security-tools/blue-team-tools
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Fix typo

Browse Source
This commit is contained in:
Nasreddine Bencherchali
2022-09-21 11:59:12 +02:00
parent e987fa6acb
commit a0c3449079
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files
rules/windows/network_connection/net_connection_win_python.yml
+1 -1
View File
@@ -29,7 +29,7 @@ detection:
CommandLine|contains|all:
- 'C:\ProgramData\Anaconda3\Scripts\jupyter-notebook-script.py'
filter_local_communication:
# This coumd be caused when launching an instance of Jupyter Notebook locally for example but can also be caused by other instances of python openning sockets locally etc. So comment this out if you want to monitor for those instances
# This could be caused when launching an instance of Jupyter Notebook locally for example but can also be caused by other instances of python openning sockets locally etc. So comment this out if you want to monitor for those instances
DestinationIp: 127.0.0.1
SourceIp: 127.0.0.1
condition: selection and not 1 of filter_*