sigma-rules

security-tools/sigma-rules

Fork 0

Commit Graph

Author SHA1 Message Date

Jonhnathan 8b74ba7136 [Rule Tuning] Remove host.os.type Unit Test Exception (#5317 ) 2025-11-14 08:46:24 -08:00

Author	SHA1	Message	Date
Jonhnathan	8b74ba7136	[Rule Tuning] Remove `host.os.type` Unit Test Exception (#5317 )	2025-11-14 08:46:24 -08:00
Samirbous	b4e9b48ad7	[New] Suspicious SeIncreaseBasePriorityPrivilege Use (#5150 ) * [New] Suspicious SeIncreaseBasePriorityPrivilege Us https://github.com/Octoberfest7/ThreadCPUAssignment_POC/tree/main https://x.com/sixtyvividtails/status/1970721197617717483 * Update rules/windows/privilege_escalation_thread_cpu_priority_hijack.toml Co-authored-by: Jonhnathan <26856693+w0rk3r@users.noreply.github.com> * Update rules/windows/privilege_escalation_thread_cpu_priority_hijack.toml Co-authored-by: Jonhnathan <26856693+w0rk3r@users.noreply.github.com> * Update rules/windows/privilege_escalation_thread_cpu_priority_hijack.toml Co-authored-by: Jonhnathan <26856693+w0rk3r@users.noreply.github.com> --------- Co-authored-by: Jonhnathan <26856693+w0rk3r@users.noreply.github.com>	2025-10-03 16:52:32 +01:00

Samirbous

b4e9b48ad7

[New] Suspicious SeIncreaseBasePriorityPrivilege Use (#5150 )

* [New] Suspicious SeIncreaseBasePriorityPrivilege Us

https://github.com/Octoberfest7/ThreadCPUAssignment_POC/tree/main

https://x.com/sixtyvividtails/status/1970721197617717483

* Update rules/windows/privilege_escalation_thread_cpu_priority_hijack.toml

Co-authored-by: Jonhnathan <26856693+w0rk3r@users.noreply.github.com>

* Update rules/windows/privilege_escalation_thread_cpu_priority_hijack.toml

Co-authored-by: Jonhnathan <26856693+w0rk3r@users.noreply.github.com>

* Update rules/windows/privilege_escalation_thread_cpu_priority_hijack.toml

Co-authored-by: Jonhnathan <26856693+w0rk3r@users.noreply.github.com>

---------

Co-authored-by: Jonhnathan <26856693+w0rk3r@users.noreply.github.com>

2025-10-03 16:52:32 +01:00

2 Commits