SigmaHQ

mirror of https://github.com/valitydev/SigmaHQ.git synced 2024-11-08 18:23:52 +00:00

Author	SHA1	Message	Date
nsaddler	8d1b863182	Update sysmon_in_memory_powershell.yml	2020-10-18 01:16:11 +03:00
nsaddler	28c8b56473	Update sysmon_in_memory_powershell.yml	2020-10-12 19:05:08 +03:00
Florian Roth	de5444a81e	Merge pull request #989 from oscd-initiative/master [OSCD Initiative][ATT&CK tags update]	2020-09-08 13:27:58 +02:00
ecco	ebc1d38027	fix in memory powershell false positive	2020-09-06 09:25:56 -04:00
Yugoslavskiy Daniil	42c4079ed8	att&ck tags review: windows/builtin, windows/driver_load, windows/file_event, windows/image_load, windows/other	2020-08-25 01:09:17 +02:00
Aidan Bracher	dcf20e580d	Updated tags to include sub-techniques	2020-07-18 02:50:57 +01:00
ecco	905f1b3823	add WMI and powershell false positives	2020-07-09 10:26:54 -04:00
Florian Roth	f3fedef8f5	Changed category names and remove sysmon log source	2020-06-24 17:41:21 +02:00