valitydev/SigmaHQ
14
0
Fork 0
mirror of https://github.com/valitydev/SigmaHQ.git synced 2024-11-08 18:23:52 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
27fef60ace
SigmaHQ/rules/windows
History
Florian Roth 27fef60ace
Merge pull request #1383 from SigmaHQ/rule-devel 
fix: FPs with LSASS Access from Non System Account
2021-03-10 18:59:29 +01:00
..
builtin fix: condition contains - values without 0x 2021-03-10 18:56:05 +01:00
deprecated fix: buggy rule 2020-05-23 18:32:02 +02:00
driver_load att&ck tags review: windows/builtin, windows/driver_load, windows/file_event, windows/image_load, windows/other 2020-08-25 01:09:17 +02:00
file_event Merge pull request #1360 from d4rk-d4nph3/master 2021-03-03 09:32:05 +01:00
image_load fixed various spelling errors all over rules and source code 2021-02-24 14:43:13 +00:00
malware Fixed CobaltStrike typo 2021-02-25 07:25:20 +02:00
network_connection rework: impossible rule with Sysmon 2021-01-19 14:12:40 +01:00
other fix service from system to security for rule win_pcap_drivers.yml 2021-01-22 09:10:02 +01:00
powershell fix: search for keywords within message 2021-02-26 09:42:12 +01:00
process_access Split up cmstp rule into 3 separate rules and remove duplicates 2020-12-23 12:17:39 -05:00
process_creation Merge pull request #1378 from SigmaHQ/rule-devel 2021-03-09 15:42:32 +01:00
registry_event Merge pull request #1376 from SigmaHQ/rule-devel 2021-03-05 18:17:20 +01:00
sysmon fixed various spelling errors all over rules and source code 2021-02-24 14:43:13 +00:00