valitydev/SigmaHQ
14
0
Fork 0
mirror of https://github.com/valitydev/SigmaHQ.git synced 2024-11-08 10:13:57 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
3dd76a9c5e
SigmaHQ/rules/windows
History
Florian Roth 3dd76a9c5e Converted to generic process creation rule 
Previous rule was prone to FPs; more generic form
2019-05-09 23:48:42 +02:00
..
builtin Converted to generic process creation rule 2019-05-09 23:48:42 +02:00
malware Merge pull request #254 from darkquasar/master 2019-02-23 07:34:04 +01:00
other Rule: WMI Persistence - FPs 2019-02-05 14:35:23 +01:00
powershell Rule: Suspicious PowerShell keywords 2019-02-11 13:02:38 +01:00
sysmon Rule: suspicious pipes extended 2019-02-21 13:26:48 +01:00