security-tools/sigma-rules
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

[Deprecated Rule] Potential Privilege Escalation via Local Kerberos R… (#2209)

Browse Source 
* [Deprecated Rule] Potential Privilege Escalation via Local Kerberos Relay over LDAP

FPs in certain cases with no room for tuning.

* Update privilege_escalation_krbrelayup_suspicious_logon.toml

Co-authored-by: Colson Wilhoit <48036388+DefSecSentinel@users.noreply.github.com>
This commit is contained in:
Samirbous
2022-08-01 18:28:26 +02:00
committed by GitHub
parent a22fef8723
commit 8d34416049
1 changed files with 3 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files
rules/windows/privilege_escalation_krbrelayup_suspicious_logon.toml → rules/_deprecated/privilege_escalation_krbrelayup_suspicious_logon.toml
+3 -2
View File
@@ -1,7 +1,8 @@
[metadata]
creation_date = "2022/04/26"
maturity = "production"
updated_date = "2022/04/26"
deprecation_date = "2022/08/01"
maturity = "deprecated"
updated_date = "2022/08/01"
[rule]
author = ["Elastic"]