SigmaHQ

mirror of https://github.com/valitydev/SigmaHQ.git synced 2024-11-08 10:13:57 +00:00

Author	SHA1	Message	Date
yugoslavskiy	dbb054777a	Update win_plugx_susp_exe_locations.yml	2020-11-28 12:02:16 +01:00
yugoslavskiy	0fdd8e7128	Update win_netsh_port_fwd_3389.yml	2020-11-28 11:32:35 +01:00
yugoslavskiy	5d457f4f79	Update win_netsh_port_fwd.yml	2020-11-28 11:31:27 +01:00
yugoslavskiy	78193d3e3a	Update win_mal_adwind.yml	2020-11-28 11:25:28 +01:00
yugoslavskiy	de41e34d53	Update win_apt_sofacy.yml	2020-11-28 11:21:23 +01:00
yugoslavskiy	fe499d8838	Update win_apt_judgement_panda_gtr19.yml	2020-11-28 11:14:23 +01:00
yugoslavskiy	11c18e14d8	Update win_hack_koadic.yml	2020-11-28 11:12:06 +01:00
yugoslavskiy	eaf2fde6eb	Update win_netsh_fw_add_susp_image.yml	2020-11-28 11:05:04 +01:00
yugoslavskiy	5eec5d485b	Update sysmon_in_memory_assembly_execution.yml	2020-11-28 10:55:18 +01:00
yugoslavskiy	9445d18474	Update win_netsh_wifi_credential_harvesting.yml	2020-11-28 10:39:37 +01:00
yugoslavskiy	687f6d8946	Update win_powershell_download.yml	2020-11-28 10:37:30 +01:00
yugoslavskiy	fe0029e738	Update win_powersploit_empire_schtasks.yml	2020-11-28 10:29:07 +01:00
yugoslavskiy	de5cac99d9	Update win_malware_wannacry.yml	2020-11-28 10:28:04 +01:00
yugoslavskiy	5a4b01662e	Update win_netsh_fw_add.yml	2020-11-28 10:22:24 +01:00
yugoslavskiy	9ae26e2674	Update win_apt_cloudhopper.yml	2020-11-28 10:20:12 +01:00
yugoslavskiy	4a2cce0b40	Update win_apt_chafer_mar18.yml	2020-11-28 10:15:39 +01:00
Florian Roth	30c0b440e2	Merge pull request #1228 from stvetro/oscd-GfxDownloadWrapper [OSCD] GfxDownloadWrapper downloads file (LoLBin)	2020-11-28 10:10:30 +01:00
Florian Roth	1ea4bb0b87	wrong field name	2020-11-28 10:10:00 +01:00
Florian Roth	c596fefb51	Merge pull request #1242 from tim1234567/oscd-sigma-art-macos-t1555.001 Detect credential access for macOS via Keychain	2020-11-28 10:08:22 +01:00
yugoslavskiy	17813c947c	Update win_apt_bluemashroom.yml	2020-11-28 09:48:30 +01:00
yugoslavskiy	26fa500e21	Update win_control_panel_item.yml	2020-11-28 09:38:49 +01:00
yugoslavskiy	2e5e4a20d2	Update powershell_clear_powershell_history.yml	2020-11-28 09:26:18 +01:00
yugoslavskiy	016a89c186	Update win_susp_net_recon_activity.yml	2020-11-28 08:00:07 +01:00
Jonhnathan	702f697168	Update win_powershell_download.yml	2020-11-27 16:10:10 -03:00
Jonhnathan	fb119d6112	Remove additional backslash	2020-11-27 16:06:15 -03:00
Jonhnathan	bf5aa947e3	Update win_office_spawn_exe_from_users_directory.yml	2020-11-27 16:04:55 -03:00
Jonhnathan	f6aaa957ff	Update win_netsh_wifi_credential_harvesting.yml	2020-11-27 16:01:25 -03:00
Jonhnathan	d996e97fdd	Update win_netsh_port_fwd_3389.yml	2020-11-27 16:00:04 -03:00
Jonhnathan	b816754018	Update win_netsh_port_fwd_3389.yml	2020-11-27 15:59:25 -03:00
Jonhnathan	5acd8d622b	Update win_netsh_port_fwd.yml	2020-11-27 15:57:53 -03:00
Jonhnathan	9171d8913c	Remove Additional backslash	2020-11-27 15:45:08 -03:00
Jonhnathan	0bf996d66e	Update win_netsh_fw_add.yml	2020-11-27 15:44:22 -03:00
Jonhnathan	3f5a2af2db	Update win_mshta_spawn_shell.yml	2020-11-27 15:43:29 -03:00
Jonhnathan	345c6627a8	Update win_mmc_spawn_shell.yml	2020-11-27 15:42:22 -03:00
Jonhnathan	3854a0ed8d	Update Logic	2020-11-27 15:38:16 -03:00
Jonhnathan	84b35dd6b8	Update win_malware_script_dropper.yml	2020-11-27 15:30:53 -03:00
Jonhnathan	217dd53c62	Update win_malware_notpetya.yml	2020-11-27 15:29:29 -03:00
Jonhnathan	3410a1eece	Update win_malware_formbook.yml	2020-11-27 15:26:15 -03:00
Jonhnathan	253c0839ec	Update logic	2020-11-27 15:25:38 -03:00
Florian Roth	c17c034cb5	Changed selections and condition see manpage for security tool on macOS https://gist.github.com/Capybara/6228955	2020-11-27 19:23:31 +01:00
Jonhnathan	5f5af0bd36	Update win_malware_dridex.yml	2020-11-27 15:10:31 -03:00
Jonhnathan	7672db2aeb	Update Logic	2020-11-27 12:37:04 -03:00
Jonhnathan	22ae395e4a	Update win_impacket_lateralization.yml	2020-11-27 12:35:27 -03:00
Jonhnathan	e18829697f	Update Logic	2020-11-27 12:33:31 -03:00
Jonhnathan	9331686368	Update Logic	2020-11-27 12:27:23 -03:00
Jonhnathan	dbd97647f6	Remove Additional backslash and update logic	2020-11-27 12:22:04 -03:00
Jonhnathan	421ab4dc5f	Update win_exploit_cve_2017_0261.yml	2020-11-27 12:18:06 -03:00
Jonhnathan	3f9edf19a9	Update win_control_panel_item.yml	2020-11-27 12:15:12 -03:00
Jonhnathan	bde2b95cdc	Remove Additional backslash	2020-11-27 12:14:34 -03:00
Jonhnathan	e58333f808	Update win_commandline_path_traversal.yml	2020-11-27 12:13:45 -03:00

... 3 4 5 6 7 ...

5317 Commits