sigma-rules/rules/cross-platform at ec4c9e77a2d88fa397f46b4796ca9c7d41eee844 - sigma-rules - GreySec Git

security-tools/sigma-rules

Files

T

History

brokensound77 bf32dec5a4 Merge remote-tracking branch 'upstream/main' into mergeback/7.11-to-main

# Conflicts:
#	rules/linux/defense_evasion_deletion_of_bash_command_line_history.toml

2021-01-28 10:41:39 -09:00

..

credential_access_cookies_chromium_browsers_debugging.toml

[New Rule] Potential Cookies Theft via Browser Debugging (#741 )

2021-01-26 08:21:45 +01:00

defense_evasion_deleting_websvr_access_logs.toml

Refresh beats and ecs schemas and default to use latest to validate (#570 )

2020-12-01 13:24:20 -09:00

discovery_security_software_grep.toml

[New Rule] Security Software Discovery using Grep (#743 )

2021-01-26 19:57:26 +01:00

impact_hosts_file_modified.toml

[Rule Tuning] Update ATT&CK threat mappings to reflect changes (#706 )

2020-12-18 12:46:16 -09:00

initial_access_zoom_meeting_with_no_passcode.toml

Refresh beats and ecs schemas and default to use latest to validate (#570 )

2020-12-01 13:24:20 -09:00

persistence_ssh_authorized_keys_modification.toml

[New Rule] SSH Authorized Keys File Modification (#754 )

2021-01-26 08:45:38 +01:00