Florian Roth 40e0e3bc99 Merge pull request #1193 from w0rk3r/oscd_rules_improvement ...

[OSCD] Windows Rules - Review for improvements on selections and logic

2020-12-31 12:10:15 +01:00

..

builtin

Update win_vul_cve_2020_0688.yml

2020-12-01 02:16:22 +01:00

deprecated

fix: buggy rule

2020-05-23 18:32:02 +02:00

driver_load

Update sysmon_susp_driver_load.yml

2020-11-19 22:56:34 -03:00

file_event

Remove additional backslash

2020-11-19 23:04:26 -03:00

image_load

Merge branch 'oscd' into oscd_rules_improvement

2020-11-28 14:52:31 -03:00

malware

Remove additional backslash

2020-11-19 23:15:38 -03:00

network_connection

Remove additional backslash

2020-11-20 00:53:13 -03:00

other

Update win_wmi_persistence.yml

2020-11-20 00:58:49 -03:00

powershell

Update powershell_shellcode_b64.yml

2020-12-01 02:24:35 +01:00

process_access

Update sysmon_in_memory_assembly_execution.yml

2020-11-28 10:55:18 +01:00

process_creation

Merge pull request #1193 from w0rk3r/oscd_rules_improvement

2020-12-31 12:10:15 +01:00

registry_event

Merge pull request #1193 from w0rk3r/oscd_rules_improvement

2020-12-31 12:10:15 +01:00

sysmon

Merge branch 'oscd' into oscd_rules_improvement

2020-11-28 14:52:31 -03:00