sigma-rules/rules/integrations/problemchild at 28c3d074b82d0ea0fb479c962df026a0ea574734 - sigma-rules - GreySec Git

security-tools/sigma-rules

Files

T

History

shashank-elastic 123e090e7d Fix Minstack version for windows integration - Pahse 2 (#4216 )

2024-10-28 20:25:02 +05:30

..

defense_evasion_ml_rare_process_for_a_host.toml

Fix Minstack version for windows integration - Pahse 2 (#4216 )

2024-10-28 20:25:02 +05:30

defense_evasion_ml_rare_process_for_a_parent_process.toml

Fix Minstack version for windows integration - Pahse 2 (#4216 )

2024-10-28 20:25:02 +05:30

defense_evasion_ml_rare_process_for_a_user.toml

Fix Minstack version for windows integration - Pahse 2 (#4216 )

2024-10-28 20:25:02 +05:30

defense_evasion_ml_suspicious_windows_event_high_probability.toml

Fix Minstack version for windows integration - Pahse 2 (#4216 )

2024-10-28 20:25:02 +05:30

defense_evasion_ml_suspicious_windows_event_low_probability.toml

Update ProblemChild detection rules with High and Low probability (#4000 )

2024-08-22 09:17:41 -04:00

defense_evasion_ml_suspicious_windows_process_cluster_from_host.toml

Fix Minstack version for windows integration - Pahse 2 (#4216 )

2024-10-28 20:25:02 +05:30

defense_evasion_ml_suspicious_windows_process_cluster_from_parent_process.toml

Fix Minstack version for windows integration - Pahse 2 (#4216 )

2024-10-28 20:25:02 +05:30

defense_evasion_ml_suspicious_windows_process_cluster_from_user.toml

Fix Minstack version for windows integration - Pahse 2 (#4216 )

2024-10-28 20:25:02 +05:30