valitydev/SigmaHQ
14
0
Fork 0
mirror of https://github.com/valitydev/SigmaHQ.git synced 2024-11-07 09:48:58 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
7,195 Commits 20 Branches 25 Tags 21 MiB
ae12f1f328
Commit Graph

7195 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Austin Songer
ae12f1f328
Update gcp_dlp_re-identifies_sensitive_information.yml 2021-08-15 22:57:54 -05:00
Austin Songer
85dc62070b
Update gcp_dlp_re-identifies_sensitive_information.yml 2021-08-15 16:02:12 -05:00
Austin Songer
3c770c6e4d
Update gcp_dlp_re-identifies_sensitive_information.yml 2021-08-15 15:55:46 -05:00
Austin Songer
a37ec60f76
Update gcp_dlp_re-identifies_sensitive_information.yml 2021-08-15 15:44:20 -05:00
Austin Songer
dae3d3b446
Update gcp_dlp_re-identifies_sensitive_information.yml 2021-08-15 15:42:15 -05:00
Austin Songer
ba8e9c9fcb
Create gcp_dlp_re-identifies_sensitive_information.yml 2021-08-15 14:28:10 -05:00
frack113
5390ff85c7
Merge pull request #1846 from austinsonger/gcp_service_account_modified.yml 
gcp_service_account_modified.yml
 2021-08-15 08:34:47 +02:00
frack113
17fa9f87cc
Merge pull request #1847 from austinsonger/gcp_service_account_disabled_or_deleted.yml 
gcp_service_account_disabled_or_deleted.yml
 2021-08-15 08:30:57 +02:00
frack113
39fe9c4525
Merge pull request #1840 from austinsonger/gcp_firewall_rule_modified_or_deleted.yml 
gcp_firewall_rule_modified_or_deleted.yml
 2021-08-15 08:09:04 +02:00
frack113
88e8fea1b7
Merge pull request #1841 from austinsonger/gcp_full_network_traffic_packet_capture.yml 
gcp_full_network_traffic_packet_capture.yml
 2021-08-15 08:08:53 +02:00
frack113
f34c3ef9fd
remove disable as in another rule 2021-08-15 08:08:16 +02:00
frack113
d940417e58
fix error 2021-08-15 08:05:03 +02:00
frack113
db3eda51dd
fix errors 2021-08-15 08:02:51 +02:00
frack113
5d22d3ea19
Merge pull request #1848 from austinsonger/gcp_bucket_enumeration.yml 
gcp_bucket_enumeration.yml
 2021-08-15 07:52:15 +02:00
frack113
c1aa1b0476
Merge pull request #1845 from austinsonger/gcp_bucket_modified_or_deleted.yml 
gcp_bucket_modified_or_deleted.yml
 2021-08-15 07:51:32 +02:00
Austin Songer
3e151410ca
Update gcp_service_account_modified.yml 2021-08-14 22:31:47 -05:00
Austin Songer
552e1544e4
Update gcp_service_account_modified.yml 2021-08-14 22:30:10 -05:00
Austin Songer
d0e08aa78b
Create gcp_service_account_disabled_or_deleted.yml 2021-08-14 22:26:21 -05:00
Austin Songer
68087b80f5
Create gcp_service_account_modified.yml 2021-08-14 22:25:41 -05:00
Austin Songer
b5270ddce1
Update gcp_bucket_modified_or_deleted.yml 2021-08-14 22:07:50 -05:00
Austin Songer
28d3e3f6b9
Update gcp_bucket_enumeration.yml 2021-08-14 22:07:25 -05:00
Austin Songer
eaf1bd8962
Update gcp_bucket_enumeration.yml 2021-08-14 21:58:06 -05:00
Austin Songer
dc386a2ead
Create gcp_bucket_enumeration.yml 2021-08-14 21:56:29 -05:00
Austin Songer
980954751e
Create gcp_bucket_modified_or_deleted.yml 2021-08-14 21:53:56 -05:00
Austin Songer
872c54bc0c
Update gcp_full_network_traffic_packet_capture.yml 2021-08-14 16:50:11 -05:00
Austin Songer
d407a3dd4f
Update gcp_firewall_rule_modified_or_deleted.yml 2021-08-14 16:24:50 -05:00
Austin Songer
885bbefe73
Update gcp_full_network_traffic_packet_capture.yml 2021-08-14 16:21:16 -05:00
Thomas Patzke
5c4fd3a122 Release 0.20 2021-08-14 00:25:12 +02:00
Austin Songer
6ee9fc9bd6
Update gcp_firewall_rule_modified_or_deleted.yml 2021-08-13 17:08:58 -05:00
Austin Songer
c4b41f8d66
Update gcp_full_network_traffic_packet_capture.yml 2021-08-13 17:07:48 -05:00
Austin Songer
a973c6c445
Create gcp_full_network_traffic_packet_capture.yml 2021-08-13 17:07:18 -05:00
Austin Songer
7479dcd15d
Update gcp_firewall_rule_modified_or_deleted.yml 2021-08-13 16:51:58 -05:00
Austin Songer
34bc4c5faa
Create gcp_firewall_rule_modified_or_deleted.yml 2021-08-13 16:50:34 -05:00
Thomas Patzke
5b72cdb3c2
Merge pull request #1839 from SigmaHQ/drl-1.1 
Update LICENSE.Detection.Rules.md
 2021-08-13 23:42:38 +02:00
Thomas Patzke
607724278a
Merge pull request #1580 from codyswanson4:master 
Update Elasticsearch Watcher backend to populate name column in Kibana
 2021-08-13 23:33:47 +02:00
Thomas Patzke
f9c9f73b09
Merge pull request #1772 from eocete-devo:master 
[Devo backend] Added support for multicondition rules using Devo subqueries
 2021-08-13 23:30:04 +02:00
Thomas Patzke
32400e5d55
Merge pull request #1785 from theoguidoux:theoguidoux/sql-backend-field-selection 
Add fields selection to sql backend option
 2021-08-13 23:29:24 +02:00
Thomas Patzke
62a53ca895
Merge pull request #1835 from wietze:fix/mdatp/linux_support 
Enabling Linux/macOS support on MDATP
 2021-08-13 23:28:06 +02:00
frack113
1adfc204fd
Merge pull request #1838 from frack113/cloud 
tidy up cloud directory
 2021-08-13 19:47:48 +02:00
frack113
50f02ed957 move microsoft365 rules 2021-08-13 15:45:28 +02:00
frack113
4c59ee83d5 move gcp rules 2021-08-13 15:43:46 +02:00
frack113
1a1221d71c move azure rules 2021-08-13 15:42:54 +02:00
frack113
c0aa9696dd move aws rules 2021-08-13 15:40:03 +02:00
frack113
1b480f2ee6
Merge pull request #1819 from frack113/split_1802_builtin 
Correct lists with only 1 value
 2021-08-13 12:43:26 +02:00
frack113
5e42187062 remove change for Message rule 2021-08-13 11:01:33 +02:00
frack113
abcaf00aee
Merge pull request #1818 from frack113/split_1802_net 
Correct lists with only 1 value
 2021-08-13 10:17:24 +02:00
frack113
f9ac934a57
Merge pull request #1816 from frack113/split_1802_a 
Correct lists with only 1 value
 2021-08-13 10:05:32 +02:00
Thomas Patzke
e2fbe06585
Merge pull request #1833 from wagga40/master 
Add an option to enhance the default output by choosing more fields + JSON/YAML
 2021-08-13 07:50:57 +02:00
Wagga
4d53e4b040
Merge branch 'master' into master 2021-08-12 22:49:11 +02:00
Thomas Patzke
1b215e3aaf
Merge pull request #1828 from wietze/optimisation/nesting_reduction 
Optimising lists/subexpressions with only one item
 2021-08-12 22:41:17 +02:00