security-tools/blue-team-tools
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
1,078 Commits 1 Branch 57 Tags
daddec92170bdfb592c5bbbb4e6eb370af5bce21
Commit Graph

6 Commits

Author SHA1 Message Date
Florian Roth 5d714ab44e Rule: Added malware UA 2018-09-08 10:22:26 +02:00
SherifEldeeb 112a0939d7 Change "reference" to "references" to match new schema 2018-01-28 02:12:19 +03:00
Thomas Patzke 986c9ff9b7 Added field names to first rules 2017-09-12 23:54:04 +02:00
Thomas Patzke 5c465129bd Fixed rules 
* Replaced unspecified logsource attribute 'type' with 'category'
* Usage of service 'auth' for linux logs
 2017-09-11 00:35:52 +02:00
Florian Roth 433293ea40 'ruler' User Agent 
https://www.crowdstrike.com/blog/using-outlook-forms-lateral-movement-persistence/
 2017-07-22 09:24:45 -06:00
Florian Roth 4bff14acd1 User-Agent rules split up in separate files 2017-07-08 09:59:05 -06:00