Update index

Author: actions-user

.index.json

@@ -21053,7 +21053,7 @@
     },
     "crowdsecurity/ssh-time-based-bf": {
       "author": "crowdsecurity",
-      "content": "IyBzc2ggdGltZS1iYXNlZCBicnV0ZWZvcmNlIHdpdGggZmFsc2UgcG9zaXRpdmUgcmVkdWN0aW9uCnR5cGU6IGNvbmRpdGlvbmFsCm5hbWU6IGNyb3dkc2VjdXJpdHkvc3NoLXRpbWUtYmFzZWQtYmYKZGVzY3JpcHRpb246ICJEZXRlY3QgdGltZS1iYXNlZCBzc2ggYnJ1dGVmb3JjZSBhdHRlbXB0cyB0aGF0IGV2YWRlIHJhdGUgbGltaXRpbmcgKHdpdGggZmFsc2UgcG9zaXRpdmUgcmVkdWN0aW9uKSIKZmlsdGVyOiAiZXZ0Lk1ldGEuc2VydmljZSA9PSAnc3NoJyAmJiBldnQuTWV0YS5sb2dfdHlwZSBpbiBbJ3NzaF9mYWlsZWQtYXV0aCcsICdhdXRoX3N1Y2Nlc3MnXSIKZ3JvdXBieTogZXZ0Lk1ldGEuc291cmNlX2lwCmNhcGFjaXR5OiAtMQpjYW5jZWxfb246ICJldnQuTWV0YS5sb2dfdHlwZSA9PSAnYXV0aF9zdWNjZXNzJyIKY29uZGl0aW9uOiB8CiAgICBsZXQgZmFpbGVkQXV0aHMgPSBmaWx0ZXIocXVldWUuUXVldWUsIHsjLk1ldGEubG9nX3R5cGUgPT0gJ3NzaF9mYWlsZWQtYXV0aCd9KTsKICAgIGxlbihmYWlsZWRBdXRocykgPj0gMyAmJgogICAgTWVkaWFuSW50ZXJ2YWwobWFwKGZhaWxlZEF1dGhzWy0zOl0sIHsjLlRpbWV9KSkgPiBkdXJhdGlvbigiMTBtIikKbGVha3NwZWVkOiAyaApibGFja2hvbGU6IDVtCnJlcHJvY2VzczogdHJ1ZQpsYWJlbHM6CiAgc2VydmljZTogc3NoCiAgYmVoYXZpb3I6ICJzc2g6YnJ1dGVmb3JjZSIKICBzcG9vZmFibGU6IDAKICBjb25maWRlbmNlOiAzCiAgY2xhc3NpZmljYXRpb246CiAgICAtIGF0dGFjay5UMTExMAogIGxhYmVsOiAiU1NIIFRpbWUtQmFzZWQgQnJ1dGVmb3JjZSIKICByZW1lZGlhdGlvbjogZmFsc2UKLS0tCiMgc3NoIHVzZXItZW51bSB0aW1lLWJhc2VkIHdpdGggZmFsc2UgcG9zaXRpdmUgcmVkdWN0aW9uCnR5cGU6IGNvbmRpdGlvbmFsCm5hbWU6IGNyb3dkc2VjdXJpdHkvc3NoLXRpbWUtYmFzZWQtYmZfdXNlci1lbnVtCmRlc2NyaXB0aW9uOiAiRGV0ZWN0IHRpbWUtYmFzZWQgc3NoIHVzZXIgZW51bSBicnV0ZWZvcmNlIGF0dGVtcHRzICh3aXRoIGZhbHNlIHBvc2l0aXZlIHJlZHVjdGlvbikiCmZpbHRlcjogImV2dC5NZXRhLnNlcnZpY2UgPT0gJ3NzaCcgJiYgZXZ0Lk1ldGEubG9nX3R5cGUgaW4gWydzc2hfZmFpbGVkLWF1dGgnLCAnYXV0aF9zdWNjZXNzJ10iCmdyb3VwYnk6IGV2dC5NZXRhLnNvdXJjZV9pcApkaXN0aW5jdDogZXZ0Lk1ldGEudGFyZ2V0X3VzZXIKY2FwYWNpdHk6IC0xCmNhbmNlbF9vbjogImV2dC5NZXRhLmxvZ190eXBlID09ICdhdXRoX3N1Y2Nlc3MnIgpjb25kaXRpb246IHwKICAgIGxldCBmYWlsZWRBdXRocyA9IGZpbHRlcihxdWV1ZS5RdWV1ZSwgeyMuTWV0YS5sb2dfdHlwZSA9PSAnc3NoX2ZhaWxlZC1hdXRoJ30pOwogICAgbGVuKGZhaWxlZEF1dGhzKSA+PSAzICYmCiAgICBNZWRpYW5JbnRlcnZhbChtYXAoZmFpbGVkQXV0aHNbLTM6XSwgeyMuVGltZX0pKSA+IGR1cmF0aW9uKCIxMG0iKQpsZWFrc3BlZWQ6IDJoCmJsYWNraG9sZTogNW0KcmVwcm9jZXNzOiB0cnVlCmxhYmVsczoKICBzZXJ2aWNlOiBzc2gKICBiZWhhdmlvcjogInNzaDpicnV0ZWZvcmNlIgogIHNwb29mYWJsZTogMAogIGNvbmZpZGVuY2U6IDMKICBjbGFzc2lmaWNhdGlvbjoKICAgIC0gYXR0YWNrLlQxNTg5CiAgICAtIGF0dGFjay5UMTExMAogIGxhYmVsOiAiU1NIIFRpbWUtQmFzZWQgVXNlciBFbnVtZXJhdGlvbiIKICByZW1lZGlhdGlvbjogZmFsc2UK",
+      "content": "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",
       "description": "Detect time-based ssh bruteforce attempts that evade rate limiting (with false positive reduction)",
       "labels": {
         "behavior": "ssh:bruteforce",
@@ -21066,13 +21066,17 @@
         "service": "ssh",
         "spoofable": 0
       },
-      "long_description": "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",
+      "long_description": "RGV0ZWN0IHRpbWUtYmFzZWQgc3NoIGJydXRlZm9yY2UgYXR0ZW1wdHMgdGhhdCBldmFkZSB0cmFkaXRpb25hbCByYXRlIGxpbWl0aW5nIHdpdGggZmFsc2UgcG9zaXRpdmUgcmVkdWN0aW9uOgoKIC0gVXNlcyBjb25kaXRpb25hbCB0eXBlIHdpdGggY2FwYWNpdHkgLTEgKHVubGltaXRlZCkKIC0gVHJpZ2dlcnMgd2hlbiBhdCBsZWFzdCA0IGZhaWxlZCBhdXRoZW50aWNhdGlvbiBhdHRlbXB0cyBvY2N1cgogLSBNZWRpYW4gaW50ZXJ2YWwgYmV0d2VlbiBmYWlsZWQgYXR0ZW1wdHMgZXhjZWVkcyAxMCBtaW51dGVzCiAtICoqRmFsc2UgcG9zaXRpdmUgcmVkdWN0aW9uKio6IFVzZXMgYGNhbmNlbF9vbmAgdG8gY2FuY2VsIGJ1Y2tldCBpZiB1c2VyIHN1Y2Nlc3NmdWxseSBhdXRoZW50aWNhdGVzCiAgIC0gUHJldmVudHMgImZvcmdvdCBwYXNzd29yZCIgc2NlbmFyaW9zIGZyb20gdHJpZ2dlcmluZyBhbGVydHMKICAgLSBTdGFuZGFyZCB2YXJpYW50OiBDYW5jZWxzIG9uIEFOWSBzdWNjZXNzZnVsIGxvZ2luIGZyb20gc2FtZSBJUAogICAtIFVzZXItZW51bSB2YXJpYW50OiBPbmx5IGNhbmNlbHMgZm9yIHNhbWUgSVAgKyBzYW1lIHVzZXJuYW1lIGNvbWJpbmF0aW9uCiAgIC0gQXR0YWNrZXJzIHRyeWluZyBtdWx0aXBsZSB1c2VybmFtZXMgd29uJ3QgYmUgZXhjdXNlZCBieSBvbmUgc3VjY2VzcyAoaW4gdXNlci1lbnVtIHZhcmlhbnQpCiAtIExlYWtzcGVlZCBvZiAyaCBuYXR1cmFsbHkgY2FwcyBtYXhpbXVtIGludGVydmFsICh+NDAtNjAgbWludXRlcyBmb3IgMyBldmVudHMpCiAtIFJlbWVkaWF0aW9uIGRpc2FibGVkIChsYWJlbHMgc2V0IHRvIGByZW1lZGlhdGlvbjogZmFsc2VgKQogLSBVc2VzIGBNZWRpYW5JbnRlcnZhbCgpYCBoZWxwZXIgdG8gZGV0ZWN0IGNvbnNpc3RlbnQgdGltaW5nIHBhdHRlcm5zIChtb3JlIHJvYnVzdCBhZ2FpbnN0IG91dGxpZXJzKQogLSBSZXF1aXJlcyBgY3Jvd2RzZWN1cml0eS9zc2hkLXN1Y2Nlc3MtbG9nc2AgcGFyc2VyIGZvciBjYW5jZWxfb24gZnVuY3Rpb25hbGl0eQoKKipUd28gdmFyaWFudHM6KioKMS4gKipzc2gtdGltZS1iYXNlZC1iZioqOiBTdGFuZGFyZCBicnV0ZWZvcmNlIGRldGVjdGlvbiAoNCBmYWlsZWQgbG9naW5zIGZyb20gc2FtZSBJUCkKMi4gKipzc2gtdGltZS1iYXNlZC1iZl91c2VyLWVudW0qKjogVXNlciBlbnVtZXJhdGlvbiBkZXRlY3Rpb24gKDQgZGlzdGluY3QgdXNlcm5hbWVzIGZyb20gc2FtZSBJUCkKClRoaXMgc2NlbmFyaW8gY29tcGxlbWVudHMgdGhlIHN0YW5kYXJkIHNzaC1iZiAoY2FwYWNpdHkgNSwgbGVha3NwZWVkIDEwcykgYW5kIHNzaC1zbG93LWJmIChjYXBhY2l0eSAxMCwgbGVha3NwZWVkIDYwcykgc2NlbmFyaW9zIHdpdGggbm8gb3ZlcmxhcDoKLSBzc2gtYmYgY2F0Y2hlcyA1IGZhaWx1cmVzIHdpdGhpbiB+NTAgc2Vjb25kcyAocmF0ZS1iYXNlZCkKLSBzc2gtc2xvdy1iZiBjYXRjaGVzIDEwIGZhaWx1cmVzIHdpdGhpbiB+MTAgbWludXRlcyAocmF0ZS1iYXNlZCkKLSBzc2gtdGltZS1iYXNlZC1iZiBjYXRjaGVzIDQgZmFpbHVyZXMgd2l0aCBtZWRpYW4gaW50ZXJ2YWwgPjEwIG1pbnV0ZXMgKHRpbWUtcGF0dGVybi1iYXNlZCwgbmF0dXJhbGx5IGNhcHBlZCBieSAyaCBsZWFrc3BlZWQpCg==",
       "path": "scenarios/crowdsecurity/ssh-time-based-bf.yaml",
-      "version": "0.1",
+      "version": "0.2",
       "versions": {
         "0.1": {
           "deprecated": false,
           "digest": "e63741679e94da9acbdb38ba405853ba80c867e61b8cb551ba1bc5e462787b71"
+        },
+        "0.2": {
+          "deprecated": false,
+          "digest": "94ab23635ba24af4828f28964366d80075df0fca7f957cee0aeed116686139d0"
         }
       }
     },