security-tools/blue-team-tools
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Update rules/windows/process_creation/proc_creation_win_susp_process_hacker.yml

Browse Source 
Co-authored-by: Nasreddine Bencherchali <8741929+nasbench@users.noreply.github.com>
This commit is contained in:
Florian Roth
2022-11-19 08:45:58 +01:00
committed by GitHub
parent 009ef39ca0
commit 4e36ec7175
1 changed files with 1 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
rules/windows/process_creation/proc_creation_win_susp_process_hacker.yml
+1
View File
@@ -22,6 +22,7 @@ detection:
- OriginalFileName:
- 'ProcessHacker.exe'
- 'Process Hacker'
- 'SystemInformer.exe'
- Description:
- 'Process Hacker'
- 'System Informer'