security-tools/blue-team-tools
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
7,956 Commits 1 Branch 57 Tags
7ff0ff104ae2ee98459bc81ec5d2e33918d899b6
Commit Graph

7956 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Austin Songer 7ff0ff104a Update ecs-okta.yml 2021-09-14 01:52:03 -05:00
Austin Songer 2a52cef62e Update ecs-okta.yml 2021-09-13 22:29:19 -05:00
Austin Songer 1895906580 Update ecs-okta.yml 2021-09-13 22:16:43 -05:00
Austin Songer 15bd61ed9f Update ecs-okta.yml 2021-09-13 21:45:14 -05:00
Austin Songer 87affad990 Create ecs-okta.yml 2021-09-13 21:31:25 -05:00
Thomas Patzke c7ecf6da65 Merge pull request #2009 from Preston-Young/master 
Added New OpenSearch Monitor Backend
 2021-09-13 23:07:35 +02:00
Florian Roth 4118402127 Merge pull request #2027 from frack113/fix_reg_key 
Fix registry TargetObject
 2021-09-13 15:59:47 +02:00
Florian Roth 680cad2a52 Merge pull request #2025 from BlackB0lt/patch-18 
Update win_file_winword_cve_2021_40444.yml
 2021-09-13 15:58:45 +02:00
Sittikorn S dd9921b360 Update win_file_winword_cve_2021_40444.yml 
Add modified date
 2021-09-13 19:41:01 +07:00
frack113 34111b3aaf Merge pull request #2023 from austinsonger/okta 
Okta Rules
 2021-09-13 14:34:52 +02:00
frack113 ab5d3a9da4 Merge pull request #2024 from austinsonger/azure_new_cloudshell_created.yml 
azure_new_cloudshell_created.yml
 2021-09-13 14:34:11 +02:00
frack113 047ebab36b fix HKCU 2021-09-13 14:01:39 +02:00
frack113 7b6ae81b8b fix TargetObject HK 2021-09-13 13:16:16 +02:00
frack113 bc14ee3eec Merge pull request #2022 from frack113/fix_missing_logsource 
fix test_rules.py errors when no logsource
 2021-09-13 12:46:42 +02:00
frack113 f95cceb56c Merge pull request #2026 from BlackB0lt/patch-17 
Update web_cve_2021_40539_manageengine_adselfservice_exploit.yml
 2021-09-13 12:42:04 +02:00
Sittikorn S edd5c2745e Update win_file_winword_cve_2021_40444.yml 
change TargetFilename|contains|all
 2021-09-13 16:05:56 +07:00
Sittikorn S 5977596e65 Update win_file_winword_cve_2021_40444.yml 2021-09-13 16:05:22 +07:00
Sittikorn S 7386904e42 Update win_file_winword_cve_2021_40444.yml 
Add new condition
 2021-09-13 15:33:14 +07:00
Sittikorn S 9576663789 Update web_cve_2021_40539_manageengine_adselfservice_exploit.yml 
Edit My Teammate
 2021-09-13 15:23:38 +07:00
Austin Songer 8e1f36ec39 Update okta_api_token_created.yml 2021-09-12 23:34:08 -05:00
frack113 e4d3d313c7 Update okta_policy_rule_modified_or_deleted.yml 2021-09-13 06:33:49 +02:00
frack113 18223a37cd Update okta_application_sign-on_policy_modified_or_deleted.yml 2021-09-13 06:26:01 +02:00
Austin Songer e1ef3857fb Update and rename okta_user_account_lockout.yml to okta_user_account_locked_out.yml 2021-09-12 20:49:44 -05:00
Austin Songer 01c985b99a Update and rename okta_user_account_mfa_bypass_attempt.yml to okta_mfa_reset_or_deactivated.yml 2021-09-12 20:40:33 -05:00
Austin Songer 1f5e2577cb Delete okta_user_account_mfa_reset.yml 2021-09-12 20:34:37 -05:00
Austin Songer bec7b5d3e7 Create okta_security_threat_detected.yml 2021-09-12 20:33:27 -05:00
Austin Songer 249d3198d3 Create okta_application_sign-on_policy_modified_or_deleted.yml 2021-09-12 20:27:45 -05:00
Austin Songer f759fff453 Update okta_policy_rule_modified_or_deleted.yml 2021-09-12 20:24:12 -05:00
Austin Songer e60fbbf4b8 Update okta_network_zone_deactivated_or_deleted.yml 2021-09-12 20:22:16 -05:00
Austin Songer 45b6ac72ee Update okta_application_modified_or_deleted.yml 2021-09-12 20:19:57 -05:00
Austin Songer 9f70336879 Update okta_api_token_revoked.yml 2021-09-12 20:16:37 -05:00
Austin Songer aa8978e9da Update okta_api_token_created.yml 2021-09-12 20:14:27 -05:00
Austin Songer 715b6ecdda Create azure_new_cloudshell_created.yml 2021-09-12 20:00:08 -05:00
Austin Songer f227437920 Create okta_api_token_revoked.yml 2021-09-12 19:47:59 -05:00
Austin Songer 329c5e96fc Create okta_api_token_created.yml 2021-09-12 19:47:21 -05:00
Austin Songer 5f7e657319 Create okta_admin_role_assigned_to_user_or_group.yml 2021-09-12 19:45:57 -05:00
Austin Songer 7b37162107 Update okta_user_account_mfa_reset.yml 2021-09-12 19:41:50 -05:00
Austin Songer 4d58194dab Update okta_user_account_mfa_bypass_attempt.yml 2021-09-12 19:41:38 -05:00
Austin Songer 30823b72b2 Update okta_policy_rule_modified_or_deleted.yml 2021-09-12 19:41:14 -05:00
Austin Songer 31ccf89dcc Update okta_network_zone_deactivated_or_deleted.yml 2021-09-12 19:41:00 -05:00
Austin Songer 08e79bb22e Update okta_application_modified_or_deleted.yml 2021-09-12 19:40:49 -05:00
Austin Songer 8b0756bd32 Create okta_unauthorized_access_to_app.yml 2021-09-12 19:39:24 -05:00
Austin Songer 8607af29e0 Create okta_user_account_lockout.yml 2021-09-12 19:35:19 -05:00
Austin Songer 12e5eeac9e Update okta_policy_modified_or_deleted.yml 2021-09-12 19:30:03 -05:00
Austin Songer 1af9120f37 Rename okta_account_mfa_reset.yml to okta_user_account_mfa_reset.yml 2021-09-12 19:25:11 -05:00
Austin Songer d5653cbfd0 Create okta_user_account_mfa_bypass_attempt.yml 2021-09-12 19:24:57 -05:00
Austin Songer c51e1db228 Create okta_network_zone_deactivated_or_deleted.yml 2021-09-12 19:22:15 -05:00
Austin Songer fefb856471 Create okta_account_mfa_reset.yml 2021-09-12 19:20:54 -05:00
Austin Songer 76d78c274a Create okta_policy_rule_modified_or_deleted.yml 2021-09-12 19:17:25 -05:00
Austin Songer ebd120a165 Create okta_application_modified_or_deleted.yml 2021-09-12 19:17:00 -05:00