security-tools/blue-team-tools
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
15,036 Commits 1 Branch 57 Tags
77cd0bf6c0a250877244f7a07e1ad2edc19fa196
Commit Graph

95 Commits

Author SHA1 Message Date
Nasreddine Bencherchali 1a4f76242c Merge branch 'SigmaHQ:master' into nasbench-rule-devel 2023-03-12 23:54:40 +01:00
Nasreddine Bencherchali 40f355eed7 Update PULL_REQUEST_TEMPLATE.md 2023-03-10 01:42:05 +01:00
Nasreddine Bencherchali b36fb603e0 fix: fp found in testing 2023-03-09 22:53:30 +01:00
Nasreddine Bencherchali a09a442136 fix: reduce size of titles in templates 2023-02-22 16:06:28 +01:00
Nasreddine Bencherchali 84d3282de3 fix: typo 
Co-authored-by: phantinuss <79651203+phantinuss@users.noreply.github.com>
 2023-02-22 15:58:24 +01:00
Nasreddine Bencherchali 52c4ccb52f Update .github/PULL_REQUEST_TEMPLATE.md 
Co-authored-by: phantinuss <79651203+phantinuss@users.noreply.github.com>
 2023-02-22 15:55:56 +01:00
Nasreddine Bencherchali 268afe44c6 feat: add convention section to PR template 2023-02-22 15:08:27 +01:00
Nasreddine Bencherchali 9f66e34e15 feat: add new rule proposal template 2023-02-22 15:08:17 +01:00
Nasreddine Bencherchali 73293ce625 feat: update workflow 2023-02-22 14:49:09 +01:00
Nasreddine Bencherchali 319bc91867 Update bug_report.md 2023-02-22 14:21:46 +01:00
Nasreddine Bencherchali 7f6b405c6b fix: apply suggestions from code review 
Co-authored-by: phantinuss <79651203+phantinuss@users.noreply.github.com>
 2023-02-22 11:39:06 +01:00
Nasreddine Bencherchali 2cd41ec2ad Update PULL_REQUEST_TEMPLATE.md 2023-02-22 11:17:14 +01:00
Nasreddine Bencherchali 1363d0bea2 Update .github/PULL_REQUEST_TEMPLATE.md 
Co-authored-by: phantinuss <79651203+phantinuss@users.noreply.github.com>
 2023-02-22 11:00:52 +01:00
Nasreddine Bencherchali a3f289a0ae Update false_positive_report.yml 2023-02-21 23:34:56 +01:00
Nasreddine Bencherchali 0e26a2509a Update false_positive_report.yml 2023-02-21 23:34:13 +01:00
Nasreddine Bencherchali 9921a724f7 Update PULL_REQUEST_TEMPLATE.md 2023-02-21 23:23:35 +01:00
Nasreddine Bencherchali ca5107890b Update bug_report.md 2023-02-21 23:23:17 +01:00
Nasreddine Bencherchali 5c70495257 feat: add issues templates and update pr template 2023-02-21 23:10:18 +01:00
Florian Roth 3085a4025a Update PULL_REQUEST_TEMPLATE.md 2023-02-20 19:37:30 +01:00
Nasreddine Bencherchali b1866adb07 Merge pull request #4049 from nasbench/nasbench-rule-devel 
feat: new rules, updates and fixes
 2023-02-20 13:44:04 +01:00
Nasreddine Bencherchali 5ab9b790b7 fix: typo 
Co-authored-by: phantinuss <79651203+phantinuss@users.noreply.github.com>
 2023-02-20 11:29:45 +01:00
Nasreddine Bencherchali 4921fa3494 Update PULL_REQUEST_TEMPLATE.md 2023-02-20 10:57:41 +01:00
Nasreddine Bencherchali a0236b669a Create PULL_REQUEST_TEMPLATE.md 2023-02-18 00:35:11 +01:00
Nasreddine Bencherchali 6a0b38291f fix: fp found in baseline 2023-02-17 23:16:42 +01:00
frack113 7ea3db18f7 Fix test errors 2023-01-27 15:09:43 +01:00
Nasreddine Bencherchali dd9987527a fix: final fp 2023-01-19 00:49:32 +01:00
Nasreddine Bencherchali 6819d264cc fix: update evtx tamper rules 2023-01-02 15:25:19 +01:00
frack113 3c2e1a6a3e add new test 2022-12-30 16:00:42 +01:00
frack113 aee5ca7afc Fix invalid field cast or name (#3841) 2022-12-30 11:46:21 +01:00
frack113 3b54304ac6 Update Workflow action (#3829) 2022-12-28 13:58:10 +01:00
Nasreddine Bencherchali e6baac1bf2 fix: exclude teamviewer fp & reduce severity 2022-12-23 20:50:38 +01:00
frack113 75c6f44f12 Update Workflow (#3752) 2022-12-04 11:18:11 +01:00
frack113 20ef4b880c Exclude SetupFrontEnd.exe 2022-10-31 18:49:53 +01:00
frack113 f78e9e9034 Add rule 
Co-authored-by: Nasreddine Bencherchali <8741929+nasbench@users.noreply.github.com>
 2022-10-24 17:52:05 +02:00
phantinuss 736ba904b0 fix: add new FP to whitelist, no tuning possible 2022-10-21 17:41:32 +02:00
phantinuss c5fb5e1c95 fix: remove FPs found in goodlogs 2022-10-12 17:04:31 +02:00
Nasreddine Bencherchali 48cb48306e Update known-FPs.csv 2022-10-04 11:41:17 +02:00
phantinuss f940a43d8f workflow: use correct rule title 2022-09-21 13:51:20 +02:00
phantinuss 54add15167 workflow: fix wrong filename 2022-09-21 13:51:20 +02:00
phantinuss 40e0dfcb29 chore: add new known FPs 2022-09-21 13:45:28 +02:00
phantinuss e5e5cdd3b3 workflow: update evtx-baseline to v0.7 and add a new test for the data 2022-09-21 13:45:28 +02:00
Nasreddine Bencherchali 35f102f8a0 Update known-FPs.csv 2022-08-31 11:40:39 +02:00
Nasreddine Bencherchali 475bb1a90b Update known-FPs.csv 2022-08-31 11:12:18 +02:00
Nasreddine Bencherchali b0768ed5cd Update known-FPs.csv 2022-08-31 11:05:41 +02:00
Nasreddine Bencherchali b7fe798a8d Update known-FPs.csv 2022-08-31 10:24:04 +02:00
Tobias Michalski 6f467656fe chore: Get Submodules for test_rules.py test 2022-08-12 14:33:31 +02:00
frack113 acbc9110e4 Add short name path 2022-08-07 08:38:11 +02:00
frack113 f1eba85780 Add short name path 2022-08-07 08:37:58 +02:00
frack113 c38bfe86da Add short path and Image 2022-08-06 11:25:44 +02:00
Thomas Patzke 58f1d6fa2c Create FUNDING.yml 2022-05-13 08:20:30 +02:00