security-tools/blue-team-tools
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity
14,175 Commits 1 Branch 57 Tags
3da07164ce0d651bf72691bac1cfcafbf20249de
Commit Graph

28 Commits

Author SHA1 Message Date
Nasreddine Bencherchali 03cc78e916 feat: filename test enhancements (#3812) 2022-12-23 09:25:16 +01:00
Nasreddine Bencherchali 1cfd7794d2 fix: fix FP found in testing 2022-12-12 13:40:55 +01:00
Florian Roth 1796502b90 fix: FPs noticed in Nextron testing CI 2022-12-05 17:39:42 +01:00
Nasreddine Bencherchali 04b7b92b64 fix: apply suggestions from code review 
Co-authored-by: phantinuss <79651203+phantinuss@users.noreply.github.com>
 2022-11-11 10:03:24 +01:00
Nasreddine Bencherchali 0a51dcdf5c fix: rename rule to reflect new title 2022-11-10 18:24:36 +01:00
Nasreddine Bencherchali 1ab9e9640e fix: enhance description 2022-11-10 18:19:39 +01:00
Nasreddine Bencherchali f09ea65ec4 fix: update code integrity rules 2022-11-10 17:43:22 +01:00
Nasreddine Bencherchali fc8eeb7b1e Fix FP 2022-11-07 12:11:30 +01:00
phantinuss 8c2b14a7ab Merge pull request #3661 from phantinuss/master 
FP fixes
 2022-10-31 11:44:39 +01:00
phantinuss 91af76417b fix: new code integrity offenders 2022-10-31 11:13:56 +01:00
Florian Roth 897580f294 Update win_codeintegrity_attempted_dll_load.yml 2022-10-29 09:52:36 +02:00
Florian Roth 07cf7ae5fa fix: FP with Code Integrity Attempted DLL Load 2022-10-28 16:28:49 +02:00
phantinuss f7319989e4 fix: new FP with Avast 2022-10-28 08:47:09 +02:00
Nasreddine Bencherchali aeefa4c022 Merge branch 'master' into fix-false-positives 2022-10-27 11:49:52 +02:00
phantinuss 07faf2b50a fix: add missing \ 2022-10-27 10:22:49 +02:00
phantinuss 152f22ba01 fix: FPs in testing environment 2022-10-27 09:46:05 +02:00
Nasreddine Bencherchali 8db7382bc9 Update win_codeintegrity_attempted_dll_load.yml 2022-10-26 11:15:18 +02:00
Nasreddine Bencherchali 9adbbf36c1 Rename Rule 2022-10-25 23:48:54 +02:00
phantinuss 353e735caa add FP filter for MS Office 2022-10-25 14:15:08 +02:00
Nasreddine Bencherchali d85f085348 Update Code Integrity rule 2022-10-25 12:29:41 +02:00
Nasreddine Bencherchali 214ba4b2e2 Merge branch 'SigmaHQ:master' into nasbench-rule-devel 2022-10-25 12:27:43 +02:00
Nasreddine Bencherchali b42826bcdb Create win_codeintegrity_failed_driver_load.yml 2022-10-25 12:27:11 +02:00
frack113 8b749fb126 Order yaml field 2022-10-25 11:08:51 +02:00
Nasreddine Bencherchali 68ce6078ed Update win_codeintegrity_failed_dll_load.yml 2022-10-25 02:13:12 +02:00
Nasreddine Bencherchali f5c5c032c1 fix: fix more FP with CI rule 2022-10-25 02:03:25 +02:00
Nasreddine Bencherchali ec425c836d fix: fix FP with bonjour in CI rule 2022-10-25 01:55:08 +02:00
Nasreddine Bencherchali 89e28d65d2 Update win_codeintegrity_failed_driver_load.yml 2022-10-24 12:05:50 +02:00
frack113 7053d42e43 move to builtin 2022-01-21 11:59:13 +01:00