security-tools/blue-team-tools
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
87df79302d58f605104841c477254f534a4de28b
blue-team-tools/rules
T
History
webboy2015 87df79302d Update win_lolbas_execution_of_nltest.exe 
Changed condition as follows:
   detection:
       selection:
          EventID: 4689
          ProcessName|endswith: nltest.exe
          Status: "0x0"
     condition: selection

Included  field - SubjectDomainName
2021-10-01 12:55:37 -07:00
..
application
apt
cloud
Update aws_attached_malicious_lambda_layer.yml
2021-09-27 23:41:19 -05:00
compliance
fix error
2021-09-21 20:16:26 +02:00
generic
linux
Merge pull request #2079 from zakibro/master
2021-09-27 08:34:30 +02:00
network
Merge pull request #2063 from frack113/last_global
2021-09-23 13:54:57 +02:00
proxy
Merge pull request #1961 from SigmaHQ/rule-devel
2021-09-01 08:06:15 +02:00
web
docs: new ID
2021-09-25 11:37:39 +02:00
windows
Update win_lolbas_execution_of_nltest.exe
2021-10-01 12:55:37 -07:00