security-tools/blue-team-tools
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
d0b2bd9875d61d3c50d256ba40a64203ca15e677
blue-team-tools/rules/windows
T
History
Thomas Patzke d0b2bd9875 Multiple rules per file 
* New wrapper class SigmaCollectionParser parses all YAML documents
  contained in file and handles multiple SigmaParser instantiation.
* Exemplary extended one security/4688 rule to security/4688 + sysmon/1
2017-10-31 23:06:18 +01:00
..
builtin
Multiple rules per file
2017-10-31 23:06:18 +01:00
malware
Added field names to first rules
2017-09-12 23:54:04 +02:00
other
Added field names to first rules
2017-09-12 23:54:04 +02:00
powershell
Fixed the fixed PSAttack rule
2017-10-19 09:52:40 +02:00
sysmon
Dropped within keyword
2017-10-30 00:25:56 +01:00