gs3cl 92b72ffdc1 Update win_nltest_query.yml ...

modification based on new reports

1.https://docs.microsoft.com/en-us/previous-versions/windows/it-pro/windows-server-2012-r2-and-2012/cc731935(v=ws.11) 
-> for (selection_recon1 and seletion_recon2")
2.https://book.hacktricks.xyz/windows/basic-cmd-for-pentesters -> nltest example
3.MITRE reference just for reference to MITRE to gain more insights
4.https://thedfirreport.com/2021/08/16/trickbot-leads-up-to-fake-1password-installation/ 
-> new Report about Trickbot with reference and usage of "nltest" therefore I included the option in this rule

2021-08-18 20:45:18 +00:00

..

application

Fixed my git issue

2020-09-13 22:03:04 -06:00

apt

fixing test runner issues

2020-09-15 15:45:33 -06:00

cloud

Merge pull request #1864 from austinsonger/azure_key_vault_modified_or_deleted.yml

2021-08-18 18:30:20 +02:00

compliance

Merging upstream updates

2021-07-01 12:18:30 +05:45

generic

Fixed my git issue

2020-09-13 22:03:04 -06:00

linux

Merge pull request #1844 from frack113/cleanup

2021-08-16 17:17:25 +02:00

network

test author for Detection Rule License 1.1

2021-08-14 19:16:36 +02:00

proxy

Split PR 1802 fix net rules

2021-08-09 17:23:15 +02:00

web

Merge pull request #1825 from frack113/iis_ProxyLogon

2021-08-18 09:54:15 +02:00

windows

Update win_nltest_query.yml

2021-08-18 20:45:18 +00:00