sslbl/ja3-fingerprints: use .tar.gz URL

author Jason Ish <jish@oisf.net>

Wed, 8 May 2024 23:14:08 +0000 (17:14 -0600)

committer Jason Ish <jish@oisf.net>

Wed, 8 May 2024 23:15:16 +0000 (17:15 -0600)
author Jason Ish <jish@oisf.net>
Wed, 8 May 2024 23:14:08 +0000 (17:14 -0600)
committer Jason Ish <jish@oisf.net>
Wed, 8 May 2024 23:15:16 +0000 (17:15 -0600)
diff --git a/index.yaml b/index.yaml

index 9f7ed079ad5da7e3a3a534190bba96caf0496827..ef059062a853200778f294bde8a37ff4fe9ec993 100644 (file)
--- a/index.yaml
+++ b/index.yaml
@@ -99,7 +99,7 @@ sources:
        If you are running Suricata, you can use the SSLBL's Suricata JA3 FingerprintRuleset to detect and/or block malicious SSL connections in your network based on the JA3 fingerprint. Please note that your need Suricata 4.1.0 or newer in order to use the JA3 fingerprint ruleset.
      vendor: Abuse.ch
      license: CC0-1.0
-    url: https://sslbl.abuse.ch/blacklist/ja3_fingerprints.rules
+    url: https://sslbl.abuse.ch/blacklist/ja3_fingerprints.tar.gz
      min-version: 4.1.0
      checksum: false
author	Jason Ish <jish@oisf.net>
	Wed, 8 May 2024 23:14:08 +0000 (17:14 -0600)
committer	Jason Ish <jish@oisf.net>
	Wed, 8 May 2024 23:15:16 +0000 (17:15 -0600)