yugoslavskiy 1f1fd68331 Merge pull request #472 from feedb/oscd ...

add 11 new rules:

- rules/linux/auditd/lnx_auditd_web_rce.yml
- rules/windows/process_creation/process_creation_susp_bginfo.yml
- rules/windows/process_creation/process_creation_susp_cdb.yml
- rules/windows/process_creation/process_creation_susp_devtoolslauncher.yml
- rules/windows/process_creation/process_creation_susp_dnx.yml
- rules/windows/process_creation/process_creation_susp_dxcap.yml
- rules/windows/process_creation/process_creation_susp_msoffice.yml
- rules/windows/process_creation/process_creation_susp_odbcconf.yml
- rules/windows/process_creation/process_creation_susp_openwith.yml
- rules/windows/process_creation/process_creation_susp_psr_capture_screenshots.yml
- rules/windows/sysmon/sysmon_webshell_creation_detect.yml

2019-11-04 20:40:58 +03:00

..

application

Fixes for Elasticsearch query correctness CI tests

2018-04-09 22:33:29 +02:00

apt

Fixed wrong backslash escaping of *

2019-10-07 22:14:44 +02:00

compliance

Added level

2019-08-05 19:51:22 +02:00

linux

Merge pull request #472 from feedb/oscd

2019-11-04 20:40:58 +03:00

network

Merge pull request #315 from P4T12ICK/feature/net_dnc_c2_detection

2019-05-10 00:12:39 +02:00

proxy

rule: proxy ua unknown zero day implant

2019-09-24 18:24:48 +02:00

web

Web Source Code Enumeration via .git

2019-06-08 22:40:28 -04:00

windows

Merge pull request #472 from feedb/oscd

2019-11-04 20:40:58 +03:00