valitydev/SigmaHQ
14
0
Fork 0
mirror of https://github.com/valitydev/SigmaHQ.git synced 2024-11-07 17:58:52 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
fa452bf3e5
SigmaHQ/rules/windows/network_connection
History
Florian Roth 9c0f9f398f refactor: sysmon rule cleanup > generlization
2020-07-01 10:58:39 +02:00
..
sysmon_malware_backconnect_ports.yml Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00
sysmon_notepad_network_connection.yml Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00
sysmon_powershell_network_connection.yml Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00
sysmon_rdp_reverse_tunnel.yml Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00
sysmon_regsvr32_network_activity.yml refactor: sysmon rule cleanup > generlization 2020-07-01 10:58:39 +02:00
sysmon_remote_powershell_session_network.yml Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00
sysmon_rundll32_net_connections.yml Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00
sysmon_susp_prog_location_network_connection.yml Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00
sysmon_susp_rdp.yml Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00
sysmon_suspicious_outbound_kerberos_connection.yml Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00
sysmon_win_binary_github_com.yml Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00
sysmon_win_binary_susp_com.yml Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00