sigma-rules

security-tools/sigma-rules

Fork 0

Commit Graph

Author	SHA1	Message	Date
Jonhnathan	8d25a7ddce	[Rule Tuning] Update MDE tags to "Microsoft Defender XDR" (#5927 ) * [Rule Tuning] Fix MS Defender XDR tag * bump upodated_date	2026-04-20 18:38:09 -03:00
Mika Ayenson, PhD	8993d1450b	[Rule Tuning] Add Supplemental Mitre Mappings (#5876 ) --------- Co-authored-by: Ruben Groenewoud <78494512+Aegrah@users.noreply.github.com> Co-authored-by: Isai <59296946+imays11@users.noreply.github.com> Co-authored-by: terrancedejesus <terrance.dejesus@elastic.co> Co-authored-by: Jonhnathan <26856693+w0rk3r@users.noreply.github.com> Co-authored-by: eric-forte-elastic <eric.forte@elastic.co>	2026-04-01 09:12:42 -05:00
Samirbous	02adbfb2b0	[New / Tuning] LeakNet cov (#5850 ) * [Tuning] LeakNet cov https://reliaquest.com/blog/threat-spotlight-casting-a-wider-net-clickfix-deno-and-leaknets-scaling-threat * Update execution_susp_javascript_via_deno.toml * Update execution_susp_javascript_via_deno.toml * Apply suggestion from @w0rk3r Co-authored-by: Jonhnathan <26856693+w0rk3r@users.noreply.github.com> * Apply suggestion from @w0rk3r Co-authored-by: Jonhnathan <26856693+w0rk3r@users.noreply.github.com> * Apply suggestion from @w0rk3r Co-authored-by: Jonhnathan <26856693+w0rk3r@users.noreply.github.com> * Update execution_susp_javascript_via_deno.toml --------- Co-authored-by: Jonhnathan <26856693+w0rk3r@users.noreply.github.com>	2026-03-20 21:11:26 +00:00

Author

SHA1

Message

Date

Jonhnathan

8d25a7ddce

[Rule Tuning] Update MDE tags to "Microsoft Defender XDR" (#5927 )

* [Rule Tuning] Fix MS Defender XDR tag

* bump upodated_date

2026-04-20 18:38:09 -03:00

Mika Ayenson, PhD

8993d1450b

[Rule Tuning] Add Supplemental Mitre Mappings (#5876 )

---------

Co-authored-by: Ruben Groenewoud <78494512+Aegrah@users.noreply.github.com>
Co-authored-by: Isai <59296946+imays11@users.noreply.github.com>
Co-authored-by: terrancedejesus <terrance.dejesus@elastic.co>
Co-authored-by: Jonhnathan <26856693+w0rk3r@users.noreply.github.com>
Co-authored-by: eric-forte-elastic <eric.forte@elastic.co>

2026-04-01 09:12:42 -05:00

Samirbous

02adbfb2b0

[New / Tuning] LeakNet cov (#5850 )

* [Tuning] LeakNet cov

https://reliaquest.com/blog/threat-spotlight-casting-a-wider-net-clickfix-deno-and-leaknets-scaling-threat

* Update execution_susp_javascript_via_deno.toml

* Update execution_susp_javascript_via_deno.toml

* Apply suggestion from @w0rk3r

Co-authored-by: Jonhnathan <26856693+w0rk3r@users.noreply.github.com>

* Apply suggestion from @w0rk3r

Co-authored-by: Jonhnathan <26856693+w0rk3r@users.noreply.github.com>

* Apply suggestion from @w0rk3r

Co-authored-by: Jonhnathan <26856693+w0rk3r@users.noreply.github.com>

* Update execution_susp_javascript_via_deno.toml

---------

Co-authored-by: Jonhnathan <26856693+w0rk3r@users.noreply.github.com>

2026-03-20 21:11:26 +00:00

3 Commits