4A616D6573 fdbdca003b Create win_powershell_web_request.yml ...

Broader rule for detecting web requests via various methods using Windows PowerShell, slightly crosses over the below rules but caters for different methods:

https://github.com/Neo23x0/sigma/blob/99b15edf8add183543ca5738ec93f87416c34bd9/rules/windows/process_creation/win_powershell_download.yml
https://github.com/Neo23x0/sigma/blob/0fa914139ca85966b49f0a8eda40a3f26608e86b/rules/windows/powershell/powershell_suspicious_download.yml

2019-10-24 11:57:37 +11:00

..

application

Fixes for Elasticsearch query correctness CI tests

2018-04-09 22:33:29 +02:00

apt

Fixed wrong backslash escaping of *

2019-10-07 22:14:44 +02:00

compliance

Added level

2019-08-05 19:51:22 +02:00

linux

rule: modified sudo vuln rule to be most generic

2019-10-20 14:02:10 +02:00

network

Merge pull request #315 from P4T12ICK/feature/net_dnc_c2_detection

2019-05-10 00:12:39 +02:00

proxy

rule: added date to crypto miner rule

2019-10-21 13:24:33 +02:00

web

Web Source Code Enumeration via .git

2019-06-08 22:40:28 -04:00

windows

Create win_powershell_web_request.yml

2019-10-24 11:57:37 +11:00