valitydev/SigmaHQ
14
0
Fork 0
mirror of https://github.com/valitydev/SigmaHQ.git synced 2024-11-06 09:25:17 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
87df79302d
SigmaHQ/rules
History
webboy2015 87df79302d
Update win_lolbas_execution_of_nltest.exe 
Changed condition as follows:
   detection:
       selection:
          EventID: 4689
          ProcessName|endswith: nltest.exe
          Status: "0x0"
     condition: selection

Included  field - SubjectDomainName
2021-10-01 12:55:37 -07:00
..
application Fixed my git issue 2020-09-13 22:03:04 -06:00
apt fixing test runner issues 2020-09-15 15:45:33 -06:00
cloud Update aws_attached_malicious_lambda_layer.yml 2021-09-27 23:41:19 -05:00
compliance fix error 2021-09-21 20:16:26 +02:00
generic Fixed my git issue 2020-09-13 22:03:04 -06:00
linux Merge pull request #2079 from zakibro/master 2021-09-27 08:34:30 +02:00
network Merge pull request #2063 from frack113/last_global 2021-09-23 13:54:57 +02:00
proxy Merge pull request #1961 from SigmaHQ/rule-devel 2021-09-01 08:06:15 +02:00
web docs: new ID 2021-09-25 11:37:39 +02:00
windows Update win_lolbas_execution_of_nltest.exe 2021-10-01 12:55:37 -07:00