blue-team-tools

Author	SHA1	Message	Date
aw350m3	7c6c5263ab	fix duplication of key modified in win_malware_emotet.yml	2020-09-01 17:09:54 +00:00
aw350m3	8ed3eb1494	att&ck tags review: windows/process_creation part 3	2020-09-01 17:02:59 +00:00
Florian Roth	30d872f98f	Merge pull request #492 from booberry46/master Bypass Windows Defender	2020-01-30 14:27:30 +01:00
booberry46	df162b232f	Update win_malware_emotet.yml	2019-11-30 13:17:44 +08:00
Thomas Patzke	0592cbb67a	Added UUIDs to rules	2019-11-12 23:12:27 +01:00
Florian Roth	ab292a4029	rule: simplified Emotet rule	2019-10-16 15:29:42 +02:00
Florian Roth	5d143f4f22	rule: emotet rule references extended	2019-10-16 13:18:44 +02:00
Florian Roth	d46154da5c	rule: extending Emotet rule	2019-10-16 10:22:48 +02:00
Florian Roth	9a7ef0e3c2	fix: fixed rule warning	2019-09-30 19:38:40 +02:00
Florian Roth	05ca684962	rule: improved emotet rule	2019-09-30 17:17:23 +02:00
Florian Roth	66cbdbfff5	rule: emotet process creation	2019-09-30 15:53:29 +02:00