blue-team-tools

Files

T

Alfie Champion 8d18ec7df0 Merge PR #5503 from @ajpc500 - include cmd.exe child process

update: FileFix - Suspicious Child Process from Browser File Upload Abuse - add cmd.exe child process
---------

Co-authored-by: phantinuss <79651203+phantinuss@users.noreply.github.com>

2025-07-01 10:21:27 +02:00

application

Merge PR #5452 from @david-syk - Update the MITRE ATT&CK tags for multiple rules

2025-06-04 14:39:25 +02:00

category

Merge PR #5477 from @phantinuss - chore: update MITRE tag t1219 to t1219.002

2025-06-13 10:00:52 +02:00

cloud

Merge PR #5452 from @david-syk - Update the MITRE ATT&CK tags for multiple rules

2025-06-04 14:39:25 +02:00

compliance

Merge PR #4950 from @nasbench - Comply With v2 Spec Changes

2024-08-12 12:02:50 +02:00

linux

Merge PR #5489 from @hashdr1ft - Suspicious Download and Execute Pattern via Curl/Wget

2025-06-25 12:48:57 +02:00

macos

Merge PR #5426 from @norbert791 - New rules: Remote Access Tool MeshAgent

2025-06-24 11:19:53 +02:00

network

Merge PR #5451 from @frack113 - chore: cleanup metadata

2025-06-04 13:33:36 +02:00

web

Merge PR #5452 from @david-syk - Update the MITRE ATT&CK tags for multiple rules

2025-06-04 14:39:25 +02:00

windows

Merge PR #5503 from @ajpc500 - include cmd.exe child process

2025-07-01 10:21:27 +02:00

README.md

chore: move more rules

2023-04-21 15:01:48 +02:00

README.md

TBD