security-tools/blue-team-tools
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
ffcc2dc04926b47a0bc4e772101cfbc6cac700a7
blue-team-tools/rules
T
History
Thomas Patzke 5f1e933b93 Merge pull request #588 from timbMSFT/timb 
Sigma queries - defense evasion by tampering with svchost; recently released GALLIUM activity group IOCs
2020-01-20 10:06:06 +01:00
..
application
Added UUIDs to rules
2019-11-12 23:12:27 +01:00
apt
fixup - unique rule id; use process_creation instead of sysmon EventID:1
2020-01-02 20:05:28 +00:00
compliance
Added UUIDs to rules
2019-11-12 23:12:27 +01:00
linux
Added UUIDs to rules
2019-11-12 23:12:27 +01:00
network
Added UUIDs to rules
2019-11-12 23:12:27 +01:00
proxy
Merge pull request #561 from Neo23x0/devel
2019-12-12 13:34:58 +01:00
web
complete_cve_2019-19781
2020-01-15 21:59:33 +01:00
windows
Merge pull request #588 from timbMSFT/timb
2020-01-20 10:06:06 +01:00