From 4526cde48b8ecb04ea8bfc450d6b9f44cfd9f675 Mon Sep 17 00:00:00 2001
From: Blackbird594 <lafrewe@gmail.com>
Date: Fri, 22 Dec 2023 10:20:03 +0000
Subject: [PATCH] Added .tar extention and Matcher for it

---
 exposures/backups/zip-backup-files.yaml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/exposures/backups/zip-backup-files.yaml b/exposures/backups/zip-backup-files.yaml
index d5e647afda..f616e24b6c 100644
--- a/exposures/backups/zip-backup-files.yaml
+++ b/exposures/backups/zip-backup-files.yaml
@@ -17,6 +17,7 @@ requests:
     attack: pitchfork
     payloads:
       EXT:
+        - "tar"
         - "7z"
         - "bz2"
         - "gz"
@@ -47,6 +48,8 @@ requests:
     matchers:
       - type: binary
         binary:
+          - "7573746172202000" #tar
+          - "7573746172003030"  #tar
           - "377ABCAF271C"  # 7z
           - "314159265359"  # bz2
           - "53514c69746520666f726d6174203300"  # SQLite format 3.