 shashank-elastic
|
60475f6aa0
|
Move Setup information into setup filed (#3206)
(cherry picked from commit 7254c582c5)
|
2023-10-23 14:04:26 +00:00 |
|
|
shashank-elastic
|
118f11daf6
|
Setup information for Linux Rules - Set7 (#3190)
(cherry picked from commit 276c0f9cd3)
|
2023-10-17 14:21:37 +00:00 |
|
|
Jonhnathan
|
063386829c
|
[Security Content] Include "Data Source: Elastic Defend" tag (#3002)
* win folder
* Other folders
* Update test_all_rules.py
* .
* updated missing elastic defend tags
---------
Co-authored-by: terrancedejesus <terrance.dejesus@elastic.co>
(cherry picked from commit 4233fef238)
|
2023-09-05 18:28:40 +00:00 |
|
|
Ruben Groenewoud
|
ef49709c7d
|
[New Rules] Linux Wildcard Injection (#2973)
* [New Rules] Linux Wildcard Injection
* Update rules/linux/privilege_escalation_chown_chmod_unauthorized_file_read.toml
Co-authored-by: Justin Ibarra <16747370+brokensound77@users.noreply.github.com>
* Update rules/linux/privilege_escalation_potential_wildcard_shell_spawn.toml
Co-authored-by: Justin Ibarra <16747370+brokensound77@users.noreply.github.com>
* Update rules/linux/privilege_escalation_potential_wildcard_shell_spawn.toml
* Update rules/linux/privilege_escalation_potential_wildcard_shell_spawn.toml
Co-authored-by: Justin Ibarra <16747370+brokensound77@users.noreply.github.com>
* Update rules/linux/privilege_escalation_potential_wildcard_shell_spawn.toml
---------
Co-authored-by: Justin Ibarra <16747370+brokensound77@users.noreply.github.com>
Co-authored-by: Colson Wilhoit <48036388+DefSecSentinel@users.noreply.github.com>
|
2023-08-04 16:32:34 +02:00 |
|