blue-team-tools

Author	SHA1	Message	Date
Nasreddine Bencherchali	587fbbce58	chore: update pipe-notation rules to unsupported	2023-02-24 19:54:14 +01:00
Nasreddine Bencherchali	d6f3e7dacb	feat: rename rules for conventions	2023-02-24 19:33:24 +01:00
$frack113$ frack113	4d8a6ca51f	Merge pull request #4073 from nasbench/nasbench-rule-devel feat: updates and fixes	2023-02-24 17:50:50 +01:00
Nasreddine Bencherchali	60c0b5fdd0	fix: remove pptx:zone Co-authored-by: frack113 <62423083+frack113@users.noreply.github.com>	2023-02-24 16:36:14 +01:00
Nasreddine Bencherchali	41e6b17610	fix: remove pptx extension	2023-02-24 13:34:49 +01:00
Nasreddine Bencherchali	80c0c5b391	fix: apply rewording suggestion Co-authored-by: phantinuss <79651203+phantinuss@users.noreply.github.com>	2023-02-24 13:33:08 +01:00
Nasreddine Bencherchali	47de3e1857	fix: remove pwsh+cmd	2023-02-24 13:32:43 +01:00
Nasreddine Bencherchali	5dc2e60247	Merge pull request #4075 from d4rk-d4nph3/master feat: add rule for Joomla CVE-2023-23752	2023-02-23 21:12:52 +01:00
Nasreddine Bencherchali	4da9252bba	fix: add missing space	2023-02-23 19:33:00 +01:00
Bhabesh	d3cfc7a7fa	Fixed field name	2023-02-24 00:12:16 +05:45
Bhabesh	dee1558a8d	Added rule (fixed) for CVE-2023-23752 in Joomla	2023-02-23 23:40:08 +05:45
Nasreddine Bencherchali	5258f795a6	Merge pull request #4070 from securepeacock/patch-40 chore: add new ref link for rule	2023-02-23 16:28:18 +01:00
pfpt-dmiller	3bcf7dc401	Update net_dns_socgholish_c2_detection.yml Update references	2023-02-23 10:11:29 -05:00
pfpt-dmiller	e6fdd61726	Create net_dns_socgholish_c2_detection.yml This is looking for the DNS queries that the SocGholish .js payload makes before communicating with the Command and Control server.	2023-02-23 10:00:00 -05:00
Nasreddine Bencherchali	af84545616	fix: fp found in baseline	2023-02-23 13:39:17 +01:00
Nasreddine Bencherchali	75281c8c20	fix: typo in modifier name	2023-02-23 13:30:31 +01:00
Nasreddine Bencherchali	c37df2fa83	fix: remove incorrect field	2023-02-23 13:19:21 +01:00
Nasreddine Bencherchali	d799ad9982	fix: revert change to rule	2023-02-23 12:55:46 +01:00
Nasreddine Bencherchali	078e3ab500	feat: updates and fixes	2023-02-23 12:49:44 +01:00
Nasreddine Bencherchali	6dcc3a05c0	Merge pull request #4072 from phantinuss/master fix: FP with empty user and IP address	2023-02-23 11:50:38 +01:00
phantinuss	cca426c5a3	fix: FP with empty user and ip address	2023-02-23 11:38:47 +01:00
Nasreddine Bencherchali	09110727fd	fix: change to permalink Co-authored-by: frack113 <62423083+frack113@users.noreply.github.com>	2023-02-23 10:47:52 +01:00
securepeacock	807b41c003	Update registry_set_wdigest_enable_uselogoncredential.yml Added Atomic Red Team test in references.	2023-02-22 15:38:12 -05:00
Nasreddine Bencherchali	3cf9a5bab6	Merge pull request #4069 from nasbench/pr-issue-templates feat: update workflow and templates	2023-02-22 17:29:44 +01:00
Nasreddine Bencherchali	aa8c18c0a5	Merge pull request #4066 from nasbench/nasbench-rule-devel feat: multiple updates and fixes	2023-02-22 17:20:58 +01:00
$frack113$ frack113	ae45af68ab	Update proc_creation_win_hktl_jlaive_batch_execution.yml	2023-02-22 17:13:48 +01:00
$frack113$ frack113	f2c3954e74	Update proc_creation_win_hktl_crackmapexec_execution_patterns.yml	2023-02-22 17:13:02 +01:00
Nasreddine Bencherchali	a09a442136	fix: reduce size of titles in templates	2023-02-22 16:06:28 +01:00
Nasreddine Bencherchali	84d3282de3	fix: typo Co-authored-by: phantinuss <79651203+phantinuss@users.noreply.github.com>	2023-02-22 15:58:24 +01:00
Nasreddine Bencherchali	52c4ccb52f	Update .github/PULL_REQUEST_TEMPLATE.md Co-authored-by: phantinuss <79651203+phantinuss@users.noreply.github.com>	2023-02-22 15:55:56 +01:00
Nasreddine Bencherchali	268afe44c6	feat: add convention section to PR template	2023-02-22 15:08:27 +01:00
Nasreddine Bencherchali	9f66e34e15	feat: add new rule proposal template	2023-02-22 15:08:17 +01:00
Nasreddine Bencherchali	73293ce625	feat: update workflow	2023-02-22 14:49:09 +01:00
Nasreddine Bencherchali	bf82309e2d	Merge pull request #4068 from nasbench/pr-issue-templates Update bug_report.md	2023-02-22 14:38:10 +01:00
Nasreddine Bencherchali	319bc91867	Update bug_report.md	2023-02-22 14:21:46 +01:00
Nasreddine Bencherchali	7e9408bd3a	Merge pull request #4067 from nasbench/pr-issue-templates feat: add issues templates and update pr template	2023-02-22 13:43:33 +01:00
Nasreddine Bencherchali	69c28fedbc	fix: typo Co-authored-by: phantinuss <79651203+phantinuss@users.noreply.github.com>	2023-02-22 12:16:49 +01:00
Nasreddine Bencherchali	02d6d571cb	fix: apply suggestions from 2nd code review Co-authored-by: phantinuss <79651203+phantinuss@users.noreply.github.com>	2023-02-22 12:15:49 +01:00
Nasreddine Bencherchali	7f6b405c6b	fix: apply suggestions from code review Co-authored-by: phantinuss <79651203+phantinuss@users.noreply.github.com>	2023-02-22 11:39:06 +01:00
Nasreddine Bencherchali	2cd41ec2ad	Update PULL_REQUEST_TEMPLATE.md	2023-02-22 11:17:14 +01:00
Nasreddine Bencherchali	fc3c6ef4c7	fix: apply suggestions from code review Co-authored-by: frack113 <62423083+frack113@users.noreply.github.com>	2023-02-22 11:05:50 +01:00
Nasreddine Bencherchali	1363d0bea2	Update .github/PULL_REQUEST_TEMPLATE.md Co-authored-by: phantinuss <79651203+phantinuss@users.noreply.github.com>	2023-02-22 11:00:52 +01:00
phantinuss	db4fb9ff8e	Merge pull request #4056 from D4rkCiph3r/installer-child Create proc_creation_macos_susp_installer_child_process.yml	2023-02-22 09:04:58 +01:00
phantinuss	3fc4a344f2	Merge pull request #4062 from qasimqlf/patch-34 fix: One value of imagePath was wrong	2023-02-22 09:03:39 +01:00
$frack113$ frack113	1a14cd58db	Update proc_creation_win_msiexec_dll.yml	2023-02-22 06:34:02 +01:00
$frack113$ frack113	bc5ec4fc88	Update proc_creation_win_auditpol_susp_execution.yml	2023-02-22 06:26:30 +01:00
Nasreddine Bencherchali	a3f289a0ae	Update false_positive_report.yml	2023-02-21 23:34:56 +01:00
Nasreddine Bencherchali	0e26a2509a	Update false_positive_report.yml	2023-02-21 23:34:13 +01:00
Nasreddine Bencherchali	275748b671	fix: add missing space + rename file	2023-02-21 23:29:47 +01:00
Nasreddine Bencherchali	9921a724f7	Update PULL_REQUEST_TEMPLATE.md	2023-02-21 23:23:35 +01:00

... 2 3 4 5 6 ...

15089 Commits