valitydev/SigmaHQ
14
0
Fork 0
mirror of https://github.com/valitydev/SigmaHQ.git synced 2024-11-08 10:13:57 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
6,313 Commits 20 Branches 25 Tags 21 MiB
fb2d0092f1
Commit Graph

8 Commits

Author SHA1 Message Date
Jonhnathan
372f000b7f
Update sysmon_uac_bypass_eventvwr.yml 2020-11-20 01:41:20 -03:00
Jonhnathan
e8aa9a854a
Update sysmon_uac_bypass_eventvwr.yml 2020-11-20 01:40:29 -03:00
Jonhnathan
8a52610bf8
Update sysmon_uac_bypass_eventvwr.yml 2020-10-15 20:11:11 -03:00
Alexey Lednyov
7834fdd750 att&ck tags review: windows/registry_event 2020-09-06 22:10:44 +03:00
Brad Kish
7e06fd80fd Proposed fix for sysmon_uac_bypass_eventvwr 
Issue: https://github.com/Neo23x0/sigma/issues/888

The rules were not merged correctly with the transition to sysmon categories.

Split the rule into separate documents: one for the registry_event and one for
the process_creation
 2020-07-06 09:20:34 -04:00
Florian Roth
3decee07ba fix: bugfix and cosmetics 2020-06-24 18:10:58 +02:00
Florian Roth
f3fedef8f5 Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00
Steven Goossens
e5f36dd146 Added rules files split into folders 2020-06-10 16:32:30 +02:00