valitydev/SigmaHQ
14
0
Fork 0
mirror of https://github.com/valitydev/SigmaHQ.git synced 2024-11-07 09:48:58 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
00504ee186
SigmaHQ/rules/windows/process_access
History
Yugoslavskiy Daniil 1fc202fe5d fix typos, update tags
2020-09-13 15:46:45 +02:00
..
sysmon_cmstp_execution.yml added missing ATT&CK v6.3 IDs with comments and removed unnecessary "modified" attributes 2020-08-25 23:51:22 +00:00
sysmon_cred_dump_lsass_access.yml att&ck tags review: windows/powershell, windows/process_access, windows/network_connection 2020-08-24 23:31:26 +00:00
sysmon_in_memory_assembly_execution.yml att&ck tags review: windows/powershell, windows/process_access, windows/network_connection 2020-08-24 23:31:26 +00:00
sysmon_invoke_phantom.yml fix typos, update tags 2020-09-13 15:46:45 +02:00
sysmon_lazagne_cred_dump_lsass_access.yml Added Credential Dumping by LaZagne 2020-09-09 18:27:14 +05:45
sysmon_lsass_memdump.yml att&ck tags review: windows/powershell, windows/process_access, windows/network_connection 2020-08-24 23:31:26 +00:00
sysmon_malware_verclsid_shellcode.yml added missing ATT&CK v6.3 IDs with comments and removed unnecessary "modified" attributes 2020-08-25 23:51:22 +00:00
sysmon_mimikatz_trough_winrm.yml added missing ATT&CK v6.3 IDs with comments and removed unnecessary "modified" attributes 2020-08-25 23:51:22 +00:00