9367349016
Merge PR #5101 from @nasbench - Promote older rules status from experimental to test
...
chore: promote older rules status from experimental to test
Co-authored-by: nasbench <nasbench@users.noreply.github.com >
2024-12-01 13:40:32 +01:00
598d29f811
Merge PR #4950 from @nasbench - Comply With v2 Spec Changes
...
chore: change tags, date, modified fields to comply with v2 of the Sigma spec.
chore: update the related type from `obsoletes` to `obsolete`.
chore: update local json schema to the latest version.
2024-08-12 12:02:50 +02:00
1fb3ce596a
Merge PR #4718 from @qasimqlf - Update ATT&CK Mapping For Some Rules
...
chore: update ATT&CK tagging for multiple rules
---------
Co-authored-by: nasbench <8741929+nasbench@users.noreply.github.com >
2024-02-26 17:09:30 +01:00
5fac8cb7df
Merge PR #4692 from @jstnk9 - Add new rules related to IExpress abuse
...
new: New Self Extracting Package Created Via IExpress.EXE
new: Self Extraction Directive File Created In Potentially Suspicious Location
new: Potentially Suspicious Self Extraction Directive File Created
new: Self Extracting Package Creation Via Iexpress.EXE From Potentially Suspicious Location
---------
Co-authored-by: nasbench <8741929+nasbench@users.noreply.github.com >
Co-authored-by: phantinuss <79651203+phantinuss@users.noreply.github.com >
2024-02-08 16:57:23 +01:00
github-actions[bot]