valitydev/SigmaHQ
14
0
Fork 0
mirror of https://github.com/valitydev/SigmaHQ.git synced 2024-11-06 17:35:19 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
93bff7f49d
SigmaHQ/rules/linux/auditd
History
frack113 ac639bb9ec
Merge pull request #2060 from zakibro/master 
New Rule - Linux - Auditd - Screencapture with Import Tool
2021-09-22 08:41:50 +02:00
..
lnx_auditd_alter_bash_profile.yml Fixed my git issue 2020-09-13 22:03:04 -06:00
lnx_auditd_audio_capture.yml Update lnx_auditd_audio_capture.yml 2021-09-05 09:28:53 +02:00
lnx_auditd_auditing_config_change.yml Fixed my git issue 2020-09-13 22:03:04 -06:00
lnx_auditd_binary_padding.yml fix: Correct incorrect message / keyword usage 2021-08-12 16:28:07 +02:00
lnx_auditd_change_file_time_attr.yml fix: Correct incorrect message / keyword usage 2021-08-12 16:28:07 +02:00
lnx_auditd_chattr_immutable_removal.yml Rename rule service:auditd 2021-07-07 13:53:51 +02:00
lnx_auditd_create_account.yml Update lnx_auditd_create_account.yml 2020-10-15 23:07:39 -03:00
lnx_auditd_cve_2021_3156_sudo_buffer_overflow_brutforce.yml split global lnx_auditd_cve_2021_3156_sudo_buffer_overflow.yml 2021-09-14 19:24:11 +02:00
lnx_auditd_cve_2021_3156_sudo_buffer_overflow.yml split global lnx_auditd_cve_2021_3156_sudo_buffer_overflow.yml 2021-09-14 19:24:11 +02:00
lnx_auditd_dd_delete_file.yml Rename rule service:auditd 2021-07-07 13:53:51 +02:00
lnx_auditd_file_or_folder_permissions.yml Rename rule service:auditd 2021-07-07 13:53:51 +02:00
lnx_auditd_find_cred_in_files.yml fix: Correct incorrect message / keyword usage 2021-08-12 16:28:07 +02:00
lnx_auditd_hidden_files_directories.yml Update lnx_auditd_hidden_files_directories.yml 2021-09-07 07:57:50 +02:00
lnx_auditd_hidden_zip_files_steganography.yml Update lnx_auditd_hidden_zip_files_steganography.yml 2021-09-10 07:52:35 +02:00
lnx_auditd_ld_so_preload_mod.yml Updated ART reference links from .yaml to .md 2021-07-06 17:43:20 +08:00
lnx_auditd_logging_config_change.yml Fixed my git issue 2020-09-13 22:03:04 -06:00
lnx_auditd_masquerading_crond.yml Updated ART reference links from .yaml to .md 2021-07-06 17:43:20 +08:00
lnx_auditd_network_service_scanning.yml Update lnx_auditd_network_service_scanning.yml 2021-09-14 21:02:13 +02:00
lnx_auditd_omigod_scx_runasprovider_executescript.yml Rule to detect the execution of a script via SCX RunAsprovider ExecuteScript 2021-09-18 03:50:37 -04:00
lnx_auditd_omigod_scx_runasprovider_executeshellcommand.yml fix: wrong modified field 2021-09-17 14:29:19 +02:00
lnx_auditd_password_policy_discovery.yml add missing product 2021-09-14 19:29:49 +02:00
lnx_auditd_pers_systemd_reload.yml Rename rule service:auditd 2021-07-07 13:53:51 +02:00
lnx_auditd_screencapture_import.yml New Rule - Linux - Auditd - Screencapture with Import Tool 2021-09-21 18:55:48 +02:00
lnx_auditd_screencaputre_xwd.yml Update lnx_auditd_screencaputre_xwd.yml 2021-09-13 19:08:23 +02:00
lnx_auditd_split_file_into_pieces.yml Rename rule service:auditd 2021-07-07 13:53:51 +02:00
lnx_auditd_steghide_embed_steganography.yml Update lnx_auditd_steghide_embed_steganography.yml 2021-09-11 11:18:08 +02:00
lnx_auditd_steghide_extract_steganography.yml Update lnx_auditd_steghide_extract_steganography.yml 2021-09-11 11:19:21 +02:00
lnx_auditd_susp_c2_commands.yml fix file name case 2021-08-26 11:15:33 +02:00
lnx_auditd_susp_cmds.yml Fixed my git issue 2020-09-13 22:03:04 -06:00
lnx_auditd_susp_exe_folders.yml add missing tags 2021-09-07 18:16:46 +02:00
lnx_auditd_susp_histfile_operations.yml fix: Correct incorrect message / keyword usage 2021-08-12 16:28:07 +02:00
lnx_auditd_system_info_discovery2.yml Update lnx_auditd_system_info_discovery2.yml 2021-09-14 21:02:51 +02:00
lnx_auditd_system_info_discovery.yml Add missing id 2021-09-03 13:42:15 +02:00
lnx_auditd_system_shutdown_reboot.yml fix: Correct incorrect message / keyword usage 2021-08-12 16:28:07 +02:00
lnx_auditd_unzip_hidden_zip_files_steganography.yml Update lnx_auditd_unzip_hidden_zip_files_steganography.yml 2021-09-10 07:54:56 +02:00
lnx_auditd_user_discovery.yml Updated ART reference links from .yaml to .md 2021-07-06 17:43:20 +08:00
lnx_auditd_web_rce.yml fixed various spelling errors all over rules and source code 2021-02-24 14:43:13 +00:00
lnx_data_compressed.yml Updated ART reference links from .yaml to .md 2021-07-06 17:43:20 +08:00
lnx_network_sniffing.yml Updated ART reference links from .yaml to .md 2021-07-06 17:43:20 +08:00