AttackFeed by Joe Wagner | SigInt-Hombre v1 / dynamic Suricata detection rules from real-time threat feeds  - Full Disclosure

SigInt-Hombre v1 / dynamic Suricata detection rules from real-time threat feeds  – Full Disclosure

Posted on By Joe-W No Comments on SigInt-Hombre v1 / dynamic Suricata detection rules from real-time threat feeds  – Full Disclosure
Alert Feeds

 

Posted by malvuln on Jan 05

SigInt-Hombre, generates derived Suricata detection rules from live
URLhaus threat indicators at runtime and deploy them to the Security
Onion platform for high-coverage real-time network monitoring.

https://github.com/malvuln/sigint-hombre

What it does:
Pulls the public URLhaus feed in real time (not mirrored or redistributed)

Skips:
Comments, empty lines, malformed URLs, and feed self-references
Normalizes and extracts:

Protocol, host, URI…
 – Read More  – Full Disclosure 

You may also like

Alert Feeds
[REVIVE-SA-2025-004] Revive Adserver Vulnerabilities  – Full Disclosure
November 19, 2025
Alert Feeds
Re: [FD] : “Glass Cage” – Zero-Click iMessage → Persistent iOS Compromise + Bricking (CVE-2025-24085 / 24201, CNVD-2025-07885)  – Full Disclosure
October 29, 2025
Alert Feeds
APPLE-SA-12-12-2025-4 macOS Sequoia 15.7.3  – Full Disclosure
December 16, 2025
Alert Feeds
Panda3d v1.10.16 Uncontrolled Format String in Panda3D egg-mkfont Allows Stack Memory Disclosure  – Full Disclosure
January 6, 2026

Leave a Reply

AttackFeed by Joe Wagner
Powered by  GDPR Cookie Compliance
Privacy Overview

This website uses cookies so that we can provide you with the best user experience possible. Cookie information is stored in your browser and performs functions such as recognising you when you return to our website and helping our team to understand which sections of the website you find most interesting and useful.