valitydev/SigmaHQ
14
0
Fork 0
mirror of https://github.com/valitydev/SigmaHQ.git synced 2024-11-08 02:08:54 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
ea430c8823
SigmaHQ/rules/windows
History
Florian Roth ea430c8823
Merge pull request #1471 from d4rk-d4nph3/master 
Updated rule for Advanced IP Scanner and new rule for PowerView
2021-05-27 12:55:03 +02:00
..
builtin Merge pull request #1491 from w0rk3r/patch-1 2021-05-27 12:52:14 +02:00
create_remote_thread Update Threat Hunter Playbook Reference 2021-05-22 01:00:39 -03:00
create_stream_hash Clean-up service: sysmon as it will be replaced by filling the category 2021-04-15 02:02:25 +02:00
deprecated fix: buggy rule 2020-05-23 18:32:02 +02:00
dns_query - Remove 'service: sysmon' since defining the categories made the rules generic 2020-10-02 09:37:52 +02:00
driver_load Update sysmon_vuln_dell_driver_load.yml 2021-05-05 14:31:01 +02:00
file_delete Clean-up service: sysmon as it will be replaced by filling the category 2021-04-15 02:02:25 +02:00
file_event Merge pull request #1482 from ZikyHD/improve_sysmon_creation_system_file 2021-05-27 12:53:27 +02:00
image_load Merge branch 'master' into falsepositives_NOT_a_list 2021-05-27 10:23:19 +02:00
malware Merge pull request #1479 from SigmaHQ/rule-devel 2021-05-15 13:42:34 +02:00
network_connection Update Threat Hunter Playbook Reference 2021-05-22 01:02:19 -03:00
other Add Sysmon EventID 11, 17 and 18 to win_tool_psexec rule 2021-05-16 15:03:58 +02:00
pipe_created refactor: reworked CS pipe rule 2021-05-26 17:22:34 +02:00
powershell Merge pull request #1471 from d4rk-d4nph3/master 2021-05-27 12:55:03 +02:00
process_access Merge pull request #1480 from ZikyHD/fix_sysmon_cred_dump_lsass_access 2021-05-27 12:54:15 +02:00
process_creation Merge pull request #1471 from d4rk-d4nph3/master 2021-05-27 12:55:03 +02:00
raw_access_thread - Remove 'service: sysmon' since defining the categories made the rules generic 2020-10-02 09:37:52 +02:00
registry_event Merge pull request #1496 from frack113/falsepositives_NOT_a_list 2021-05-27 12:51:54 +02:00
sysmon Merge branch 'master' into falsepositives_NOT_a_list 2021-05-27 10:23:19 +02:00
wmi_event Merge branch 'master' of https://github.com/SigmaHQ/sigma 2021-04-15 01:25:48 +02:00