Feathers 60ac757cf2 Create net_connection_win_dead_drop_resolvers.yml ...

This detection is an attempt to spot dead drop resolvers for ones which don't have packet inspection. Most often dead drop resolvers are initiated from malware itself which makes it easy to detect since most often users access social media websites from internet browsers.

2022-08-17 16:09:11 +02:00

..

application

Update Ref+Selection 3

2022-07-11 18:12:51 +01:00

apt

remove invalid tag

2022-01-19 18:23:30 +01:00

cloud

Fixes spelling mistake of success (missing a c)

2022-08-16 19:27:06 +00:00

compliance

Update selections and indentation

2022-07-07 20:13:45 +01:00

linux

Merge pull request #3356 from Zandmann/patch-3

2022-08-13 10:34:38 +02:00

macos

Fix review

2022-07-11 20:27:42 +01:00

network

refactor: remove rules for false alarm

2022-08-04 20:05:16 +02:00

proxy

proxy_ua_bitsadmin_susp_tld.yml fp filter

2022-08-16 16:14:08 +02:00

web

Update

2022-08-15 00:22:08 +01:00

windows

Create net_connection_win_dead_drop_resolvers.yml

2022-08-17 16:09:11 +02:00