This website requires JavaScript.
Explore
Help
Sign In
security-tools
/
blue-team-tools
Watch
1
Star
0
Fork
0
You've already forked blue-team-tools
Code
Issues
Pull Requests
Actions
Packages
Projects
Releases
Wiki
Activity
Files
ef0cd4c11065733e7e1cbf462f48fd3875191356
blue-team-tools
/
rules
/
windows
T
History
Dominik Schaudel
cea48d9010
Detects successful logon with logon type 9 (NewCredentials) which matches the Overpass the Hash behavior of e.g Mimikatz's sekurlsa::pth module
2018-02-12 21:57:22 +01:00
..
builtin
Detects successful logon with logon type 9 (NewCredentials) which matches the Overpass the Hash behavior of e.g Mimikatz's sekurlsa::pth module
2018-02-12 21:57:22 +01:00
malware
Cleaning up empty list items
2018-01-28 02:36:39 +03:00
other
Change All "str" references to be "list"to mach schema update
2018-01-28 02:24:16 +03:00
powershell
Cleaning up empty list items
2018-01-28 02:36:39 +03:00
sysmon
Rule: QuarksPwDump temp dump file
2018-02-10 15:25:36 +01:00
Dominik Schaudel