This website requires JavaScript.
Explore
Help
Sign In
security-tools
/
blue-team-tools
Watch
1
Star
0
Fork
0
You've already forked blue-team-tools
Code
Issues
Pull Requests
Actions
Packages
Projects
Releases
Wiki
Activity
Files
f2057f0c7771ed2f63fbd3b9e273cb42b69721fe
blue-team-tools
/
rules
/
windows
T
History
Florian Roth
1001afb038
Rule: CVE-2015-1641
2018-02-22 16:59:40 +01:00
..
builtin
Detects successful logon with logon type 9 (NewCredentials) which matches the Overpass the Hash behavior of e.g Mimikatz's sekurlsa::pth module
2018-02-12 21:57:22 +01:00
malware
Cleaning up empty list items
2018-01-28 02:36:39 +03:00
other
Change All "str" references to be "list"to mach schema update
2018-01-28 02:24:16 +03:00
powershell
Cleaning up empty list items
2018-01-28 02:36:39 +03:00
sysmon
Rule: CVE-2015-1641
2018-02-22 16:59:40 +01:00
Florian Roth