valitydev/SigmaHQ
14
0
Fork 0
mirror of https://github.com/valitydev/SigmaHQ.git synced 2024-11-07 17:58:52 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
3111ab8396
SigmaHQ/rules/windows/image_load
History
Florian Roth 9c0f9f398f refactor: sysmon rule cleanup > generlization
2020-07-01 10:58:39 +02:00
..
sysmon_in_memory_powershell.yml Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00
sysmon_mimikatz_inmemory_detection.yml Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00
sysmon_powershell_execution_moduleload.yml Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00
sysmon_susp_fax_dll.yml refactor: sysmon rule cleanup > generlization 2020-07-01 10:58:39 +02:00
sysmon_susp_image_load.yml Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00
sysmon_susp_office_dotnet_assembly_dll_load.yml Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00
sysmon_susp_office_dotnet_clr_dll_load.yml Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00
sysmon_susp_office_dotnet_gac_dll_load.yml Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00
sysmon_susp_office_dsparse_dll_load.yml Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00
sysmon_susp_office_kerberos_dll_load.yml Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00
sysmon_susp_winword_vbadll_load.yml Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00
sysmon_susp_winword_wmidll_load.yml Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00
sysmon_suspicious_dbghelp_dbgcore_load.yml Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00
sysmon_svchost_dll_search_order_hijack.yml Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00
sysmon_unsigned_image_loaded_into_lsass.yml Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00
sysmon_wmi_module_load.yml Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00
sysmon_wmi_persistence_commandline_event_consumer.yml Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00