 Justin Ibarra
|
0e0b2ea1a4
|
Update schema for threshold rule type for 7.12 (#976)
* Update schema for threshold rule type for 7.12
* add downgrade function to drop new fields
* update existing threshold rules
|
2021-03-05 14:35:50 -09:00 |
|
|
Justin Ibarra
|
3fc34b86f2
|
Update License to Elastic v2 (#944)
|
2021-03-03 22:12:11 -09:00 |
|
|
Justin Ibarra
|
4e6ff388fc
|
[Rule Tuning] Feedback from 7.12 Kibana PR (#942)
|
2021-02-11 13:32:58 -09:00 |
|
|
Andrew Pease
|
ddddaf37dc
|
[New Rule] Sudo Heap-based Buffer Overflow Vulnerability Attempt (CVE-2021-3156) (#933)
* initial commit
* adjusted title
* Update rules/cross-platform/privilege_escalation_sudo_buffer_overflow.toml
Co-authored-by: Brent Murphy <56412096+bm11100@users.noreply.github.com>
* updates
* optimized
* added ""'s
* typo around "-s"
* added sudo reference
* changed to threshold
* Update rules/cross-platform/privilege_escalation_sudo_buffer_overflow.toml
* re-lint
Co-authored-by: Brent Murphy <56412096+bm11100@users.noreply.github.com>
Co-authored-by: Justin Ibarra <brokensound77@users.noreply.github.com>
|
2021-02-09 15:02:04 -06:00 |
|