security-tools/sigma-rules
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
83406d8ce10ce477de61e381a9bbe727efe76fd7
sigma-rules/rules/integrations/lmd
T
History
Susan d8a39869c5 Add Entity related integrations ML rules with _ea job IDs and min_stack_version 9.4.0 (#5909) 
Co-authored-by: Shashank K S <Shashank.Suryanarayana@elastic.co>
2026-04-22 17:36:35 +05:30
..
lateral_movement_ml_high_mean_rdp_process_args.toml
Add Entity related integrations ML rules with _ea job IDs and min_stack_version 9.4.0 (#5909)
2026-04-22 17:36:35 +05:30
lateral_movement_ml_high_mean_rdp_session_duration.toml
Add Entity related integrations ML rules with _ea job IDs and min_stack_version 9.4.0 (#5909)
2026-04-22 17:36:35 +05:30
lateral_movement_ml_high_remote_file_size.toml
Add Entity related integrations ML rules with _ea job IDs and min_stack_version 9.4.0 (#5909)
2026-04-22 17:36:35 +05:30
lateral_movement_ml_high_variance_rdp_session_duration.toml
Add Entity related integrations ML rules with _ea job IDs and min_stack_version 9.4.0 (#5909)
2026-04-22 17:36:35 +05:30
lateral_movement_ml_rare_remote_file_directory.toml
Add Entity related integrations ML rules with _ea job IDs and min_stack_version 9.4.0 (#5909)
2026-04-22 17:36:35 +05:30
lateral_movement_ml_rare_remote_file_extension.toml
Add Entity related integrations ML rules with _ea job IDs and min_stack_version 9.4.0 (#5909)
2026-04-22 17:36:35 +05:30
lateral_movement_ml_spike_in_connections_from_a_source_ip.toml
Add Entity related integrations ML rules with _ea job IDs and min_stack_version 9.4.0 (#5909)
2026-04-22 17:36:35 +05:30
lateral_movement_ml_spike_in_connections_to_a_destination_ip.toml
Add Entity related integrations ML rules with _ea job IDs and min_stack_version 9.4.0 (#5909)
2026-04-22 17:36:35 +05:30
lateral_movement_ml_spike_in_rdp_processes.toml
Add Entity related integrations ML rules with _ea job IDs and min_stack_version 9.4.0 (#5909)
2026-04-22 17:36:35 +05:30
lateral_movement_ml_spike_in_remote_file_transfers.toml
Add Entity related integrations ML rules with _ea job IDs and min_stack_version 9.4.0 (#5909)
2026-04-22 17:36:35 +05:30
lateral_movement_ml_unusual_time_for_an_rdp_session.toml
Add Entity related integrations ML rules with _ea job IDs and min_stack_version 9.4.0 (#5909)
2026-04-22 17:36:35 +05:30