security-tools/sigma-rules
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
515d393828c8510af00b217fd93ea86bbac71a90
sigma-rules/rules/integrations
T
History
Isai 515d393828 [New Rule] SSH Authorized Keys File Modified Inside a Container (#2792) 
* [New Rule] SSH Authorized Keys File Modified Inside a Container

new rule toml

* toml file name change

changed duplicate toml file name

* Update persistence_ssh_authorized_keys_modification_inside_a_container.toml

added time intervals

* removed redundant event.type

removed event.type fields

* added back event.type and removed event.action per reviewer suggestion

removed redundant event.action fields
2023-05-16 16:30:17 -04:00
..
aws
[Rule Tuning] Tuning 'AWS Access Secret in Secrets Manager' to New Terms (#2760)
2023-05-03 09:28:59 -04:00
azure
[FR] Add Integration Schema Query Validation (#2470)
2023-02-02 16:22:44 -05:00
cloud_defend
[New Rule] SSH Authorized Keys File Modified Inside a Container (#2792)
2023-05-16 16:30:17 -04:00
cyberarkpas
[Bug] Unit Tests Passing for Rules with Integrations Not Reflected in Manifests (#2682)
2023-04-03 09:42:40 -04:00
endpoint
[Bug] Unit Tests Passing for Rules with Integrations Not Reflected in Manifests (#2682)
2023-04-03 09:42:40 -04:00
gcp
[Security Content] Expand Abbreviated Tags (#2414)
2023-03-06 17:37:52 -03:00
google_workspace
updating min stack comments (#2712)
2023-04-12 14:30:34 -04:00
kubernetes
[FR] Add Endpoint, APM and Windows Integration Tags to Rules and Supportability (#2429)
2023-01-04 09:30:07 -05:00
o365
[FR] Add Endpoint, APM and Windows Integration Tags to Rules and Supportability (#2429)
2023-01-04 09:30:07 -05:00
okta
[Bug] Unit Tests Passing for Rules with Integrations Not Reflected in Manifests (#2682)
2023-04-03 09:42:40 -04:00