787 Commits

Author	SHA1	Message	Date
Wagga	273fdb9985	fix: typos in multiple rules (#4011)	2023-02-06 13:53:23 +01:00
frack113	9e51af56ca	Merge pull request #3974 from MarkMorow/master ... Update tags for MITRE ATT&CK	2023-01-31 07:34:34 +01:00
Nasreddine Bencherchali	7b3a3ee254	fix: add missing space by the end	2023-01-30 10:26:13 +01:00
Nasreddine Bencherchali	6de8009c88	fix: update metadata and prefix test	2023-01-30 10:23:13 +01:00
Mark Morowczynski	b24e6d197b	Update tags for MITRE ATT&CK ... Update tags for MITRE ATT&CK	2023-01-29 11:29:12 -08:00
z00t	cd15e7beea	Rename github_new_org_member_alert.yml to github_new_org_member.yml ... The rule name changed to match the updated rule title.	2023-01-30 00:02:20 +05:00
z00t	d8c18457a0	Update disabled_outdated_dependency_or_vulnerability.yml ... Removed invalid mitre ID T1089, and removed mitigation ID which was included in an error.	2023-01-30 00:01:22 +05:00
z00t	493daf54f5	Update and rename github_high_risk_configuration_change.yml to disable_github_high_risk_configuration.yml ... The severity level changed to high from critical. The rule name matched the modified title.	2023-01-29 23:59:53 +05:00
z00t	40d7ce83c7	Rename dependabot_alerts_disabled.yml to disabled_outdated_dependency_or_vulnerability.yml ... The rule name matched to the modified title.	2023-01-29 23:57:17 +05:00
z00t	23e5faa382	Update rules/cloud/github/github_new_org_member_alert.yml ... Co-authored-by: frack113 <62423083+frack113@users.noreply.github.com>	2023-01-29 23:05:28 +05:00
z00t	579ac60b7a	Update rules/cloud/github/github_high_risk_configuration_change.yml ... Co-authored-by: frack113 <62423083+frack113@users.noreply.github.com>	2023-01-29 23:04:30 +05:00
z00t	1959e7936e	Update rules/cloud/github/dependabot_alerts_disabled.yml ... Co-authored-by: frack113 <62423083+frack113@users.noreply.github.com>	2023-01-29 23:03:59 +05:00
z00t	60c3221fe1	selection item added.	2023-01-29 21:56:33 +05:00
z00t	6ef4ee26bb	Description updated.	2023-01-29 20:45:19 +05:00
z00t	352b477d5b	Merge branch 'SigmaHQ:master' into master	2023-01-29 20:40:37 +05:00
Mark Morowczynski	29ca26b32c	Updating MITRE Tactics & Techniques ... Updating MITRE Tactics & Techniques to align with existing classifications	2023-01-28 13:26:15 -08:00
z00t	17640ab9d6	Merge branch 'master' of https://github.com/faisalusuf/sigma	2023-01-28 01:04:05 +05:00
z00t	1fa926ee31	New rules added.	2023-01-28 01:01:30 +05:00
frack113	1033b3f404	change status to test	2023-01-27 06:48:34 +01:00
frack113	fa593dc4c4	Merge pull request #3942 from faisalusuf/master	2023-01-22 18:49:55 +01:00
frack113	6d535e032f	Remove operation	2023-01-22 18:42:54 +01:00
frack113	2bd14e4953	Small update ... - Change service to audit - Add operation	2023-01-22 08:55:24 +01:00
Nasreddine Bencherchali	7bce67f940	fix: file extension	2023-01-21 11:52:13 +01:00
Nasreddine Bencherchali	9ef8565556	fix: filename	2023-01-21 11:41:44 +01:00
z00t	9cc61a6e60	Single quotes added to non-integer values.	2023-01-20 23:28:23 +05:00
z00t	44a7b78950	New Rule is created.	2023-01-20 23:09:56 +05:00
z00t	e27d79e21a	New detection rule.	2023-01-20 21:29:31 +05:00
nikitah4x	8015b445fd	Update okta_admin_role_assignment_created.yml	2023-01-20 15:47:36 +02:00
nikitah4x	411b1a44e7	Update rules/cloud/okta/okta_admin_role_assignment_created.yml ... Co-authored-by: Nasreddine Bencherchali <8741929+nasbench@users.noreply.github.com>	2023-01-20 15:42:22 +02:00
nikitah4x	a25fdddb0d	Update rules/cloud/okta/okta_admin_role_assignment_created.yml ... Co-authored-by: Nasreddine Bencherchali <8741929+nasbench@users.noreply.github.com>	2023-01-20 15:42:15 +02:00
nikitah4x	44a3371d8a	Update rules/cloud/okta/okta_admin_role_assignment_created.yml ... Co-authored-by: Nasreddine Bencherchali <8741929+nasbench@users.noreply.github.com>	2023-01-20 15:41:32 +02:00
z00t	cc511af55e	Create github_delete action_invoked.yaml	2023-01-20 18:14:14 +05:00
nikitah4x	13a26aaffa	Create okta_admin_role_assignment_created.yml	2023-01-19 21:22:58 +02:00
TheLawsOfChaos	52e40d10ef	feat: updates multiple mitre tech/sub-tech/tactics (#3913)	2023-01-12 17:04:38 +01:00
TheLawsOfChaos	8607588a13	11 Files with updates Tactics/techniques/sub-techs (#3904)	2023-01-11 06:30:46 +01:00
frack113	0c3ba418db	Merge pull request #3898 from cyb3rjy0t/patch-2 ... New rule	2023-01-10 20:47:48 +01:00
frack113	8e7187e861	Rename azure_ad_risky_sign_ins_with_singlefactorauthencation_from_unknown_devices.yml to azure_ad_risky_sign_ins_with_singlefactorauth_from_unknown_devices.yml	2023-01-10 20:37:56 +01:00
Nasreddine Bencherchali	2820210945	fix: broken title	2023-01-10 19:43:19 +01:00
frack113	4023bf2c83	Remove mitre url	2023-01-10 18:09:04 +01:00
frack113	a6116a5fdc	Merge pull request #3894 from TheLawsOfChaos/patch-5 ... Update azure_device_or_configuration_modified_or_deleted.yml	2023-01-10 17:49:12 +01:00
Nasreddine Bencherchali	23278ead62	Merge pull request #3893 from TheLawsOfChaos/patch-4 ... Update azure_dns_zone_modified_or_deleted.yml	2023-01-10 13:50:11 +01:00
Nasreddine Bencherchali	82c2b635a9	fix: yaml syntax	2023-01-10 00:49:44 +01:00
Nasreddine Bencherchali	3b149675b2	Merge pull request #3896 from TheLawsOfChaos/patch-7 ... Patch 7	2023-01-10 00:45:38 +01:00
cyb3rjy0t	907252c00f	New rule ... Detecting risky user sign from non AD registered device with single factor authenciation	2023-01-09 17:07:39 -05:00
Nasreddine Bencherchali	032db9f799	Merge pull request #3897 from TheLawsOfChaos/patch-8 ... Update azure_firewall_modified_or_deleted.yml	2023-01-09 22:39:41 +01:00
Nasreddine Bencherchali	f0505a7a22	fix: remove mitre links from ref section	2023-01-09 22:34:13 +01:00
Nasreddine Bencherchali	e237aec830	Merge pull request #3895 from TheLawsOfChaos/patch-6 ... Update azure_creating_number_of_resources_detection.yml	2023-01-09 22:33:30 +01:00
Nasreddine Bencherchali	3ec4c3e98b	fix: apply suggestions from code review	2023-01-09 22:23:19 +01:00
Nasreddine Bencherchali	c8cbdefba5	fix: remove unnecessary spaces	2023-01-09 22:22:40 +01:00
Nasreddine Bencherchali	b728332228	fix: remove mitre link from the reference section	2023-01-09 22:21:46 +01:00