SigmaHQ

mirror of https://github.com/valitydev/SigmaHQ.git synced 2024-11-07 09:48:58 +00:00

History

Brad Kish 8b3b312c4e Proposed fix for https://github.com/Neo23x0/sigma/issues/889 This change removes dns events from the network connection category. The one change is that sysmon_regsvr32_network_activity.yml needs to test the network connection category separately from the DNS event id.		2020-07-03 16:28:19 -04:00
..
builtin	Merge branch 'master' of https://github.com/4A616D6573/sigma into pr-785	2020-07-02 23:04:59 +02:00
deprecated	fix: buggy rule	2020-05-23 18:32:02 +02:00
driver_load	fix: bugfix and cosmetics	2020-06-24 18:10:58 +02:00
file_event	docs: more references	2020-07-03 13:19:44 +02:00
image_load	refactor: sysmon rule cleanup > generlization	2020-07-01 10:58:39 +02:00
malware	Further subtechnique updates	2020-06-17 11:31:40 -06:00
network_connection	Proposed fix for https://github.com/Neo23x0/sigma/issues/889	2020-07-03 16:28:19 -04:00
other	FIX: lint error for title	2020-06-28 11:05:19 +02:00
powershell	Added new rule for pwsh_xor_cmd	2020-06-29 22:09:58 +02:00
process_access	fix: broken links	2020-07-03 11:22:06 +02:00
process_creation	fix: trailing white space	2020-07-03 17:59:50 +02:00
registry_event	fix: broken links	2020-07-03 11:22:06 +02:00
sysmon	fix: broken links	2020-07-03 11:22:06 +02:00