Michael Haag 1317fe9df2 Modifications ...

+ Added Sysmon detection of Office binaries spawning Windows shells
+ Additional web servers added for webshell detection

2017-03-04 14:22:44 -08:00

..

linux

Rule: ClamAV

2017-03-01 10:00:17 +01:00

network

Removed 'last' keyword from 'timeframe' fields

2017-02-28 17:52:40 +01:00

web

Rule: Linux: buffer overflows

2017-03-01 08:38:33 +01:00

windows

Modifications

2017-03-04 14:22:44 -08:00