yugoslavskiy cc2f48b4a3 Merge pull request #1195 from tas-kmanager/mt-oscd-sigma547-48 ...

[OSCD] Always Install Elevated: unsupported

2020-10-16 22:24:34 +02:00

..

net_dns_high_subdomain_rate.yml

UUIDs + moved unsupported logic

2019-12-19 23:56:36 +01:00

net_dns_large_domain_name.yml

UUIDs + moved unsupported logic

2019-12-19 23:56:36 +01:00

net_possible_dns_rebinding.yml

UUIDs + moved unsupported logic

2019-12-19 23:56:36 +01:00

sysmon_always_install_elevated_parent_child_correlated.yml

[OSCD] Always Install Elevated

2020-10-15 21:59:37 -04:00

sysmon_process_reimaging.yml

All Rules use 'TargetFilename' instead of 'TargetFileName'.

2020-06-03 09:00:59 +02:00

win_dumping_ntdsdit_via_dcsync.yml

UUIDs + moved unsupported logic

2019-12-19 23:56:36 +01:00

win_dumping_ntdsdit_via_netsync.yml

UUIDs + moved unsupported logic

2019-12-19 23:56:36 +01:00

win_remote_schtask.yml

Added selection criteria + moved to Unsupported rule

2020-10-11 12:48:48 +10:30

win_remote_service.yml

Added conditional description + moved to unsupported-rules

2020-10-11 12:40:24 +10:30