security-tools/blue-team-tools
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
5bbe3dec9bb6dfb97190e04c3139ebb8be793985
blue-team-tools/rules
T
History
Cyb3rEng 5bbe3dec9b Completed changes to selection1 and selection2 
changes were completed to remove ( * ) and stay within rule creation guide:
    - Image|endswith:
      - '\winword.exe'
      - '\excel.exe'
      - '\powerpnt.exe'

 WMIcommand|contains: 'Win32_Process\:\:Create'
2021-09-08 21:14:58 -06:00
..
application
Fixed my git issue
2020-09-13 22:03:04 -06:00
apt
fixing test runner issues
2020-09-15 15:45:33 -06:00
cloud
Unset date update
2021-09-07 16:36:59 +01:00
compliance
Update global ID
2021-09-02 20:07:03 +02:00
generic
Fixed my git issue
2020-09-13 22:03:04 -06:00
linux
add missing tags
2021-09-07 18:16:46 +02:00
network
Various fixes
2021-09-07 23:38:07 +02:00
proxy
Merge pull request #1961 from SigmaHQ/rule-devel
2021-09-01 08:06:15 +02:00
web
Merge pull request #1946 from SigmaHQ/rule-devel
2021-08-30 17:39:37 +02:00
windows
Completed changes to selection1 and selection2
2021-09-08 21:14:58 -06:00