Versions (3)
Version DetailsCurrent
Rev: 1 • Jun 25, 2025, 11:40 AMSSLBL: Malicious SSL certificate detected (VoidLogger)
alert tls $EXTERNAL_NET any -> $HOME_NET any (msg:"SSLBL: Malicious SSL certificate detected (VoidLogger)"; tls_cert_fingerprint; content:"0c:77:54:09:65:62:66:cb:47:9f:85:dc:45:09:2f:2b:6d:a5:dd:ac"; reference:url, sslbl.abuse.ch/ssl-certificates/sha1/0c775409656266cb479f85dc45092f2b6da5ddac/; sid:903204503; rev:1;)
Jun 25, 2025, 11:40 AM
Jun 25, 2025, 11:40 AM
Jul 17, 2025, 2:34 PM
Jul 17, 2025, 2:34 PM
sslblacklist_tls_cert.rules