security-tools/blue-team-tools
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
15,036 Commits 1 Branch 57 Tags
77cd0bf6c0a250877244f7a07e1ad2edc19fa196
Commit Graph

294 Commits

Author SHA1 Message Date
Nasreddine Bencherchali d36f7e9819 fix: fp found in testing 2023-03-14 23:58:04 +01:00
Nasreddine Bencherchali 31a5c08480 fix: reduce author set 2023-02-01 14:34:46 +01:00
Nasreddine Bencherchali 7c38a5c496 chore: add nextron authors tag 2023-02-01 11:14:59 +01:00
Nasreddine Bencherchali e6c155442f feat: multiple updates and enhancements 2023-01-30 20:02:45 +01:00
frack113 5087b95155 Merge remote-tracking branch 'upstream/master' into pormotion_status 2023-01-27 11:29:27 +01:00
frack113 1033b3f404 change status to test 2023-01-27 06:48:34 +01:00
Nasreddine Bencherchali 725c5ba420 fix: fp found in testing 2023-01-25 16:54:11 +01:00
Nasreddine Bencherchali d2575eff64 fix: fp with lsass access rule 
- Add new filters
- Reorder and rename some filter for clarity
 2023-01-25 13:08:20 +01:00
Nasreddine Bencherchali 690af599ba fix: fp with invoke patchingapi rule 2023-01-25 12:54:29 +01:00
phantinuss 231e87e316 fix: FP in testing environment 2023-01-23 12:05:28 +01:00
Nasreddine Bencherchali ef0c3d35c4 fix: filter fp found in testing 2023-01-20 11:39:08 +01:00
phantinuss df6d6107fc fix: FP found in testing environment 2023-01-19 16:49:12 +01:00
Nasreddine Bencherchali 02e4a5112d fix: fp found in testing 2023-01-18 18:41:07 +01:00
Nasreddine Bencherchali f4d4526d0f fix: fp found in testing 2023-01-11 20:05:55 +01:00
Nasreddine Bencherchali b0e3bb5d28 fix: broken condition 2023-01-10 00:33:38 +01:00
Nasreddine Bencherchali 81f75c1d2e feat: updates and enhancements 2023-01-10 00:13:37 +01:00
frack113 f08f3706f7 Update proc_access_win_invoke_patchingapi.yml 2023-01-07 13:04:57 +01:00
Nasreddine Bencherchali 69dbdc2a34 fix: apply suggestions from code review 2023-01-07 13:03:21 +01:00
frack113 24264407d9 Update detection 2023-01-07 12:32:27 +01:00
frack113 4dbfebf65c Add proc_access_win_invoke_patchingapi 2023-01-07 10:35:28 +01:00
Fukusuke Takahashi 1ab7324ca0 fix: remove unneeded double backslash escape (#3844) 2022-12-31 08:32:46 +01:00
Nasreddine Bencherchali 07cc91719c fix: enhance selection 2022-12-29 17:14:21 +01:00
Florian Roth bc5ed3e453 fix: Discord FP 2022-12-28 20:39:26 +01:00
Florian Roth 737eacc671 Merge branch 'master' into aurora-false-positive-fixing 2022-12-28 13:28:56 +01:00
Florian Roth 9ea8b2e2c1 fix: Discord FP 2022-12-28 13:28:45 +01:00
Nasreddine Bencherchali 03cc78e916 feat: filename test enhancements (#3812) 2022-12-23 09:25:16 +01:00
Nasreddine Bencherchali 7679d05706 fix: fp found in testing exchange server 2022-12-20 13:23:32 +01:00
frack113 646351808e Refractor (#3794) 
Co-authored-by: Nasreddine Bencherchali <8741929+nasbench@users.noreply.github.com>
 2022-12-18 21:00:14 +01:00
Nasreddine Bencherchali 3868dd91c6 feat: updates and enhancements 2022-12-16 16:52:12 +01:00
Florian Roth 2b769fcfc8 fix: missing modified date update 2022-12-05 19:58:10 +01:00
Florian Roth 1796502b90 fix: FPs noticed in Nextron testing CI 2022-12-05 17:39:42 +01:00
Nasreddine Bencherchali 11ce8a1e5b fix: deprecate 5f113a8f-8b61-41ca-b90f-d374fa7e4a39 2022-11-15 22:56:51 +01:00
Florian Roth 0fb1295157 fix: FPs noticed with Aurora 2022-11-13 20:26:03 +01:00
Nasreddine Bencherchali bd30f75335 Update proc_access_win_in_memory_assembly_execution.yml 2022-11-03 11:19:09 +01:00
Nasreddine Bencherchali 5ee9428e59 Fix 2022-11-03 09:39:48 +01:00
Nasreddine Bencherchali 0aff47946d Fix FP 2022-11-01 01:05:42 +01:00
Nasreddine Bencherchali aeefa4c022 Merge branch 'master' into fix-false-positives 2022-10-27 11:49:52 +02:00
Nasreddine Bencherchali ca9183c1fe Update process_access_win_shellcode_inject_msf_empire.yml 2022-10-27 11:39:58 +02:00
Nasreddine Bencherchali 308ab94f88 Update process_access_win_shellcode_inject_msf_empire.yml 2022-10-27 11:39:32 +02:00
phantinuss c24cd642fd fix: missing beginning of SourceImage path 2022-10-26 10:10:02 +02:00
frack113 a3eed2b760 Order yaml field 2022-10-26 09:42:26 +02:00
phantinuss 176f3ab1b9 fix: FP in testing environment 2022-10-25 16:21:14 +02:00
phantinuss c555b33314 fix: FP with new Aurora 2022-10-25 12:20:13 +02:00
Florian Roth e9d7c3fdfc Merge pull request #3611 from nasbench/fix-false-positives 
Fix FP In Testing
 2022-10-21 18:11:27 +02:00
phantinuss f4420ca3c3 fix: FPs found in testing environment 2022-10-20 17:25:23 +02:00
Nasreddine Bencherchali a13a5efd47 More FP tuning 2022-10-20 11:51:06 +02:00
phantinuss 09b94e2081 fix: FP on test system 2022-10-20 11:08:41 +02:00
phantinuss 7a6bb720d9 fix: FPs on test system 2022-10-19 15:44:00 +02:00
frack113 931fb30853 old experimental rule promotion 2022-10-09 16:54:04 +02:00
Florian Roth c76b488941 fix: FPs during os upgrade 2022-10-07 22:31:13 +02:00