SigmaHQ

mirror of https://github.com/valitydev/SigmaHQ.git synced 2024-11-08 10:13:57 +00:00

Author	SHA1	Message	Date
Jonhnathan	630e92f3c2	Update win_webshell_spawn.yml	2020-10-15 19:59:59 -03:00
Jonhnathan	138b8fed06	Update win_webshell_recon_detection.yml	2020-10-15 19:59:36 -03:00
Jonhnathan	e402356e82	Update win_webshell_detection.yml	2020-10-15 19:58:37 -03:00
Jonhnathan	2d9233d418	Update win_vul_java_remote_debugging.yml	2020-10-15 19:57:43 -03:00
Jonhnathan	d9afa1aec6	Update win_termserv_proc_spawn.yml	2020-10-15 19:57:05 -03:00
Jonhnathan	737fbd1619	Update win_system_exe_anomaly.yml	2020-10-15 19:55:57 -03:00
Jonhnathan	434c6257f0	Update win_susp_wmi_execution.yml	2020-10-15 19:52:25 -03:00
Jonhnathan	7b9ec4709f	Update win_susp_whoami.yml	2020-10-15 19:51:55 -03:00
Jonhnathan	d09dd70695	Update win_susp_userinit_child.yml	2020-10-15 19:51:42 -03:00
Jonhnathan	ad8620f729	Update win_susp_tscon_rdp_redirect.yml	2020-10-15 19:51:05 -03:00
Jonhnathan	c38ccefc21	Update win_susp_tscon_localsystem.yml	2020-10-15 19:50:14 -03:00
Jonhnathan	9d8116c486	Update win_susp_taskmgr_parent.yml	2020-10-15 19:50:04 -03:00
Jonhnathan	dde03e760b	Update win_susp_taskmgr_localsystem.yml	2020-10-15 19:49:47 -03:00
Jonhnathan	4543e18e4e	Update win_susp_sysvol_access.yml	2020-10-15 19:49:31 -03:00
Jonhnathan	08a018a2ee	Update win_susp_sysprep_appdata.yml	2020-10-15 19:49:12 -03:00
Jonhnathan	4c9124952e	Update win_susp_svchost.yml	2020-10-15 19:47:47 -03:00
Jonhnathan	5c7bc4c48a	Update win_susp_schtask_creation.yml	2020-10-15 19:47:15 -03:00
Jonhnathan	d3f0d25ffb	Update win_susp_rundll32_by_ordinal.yml	2020-10-15 19:46:54 -03:00
Jonhnathan	8d471775e0	Update win_susp_regsvr32_anomalies.yml	2020-10-15 19:45:08 -03:00
Jonhnathan	cc338507c9	Update win_susp_ps_appdata.yml	2020-10-15 19:43:37 -03:00
Jonhnathan	91fb5cdcd0	Update win_susp_prog_location_process_starts.yml	2020-10-15 19:43:19 -03:00
Jonhnathan	253014ee68	Update win_susp_procdump.yml	2020-10-15 19:42:48 -03:00
Jonhnathan	f614ac658f	Update win_susp_powershell_parent_combo.yml	2020-10-15 19:42:20 -03:00
Jonhnathan	1feba3a12c	Update win_susp_powershell_hidden_b64_cmd.yml	2020-10-15 19:40:23 -03:00
Jonhnathan	7df7d7f48b	Update win_susp_powershell_enc_cmd.yml	2020-10-15 19:39:11 -03:00
Jonhnathan	610ae5ddd7	Update win_susp_powershell_enc_cmd.yml	2020-10-15 19:38:47 -03:00
Jonhnathan	4485436957	Update win_susp_powershell_empire_uac_bypass.yml	2020-10-15 19:34:18 -03:00
Jonhnathan	90d20094ac	Update win_susp_ping_hex_ip.yml	2020-10-15 19:34:00 -03:00
Jonhnathan	6bb9f1b3c9	Update win_susp_outlook_temp.yml	2020-10-15 19:33:45 -03:00
Jonhnathan	60f867b989	Update win_susp_outlook.yml	2020-10-15 19:33:33 -03:00
Jonhnathan	98ebb4965d	Update win_susp_ntdsutil.yml	2020-10-15 19:33:10 -03:00
Jonhnathan	ec9f9fd929	Update win_susp_net_execution.yml	2020-10-15 19:32:29 -03:00
Jonhnathan	6cd49220ad	Update win_susp_msiexec_web_install.yml	2020-10-15 19:31:44 -03:00
Jonhnathan	e8477c8afa	Update win_susp_msiexec_cwd.yml	2020-10-15 19:31:27 -03:00
Jonhnathan	0e1ae89a5c	Update win_susp_iss_module_install.yml	2020-10-15 19:30:56 -03:00
Jonhnathan	cd6149bcc3	Update win_susp_gup.yml	2020-10-15 19:30:43 -03:00
Jonhnathan	985f56c0e9	Update win_susp_findstr_lnk.yml	2020-10-15 19:30:21 -03:00
Jonhnathan	ab7bdf6af5	Update win_susp_file_characteristics.yml	2020-10-15 19:30:07 -03:00
Jonhnathan	ee8edb1e15	Update win_susp_execution_path_webserver.yml	2020-10-15 19:29:46 -03:00
Jonhnathan	fedc5b88e0	Update win_susp_execution_path.yml	2020-10-15 19:29:05 -03:00
Jonhnathan	9ef41cbc77	Update win_susp_exec_folder.yml	2020-10-15 19:28:23 -03:00
Jonhnathan	f33f7010fa	Update win_susp_double_extension.yml	2020-10-15 19:27:17 -03:00
Jonhnathan	92966098b9	Update win_susp_csc_folder.yml	2020-10-15 19:25:38 -03:00
Jonhnathan	bc042b5764	Update win_susp_csc.yml	2020-10-15 19:24:30 -03:00
Jonhnathan	5f4df56247	Update win_susp_crackmapexec_execution.yml	2020-10-15 19:23:58 -03:00
Jonhnathan	30601ab134	Update win_susp_copy_lateral_movement.yml	2020-10-15 19:22:49 -03:00
Jonhnathan	fbe27b3b31	Update win_susp_control_dll_load.yml	2020-10-15 19:21:41 -03:00
Jonhnathan	932dabf7ea	Update win_susp_comsvcs_procdump.yml	2020-10-15 19:21:11 -03:00
Jonhnathan	e33694bd98	Update win_susp_compression_params.yml	2020-10-15 19:19:48 -03:00
Jonhnathan	ce8d649275	Update win_susp_cli_escape.yml	2020-10-15 18:30:46 -03:00

1 2 3 4 5 ...

2762 Commits