fix: duplicate titles

2023-02-09 16:06:09 +01:00
parent da012ad80d
commit c4d8be3780
3 changed files with 5 additions and 4 deletions
@@ -1,4 +1,4 @@
-title: Suspicious Outlook Remote Child Process
+title: Outlook EnableUnsafeClientMailRules Setting Enabled
 id: 55f0a3a1-846e-40eb-8273-677371b8d912
 related:
    - id: 6763c6c8-bd01-4687-bc8d-4fa52cf8ba08 # Registry variation
@@ -9,7 +9,7 @@ references:
    - https://www.fireeye.com/blog/threat-research/2018/12/overruled-containing-a-potentially-destructive-adversary.html
    - https://speakerdeck.com/heirhabarov/hunting-for-persistence-via-microsoft-exchange-server-or-outlook?slide=44
    - https://support.microsoft.com/en-us/topic/how-to-control-the-rule-actions-to-start-an-application-or-run-a-macro-in-outlook-2016-and-outlook-2013-e4964b72-173c-959d-5d7b-ead562979048
-author: Markus Neis
+author: Markus Neis, Nasreddine Bencherchali (Nextron Systems)
 date: 2018/12/27
 modified: 2023/02/09
 tags:
@@ -9,7 +9,7 @@ references:
    - https://github.com/sensepost/ruler
    - https://www.fireeye.com/blog/threat-research/2018/12/overruled-containing-a-potentially-destructive-adversary.html
    - https://speakerdeck.com/heirhabarov/hunting-for-persistence-via-microsoft-exchange-server-or-outlook?slide=49
-author: Markus Neis
+author: Markus Neis, Nasreddine Bencherchali (Nextron Systems)
 date: 2018/12/27
 modified: 2023/02/09
 tags:
@@ -1,4 +1,4 @@
-title: Outlook Security EnableUnsafeClientMailRules Setting Enabled
+title: Outlook EnableUnsafeClientMailRules Setting Enabled - Registry
 id: 6763c6c8-bd01-4687-bc8d-4fa52cf8ba08
 related:
    - id: c3cefdf4-6703-4e1c-bad8-bf422fc5015a
@@ -12,6 +12,7 @@ references:
    - https://speakerdeck.com/heirhabarov/hunting-for-persistence-via-microsoft-exchange-server-or-outlook?slide=44
 author: Nasreddine Bencherchali (Nextron Systems)
 date: 2023/02/08
+modified: 2023/02/09
 tags:
    - attack.defense_evasion
    - attack.t1112