Yara Rule - Microsoft SharePoint 서버에서 CVE-2023-29357의 성공적인 악용을 나타낼 수있는 로그 항목 감지 관련 IOC 2개 발견
Yara 정의.
Neo23x0
Yara Rule - Detects log entries that could indicate a successful exploitation of CVE-2023-29357 on Microsoft SharePoint servers
Yara definition.
https://github.com/Neo23x0/signature-base/commit/082373da99dcb85783941ea718bb0b452108ed10