[Rules] Add additional conditions to perform BTC checks

author Vsevolod Stakhov <vsevolod@highsecure.ru>

Fri, 12 Apr 2019 11:35:23 +0000 (12:35 +0100)

committer Vsevolod Stakhov <vsevolod@highsecure.ru>

Fri, 12 Apr 2019 11:35:23 +0000 (12:35 +0100)
author Vsevolod Stakhov <vsevolod@highsecure.ru>
Fri, 12 Apr 2019 11:35:23 +0000 (12:35 +0100)
committer Vsevolod Stakhov <vsevolod@highsecure.ru>
Fri, 12 Apr 2019 11:35:23 +0000 (12:35 +0100)
diff --git a/rules/regexp/misc.lua b/rules/regexp/misc.lua

index 2076c78faa559601e91efd45b433e3ae3b891f48..ece856c963698bcd98d1414c7fcdf14e8fe4469c 100644 (file)
--- a/rules/regexp/misc.lua
+++ b/rules/regexp/misc.lua
@@ -68,11 +68,12 @@ local password_in_words = [[/^pass(?:(?:word)|(?:phrase))$/i{words}]]
  local btc_wallet_address = [[/^[13][1-9A-Za-z]{25,34}$/]]
  local wallet_word = [[/^wallet$/{words}]]
  local broken_unicode = [[has_flag(bad_unicode)]]
+local list_unsub = [[header_exists(List-Unsubscribe)]]
  
  reconf['LEAKED_PASSWORD_SCAM'] = {
-  re = string.format('%s{words} & (%s | %s | %s | %s | %s | %s | lua:check_data_images)',
+  re = string.format('%s{words} & (%s | %s | %s | %s | %s | %s | %s | lua:check_data_images)',
        btc_wallet_address, password_in_words, wallet_word,
-      my_victim, your_webcam, your_onan, broken_unicode),
+      my_victim, your_webcam, your_onan, broken_unicode, list_unsub),
    description = 'Contains password word and BTC wallet address',
    functions = {
      check_data_images = function(task)
author	Vsevolod Stakhov <vsevolod@highsecure.ru>
	Fri, 12 Apr 2019 11:35:23 +0000 (12:35 +0100)
committer	Vsevolod Stakhov <vsevolod@highsecure.ru>
	Fri, 12 Apr 2019 11:35:23 +0000 (12:35 +0100)