Samirbous dd2f655367 [New Rule] Potential Cookies Theft via Browser Debugging (#741) ...

* [New Rule] Potential Cookies Theft via Browser Debugging

* Update rules/cross-platform/credential_access_cookies_chromium_browsers_debugging.toml

Co-authored-by: Justin Ibarra <brokensound77@users.noreply.github.com>

* Update rules/cross-platform/credential_access_cookies_chromium_browsers_debugging.toml

Co-authored-by: Justin Ibarra <brokensound77@users.noreply.github.com>

* added auditbeat

* fixed error

* excluded a common FP

* added MSEdge

Co-authored-by: Justin Ibarra <brokensound77@users.noreply.github.com>

2021-01-26 08:21:45 +01:00

..

credential_access_cookies_chromium_browsers_debugging.toml

[New Rule] Potential Cookies Theft via Browser Debugging (#741)

2021-01-26 08:21:45 +01:00

defense_evasion_deleting_websvr_access_logs.toml

Refresh beats and ecs schemas and default to use latest to validate (#570)

2020-12-01 13:24:20 -09:00

impact_hosts_file_modified.toml

Refresh beats and ecs schemas and default to use latest to validate (#570)

2020-12-01 13:24:20 -09:00

initial_access_zoom_meeting_with_no_passcode.toml

Refresh beats and ecs schemas and default to use latest to validate (#570)

2020-12-01 13:24:20 -09:00