security-tools/blue-team-tools
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
15,089 Commits 1 Branch 57 Tags
d14e287cdf91e2a8b995de5bfbc3fa8540c1922b
Commit Graph

65 Commits

Author SHA1 Message Date
Nasreddine Bencherchali 83bcab5fd6 chore: increase level of some sideloading rules 2023-03-15 01:10:52 +01:00
Nasreddine Bencherchali d36f7e9819 fix: fp found in testing 2023-03-14 23:58:04 +01:00
Nasreddine Bencherchali 1a4f76242c Merge branch 'SigmaHQ:master' into nasbench-rule-devel 2023-03-12 23:54:40 +01:00
Nasreddine Bencherchali a8462ec916 feat: more apt rules updates 2023-03-10 16:50:29 +01:00
Nasreddine Bencherchali f23780de6f feat: update and fixes 2023-03-09 22:10:42 +01:00
Nasreddine Bencherchali 3b11cafc57 Merge pull request #4091 from nasbench/nasbench-rule-devel 
feat: update and fixes
 2023-03-07 18:07:57 +01:00
Nasreddine Bencherchali 1378cf6d75 feat: update cmd based rules 2023-03-07 14:13:57 +01:00
Nasreddine Bencherchali e3503d5d60 feat: more updates 2023-03-06 00:39:26 +01:00
fukusuket 1896aee5cb update modified 2023-03-04 16:07:17 +09:00
fukusuket 31e14f8b63 fix status typo 2023-03-04 16:06:45 +09:00
Nasreddine Bencherchali 5689263f30 fix: add missing modified 2023-02-28 15:44:37 +01:00
Nasreddine Bencherchali 137dcbcc50 feat: more updates and fixes 2023-02-28 15:22:25 +01:00
Nasreddine Bencherchali 63888f7a53 feat: multiple fixes and updates 2023-02-21 22:15:30 +01:00
Nasreddine Bencherchali 68c052aab7 feat: updates and fixes 2023-02-17 17:51:44 +01:00
Nasreddine Bencherchali 164b3a36b6 Merge pull request #4043 from nasbench/certutil-other-updates 
feat: certutil rules updates + other fixes
 2023-02-16 11:45:08 +01:00
Nasreddine Bencherchali c56f7932e0 Merge pull request #4041 from nasbench/wmic-rules-updates 
feat: wmic rules update + other fixes
 2023-02-16 11:38:16 +01:00
Nasreddine Bencherchali c168a7ad00 feat: update certutil rules 2023-02-15 19:55:39 +01:00
Nasreddine Bencherchali 2ef681291a feat: more rules updates 2023-02-14 19:30:18 +01:00
Nasreddine Bencherchali 4f59a13d46 feat: update wmic rules 2023-02-14 19:30:18 +01:00
Nasreddine Bencherchali 27aac97639 feat: updates and enhancements 2023-02-14 00:51:20 +01:00
Nasreddine Bencherchali 692ad8356a Merge branch 'registry-rules-update' of https://github.com/nasbench/sigma into registry-rules-update 2023-02-08 11:40:56 +01:00
Nasreddine Bencherchali 3ec159a400 feat: update registry_add rules 2023-02-08 00:37:22 +01:00
Nasreddine Bencherchali a19a75b0b0 fix: resolves #4015 2023-02-07 14:33:56 +01:00
Nasreddine Bencherchali a7a4bce9b8 feat: update and enhancements 2023-02-07 13:55:14 +01:00
frack113 06bfeefe24 Update proc_creation_win_reg_dump_sam.yml 2023-02-04 22:48:10 +01:00
Nasreddine Bencherchali 0795ed6469 feat: additional updates and fixes 2023-02-04 21:06:47 +01:00
Nasreddine Bencherchali 9e169c05a2 fix: add missing modified and small fixes to selections 2023-02-04 11:44:33 +01:00
Nasreddine Bencherchali fc316d8638 feat: even more updates 2023-02-03 20:17:09 +01:00
Nasreddine Bencherchali fc818bbbdc feat: multiple updates and fixes 2023-02-03 02:22:28 +01:00
Nasreddine Bencherchali 7c38a5c496 chore: add nextron authors tag 2023-02-01 11:14:59 +01:00
Nasreddine Bencherchali 6941d14ce0 fix: revert related field for deprecated rules 2023-01-31 11:25:07 +01:00
Nasreddine Bencherchali c8cd7ea070 fix: add missing modified for deprecated rules 2023-01-30 21:04:46 +01:00
Nasreddine Bencherchali e6c155442f feat: multiple updates and enhancements 2023-01-30 20:02:45 +01:00
Nasreddine Bencherchali c538550b03 feat: updates and fixes 2023-01-26 22:42:56 +01:00
Nasreddine Bencherchali ea536c33b3 feat: update and merge some pwsh rules 2023-01-20 17:07:23 +01:00
frack113 b04efe8d6f Update proc_creation_win_susp_cmd_exectution_via_wmi.yml 2023-01-20 06:45:38 +01:00
Nasreddine Bencherchali 1a9efa1002 feat: wmiprvse rule updates and merger 2023-01-19 23:10:06 +01:00
Nasreddine Bencherchali 143a413f4f fix: merge overlapping detections 2023-01-18 20:18:36 +01:00
Nasreddine Bencherchali 8dc2418ea9 fix: some issues 2023-01-11 11:18:54 +01:00
Nasreddine Bencherchali 7e73028c5e feat: updates and enhancements 2023-01-06 16:35:34 +01:00
Nasreddine Bencherchali 3cb8e4c608 fix: status 2023-01-04 17:55:48 +01:00
Nasreddine Bencherchali ec6c8c391f fix: rollback 2023-01-04 17:54:20 +01:00
Nasreddine Bencherchali fb9caa875c fix: other typos 2023-01-04 17:53:24 +01:00
Nasreddine Bencherchali 711ba956e3 feat: updates and enhancements 2023-01-04 17:49:32 +01:00
Nasreddine Bencherchali 3749416a30 Merge branch 'SigmaHQ:master' into nasbench-rule-devel 2023-01-02 14:50:27 +01:00
Nasreddine Bencherchali a99b5082e1 feat: updates and enhancements 2023-01-02 14:49:45 +01:00
frack113 9675030f75 Update modified last change 2023-01-02 08:44:46 +01:00
frack113 b2e93afba0 Update proc_creation_win_invoke_obfuscation_via_use_rundll32.yml 2022-12-30 09:53:25 +01:00
Nasreddine Bencherchali c6fd915619 feat: updates and enhancements 2022-12-30 00:56:40 +01:00
Florian Roth 7f4a84963c style: reordered fields 2022-12-21 08:56:26 +01:00