security-tools/blue-team-tools
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
5c465129bd74eca5cd348807007dd0304dbf68ec
blue-team-tools/rules/windows
T
History
Thomas Patzke 68cb5e8921 Merge pull request #45 from secman-pl/patch-1 
Update sysmon_susp_regsvr32_anomalies to detect wscript child process
2017-09-10 22:52:37 +02:00
..
builtin
Service install - net user persistence
2017-08-16 15:16:57 +02:00
malware
Updated Petya rule
2017-06-28 12:52:58 +02:00
other
WMI persistence modified
2017-08-24 18:27:40 +02:00
powershell
Fixed parse errors
2017-08-02 22:49:15 +02:00
sysmon
Merge pull request #45 from secman-pl/patch-1
2017-09-10 22:52:37 +02:00