 Jonhnathan
|
9f467f66e6
|
Update win_dns_exfiltration_tools_execution.yml
|
2020-10-15 17:49:18 -03:00 |
|
|
Jonhnathan
|
1f7f0956af
|
Update win_crime_fireball.yml
|
2020-10-15 17:48:37 -03:00 |
|
|
Jonhnathan
|
9d2ae693fc
|
Update win_control_panel_item.yml
|
2020-10-15 17:47:25 -03:00 |
|
|
Jonhnathan
|
1ea8adea31
|
Update win_cmdkey_recon.yml
|
2020-10-15 17:46:14 -03:00 |
|
|
Jonhnathan
|
f995f9fa1d
|
Update win_bypass_squiblytwo.yml
Changed selection a bit
|
2020-10-15 17:44:51 -03:00 |
|
|
Jonhnathan
|
63dc8ce837
|
Update win_attrib_hiding_files.yml
|
2020-10-15 17:41:44 -03:00 |
|
|
Jonhnathan
|
afc52e5da5
|
Update win_apt_zxshell.yml
|
2020-10-15 17:40:07 -03:00 |
|
|
Jonhnathan
|
ae95b5e998
|
Update win_apt_wocao.yml
|
2020-10-15 17:38:05 -03:00 |
|
|
uchakin
|
247a4101a7
|
Update sysmon_load_undocumented_autoelevated_com_interface.yml
|
2020-10-15 23:37:11 +03:00 |
|
|
Jonhnathan
|
5e3b9dc8ba
|
Update win_apt_unidentified_nov_18.yml
|
2020-10-15 17:36:20 -03:00 |
|
|
Jonhnathan
|
126fc47101
|
Update win_apt_tropictrooper.yml
|
2020-10-15 17:35:41 -03:00 |
|
|
Jonhnathan
|
3b78c473c8
|
Update win_apt_slingshot.yml
|
2020-10-15 17:35:05 -03:00 |
|
|
Jonhnathan
|
c547011499
|
Update win_apt_mustangpanda.yml
|
2020-10-15 17:33:44 -03:00 |
|
|
Jonhnathan
|
82fbfed2c2
|
Update win_apt_mustangpanda.yml
|
2020-10-15 17:33:02 -03:00 |
|
|
Jonhnathan
|
a06114d611
|
Update win_apt_lazarus_session_highjack.yml
|
2020-10-15 17:31:50 -03:00 |
|
|
Jonhnathan
|
01bf24b4fc
|
Update win_apt_judgement_panda_gtr19.yml
|
2020-10-15 17:31:09 -03:00 |
|
|
Jonhnathan
|
7f5c75ab3e
|
Update win_apt_hurricane_panda.yml
|
2020-10-15 17:30:34 -03:00 |
|
|
Jonhnathan
|
0926d76449
|
Update win_apt_equationgroup_dll_u_load.yml
|
2020-10-15 17:29:44 -03:00 |
|
|
Jonhnathan
|
8b593aa309
|
Update win_apt_empiremonkey.yml
|
2020-10-15 17:29:19 -03:00 |
|
|
Jonhnathan
|
00232982b2
|
Update win_apt_emissarypanda_sep19.yml
|
2020-10-15 17:28:33 -03:00 |
|
|
Jonhnathan
|
54f1a0c583
|
Update win_apt_elise.yml
|
2020-10-15 17:28:07 -03:00 |
|
|
Jonhnathan
|
d074ea110f
|
Update win_apt_dragonfly.yml
|
2020-10-15 17:27:42 -03:00 |
|
|
Jonhnathan
|
5eac9e5161
|
Update win_apt_cloudhopper.yml
|
2020-10-15 17:27:27 -03:00 |
|
|
Jonhnathan
|
2cdead8778
|
Update win_apt_chafer_mar18.yml
|
2020-10-15 17:26:58 -03:00 |
|
|
Jonhnathan
|
96ef4733c3
|
Update win_apt_bluemashroom.yml
|
2020-10-15 17:25:17 -03:00 |
|
|
Jonhnathan
|
ca31849be1
|
Update win_apt_bear_activity_gtr19.yml
|
2020-10-15 17:24:56 -03:00 |
|
|
Jonhnathan
|
10522becc3
|
Update win_apt_apt29_thinktanks.yml
|
2020-10-15 17:24:03 -03:00 |
|
|
Jonhnathan
|
bc1efd9843
|
Update sysmon_logon_scripts_userinitmprlogonscript_proc.yml
|
2020-10-15 17:23:44 -03:00 |
|
|
Jonhnathan
|
e0c538fdd4
|
Update sysmon_malware_verclsid_shellcode.yml
|
2020-10-15 17:19:06 -03:00 |
|
|
Jonhnathan
|
93faca413e
|
Update sysmon_lsass_memdump.yml
|
2020-10-15 17:17:57 -03:00 |
|
|
Jonhnathan
|
af5c88e5d5
|
Update sysmon_lazagne_cred_dump_lsass_access.yml
|
2020-10-15 17:17:39 -03:00 |
|
|
Jonhnathan
|
a554c3df23
|
Update sysmon_invoke_phantom.yml
|
2020-10-15 17:17:19 -03:00 |
|
|
Jonhnathan
|
1878aa5fbd
|
Update sysmon_cmstp_execution.yml
|
2020-10-15 17:16:50 -03:00 |
|
|
Jonhnathan
|
ce4e22750d
|
Update powershell_winlogon_helper_dll.yml
|
2020-10-15 17:15:23 -03:00 |
|
|
Jonhnathan
|
efe9c2d3d6
|
Update powershell_shellcode_b64.yml
|
2020-10-15 17:14:01 -03:00 |
|
|
Jonhnathan
|
013533fceb
|
Update powershell_prompt_credentials.yml
|
2020-10-15 17:13:16 -03:00 |
|
|
Jonhnathan
|
8cf2596068
|
Update powershell_malicious_keywords.yml
|
2020-10-15 17:12:08 -03:00 |
|
|
Jonhnathan
|
ec10d5a61f
|
Update powershell_malicious_commandlets.yml
|
2020-10-15 17:11:20 -03:00 |
|
|
Jonhnathan
|
4a3607d50b
|
Update powershell_exe_calling_ps.yml
|
2020-10-15 17:09:47 -03:00 |
|
|
Jonhnathan
|
09c43b7517
|
Update win_wmi_persistence.yml
|
2020-10-15 17:08:15 -03:00 |
|
|
Jonhnathan
|
b769728d0b
|
Update win_pcap_drivers.yml
|
2020-10-15 17:07:22 -03:00 |
|
|
Jonhnathan
|
fb851e1f41
|
Update sysmon_win_binary_susp_com.yml
|
2020-10-15 16:27:01 -03:00 |
|
|
Jonhnathan
|
5dc02f3a87
|
Update sysmon_win_binary_github_com.yml
|
2020-10-15 16:26:28 -03:00 |
|
|
Jonhnathan
|
554adb8562
|
Update sysmon_susp_rdp.yml
|
2020-10-15 16:25:58 -03:00 |
|
|
Jonhnathan
|
71785b91b5
|
Update sysmon_susp_prog_location_network_connection.yml
|
2020-10-15 16:25:25 -03:00 |
|
|
Jonhnathan
|
9c58db9271
|
Update sysmon_rundll32_net_connections.yml
|
2020-10-15 16:24:38 -03:00 |
|
|
Jonhnathan
|
bbf0210f70
|
Update sysmon_rdp_reverse_tunnel.yml
|
2020-10-15 16:23:17 -03:00 |
|
|
Jonhnathan
|
689bea2681
|
Update sysmon_powershell_network_connection.yml
|
2020-10-15 16:22:13 -03:00 |
|
|
Jonhnathan
|
e20027965f
|
Update sysmon_notepad_network_connection.yml
|
2020-10-15 16:21:38 -03:00 |
|
|
Jonhnathan
|
b479cbdb10
|
Update sysmon_malware_backconnect_ports.yml
|
2020-10-15 16:20:27 -03:00 |
|