security-tools/blue-team-tools
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Merge pull request #7 from yampelo/patch-1

Browse Source 
Update powershell_malicious_commandlets.yml
This commit is contained in:
Florian Roth
2017-03-05 08:58:55 +01:00
committed by GitHub
parent 12535417d9 97b4078d01
commit 965c3a9226
1 changed files with 1 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
rules/windows/powershell/powershell_malicious_commandlets.yml
+1
View File
@@ -114,6 +114,7 @@ detection:
- Invoke-PortScan
- Invoke-ReverseDNSLookup
- Invoke-SMBScanner
- Invoke-Mimikittenz
condition: keywords
falsepositives:
- Penetration testing