 Thomas Patzke
|
0592cbb67a
|
Added UUIDs to rules
|
2019-11-12 23:12:27 +01:00 |
|
|
Tareq AlKhatib
|
45458121c6
|
Updated to use the new process_creation logsource
|
2019-03-04 16:13:27 +03:00 |
|
|
Florian Roth
|
b0cb0abc01
|
Bugfix: wrong field for 4688 process creation events
|
2018-12-11 16:10:15 +01:00 |
|
|
Sherif Eldeeb
|
23eddafb39
|
Replace "logsource: description" with "definition" to match the specs
|
2018-11-15 09:00:06 +03:00 |
|
|
David Spautz
|
f039f95f4d
|
Add tags to APT rules
|
2018-07-25 09:50:01 +02:00 |
|
|
Thomas Patzke
|
01f38adbdb
|
Fixed condition
|
2018-03-04 20:07:02 +01:00 |
|
|
Florian Roth
|
f2057f0c77
|
Hurricane Panda activity
https://www.crowdstrike.com/blog/crowdstrike-discovers-use-64-bit-zero-day-privilege-escalation-exploit-cve-2014-4113-hurricane-panda/
|
2018-02-25 17:24:00 +01:00 |
|