security-tools/blue-team-tools
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
8b41e6bfdf80e29005ce5a6065caac3ff0b0cc64
blue-team-tools/rules/windows/builtin/system
T
History
M1ra1B0T c250aec299 Merge PR #5644 from @M1ra1B0T - Update Provider Name for Kerberos based rules 
update: Certificate Use With No Strong Mapping - Update Provider Name
update: KDC RC4-HMAC Downgrade CVE-2022-37966 - Update Provider Name
update: No Suitable Encryption Key Found For Generating Kerberos Ticket - Update Provider Name

---------

Co-authored-by: Nasreddine Bencherchali <nasreddineb@splunk.com>
2025-09-22 11:50:48 +02:00
..
application_popup
Merge PR #4950 from @nasbench - Comply With v2 Spec Changes
2024-08-12 12:02:50 +02:00
lsasrv
Merge PR #4950 from @nasbench - Comply With v2 Spec Changes
2024-08-12 12:02:50 +02:00
microsoft_windows_certification_authority
Merge PR #5389 from @david-syk - Update MITRE ATT&CK tags
2025-05-20 23:09:50 +02:00
microsoft_windows_dhcp_server
Merge PR #5418 from @frack113 - chore: 🧹 Update MITRE V17 DLL tags
2025-05-15 12:17:10 +02:00
microsoft_windows_directory_services_sam
Merge PR #4950 from @nasbench - Comply With v2 Spec Changes
2024-08-12 12:02:50 +02:00
microsoft_windows_distributed_com
Merge PR #5388 from @david-syk - Update MITRE ATT&CK tags
2025-05-20 23:09:23 +02:00
microsoft_windows_eventlog
Merge PR #5027 from @nasbench - Promote older rules status from experimental to test
2024-10-01 14:56:09 +02:00
microsoft_windows_kerberos_key_distribution_center
Merge PR #5644 from @M1ra1B0T - Update Provider Name for Kerberos based rules
2025-09-22 11:50:48 +02:00
microsoft_windows_kernel_general
Merge PR #4950 from @nasbench - Comply With v2 Spec Changes
2024-08-12 12:02:50 +02:00
microsoft_windows_ntfs
Merge PR #4950 from @nasbench - Comply With v2 Spec Changes
2024-08-12 12:02:50 +02:00
microsoft_windows_user_profiles_service
Merge PR #4950 from @nasbench - Comply With v2 Spec Changes
2024-08-12 12:02:50 +02:00
microsoft_windows_wer_systemerrorreporting
Merge PR #5417 from @jasonmull - Create Detection for Crash Dump Created By Operating System
2025-05-21 09:09:37 +02:00
microsoft_windows_windows_update_client
Merge PR #4950 from @nasbench - Comply With v2 Spec Changes
2024-08-12 12:02:50 +02:00
netlogon
Merge PR #4950 from @nasbench - Comply With v2 Spec Changes
2024-08-12 12:02:50 +02:00
ntfs
Merge PR #4950 from @nasbench - Comply With v2 Spec Changes
2024-08-12 12:02:50 +02:00
service_control_manager
Merge PR #5630 from @phantinuss - Revert "chore: improve windash order in modifiers"
2025-08-28 20:11:57 +02:00
termdd
Merge PR #5007 from @fukusuket - Fix unreachable GitHub URL references
2024-09-13 11:14:11 +02:00