security-tools/blue-team-tools
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
f54972108fb470f53dd2beb95f50caf0288f4e59
blue-team-tools/rules
T
History
Swachchhanda Shrawan Poudel f54972108f Merge PR #5538 from @swachchhanda000 - feat: potential spear-phishing through svg files 
new: Suspicious File Created in Outlook Temporary Directory
remove: .RDP File Created by Outlook Process - deprecate in favour of fabb0e80-030c-4e3e-a104-d09676991ac3
update: Suspicious Double Extension Files - add .svg extension
---------

Co-authored-by: Nasreddine Bencherchali <nasreddineb@splunk.com>
Co-authored-by: frack113 <62423083+frack113@users.noreply.github.com>
2025-07-29 10:30:55 +02:00
..
application
Merge PR #5452 from @david-syk - Update the MITRE ATT&CK tags for multiple rules
2025-06-04 14:39:25 +02:00
category
Merge PR #5477 from @phantinuss - chore: update MITRE tag t1219 to t1219.002
2025-06-13 10:00:52 +02:00
cloud
Merge PR #5530 from @peterydzynski - fix: use correct dash type and add spaces
2025-07-18 10:51:11 +02:00
compliance
Merge PR #4950 from @nasbench - Comply With v2 Spec Changes
2024-08-12 12:02:50 +02:00
linux
Merge PR #5506 from @nasbench -promote older rules status from experimental to test
2025-07-01 10:34:38 +02:00
macos
Merge PR #5506 from @nasbench -promote older rules status from experimental to test
2025-07-01 10:34:38 +02:00
network
Merge PR #5492 from @swachchhanda000 - Kerberos Coercion Via DNS SPN Spoofing
2025-07-08 11:35:45 +02:00
web
Merge PR #5452 from @david-syk - Update the MITRE ATT&CK tags for multiple rules
2025-06-04 14:39:25 +02:00
windows
Merge PR #5538 from @swachchhanda000 - feat: potential spear-phishing through svg files
2025-07-29 10:30:55 +02:00
README.md
chore: move more rules
2023-04-21 15:01:48 +02:00

README.md

TBD

Reference in New Issue View Git Blame Copy Permalink