blue-team-tools

Files

T

yugoslavskiy 738bb4af90 Merge pull request #1041 from ryanplasma/rplas-SIGMA-547-page-13

[OSCD] Add Stored Credentials in Fake Files rule

2021-01-05 22:57:36 +03:00

net_dns_high_subdomain_rate.yml

2019-12-19 23:56:36 +01:00

net_dns_large_domain_name.yml

2019-12-19 23:56:36 +01:00

net_possible_dns_rebinding.yml

2019-12-19 23:56:36 +01:00

2020-10-15 21:59:37 -04:00

sysmon_process_reimaging.yml

2020-06-03 09:00:59 +02:00

2020-10-17 09:36:25 -04:00

win_dumping_ntdsdit_via_dcsync.yml

2019-12-19 23:56:36 +01:00

win_dumping_ntdsdit_via_netsync.yml

2019-12-19 23:56:36 +01:00

win_remote_schtask.yml

2020-10-11 12:48:48 +10:30

win_remote_service.yml

2020-10-11 12:40:24 +10:30