SigmaHQ/rules/proxy
2019-08-30 11:48:38 +02:00
..
proxy_apt40.yml Added APT40 Dropbox exfiltration proxy rule 2019-06-07 14:03:41 +02:00
proxy_chafer_malware.yml Rule: Chafer malware proxy pattern 2019-01-31 12:31:48 +01:00
proxy_cobalt_amazon.yml ATT&CK tagging QA 2018-09-20 12:44:44 +02:00
proxy_cobalt_ocsp.yml CobaltStrike Malleable OCSP) Profile with Typo (OSCP) in URL 2019-02-06 10:58:48 +01:00
proxy_cobalt_onedrive.yml Initial Commit Cobalt Malleable for OneDrive 2019-02-06 10:59:02 +01:00
proxy_download_susp_dyndns.yml Removed duplicate filters 2019-01-25 12:21:57 +03:00
proxy_download_susp_tlds_blacklist.yml New custom suspicious TLD in rule ".pw" 2019-03-03 10:58:12 +01:00
proxy_download_susp_tlds_whitelist.yml Massive Title Cleanup 2018-01-27 10:57:30 +01:00
proxy_downloadcradle_webdav.yml Update_WebDAV 2018-05-16 13:05:15 +10:00
proxy_empty_ua.yml Simplified rule 2018-11-21 22:34:04 +01:00
proxy_powershell_ua.yml Change All "str" references to be "list"to mach schema update 2018-01-28 02:24:16 +03:00
proxy_susp_flash_download_loc.yml Bugfix in Flash Downloader Rule 2018-06-30 23:39:38 +02:00
proxy_telegram_api.yml Rules: Telegram Bot API access 2018-06-05 16:25:43 +02:00
proxy_ua_apt.yml Rule: Suspicious Windows NT 9 UA 2019-02-12 10:33:33 +01:00
proxy_ua_bitsadmin_susp_tld.yml Rule: renamed bitsadmin rule 2019-03-08 16:25:16 +01:00
proxy_ua_frameworks.yml Rule: another MSF payload user agent 2019-04-20 09:38:41 +02:00
proxy_ua_hacktool.yml Rule: Added malware UA 2018-09-08 10:22:26 +02:00
proxy_ua_malware.yml Rule: proxy user agents updated with MacControl user agent 2018-12-17 14:18:03 +01:00
proxy_ua_suspicious.yml rule: APT28 UA 2019-08-30 11:48:38 +02:00