Jon Christopherson","path":"/cPJon","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/54332078?s=80&v=4"},"commit":{"message":"Add detection for various rootkits","shortMessageHtmlLink":"Add detection for various rootkits"}},{"before":"f5292a464f3987a757c9c909342f688cd5ebeda6","after":"cbe6702a6534098f12cb933035e0ac691ff48c6f","ref":"refs/heads/master","pushedAt":"2024-06-11T13:11:59.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"cPJon","name":"Jon Christopherson","path":"/cPJon","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/54332078?s=80&v=4"},"commit":{"message":"Update detections and CVE Data","shortMessageHtmlLink":"Update detections and CVE Data"}},{"before":"01c6d0a80d529e6e9c2d488e945aa175abbaf069","after":"f5292a464f3987a757c9c909342f688cd5ebeda6","ref":"refs/heads/master","pushedAt":"2024-05-16T18:15:02.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"cPJon","name":"Jon Christopherson","path":"/cPJon","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/54332078?s=80&v=4"},"commit":{"message":"CX=1067 - Add detections for Gomir - Linux backdoor","shortMessageHtmlLink":"CX=1067 - Add detections for Gomir - Linux backdoor"}},{"before":"a7a59ba29030712b7e40b8516020f78db26eca8b","after":"01c6d0a80d529e6e9c2d488e945aa175abbaf069","ref":"refs/heads/master","pushedAt":"2024-05-15T15:20:29.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"cPJon","name":"Jon Christopherson","path":"/cPJon","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/54332078?s=80&v=4"},"commit":{"message":"CX-1055 - Add new rules/detections for Ebury from latest ESET white paper.","shortMessageHtmlLink":"CX-1055 - Add new rules/detections for Ebury from latest ESET white p…"}},{"before":"8ee6593b61a187e0497253fc7683336f545c45d4","after":"a7a59ba29030712b7e40b8516020f78db26eca8b","ref":"refs/heads/master","pushedAt":"2024-05-03T14:32:53.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"cPJon","name":"Jon Christopherson","path":"/cPJon","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/54332078?s=80&v=4"},"commit":{"message":"Update suspicious crons","shortMessageHtmlLink":"Update suspicious crons"}},{"before":"20c557d489ee2026a699098009d88a792841c657","after":"8ee6593b61a187e0497253fc7683336f545c45d4","ref":"refs/heads/master","pushedAt":"2024-05-02T14:22:56.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"cPJon","name":"Jon Christopherson","path":"/cPJon","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/54332078?s=80&v=4"},"commit":{"message":"Update suspicious files again","shortMessageHtmlLink":"Update suspicious files again"}},{"before":"23982887ba2b28c0dc8adb8ff663dc2ef6d17f5b","after":"20c557d489ee2026a699098009d88a792841c657","ref":"refs/heads/master","pushedAt":"2024-05-02T14:17:10.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"cPJon","name":"Jon Christopherson","path":"/cPJon","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/54332078?s=80&v=4"},"commit":{"message":"Update suspicious_files","shortMessageHtmlLink":"Update suspicious_files"}},{"before":"3f6fa09ffc6a223b8fc697dc00da33bc2f8c3083","after":"23982887ba2b28c0dc8adb8ff663dc2ef6d17f5b","ref":"refs/heads/master","pushedAt":"2024-05-01T19:04:19.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"cPJon","name":"Jon Christopherson","path":"/cPJon","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/54332078?s=80&v=4"},"commit":{"message":"CX-1038 - Add tactu license circumvention checks","shortMessageHtmlLink":"CX-1038 - Add tactu license circumvention checks"}},{"before":"d81b6e8b9d043302f37e4dc0ac5dce52dc96c551","after":"3f6fa09ffc6a223b8fc697dc00da33bc2f8c3083","ref":"refs/heads/master","pushedAt":"2024-04-17T21:03:44.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"cPJon","name":"Jon Christopherson","path":"/cPJon","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/54332078?s=80&v=4"},"commit":{"message":"Update CVE data with new ea-php8x CVE's","shortMessageHtmlLink":"Update CVE data with new ea-php8x CVE's"}},{"before":"e17c57074840f65fefffd2e81df5a3673a06f2b0","after":"d81b6e8b9d043302f37e4dc0ac5dce52dc96c551","ref":"refs/heads/master","pushedAt":"2024-04-17T18:07:03.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"cPJon","name":"Jon Christopherson","path":"/cPJon","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/54332078?s=80&v=4"},"commit":{"message":"Update detections","shortMessageHtmlLink":"Update detections"}},{"before":"61da3a2f7ec8df0a22bde3f824a8d83cb453de1b","after":"e17c57074840f65fefffd2e81df5a3673a06f2b0","ref":"refs/heads/master","pushedAt":"2024-04-09T13:13:43.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"cPJon","name":"Jon Christopherson","path":"/cPJon","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/54332078?s=80&v=4"},"commit":{"message":"Update CVE checks and known hashes","shortMessageHtmlLink":"Update CVE checks and known hashes"}},{"before":"5f8a127b443440577cabaa7b2dac68b493cb8f7a","after":"61da3a2f7ec8df0a22bde3f824a8d83cb453de1b","ref":"refs/heads/master","pushedAt":"2024-04-05T14:01:07.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"cPJon","name":"Jon Christopherson","path":"/cPJon","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/54332078?s=80&v=4"},"commit":{"message":"Update CVE detections for ea-libcurl","shortMessageHtmlLink":"Update CVE detections for ea-libcurl"}},{"before":"091ca25c0f0281f3cd45ca1069b68943dced8a55","after":"5f8a127b443440577cabaa7b2dac68b493cb8f7a","ref":"refs/heads/master","pushedAt":"2024-03-29T14:34:34.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"cPJon","name":"Jon Christopherson","path":"/cPJon","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/54332078?s=80&v=4"},"commit":{"message":"Add detections for DinodasRAT","shortMessageHtmlLink":"Add detections for DinodasRAT"}},{"before":"55d78ba60f7c90befa77ba83203a265f96ce12b1","after":"091ca25c0f0281f3cd45ca1069b68943dced8a55","ref":"refs/heads/master","pushedAt":"2024-03-11T16:14:12.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"cPJon","name":"Jon Christopherson","path":"/cPJon","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/54332078?s=80&v=4"},"commit":{"message":"Add detection for GTPDoor and Magnet Goblin/NerbianRAT","shortMessageHtmlLink":"Add detection for GTPDoor and Magnet Goblin/NerbianRAT"}},{"before":"70693110e3c928ab0054419351bb5795f63190eb","after":"55d78ba60f7c90befa77ba83203a265f96ce12b1","ref":"refs/heads/master","pushedAt":"2024-03-06T16:18:42.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"cPJon","name":"Jon Christopherson","path":"/cPJon","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/54332078?s=80&v=4"},"commit":{"message":"Remove false positive from suspicious_files","shortMessageHtmlLink":"Remove false positive from suspicious_files"}},{"before":"6b35ee39a71f1f54d30cbc90c05e53926628e3ac","after":"70693110e3c928ab0054419351bb5795f63190eb","ref":"refs/heads/master","pushedAt":"2024-03-06T16:09:16.000Z","pushType":"push","commitsCount":2,"pusher":{"login":"cPJon","name":"Jon Christopherson","path":"/cPJon","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/54332078?s=80&v=4"},"commit":{"message":"Add detections for YARN malware campaign","shortMessageHtmlLink":"Add detections for YARN malware campaign"}},{"before":"7065d50c4755ac82cbf1ddb3957e245442f2dcf4","after":"6b35ee39a71f1f54d30cbc90c05e53926628e3ac","ref":"refs/heads/master","pushedAt":"2024-02-20T20:28:49.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"cPJon","name":"Jon Christopherson","path":"/cPJon","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/54332078?s=80&v=4"},"commit":{"message":"Fix package version bug fix for non-cPanel packages and update dhcpd cryptominer detection reported by Richard B.","shortMessageHtmlLink":"Fix package version bug fix for non-cPanel packages and update dhcpd …"}},{"before":"0cf6411a46dd3ee1349ee8edfe59569bf8d4b888","after":"7065d50c4755ac82cbf1ddb3957e245442f2dcf4","ref":"refs/heads/master","pushedAt":"2024-02-15T16:30:40.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"cPJon","name":"Jon Christopherson","path":"/cPJon","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/54332078?s=80&v=4"},"commit":{"message":"Update detections for noabot, mexcals, and dhcpd cryptominer","shortMessageHtmlLink":"Update detections for noabot, mexcals, and dhcpd cryptominer"}}],"hasNextPage":true,"hasPreviousPage":false,"activityType":"all","actor":null,"timePeriod":"all","sort":"DESC","perPage":30,"cursor":"djE6ks8AAAAEuNWAXgA","startCursor":null,"endCursor":null}},"title":"Activity · CpanelInc/tech-CSI"}