valitydev/SigmaHQ
14
0
Fork 0
mirror of https://github.com/valitydev/SigmaHQ.git synced 2024-11-07 17:58:52 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
ea1b2ae59f
SigmaHQ/rules/windows/network_connection
History
Florian Roth d0c09f10a9 changed newline character to LF
2020-07-15 16:46:44 +02:00
..
sysmon_dllhost_net_connections.yml changed newline character to LF 2020-07-15 16:46:44 +02:00
sysmon_malware_backconnect_ports.yml Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00
sysmon_notepad_network_connection.yml Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00
sysmon_powershell_network_connection.yml Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00
sysmon_rdp_reverse_tunnel.yml Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00
sysmon_regsvr32_network_activity.yml Introduced dns_query log source category 2020-07-05 23:29:51 +02:00
sysmon_remote_powershell_session_network.yml Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00
sysmon_rundll32_net_connections.yml Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00
sysmon_susp_prog_location_network_connection.yml Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00
sysmon_susp_rdp.yml Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00
sysmon_suspicious_outbound_kerberos_connection.yml Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00
sysmon_win_binary_github_com.yml Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00
sysmon_win_binary_susp_com.yml Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00