valitydev/SigmaHQ
14
0
Fork 0
mirror of https://github.com/valitydev/SigmaHQ.git synced 2024-11-07 01:45:21 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
ce326cb903
SigmaHQ/rules/linux/auditd
History
Max Altgelt 6f05e33feb
fix: Correct incorrect message / keyword usage 
Correct a number of rules where message or keyword were incorrectly used
as field names in events (typically windows event logs). However, neither
field actually exists and as such these strings could never match.
2021-08-12 16:28:07 +02:00
..
lnx_auditd_alter_bash_profile.yml Fixed my git issue 2020-09-13 22:03:04 -06:00
lnx_auditd_auditing_config_change.yml Fixed my git issue 2020-09-13 22:03:04 -06:00
lnx_auditd_binary_padding.yml fix: Correct incorrect message / keyword usage 2021-08-12 16:28:07 +02:00
lnx_auditd_change_file_time_attr.yml fix: Correct incorrect message / keyword usage 2021-08-12 16:28:07 +02:00
lnx_auditd_chattr_immutable_removal.yml Rename rule service:auditd 2021-07-07 13:53:51 +02:00
lnx_auditd_create_account.yml Update lnx_auditd_create_account.yml 2020-10-15 23:07:39 -03:00
lnx_auditd_cve_2021_3156_sudo_buffer_overflow.yml fix: missing global action and sections 2021-02-01 20:00:06 +01:00
lnx_auditd_dd_delete_file.yml Rename rule service:auditd 2021-07-07 13:53:51 +02:00
lnx_auditd_file_or_folder_permissions.yml Rename rule service:auditd 2021-07-07 13:53:51 +02:00
lnx_auditd_find_cred_in_files.yml fix: Correct incorrect message / keyword usage 2021-08-12 16:28:07 +02:00
lnx_auditd_ld_so_preload_mod.yml Updated ART reference links from .yaml to .md 2021-07-06 17:43:20 +08:00
lnx_auditd_logging_config_change.yml Fixed my git issue 2020-09-13 22:03:04 -06:00
lnx_auditd_masquerading_crond.yml Updated ART reference links from .yaml to .md 2021-07-06 17:43:20 +08:00
lnx_auditd_password_policy_discovery.yml Rename rule service:auditd 2021-07-07 13:53:51 +02:00
lnx_auditd_pers_systemd_reload.yml Rename rule service:auditd 2021-07-07 13:53:51 +02:00
lnx_auditd_split_file_into_pieces.yml Rename rule service:auditd 2021-07-07 13:53:51 +02:00
lnx_auditd_susp_C2_commands.yml Fixed issues with tags and missing files 2020-09-15 06:10:57 -06:00
lnx_auditd_susp_cmds.yml Fixed my git issue 2020-09-13 22:03:04 -06:00
lnx_auditd_susp_exe_folders.yml Update lnx_auditd_susp_exe_folders.yml 2020-10-15 23:09:06 -03:00
lnx_auditd_susp_histfile_operations.yml fix: Correct incorrect message / keyword usage 2021-08-12 16:28:07 +02:00
lnx_auditd_system_shutdown_reboot.yml fix: Correct incorrect message / keyword usage 2021-08-12 16:28:07 +02:00
lnx_auditd_user_discovery.yml Updated ART reference links from .yaml to .md 2021-07-06 17:43:20 +08:00
lnx_auditd_web_rce.yml fixed various spelling errors all over rules and source code 2021-02-24 14:43:13 +00:00
lnx_data_compressed.yml Updated ART reference links from .yaml to .md 2021-07-06 17:43:20 +08:00
lnx_network_sniffing.yml Updated ART reference links from .yaml to .md 2021-07-06 17:43:20 +08:00