security-tools/blue-team-tools
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
4,379 Commits 1 Branch 57 Tags
4e59fc0dfd2b885d2144a723b4ddeb84e160f3d7
Commit Graph

22 Commits

Author SHA1 Message Date
yugoslavskiy 5eec5d485b Update sysmon_in_memory_assembly_execution.yml 2020-11-28 10:55:18 +01:00
Jonhnathan f61317b2f9 Update sysmon_in_memory_assembly_execution.yml 2020-11-26 22:50:48 -03:00
Jonhnathan ab2edd1ff0 Update sysmon_malware_verclsid_shellcode.yml 2020-11-20 01:34:43 -03:00
Jonhnathan 240a8b9aa0 Update sysmon_lazagne_cred_dump_lsass_access.yml 2020-11-20 01:33:04 -03:00
Jonhnathan ebd9973dcb Update sysmon_lazagne_cred_dump_lsass_access.yml 2020-11-20 01:32:41 -03:00
Jonhnathan 2194744803 Update sysmon_invoke_phantom.yml 2020-11-20 01:30:58 -03:00
Jonhnathan 4af7f00f4a Improve logic 2020-11-20 01:30:01 -03:00
Jonhnathan e0c538fdd4 Update sysmon_malware_verclsid_shellcode.yml 2020-10-15 17:19:06 -03:00
Jonhnathan 93faca413e Update sysmon_lsass_memdump.yml 2020-10-15 17:17:57 -03:00
Jonhnathan af5c88e5d5 Update sysmon_lazagne_cred_dump_lsass_access.yml 2020-10-15 17:17:39 -03:00
Jonhnathan a554c3df23 Update sysmon_invoke_phantom.yml 2020-10-15 17:17:19 -03:00
Jonhnathan 1878aa5fbd Update sysmon_cmstp_execution.yml 2020-10-15 17:16:50 -03:00
Yugoslavskiy Daniil 1fc202fe5d fix typos, update tags 2020-09-13 15:46:45 +02:00
Bhabesh Rai ed059a9831 Added Credential Dumping by LaZagne 2020-09-09 18:27:14 +05:45
aw350m3 eb6b9be5a2 added missing ATT&CK v6.3 IDs with comments and removed unnecessary "modified" attributes 2020-08-25 23:51:22 +00:00
aw350m3 399f378269 att&ck tags review: windows/powershell, windows/process_access, windows/network_connection 2020-08-24 23:31:26 +00:00
aw350m3 3aa1ad68fb windows/process_access folder reviewed. Old ID’s marked with comment “an old one”. These ID’s have to be removed in future. 2020-08-23 02:03:06 +00:00
Aidan Bracher ea1b2ae59f Updated invoke_phantom with sub-technique mapping 2020-07-18 02:32:42 +01:00
Florian Roth 5f04fcccf5 fix: broken links 2020-07-03 11:22:06 +02:00
Florian Roth 3decee07ba fix: bugfix and cosmetics 2020-06-24 18:10:58 +02:00
Florian Roth f3fedef8f5 Changed category names and remove sysmon log source 2020-06-24 17:41:21 +02:00
Steven Goossens e5f36dd146 Added rules files split into folders 2020-06-10 16:32:30 +02:00