security-tools/blue-team-tools
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
8f8ce06ffb8d8fd3433dbffebccd33ec9d23e51a
blue-team-tools/rules-placeholder/cloud/azure
T
History
Mostafa Moradian 73910a282f Merge PR #4630 from @mostafa - Add missing expand modifier to placeholder rules 
update: Account Created And Deleted By Non Approved Users - Add missing `expand` modifier
update: Authentication Occuring Outside Normal Business Hours - Add missing `expand` modifier
update: Privilege Role Elevation Not Occuring on SAW or PAW - Add missing `expand` modifier
update: Privilege Role Sign-In Outside Expected Controls - Add missing `expand` modifier
update: Privilege Role Sign-In Outside Of Normal Hours - Add missing `expand` modifier
update: Potential Zerologon (CVE-2020-1472) Exploitation - Add missing `expand` modifier
update: Potential Pass the Hash Activity - Add missing `expand` modifier
update: Interactive Logon to Server Systems - Add missing `expand` modifier
update: Remote Registry Management Using Reg Utility - Add missing `expand` modifier
2023-12-18 11:14:28 +01:00
..
azure_ad_account_created_deleted_nonapproved_user.yml
Merge PR #4630 from @mostafa - Add missing expand modifier to placeholder rules
2023-12-18 11:14:28 +01:00
azure_ad_account_signin_outside_hours.yml
Merge PR #4630 from @mostafa - Add missing expand modifier to placeholder rules
2023-12-18 11:14:28 +01:00
azure_privileged_account_no_saw_paw.yml
Merge PR #4630 from @mostafa - Add missing expand modifier to placeholder rules
2023-12-18 11:14:28 +01:00
azure_privileged_account_sigin_expected_controls.yml
Merge PR #4630 from @mostafa - Add missing expand modifier to placeholder rules
2023-12-18 11:14:28 +01:00
azure_privileged_account_signin_outside_hours.yml
Merge PR #4630 from @mostafa - Add missing expand modifier to placeholder rules
2023-12-18 11:14:28 +01:00