 Ruben Groenewoud
|
26747aa8a4
|
[Security Content] Add Investigation Guides to Linux Persistence Rules - 2 (#3350)
* [Security Content] Add IGs to Persistence - 2
* [Security Content] Add IGs to Persistence - 2
* fixes
* fix
* added ig note
|
2024-01-20 19:36:32 +01:00 |
|
|
Ruben Groenewoud
|
38862b89e9
|
[Tuning] Small Linux DR Tuning (#3287)
|
2023-12-07 12:45:24 +01:00 |
|
|
shashank-elastic
|
d52546eee5
|
Enhance Setup Guide information (#3256)
|
2023-11-03 19:05:29 +05:30 |
|
|
shashank-elastic
|
5c5d1b214b
|
Setup information for Linux Rules - Set8 (#3200)
|
2023-10-30 20:58:40 +05:30 |
|
|
Ruben Groenewoud
|
6ea11cd9ad
|
[New Rules] cap_setuid/cap_setgid privesc (#3075)
* [New Rules] cap_setuid/cap_setgid privesc
* Update persistence_setuid_setgid_capability_set.toml
* Update rules/linux/privilege_escalation_suspicious_cap_setuid_python_execution.toml
Co-authored-by: Jonhnathan <26856693+w0rk3r@users.noreply.github.com>
* Update privilege_escalation_suspicious_cap_setuid_python_execution.toml
* Update rules/linux/privilege_escalation_suspicious_cap_setuid_python_execution.toml
* Update privilege_escalation_suspicious_cap_setuid_python_execution.toml
---------
Co-authored-by: Jonhnathan <26856693+w0rk3r@users.noreply.github.com>
|
2023-10-18 16:24:01 +02:00 |
|