 frack113
|
020fc8061f
|
Merge PR #4479 From @frack113 - Upgrade Rules Status
chore: Upgrade status level from `experimental` to `test` for rules that have not changed in 300 days
---------
Signed-off-by: frack113 <62423083+frack113@users.noreply.github.com>
Co-authored-by: nasbench <8741929+nasbench@users.noreply.github.com>
|
2023-10-17 14:35:26 +02:00 |
|
|
frack113
|
dfdaecc52c
|
Order yaml field
|
2022-10-25 12:00:56 +02:00 |
|
|
Nasreddine Bencherchali
|
d03f6df250
|
Reference Update [Batch 1]
|
2022-07-07 15:24:15 +01:00 |
|
|
phantinuss
|
7edf04d9ff
|
fix: FPs from fresh Windows install
|
2022-04-06 16:09:53 +02:00 |
|
|
phantinuss
|
6ae28b7a1c
|
fix: legitimate --> Legitimate
|
2022-03-16 14:35:19 +01:00 |
|
|
phantinuss
|
43bae23f23
|
fix: several FPs against a fresh installed Windows with example applications and basic user interaction
|
2022-02-09 17:47:22 +01:00 |
|
|
Tim Shelton
|
fc2e2aa4c5
|
adding filter for false positive. no risk to sysmon operation
|
2021-12-02 20:38:58 +00:00 |
|
|
Florian Roth
|
0ab163b6ba
|
fix: FP which happens more frequently under normal circumstances
|
2021-11-12 13:31:25 +01:00 |
|
|
frack113
|
0e5e4fa19d
|
Split global rules
|
2021-09-07 13:30:32 +02:00 |
|