valitydev/SigmaHQ
14
0
Fork 0
mirror of https://github.com/valitydev/SigmaHQ.git synced 2024-11-06 17:35:19 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
87e5fc48fa
SigmaHQ/rules/windows/wmi_event
History
Florian Roth b0c2d7b75a
fix: tags for WMI / execution / persistence
2021-09-01 16:34:50 +02:00
..
sysmon_wmi_event_subscription.yml - Remove 'service: sysmon' since defining the categories made the rules generic 2020-10-02 09:37:52 +02:00
sysmon_wmi_susp_encoded_scripts.yml fix: tags for WMI / execution / persistence 2021-09-01 16:34:50 +02:00
sysmon_wmi_susp_scripting.yml rule: extended WMI suspicious scripts rule 2021-09-01 13:57:48 +02:00