valitydev/SigmaHQ
14
0
Fork 0
mirror of https://github.com/valitydev/SigmaHQ.git synced 2024-11-07 17:58:52 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
88270fcf2d
SigmaHQ/rules/windows/builtin
History
Thomas Patzke 88270fcf2d Rule review and cleanup 
* removed unnecessary one element lists from definitions
* converted some lists of one element maps to maps because the resulting
  OR linkage would cause wrong result.
2017-02-15 23:53:08 +01:00
..
win_alert_mimikatz_keywords.yml Rule review and cleanup 2017-02-15 23:53:08 +01:00
win_av_relevant_match.yml Rule review and cleanup 2017-02-15 23:53:08 +01:00
win_susp_eventlog_cleared.yml Rule review and cleanup 2017-02-15 23:53:08 +01:00
win_susp_failed_logon_reasons.yml Rule review and cleanup 2017-02-15 23:53:08 +01:00
win_susp_failed_logons_single_source.yml Rule review and cleanup 2017-02-15 23:53:08 +01:00
win_susp_kerberos_manipulation.yml Rule review and cleanup 2017-02-15 23:53:08 +01:00
win_susp_lsass_dump.yml Rule review and cleanup 2017-02-15 23:53:08 +01:00
win_susp_rc4_kerberos.yml Rule review and cleanup 2017-02-15 23:53:08 +01:00