skaynum 9f10345076 Merge PR #4840 from @skaynum - Add new rules related to MySQL daemon and potential phishing attempts ...

new: Uncommon File Creation By Mysql Daemon Process
new: Potential Suspicious Browser Launch From Document Reader Process
 
---------

Co-authored-by: nasbench <8741929+nasbench@users.noreply.github.com>

2024-05-27 16:48:54 +02:00

..

file_access

Merge PR #4838 from @frack113 - Add Access To Windows Outlook Mail Files By Uncommon Application

2024-05-10 16:56:57 +02:00

file_change

Merge PR #4776 from @security-companion - Fix broken reference links

2024-03-21 02:38:12 +01:00

file_delete

Merge PR #4837 from @nasbench - fix fp reported in #4820

2024-04-26 15:39:44 +02:00

file_event

Merge PR #4840 from @skaynum - Add new rules related to MySQL daemon and potential phishing attempts

2024-05-27 16:48:54 +02:00

file_executable_detected

Merge PR #4718 from @qasimqlf - Update ATT&CK Mapping For Some Rules

2024-02-26 17:09:30 +01:00

file_rename

Merge PR #4564 from @nasbench - Fix Further FPs Found In Testing

2023-11-15 15:35:43 +01:00