valitydev/SigmaHQ
14
0
Fork 0
mirror of https://github.com/valitydev/SigmaHQ.git synced 2024-11-08 02:08:54 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
e2050404bc
SigmaHQ/rules/windows
History
Nate Guagenti e2050404bc
prevent EventID collision for dhcp 
This prevents EventID collision for this rule with other sources/logs that share the same EventIDs.
specifically a lot with Microsoft-Windows-Security-SPP
2019-07-16 15:30:52 -04:00
..
builtin prevent EventID collision for dhcp 2019-07-16 15:30:52 -04:00
malware Update win_mal_ursnif.yml 2019-04-14 11:51:13 -05:00
other Converted to use the new process_creation data source 2019-03-09 20:57:59 +03:00
powershell fixed typos 2019-06-29 15:35:59 +03:00
process_creation fix: null value in separate expression 2019-07-02 20:14:45 +02:00
sysmon Include Github raw URLs in suspicious downloads detection rule 2019-07-05 09:01:35 +00:00