Releases
|
1.1.2510.0
Support Beacon Traffic Detection
- Requires experimental app version 1.6.2510.0 or higher (uses log command)
- Added ml-beaconing-connections command
- Added ml-beacon-sessions command
logpresso-ml-rules-1.1.2510.0.app (780,078 bytes)
Oct 27, 2025, 1:49:53 AM
1.0.2412.0
Now on General Availability
- Fixed SQL injection detection for paths
- Fixed double encoding false positive caused by file name containing % character.
- Fixed command injection false positive caused by {GUID} pattern.
- Fixed ML commands' string representation.
- Added signature metadata for CVE-2019-10098, CVE-2023-50677, CVE-2020-35131
logpresso-ml-rules-1.0.2412.0.app (752,489 bytes)
Dec 12, 2024, 12:14:53 AM
0.6.2412.0
Fixed XXE injection vulnerability.
logpresso-ml-rules-0.6.2412.0.app (752,122 bytes)
Dec 5, 2024, 3:13:16 PM
0.5.2411.0
Ehhanced XSS, XXE, double encoding feature detection of ml-scan-http-request command.
logpresso-ml-rules-0.5.2411.0.app (745,100 bytes)
Nov 20, 2024, 1:27:51 PM
0.3.2409.0
Support web bot classification and WAF alert analysis model
logpresso-ml-rules-0.3.2409.0.app (743,268 bytes)
Oct 4, 2024, 12:42:04 PM
0.1.2407.0
Support web log feature generation command.
- web-log-features
logpresso-ml-rules-0.1.2407.0.app (18,837 bytes)
Jul 29, 2024, 2:20:44 PM