 shashank-elastic
|
18fcd83683
|
Back-porting Version Trimming (#3704)
(cherry picked from commit 63e91c2f12)
|
2024-05-22 19:18:10 +00:00 |
|
|
Ruben Groenewoud
|
11168606d5
|
[Tuning] event.action and event.type change (#3495)
Co-authored-by: Terrance DeJesus <99630311+terrancedejesus@users.noreply.github.com>
(cherry picked from commit 9f8638a004)
|
2024-03-13 09:16:45 +00:00 |
|
|
Jonhnathan
|
9101dfc064
|
[Security Content] Small tweaks on the setup guides (#3308)
* [Security Content] Small tweaks on the setup guides
* Additional Fixes
* Avoid touching deprecated rules
(cherry picked from commit 458e67918a)
|
2024-03-11 12:15:22 +00:00 |
|
|
Ruben Groenewoud
|
dfaed78e75
|
[Tuning] Linux DR Tuning - Part 13 (#3465)
* [Tuning] Linux DR Tuning - Part 13
* updated date bump
* Update privilege_escalation_load_and_unload_of_kernel_via_kexec.toml
* Update privilege_escalation_netcon_via_sudo_binary.toml
* Update privilege_escalation_load_and_unload_of_kernel_via_kexec.toml
* Update rules/linux/privilege_escalation_shadow_file_read.toml
Co-authored-by: Jonhnathan <26856693+w0rk3r@users.noreply.github.com>
---------
Co-authored-by: Colson Wilhoit <48036388+DefSecSentinel@users.noreply.github.com>
Co-authored-by: Jonhnathan <26856693+w0rk3r@users.noreply.github.com>
(cherry picked from commit 60fda8d756)
|
2024-03-07 15:33:51 +00:00 |
|
|
Ruben Groenewoud
|
5601eadfc1
|
[New Rule] Network Connection via Sudo Binary (#3389)
* [New Rule] Network Connection via Sudo Binary
* description grammar fix
(cherry picked from commit 4301dacfb8)
|
2024-01-17 08:53:09 +00:00 |
|