security-tools/sigma-rules
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
09feb8b94fd3dcfed88b57bbcf3beab12d1c3563
sigma-rules/detection_rules/etc
T
History
Isai 09feb8b94f [New Rule] GitHub Protected Branch Settings Changed (#3054) 
* new rule file

* testing query change

* query changed back

* Update rules/integrations/github/defense_evasion_github_protected_branch_settings_changed.toml

updates based on review

Co-authored-by: Ruben Groenewoud <78494512+Aegrah@users.noreply.github.com>

* updated integration manifests with github schema

* Update defense_evasion_github_protected_branch_settings_changed.toml

added event.dataset to query

* added timestamp_override

* changed timestamp_override to @timestamp

* changed timestamp_override

---------

Co-authored-by: Ruben Groenewoud <78494512+Aegrah@users.noreply.github.com>
Co-authored-by: Justin Ibarra <16747370+brokensound77@users.noreply.github.com>

(cherry picked from commit 904e37b732)
2023-09-14 21:25:40 +00:00
..
api_schemas
[FR] 8.10 Release Preparation and Update Main Branch to 8.11 (#3012)
2023-08-16 18:29:17 +00:00
beats_schemas
[FR] 8.10 Release Preparation and Update Main Branch to 8.11 (#3012)
2023-08-16 18:29:17 +00:00
ecs_schemas
[FR] 8.10 Release Preparation and Update Main Branch to 8.11 (#3012)
2023-08-16 18:29:17 +00:00
endgame_schemas
Updated ECS mappings from keyword to wildcard (#2518)
2023-02-07 09:43:19 -05:00
endpoint_schemas
[FR] Add Support for Multi-Fields and Validation in Rules (#2882)
2023-06-28 20:35:33 -04:00
__init__.py
Update package and install process (#1948)
2022-12-08 15:49:49 -05:00
attack-crosswalk.json
Move etc under detection_rules (#1885)
2022-05-02 10:11:21 -04:00
attack-technique-redirects.json
[FR] 8.10 Release Preparation and Update Main Branch to 8.11 (#3012)
2023-08-16 18:29:17 +00:00
attack-v13.1.0.json.gz
updated ATT&CK 13.0 to 13.1 (#2795)
2023-05-16 11:01:52 -04:00
commit-and-push.sh
Update commit-and-push.sh (#2640)
2023-03-09 17:31:19 -05:00
deprecated_rules.json
Lock versions for releases: 8.3,8.4,8.5,8.6,8.7,8.8,8.9,8.10 (#3019)
2023-08-17 13:15:11 +00:00
downloadable_updates.json
[FR] Generate mdx docs (#2718)
2023-05-03 16:27:30 -04:00
integration-manifests.json.gz
[New Rule] GitHub Protected Branch Settings Changed (#3054)
2023-09-14 21:25:40 +00:00
integration-schemas.json.gz
[New Rule] GitHub Protected Branch Settings Changed (#3054)
2023-09-14 21:25:40 +00:00
lock-multiple.sh
Move etc under detection_rules (#1885)
2022-05-02 10:11:21 -04:00
non-ecs-schema.json
[New Rule] New BBR Rules - Part 3 (#3034)
2023-09-13 00:34:12 +00:00
packages.yml
[FR] 8.9 Release Preparation and Update Main Branch to 8.10 (#2891)
2023-06-29 11:39:11 -04:00
rule_template_typosquatting_domain.json
Move etc under detection_rules (#1885)
2022-05-02 10:11:21 -04:00
rule-mapping.yml
Move etc under detection_rules (#1885)
2022-05-02 10:11:21 -04:00
security-logo-color-64px.svg
Move etc under detection_rules (#1885)
2022-05-02 10:11:21 -04:00
stack-schema-map.yaml
[FR] 8.10 Release Preparation and Update Main Branch to 8.11 (#3012)
2023-08-16 18:29:17 +00:00
test_toml.json
Move etc under detection_rules (#1885)
2022-05-02 10:11:21 -04:00
version.lock.json
Lock versions for releases: 8.3,8.4,8.5,8.6,8.7,8.8,8.9,8.10 (#3079)
2023-09-06 17:26:57 +00:00