sslbl/blacklist: update to more modern URL

author Jason Ish <jish@oisf.net>

Wed, 8 May 2024 23:13:05 +0000 (17:13 -0600)

committer Jason Ish <jish@oisf.net>

Wed, 8 May 2024 23:15:16 +0000 (17:15 -0600)
author Jason Ish <jish@oisf.net>
Wed, 8 May 2024 23:13:05 +0000 (17:13 -0600)
committer Jason Ish <jish@oisf.net>
Wed, 8 May 2024 23:15:16 +0000 (17:15 -0600)
diff --git a/index.yaml b/index.yaml

index 8569bfa98d2d8550f7785eac849ff7c285d4f02d..9f7ed079ad5da7e3a3a534190bba96caf0496827 100644 (file)
--- a/index.yaml
+++ b/index.yaml
@@ -90,7 +90,7 @@ sources:
        The SSL Blacklist (SSLBL) is a project of abuse.ch with the goal of detecting malicious SSL connections, by identifying and blacklisting SSL certificates used by botnet C&C servers. In addition, SSLBL identifies JA3 fingerprints that helps you to detect & block malware botnet C&C communication on the TCP layer.
      vendor: Abuse.ch
      license: CC0-1.0
-    url: https://sslbl.abuse.ch/blacklist/sslblacklist.rules
+    url: https://sslbl.abuse.ch/blacklist/sslblacklist_tls_cert.tar.gz
      checksum: false
  
    sslbl/ja3-fingerprints:
author	Jason Ish <jish@oisf.net>
	Wed, 8 May 2024 23:13:05 +0000 (17:13 -0600)
committer	Jason Ish <jish@oisf.net>
	Wed, 8 May 2024 23:15:16 +0000 (17:15 -0600)