mirror of
https://github.com/valitydev/SigmaHQ.git
synced 2024-11-07 01:45:21 +00:00
d5f73a8910
Completed the following updates on the rule: - Modified the title - incremented 4 spaces for references and tags - updated false positives - updated author - updated description in detection section. - Removed the service: Sysmon, updated selection1. |
||
---|---|---|
.. | ||
builtin | ||
create_remote_thread | ||
create_stream_hash | ||
deprecated | ||
dns_query | ||
driver_load | ||
file_delete | ||
file_event | ||
image_load | ||
malware | ||
network_connection | ||
other | ||
pipe_created | ||
powershell | ||
process_access | ||
process_creation | ||
raw_access_thread | ||
registry_event | ||
sysmon | ||
wmi_event |