SigmaHQ/rules/network
2020-05-19 05:13:48 -04:00
..
cisco/aaa fix: converted CRLF line break to LF 2020-03-25 14:36:34 +01:00
zeek small T, big T 2020-05-19 05:13:48 -04:00
net_apt_equationgroup_c2.yml refactor: moved rues from 'apt' folder in respective folders 2020-02-01 17:59:26 +01:00
net_dns_c2_detection.yml resolve conflicts with rule IDs; restored and deprecated sysmon_mimikatz_detection_lsass.yml 2019-11-19 02:11:19 +01:00
net_high_dns_bytes_out.yml Rule fixes 2020-02-20 23:00:16 +01:00
net_high_dns_requests_rate.yml Rule fixes 2020-02-20 23:00:16 +01:00
net_high_null_records_requests_rate.yml Rule fixes 2020-02-20 23:00:16 +01:00
net_high_txt_records_requests_rate.yml Rule fixes 2020-02-20 23:00:16 +01:00
net_mal_dns_cobaltstrike.yml Added UUIDs to rules 2019-11-12 23:12:27 +01:00
net_susp_dns_b64_queries.yml Added UUIDs to rules 2019-11-12 23:12:27 +01:00
net_susp_dns_txt_exec_strings.yml fix: fixed casing and long rule titles 2020-01-30 17:26:09 +01:00
net_susp_network_scan.yml fix: fixed missing date fields in other files 2020-01-30 15:32:39 +01:00
net_susp_telegram_api.yml Added UUIDs to rules 2019-11-12 23:12:27 +01:00