sigma-rules

Author SHA1 Message Date

Author	SHA1	Message	Date
shashank-elastic	18fcd83683	Back-porting Version Trimming (#3704 ) (cherry picked from commit `63e91c2f12`)	2024-05-22 19:18:10 +00:00
Samirbous	de3db7007a	[New] Potential Execution via XZBackdoor (#3555 ) * [New] Potential Execution via XZBackdoor * Update rules/linux/persistence_suspicious_ssh_execution_xzbackdoor.toml Co-authored-by: Justin Ibarra <16747370+brokensound77@users.noreply.github.com> * Update rules/linux/persistence_suspicious_ssh_execution_xzbackdoor.toml Co-authored-by: Justin Ibarra <16747370+brokensound77@users.noreply.github.com> * Update persistence_suspicious_ssh_execution_xzbackdoor.toml * Update persistence_suspicious_ssh_execution_xzbackdoor.toml --------- Co-authored-by: Justin Ibarra <16747370+brokensound77@users.noreply.github.com> Co-authored-by: Terrance DeJesus <99630311+terrancedejesus@users.noreply.github.com> (cherry picked from commit `f2490007e8`)	2024-04-02 04:22:46 +00:00

shashank-elastic

18fcd83683

Back-porting Version Trimming (#3704 )

(cherry picked from commit 63e91c2f12)

2024-05-22 19:18:10 +00:00

Samirbous

de3db7007a

[New] Potential Execution via XZBackdoor (#3555 )

* [New] Potential Execution via XZBackdoor

* Update rules/linux/persistence_suspicious_ssh_execution_xzbackdoor.toml

Co-authored-by: Justin Ibarra <16747370+brokensound77@users.noreply.github.com>

* Update rules/linux/persistence_suspicious_ssh_execution_xzbackdoor.toml

Co-authored-by: Justin Ibarra <16747370+brokensound77@users.noreply.github.com>

* Update persistence_suspicious_ssh_execution_xzbackdoor.toml

* Update persistence_suspicious_ssh_execution_xzbackdoor.toml

---------

Co-authored-by: Justin Ibarra <16747370+brokensound77@users.noreply.github.com>
Co-authored-by: Terrance DeJesus <99630311+terrancedejesus@users.noreply.github.com>

(cherry picked from commit f2490007e8)

2024-04-02 04:22:46 +00:00

2 Commits