security-tools/blue-team-tools
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
15,807 Commits 1 Branch 57 Tags
291ca18d22f720f2ebcd30cf468f4434cecccdaa
Commit Graph

77 Commits

Author SHA1 Message Date
phantinuss 2a2db295ce Merge pull request #4155 from D4rkCiph3r/patch-5 
Update proc_creation_macos_add_to_admin_group.yml
 2023-08-23 08:57:45 +02:00
Nasreddine Bencherchali 0f1f792ef9 chore: split rules 2023-08-22 17:48:06 +02:00
Nasreddine Bencherchali c2400ac374 chore: remove contrib folder + rename folders 2023-04-23 15:42:01 +02:00
Nasreddine Bencherchali 0c23616a12 fix: move to deprecated 2023-04-21 15:05:56 +02:00
Nasreddine Bencherchali b26f9a9793 chore: move more rules 2023-04-21 15:01:48 +02:00
Nasreddine Bencherchali 022e79fe97 chore: add readme files 2023-04-21 15:00:37 +02:00
Nasreddine Bencherchali 7d3ef2a1d3 chore: move more rules 2023-04-21 15:00:36 +02:00
Nasreddine Bencherchali 9a2ee48ef8 feat: update multiple rules 2023-04-18 18:08:08 +02:00
Nasreddine Bencherchali 2710bf4710 feat: new rules, updates and fp fixes (#4162) 2023-04-11 13:04:22 +02:00
Nasreddine Bencherchali 3d9372bef3 feat: new rules, updates and fp fixes (#4136) 2023-04-03 12:06:14 +02:00
FormindGMO fad662ab15 #4149 Fix ALA Rules Compilation (parser and broken azure rules) (#4150) 2023-03-29 23:07:40 +02:00
iai-rsa 66f3c54b89 feat: new linux rules #4095) 
- Updated lnx_auditd_system_info_discovery.yml
- Added lnx_auditd_modify_system_firewall.yml
- Depracted lnx_auditd_alter_bash_profile.yml and replaced by an enhanced version in lnx_auditd_unix_shell_configuration_modification.yml
 2023-03-27 13:17:54 +02:00
Nasreddine Bencherchali 83bcab5fd6 chore: increase level of some sideloading rules 2023-03-15 01:10:52 +01:00
Nasreddine Bencherchali d36f7e9819 fix: fp found in testing 2023-03-14 23:58:04 +01:00
Nasreddine Bencherchali 1a4f76242c Merge branch 'SigmaHQ:master' into nasbench-rule-devel 2023-03-12 23:54:40 +01:00
Nasreddine Bencherchali a8462ec916 feat: more apt rules updates 2023-03-10 16:50:29 +01:00
Nasreddine Bencherchali f23780de6f feat: update and fixes 2023-03-09 22:10:42 +01:00
Nasreddine Bencherchali 3b11cafc57 Merge pull request #4091 from nasbench/nasbench-rule-devel 
feat: update and fixes
 2023-03-07 18:07:57 +01:00
Nasreddine Bencherchali 1378cf6d75 feat: update cmd based rules 2023-03-07 14:13:57 +01:00
Nasreddine Bencherchali e3503d5d60 feat: more updates 2023-03-06 00:39:26 +01:00
fukusuket 1896aee5cb update modified 2023-03-04 16:07:17 +09:00
fukusuket 31e14f8b63 fix status typo 2023-03-04 16:06:45 +09:00
Nasreddine Bencherchali 5689263f30 fix: add missing modified 2023-02-28 15:44:37 +01:00
Nasreddine Bencherchali 137dcbcc50 feat: more updates and fixes 2023-02-28 15:22:25 +01:00
Nasreddine Bencherchali 63888f7a53 feat: multiple fixes and updates 2023-02-21 22:15:30 +01:00
Nasreddine Bencherchali 68c052aab7 feat: updates and fixes 2023-02-17 17:51:44 +01:00
Nasreddine Bencherchali 164b3a36b6 Merge pull request #4043 from nasbench/certutil-other-updates 
feat: certutil rules updates + other fixes
 2023-02-16 11:45:08 +01:00
Nasreddine Bencherchali c56f7932e0 Merge pull request #4041 from nasbench/wmic-rules-updates 
feat: wmic rules update + other fixes
 2023-02-16 11:38:16 +01:00
Nasreddine Bencherchali c168a7ad00 feat: update certutil rules 2023-02-15 19:55:39 +01:00
Nasreddine Bencherchali 2ef681291a feat: more rules updates 2023-02-14 19:30:18 +01:00
Nasreddine Bencherchali 4f59a13d46 feat: update wmic rules 2023-02-14 19:30:18 +01:00
Nasreddine Bencherchali 27aac97639 feat: updates and enhancements 2023-02-14 00:51:20 +01:00
Nasreddine Bencherchali 692ad8356a Merge branch 'registry-rules-update' of https://github.com/nasbench/sigma into registry-rules-update 2023-02-08 11:40:56 +01:00
Nasreddine Bencherchali 3ec159a400 feat: update registry_add rules 2023-02-08 00:37:22 +01:00
Nasreddine Bencherchali a19a75b0b0 fix: resolves #4015 2023-02-07 14:33:56 +01:00
Nasreddine Bencherchali a7a4bce9b8 feat: update and enhancements 2023-02-07 13:55:14 +01:00
frack113 06bfeefe24 Update proc_creation_win_reg_dump_sam.yml 2023-02-04 22:48:10 +01:00
Nasreddine Bencherchali 0795ed6469 feat: additional updates and fixes 2023-02-04 21:06:47 +01:00
Nasreddine Bencherchali 9e169c05a2 fix: add missing modified and small fixes to selections 2023-02-04 11:44:33 +01:00
Nasreddine Bencherchali fc316d8638 feat: even more updates 2023-02-03 20:17:09 +01:00
Nasreddine Bencherchali fc818bbbdc feat: multiple updates and fixes 2023-02-03 02:22:28 +01:00
Nasreddine Bencherchali 7c38a5c496 chore: add nextron authors tag 2023-02-01 11:14:59 +01:00
Nasreddine Bencherchali 6941d14ce0 fix: revert related field for deprecated rules 2023-01-31 11:25:07 +01:00
Nasreddine Bencherchali c8cd7ea070 fix: add missing modified for deprecated rules 2023-01-30 21:04:46 +01:00
Nasreddine Bencherchali e6c155442f feat: multiple updates and enhancements 2023-01-30 20:02:45 +01:00
Nasreddine Bencherchali c538550b03 feat: updates and fixes 2023-01-26 22:42:56 +01:00
Nasreddine Bencherchali ea536c33b3 feat: update and merge some pwsh rules 2023-01-20 17:07:23 +01:00
frack113 b04efe8d6f Update proc_creation_win_susp_cmd_exectution_via_wmi.yml 2023-01-20 06:45:38 +01:00
Nasreddine Bencherchali 1a9efa1002 feat: wmiprvse rule updates and merger 2023-01-19 23:10:06 +01:00
Nasreddine Bencherchali 143a413f4f fix: merge overlapping detections 2023-01-18 20:18:36 +01:00