security-tools/blue-team-tools
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
f7c8ded6a7187d51088a5a324f099a2d28abbfee
blue-team-tools/rules
T
History
Bailey Bercik f7c8ded6a7 Create azure_app_highly_privileged_permissions.yml 
Sigma rule for apps with highly privileged permissions in Azure
2022-06-30 14:34:27 -07:00
..
application
refactor condition
2022-06-03 15:39:41 +02:00
apt
remove invalid tag
2022-01-19 18:23:30 +01:00
cloud
Create azure_app_highly_privileged_permissions.yml
2022-06-30 14:34:27 -07:00
compliance
chore: test rules: reactivate single value list check
2022-05-10 17:13:04 +02:00
linux
Create proc_creation_lnx_susp_chmod_directories.yml
2022-06-03 19:24:02 -04:00
macos
refactor condition
2022-06-03 15:35:24 +02:00
network
refactor condition
2022-06-03 15:35:24 +02:00
proxy
Renamed suspicious in filenames to susp
2022-05-19 09:37:04 +02:00
web
refactor: new expr from honeypot, increased level
2022-06-06 17:32:08 +02:00
windows
Filter valid ext
2022-06-06 21:51:15 +02:00