blue-team-tools/rules-deprecated/windows at 4e1423ba74a524b644143d95d15664abff950dc7 - blue-team-tools - GreySec Git

security-tools/blue-team-tools

Files

T

History

phantinuss 81fd9c80b9 chore: move deprecated rule instead of deleting

2022-05-30 08:43:40 +02:00

..

image_load_susp_winword_wmidll_load.yml

move deprecated rules

2022-05-14 09:42:32 +02:00

le_event_win_hktl_createminidump.yml

move deprecated rules

2022-05-14 09:42:32 +02:00

posh_ps_access_to_chrome_login_data.yml

move deprecated rules

2022-05-14 09:42:32 +02:00

powershell_suspicious_download.yml

…

powershell_suspicious_invocation_generic.yml

…

powershell_suspicious_invocation_specific.yml

…

powershell_syncappvpublishingserver_exe.yml

…

proc_creation_win_lolbas_execution_of_wuauclt.yml

chore: move deprecated rule instead of deleting

2022-05-30 08:43:40 +02:00

process_creation_syncappvpublishingserver_exe.yml

…

registry_event_asep_reg_keys_modification.yml

move deprecated rules

2022-05-14 09:42:32 +02:00

sysmon_mimikatz_detection_lsass.yml

…

sysmon_rclone_execution.yml

…

win_lateral_movement_condrv.yml

move deprecated rules

2022-05-14 09:42:32 +02:00

win_susp_esentutl_activity.yml

…

win_susp_rclone_exec.yml

…

win_susp_vssadmin_ntds_activity.yml

…