blue-team-tools/rules at 7618cf4672c106a4e78550cb460a38bfb3d91e1b - blue-team-tools - GreySec Git

security-tools/blue-team-tools

Files

T

History

Roberto Rodriguez 7618cf4672 Rule to detect the use of the SCX RunAsProvider Invoke_ExecuteShellCommand to execute any UNIX/Linux command using the /bin/sh shell

2021-09-17 04:23:11 -04:00

..

Fixed my git issue

2020-09-13 22:03:04 -06:00

fixing test runner issues

2020-09-15 15:45:33 -06:00

Merge pull request #2023 from austinsonger/okta

2021-09-13 14:34:52 +02:00

Update global ID

2021-09-02 20:07:03 +02:00

Fixed my git issue

2020-09-13 22:03:04 -06:00

Rule to detect the use of the SCX RunAsProvider Invoke_ExecuteShellCommand to execute any UNIX/Linux command using the /bin/sh shell

2021-09-17 04:23:11 -04:00

Merge pull request #2012 from frack113/upgrade_test

2021-09-11 15:29:19 +02:00

Merge pull request #1961 from SigmaHQ/rule-devel

2021-09-01 08:06:15 +02:00

Update web_cve_2021_40539_manageengine_adselfservice_exploit.yml

2021-09-17 09:53:12 +07:00

Merge pull request #2036 from frack113/sysmon_registry_persistence_search_order

2021-09-17 06:36:46 +02:00