sigma-rules

Author SHA1 Message Date

Author	SHA1	Message	Date
Ruben Groenewoud	3183bfea23	[Tuning] Event.dataset removal & Tag Addition (#3451 ) * [Tuning] Removed event.dataset and added tag * [Tuning] Removed event.dataset and added tag * fixed typo --------- Co-authored-by: Terrance DeJesus <99630311+terrancedejesus@users.noreply.github.com> Removed changes from: - rules/linux/privilege_escalation_suspicious_chown_fowner_elevation.toml (selectively cherry picked from commit `3484cac7eb`)	2024-02-20 14:23:14 +00:00
Ruben Groenewoud	13c6fbbcea	[New BBR] Kernel Driver Load (#3236 ) * [New BBR] Kernel Driver Load * added event.dataset to the query --------- Co-authored-by: Colson Wilhoit <48036388+DefSecSentinel@users.noreply.github.com> (cherry picked from commit `967f6a4c89`)	2023-11-02 08:38:32 +00:00

Ruben Groenewoud

3183bfea23

[Tuning] Event.dataset removal & Tag Addition (#3451 )

* [Tuning] Removed event.dataset and added tag

* [Tuning] Removed event.dataset and added tag

* fixed typo

---------

Co-authored-by: Terrance DeJesus <99630311+terrancedejesus@users.noreply.github.com>

Removed changes from:
- rules/linux/privilege_escalation_suspicious_chown_fowner_elevation.toml

(selectively cherry picked from commit 3484cac7eb)

2024-02-20 14:23:14 +00:00

Ruben Groenewoud

13c6fbbcea

[New BBR] Kernel Driver Load (#3236 )

* [New BBR] Kernel Driver Load

* added event.dataset to the query

---------

Co-authored-by: Colson Wilhoit <48036388+DefSecSentinel@users.noreply.github.com>

(cherry picked from commit 967f6a4c89)

2023-11-02 08:38:32 +00:00

2 Commits