sigma-rules

security-tools/sigma-rules

Fork 0

Commit Graph

Author	SHA1	Message	Date
Samirbous	acdfe5ddab	[New Rule] Process Creation via Secondary Logon (#2282 ) * [New Rule] Process Creation via Secondary Logon https://github.com/elastic/detection-rules/issues/2164 Create process using alternate creds (i.g. runas) : * Update privilege_escalation_create_process_as_different_user.toml * Update privilege_escalation_create_process_as_different_user.toml Co-authored-by: Colson Wilhoit <48036388+DefSecSentinel@users.noreply.github.com>	2022-09-19 13:04:08 -05:00

Author

SHA1

Message

Date

Samirbous

acdfe5ddab

[New Rule] Process Creation via Secondary Logon (#2282 )

* [New Rule] Process Creation via Secondary Logon

https://github.com/elastic/detection-rules/issues/2164

Create process using alternate creds (i.g. runas) :

* Update privilege_escalation_create_process_as_different_user.toml

* Update privilege_escalation_create_process_as_different_user.toml

Co-authored-by: Colson Wilhoit <48036388+DefSecSentinel@users.noreply.github.com>

2022-09-19 13:04:08 -05:00

1 Commits