Sometimes we identify items that matches a tracker but that are not of interest and that follow some patterns: - the service's username is the same, - there is some recurring strings, etc. To exclude these from the results, the easiest is to use yara rules in the first place, and update these to exclude false positives.
Sometimes we identify items that matches a tracker but that are not of interest and that follow some patterns:
To exclude these from the results, the easiest is to use yara rules in the first place, and update these to exclude false positives.