Just works for detecting Stegpy yet.
To compile the module your self you need to add the module to the module_list file.
Example usage:
import "lsb"
rule Stegpy
{
condition:
lsb.stegv2 == "true" or lsb.stegv3 == "true"
}
| Name | Name | Last commit date | ||
|---|---|---|---|---|
Just works for detecting Stegpy yet.
To compile the module your self you need to add the module to the module_list file.
Example usage:
import "lsb"
rule Stegpy
{
condition:
lsb.stegv2 == "true" or lsb.stegv3 == "true"
}