blue-team-tools

Author	SHA1	Message	Date
Thomas Patzke	0592cbb67a	Added UUIDs to rules	2019-11-12 23:12:27 +01:00
ecco	4c54e8322a	sysmon eventid 3: filter on outgoing connections (initiated: true) to avoid false positives	2019-09-25 11:11:22 -04:00
Michael Wade	f70549ec54	First Pass	2019-06-13 23:15:38 -05:00
Florian Roth	f0a4aede24	Rule: RDP over Reverse SSH Tunnel	2019-02-16 19:36:13 +01:00