 Qasim Qlf
|
18c4acce2d
|
update: condition name
|
2023-02-03 14:34:09 +05:00 |
|
|
Nasreddine Bencherchali
|
8fc7f741d9
|
fix: apply escape suggestion
Co-authored-by: phantinuss <79651203+phantinuss@users.noreply.github.com>
|
2023-02-02 21:34:54 +01:00 |
|
|
Nasreddine Bencherchali
|
b80a81aba8
|
fix: wrong escape
Co-authored-by: phantinuss <79651203+phantinuss@users.noreply.github.com>
|
2023-02-02 20:07:13 +01:00 |
|
|
Nasreddine Bencherchali
|
307ecf5694
|
fix: typos in titles and descriptions of rules
Co-authored-by: phantinuss <79651203+phantinuss@users.noreply.github.com>
|
2023-02-02 19:40:01 +01:00 |
|
|
Nasreddine Bencherchali
|
cbf114c9a8
|
fix: update wildcard selection
|
2023-02-02 10:53:59 +01:00 |
|
|
Nasreddine Bencherchali
|
c68531e688
|
fix: apply suggestions from code review
Co-authored-by: frack113 <62423083+frack113@users.noreply.github.com>
|
2023-02-02 10:52:04 +01:00 |
|
|
Nasreddine Bencherchali
|
d08acc18ae
|
fix: add missing modified field
|
2023-02-02 00:28:32 +01:00 |
|
|
Nasreddine Bencherchali
|
0663b4e3f4
|
feat: more updates
|
2023-02-02 00:24:35 +01:00 |
|
|
Nasreddine Bencherchali
|
5d769b7b19
|
Merge branch 'SigmaHQ:master' into nasbench-rule-devel
|
2023-02-01 17:10:00 +01:00 |
|
|
Nasreddine Bencherchali
|
7c38a5c496
|
chore: add nextron authors tag
|
2023-02-01 11:14:59 +01:00 |
|
|
Qasim Qlf
|
f7e2fc1682
|
Update proc_creation_win_vul_java_remote_debugging.yml
|
2023-02-01 11:02:57 +05:00 |
|
|
Nasreddine Bencherchali
|
3e24998fe1
|
feat: add add-appxpackage cmdlet rules
|
2023-01-31 22:11:32 +01:00 |
|
|
frack113
|
00d731bcb5
|
Merge pull request #3990 from qasimqlf/patch-28
Update proc_creation_win_purplesharp_indicators.yml
|
2023-01-31 17:49:01 +01:00 |
|
|
Nasreddine Bencherchali
|
55bf797563
|
fix: selection again
|
2023-01-31 17:40:17 +01:00 |
|
|
Nasreddine Bencherchali
|
3f8bd9f51f
|
fix: further improve detection section
|
2023-01-31 14:35:09 +01:00 |
|
|
Nasreddine Bencherchali
|
995bf1a725
|
Merge pull request #3979 from nasbench/nasbench-rule-devel
feat: multiple updates and enhancements
|
2023-01-31 14:30:31 +01:00 |
|
|
Nasreddine Bencherchali
|
2f6d1f042c
|
fix: update detection section
|
2023-01-31 14:28:11 +01:00 |
|
|
Nasreddine Bencherchali
|
34eddd3c31
|
Merge pull request #3985 from qasimqlf/patch-25
fix: optimize detection logic
|
2023-01-31 14:25:20 +01:00 |
|
|
Qasim Qlf
|
dab39e199c
|
Update proc_creation_win_purplesharp_indicators.yml
|
2023-01-31 18:15:06 +05:00 |
|
|
frack113
|
dfe448aba6
|
Merge pull request #3983 from qasimqlf/patch-24
fix: value
|
2023-01-31 13:50:02 +01:00 |
|
|
frack113
|
93f9f1b5f3
|
Merge pull request #3987 from qasimqlf/patch-27
fix: selection
|
2023-01-31 13:46:35 +01:00 |
|
|
frack113
|
9249996504
|
Update proc_creation_win_lolbin_pktmon.yml
|
2023-01-31 13:41:54 +01:00 |
|
|
frack113
|
38cad68b51
|
Merge pull request #3982 from qasimqlf/patch-23
fix: condition
|
2023-01-31 13:38:50 +01:00 |
|
|
Nasreddine Bencherchali
|
29c2d6e8e4
|
fix: apply suggestions from code review
Co-authored-by: phantinuss <79651203+phantinuss@users.noreply.github.com>
Co-authored-by: frack113 <62423083+frack113@users.noreply.github.com>
|
2023-01-31 11:16:29 +01:00 |
|
|
Nasreddine Bencherchali
|
cbff9dee99
|
fix: update selections
|
2023-01-31 11:10:53 +01:00 |
|
|
Qasim Qlf
|
6142fe6c59
|
fix: selection
|
2023-01-31 14:59:57 +05:00 |
|
|
Qasim Qlf
|
1be917f696
|
fix: optimize detection logic
|
2023-01-31 14:35:51 +05:00 |
|
|
Qasim Qlf
|
d52db9c541
|
fix: value
|
2023-01-31 13:02:08 +05:00 |
|
|
Qasim Qlf
|
c9b693e4a0
|
fix: condition
|
2023-01-31 12:50:28 +05:00 |
|
|
Qasim Qlf
|
e1913adfc5
|
fix: value
|
2023-01-31 12:25:32 +05:00 |
|
|
Nasreddine Bencherchali
|
e6c155442f
|
feat: multiple updates and enhancements
|
2023-01-30 20:02:45 +01:00 |
|
|
Qasim Qlf
|
2ac3f5c797
|
fix: condition
|
2023-01-30 19:13:11 +05:00 |
|
|
frack113
|
bd5e1da89c
|
Fix FP move
|
2023-01-29 09:42:48 +01:00 |
|
|
frack113
|
5087b95155
|
Merge remote-tracking branch 'upstream/master' into pormotion_status
|
2023-01-27 11:29:27 +01:00 |
|
|
frack113
|
2ba6c3c3f5
|
Merge pull request #3961 from tropChaud/patch-4
Create proc_creation_win_rhadamanthys_dll_launch.yml
|
2023-01-27 11:23:21 +01:00 |
|
|
Nasreddine Bencherchali
|
c9d29d5bdd
|
fix: typo in the description
Co-authored-by: phantinuss <79651203+phantinuss@users.noreply.github.com>
|
2023-01-27 10:53:59 +01:00 |
|
|
Nasreddine Bencherchali
|
af9b78971e
|
Merge branch 'nasbench-rule-devel' of https://github.com/nasbench/sigma into nasbench-rule-devel
|
2023-01-27 10:50:37 +01:00 |
|
|
Nasreddine Bencherchali
|
0b5a4fd7c9
|
fix: add missing modified date
|
2023-01-27 10:50:04 +01:00 |
|
|
Nasreddine Bencherchali
|
432916d3c8
|
fix: update description
Co-authored-by: frack113 <62423083+frack113@users.noreply.github.com>
|
2023-01-27 10:48:54 +01:00 |
|
|
frack113
|
1033b3f404
|
change status to test
|
2023-01-27 06:48:34 +01:00 |
|
|
Nasreddine Bencherchali
|
3536580054
|
fix: rule filename
|
2023-01-27 01:15:05 +01:00 |
|
|
Nasreddine Bencherchali
|
6325e75d42
|
fix: apply suggestions from code review
|
2023-01-27 00:51:17 +01:00 |
|
|
Nasreddine Bencherchali
|
85c5f21818
|
feat: more updates, renames and fixes
|
2023-01-27 00:30:16 +01:00 |
|
|
IntelScott
|
6a954b6d08
|
Create proc_creation_win_rhadamanthys_dll_launch.yml
|
2023-01-26 17:26:18 -05:00 |
|
|
Nasreddine Bencherchali
|
58912f5eda
|
Merge branch 'nasbench-rule-devel' of https://github.com/nasbench/sigma into nasbench-rule-devel
|
2023-01-26 23:01:51 +01:00 |
|
|
Nasreddine Bencherchali
|
242814f3e9
|
Merge branch 'SigmaHQ:master' into nasbench-rule-devel
|
2023-01-26 23:01:17 +01:00 |
|
|
Nasreddine Bencherchali
|
c538550b03
|
feat: updates and fixes
|
2023-01-26 22:42:56 +01:00 |
|
|
frack113
|
cb67871bd2
|
Revert "Change status of old rules"
|
2023-01-26 19:37:18 +01:00 |
|
|
Nasreddine Bencherchali
|
3c846a1c51
|
Merge branch 'SigmaHQ:master' into nasbench-rule-devel
|
2023-01-26 17:35:55 +01:00 |
|
|
frack113
|
5323fd4baa
|
Change status of old rules
|
2023-01-25 18:41:18 +01:00 |
|