valitydev/SigmaHQ
14
0
Fork 0
mirror of https://github.com/valitydev/SigmaHQ.git synced 2024-11-07 01:45:21 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
40a07a2d4f
SigmaHQ/rules/linux/auditd
History
Florian Roth 8321cc7ee1
Merge pull request #772 from gamma37/suspicious_activities 
Create a rule for "suspicious activities"
2020-05-23 18:11:32 +02:00
..
lnx_auditd_alter_bash_profile.yml fix: fixed casing and long rule titles 2020-01-30 17:26:09 +01:00
lnx_auditd_auditing_config_change.yml Rule fixes 2020-02-20 23:00:16 +01:00
lnx_auditd_create_account.yml lowercased tag 2020-05-18 10:11:32 +02:00
lnx_auditd_ld_so_preload_mod.yml OSCD QA wave 3 2020-02-02 12:41:12 +01:00
lnx_auditd_logging_config_change.yml Rule fixes 2020-02-20 23:00:16 +01:00
lnx_auditd_masquerading_crond.yml fix: fixed casing and long rule titles 2020-01-30 17:26:09 +01:00
lnx_auditd_susp_C2_commands.yml Update lnx_auditd_susp_C2_commands.yml 2020-05-23 16:49:03 +02:00
lnx_auditd_susp_cmds.yml fix: fixed casing and long rule titles 2020-01-30 17:26:09 +01:00
lnx_auditd_susp_exe_folders.yml Added UUIDs to rules 2019-11-12 23:12:27 +01:00
lnx_auditd_user_discovery.yml Added UUIDs to rules 2019-11-12 23:12:27 +01:00
lnx_auditd_web_rce.yml Added UUIDs to rules 2019-11-12 23:12:27 +01:00
lnx_data_compressed.yml Added UUIDs to rules 2019-11-12 23:12:27 +01:00
lnx_network_sniffing.yml Added UUIDs to rules 2019-11-12 23:12:27 +01:00