2c24b24cf1
Merge PR #4585 from @phantinuss - Update evtx-baseline to v0.8 and fix FP found in baseline
...
chore: update evtx-baseline to v0.8
chore: add file paths that impact the test
chore: split goodlog and QA tests into two separate workflows
fix: File or Folder Permissions Modifications - FPs with partial paths
2023-11-21 15:16:18 +01:00
733de447de
Merge PR #4464 from @phantinuss - Update Goodlog Test
...
chore: add threat hunting rules to goodlog tests
---------
Co-authored-by: Nasreddine Bencherchali <8741929+nasbench@users.noreply.github.com >
2023-09-29 14:33:55 +02:00
78f323742f
Merge PR #4455 from @phantinuss - Update Test Script
...
chore: add rules-emerging-threats to goodlog tests
2023-09-27 10:04:06 +02:00
0e8e5a0bd5
Restored thor.yml and fixed reference to it
2023-04-02 01:22:10 +02:00
7d6e72a5b5
chore: fix redirect to stderr
2022-10-11 16:25:03 +02:00
40e0dfcb29
chore: add new known FPs
2022-09-21 13:45:28 +02:00
e5e5cdd3b3
workflow: update evtx-baseline to v0.7 and add a new test for the data
2022-09-21 13:45:28 +02:00
914aa4ee31
chore: add more checks
2022-09-16 16:40:38 +02:00
b18184a58f
workflow: add baseline chack for Windows 2022 domain controller
2022-04-21 10:48:59 +02:00
ca0ed7aea6
chore: update local evtx check times after evtx-sigma-checker performance improvements
2022-04-21 10:48:59 +02:00
275bcaa923
local evtx baseline check using concurrency
2022-04-21 10:48:58 +02:00
21b28e4119
local evtx baseline check using concurrency
2022-04-07 14:15:44 +02:00
25de8a926c
workflow: new baseline check against Windows 2022
2022-04-07 14:15:44 +02:00
d323753abd
workflow: new baseline check against Windows 7 32-bit
2022-04-06 17:06:54 +02:00
b0c1c3e726
workflow: new baseline check against Windows 11
2022-04-06 16:09:51 +02:00
e7edae7a9a
tests: add 1st commandline argument for rules directory selection
2022-03-04 14:07:29 +01:00
c69ae6e291
new test: bash script for local baseline check
...
only supports Linux and MacOS
2022-02-23 16:09:14 +01:00
phantinuss