NikTripathi
|
17401fdb69
|
Merge pull request #3869 from armorblox/armorblox-sentinel-solution
Playbook, Workbook & Analytic Rule for the Armorblox Sentinel integration
|
2022-04-13 16:08:42 +05:30 |
|
NikTripathi
|
a35a8b176b
|
Merge pull request #4629 from Azure/CrowdStrikeFunTimeOut
Update on function app timeout for CrowdStrike
|
2022-04-13 13:49:03 +05:30 |
|
NikTripathi
|
fda1d97159
|
Merge pull request #4391 from FalconForceTeam/feature-falconfriday-march-2022
Add FalconFriday 0xFF15 - 0xFF1B
|
2022-04-13 13:37:16 +05:30 |
ankita-sharma2019
|
20ff7f1514
|
Update ArmorbloxNeedsReviewAlert.yaml
Accepted suggestions
|
2022-04-13 13:03:19 +05:30 |
Anki Narravula
|
70780ebfc9
|
Update on function app timeout
|
2022-04-13 12:20:16 +05:30 |
aprakash13
|
97a6dafb74
|
Merge pull request #4453 from vpaschalidis/patch-57
Create RegistryPersistenceViaAppInt_DLLsModification.yaml
|
2022-04-12 23:49:49 -07:00 |
|
Anki Narravula
|
2884187731
|
Revert "CrowdStrike Function timeout change"
This reverts commit 8f2e619dc8.
|
2022-04-13 12:09:59 +05:30 |
|
Anki Narravula
|
8f2e619dc8
|
CrowdStrike Function timeout change
|
2022-04-13 12:04:43 +05:30 |
|
NikTripathi
|
f2a6270b40
|
Merge pull request #4624 from Azure/v-ntripathi/JoshuaPackage1.0.2
Joshua package 1.0.2
|
2022-04-13 00:05:44 +05:30 |
NikTripathi
|
9f8b738465
|
Joshua package 1.0.2
|
2022-04-12 23:50:55 +05:30 |
Thomas McElroy
|
afe8cc1a35
|
Merge pull request #4622 from Azure/TArrask_CSV_Update
Updating the CSV file for the Tarrask queries.
|
2022-04-12 17:05:16 +01:00 |
Ajeet Prakash (MSTIC)
|
8c93e882af
|
Updating the CSV file for the Tarrask queries.
|
2022-04-12 08:53:00 -07:00 |
Pete Bryan
|
a6680387a9
|
Merge pull request #4620 from Azure/Tarrask_Detection
Queries related to Tarrask malware related blog post.
|
2022-04-12 08:38:16 -07:00 |
|
aprakash13
|
4c65e81da0
|
Update AVTarrask.yaml
|
2022-04-12 08:25:26 -07:00 |
|
aprakash13
|
55df45a3d4
|
Merge pull request #4294 from ep3p/patch-4
Add modified StrongAuthenticationMethod events to AuthenticationMethodsChangedforPrivilegedAccount.yaml
|
2022-04-12 06:10:08 -07:00 |
|
aprakash13
|
2a4a2828d3
|
Merge pull request #4196 from mjmelone/patch-1
Created web content filtering events query
|
2022-04-12 05:54:31 -07:00 |
|
aprakash13
|
e63e71a62d
|
Merge pull request #4189 from ep3p/patch-21
Remove unnecessary summarize in SigninPasswordSpray.yaml
|
2022-04-12 05:35:14 -07:00 |
|
NikTripathi
|
39d9119f96
|
Merge pull request #4619 from javiersoriano/patch-9
Update README.md
|
2022-04-12 18:00:30 +05:30 |
|
NikTripathi
|
1106a0377e
|
Merge pull request #4616 from Azure/v-ntripathi/CyberArkSolutionPackage
CyberArk package update 1.0.0
|
2022-04-12 17:31:53 +05:30 |
|
aprakash13
|
90932f1fda
|
Update ScheduleTaskHide.yaml
Removing non-ascii character
|
2022-04-12 04:31:52 -07:00 |
|
aprakash13
|
eb39df6859
|
Update TarraskHashIoC.yaml
|
2022-04-12 04:21:54 -07:00 |
|
Ajeet Prakash (MSTIC)
|
8adfb3efd0
|
Queries related to Tarrask malware related blog post.
|
2022-04-12 04:16:51 -07:00 |
Javier Soriano
|
2ec8c5ddd9
|
Update README.md
fixing type in README
|
2022-04-12 10:04:31 +02:00 |
Manish Kumar
|
f303ec47ae
|
Merge pull request #4599 from Azure/adding_dev0537_solution
Adding new solution of dev-0537 to content hub
|
2022-04-12 12:18:19 +05:30 |
|
NikTripathi
|
9cf61bdfd4
|
Merge pull request #4461 from sailpoint-tech-partner-eng/SailPointIdentityNow
SailPoint IdentityNow
|
2022-04-12 10:19:17 +05:30 |
|
NikTripathi
|
c7fae1b77d
|
Merge pull request #4515 from socprime/ciscoWSA_content_upd
CiscoWSA analytic rules update
|
2022-04-12 10:18:51 +05:30 |
|
aprakash13
|
eff9f0fb17
|
Merge pull request #4604 from Azure/SuspiciousWorkspacedeletionattempt
Detecting suspicious sign-in with workspace deletion attempt
|
2022-04-11 14:58:20 -07:00 |
gitj121
|
d927f7ed83
|
Adding with minor change in title,description
|
2022-04-11 14:49:19 -07:00 |
|
gitj121
|
fe4b747c64
|
Adding with changes
|
2022-04-11 11:39:18 -07:00 |
|
gitj121
|
78da86d4e2
|
Corrected the yaml file error
|
2022-04-11 11:13:52 -07:00 |
|
gitj121
|
69909e25da
|
Adding with changes
|
2022-04-11 10:56:04 -07:00 |
|
NikTripathi
|
f1762f9959
|
CyberArk package update 1.0.0
|
2022-04-11 21:45:45 +05:30 |
Samik Roy
|
73b417549e
|
Updated default name from Isolate-MDEMachine to Unisolate-MDEMachine (#4587)
Updated default name from Isolate-MDEMachine to Unisolate-MDEMachine
Possible fix for #4556
|
2022-04-11 18:08:17 +05:30 |
|
NikTripathi
|
4aaad4c5f2
|
Merge pull request #4611 from Azure/v-ntripathi/InfobloxPackage1.0.0
Infoblox NIOS package update 1.0.0
|
2022-04-11 18:03:00 +05:30 |
|
NikTripathi
|
5814d2216c
|
Update
|
2022-04-11 17:51:47 +05:30 |
|
NikTripathi
|
4c238e8d0b
|
Merge pull request #4605 from Azure/DynamicThreatAnalysis-&-Readme-Updates
Updating Dynamic Threat Modeling Workbook and Readme
|
2022-04-11 17:48:42 +05:30 |
|
NikTripathi
|
57525b3000
|
Infoblox NIOS package update 1.0.0
|
2022-04-11 16:06:50 +05:30 |
|
NikTripathi
|
7fdcb22eb4
|
Merge pull request #4590 from Azure/v-ntripathi/ChangingOferIdForMDEandSTE
changing offer id for Security threat essentials and Microsoft defender
|
2022-04-11 15:59:46 +05:30 |
Amit Bergman
|
786d7c7e5c
|
Merge pull request #4595 from sivanguetta/users/sivang/parsersKqlValidator
Add Kql validation tests for normalization parsers functions
|
2022-04-11 13:19:13 +03:00 |
|
NikTripathi
|
1fd9ae3c2b
|
Merge pull request #4594 from Azure/rushriva-SecurityPolicy-Update
Create SECURITY.md
|
2022-04-11 15:21:57 +05:30 |
|
NikTripathi
|
84f8291f22
|
Merge pull request #4597 from Azure/CMMC2.0_Updates
Updates Observed During CMMC2.0 Solution Testing
|
2022-04-11 15:21:44 +05:30 |
sivanguetta
|
a94a9a24c9
|
CR
|
2022-04-11 12:46:11 +03:00 |
|
NikTripathi
|
035a74a9f1
|
Merge pull request #4600 from socprime/CorwdstrikeFalcon--add-retrying-for-error-handler
Crowdstrike: add re-trying attempts
|
2022-04-11 12:03:17 +05:30 |
|
Anki Narravula
|
f19f2a7290
|
Update __init__.py
|
2022-04-11 11:24:00 +05:30 |
|
sivanguetta
|
6fef31ff4f
|
Fix Path.DirectorySeparatorChar
|
2022-04-10 16:01:27 +03:00 |
|
sivanguetta
|
1bccb9711b
|
Add VectraStream_CL and ignore 'vimNetworkSessionMD4IoT'
|
2022-04-10 14:17:12 +03:00 |
|
sivanguetta
|
af4ad3ba49
|
Merge remote-tracking branch 'upstream2/master' into users/sivang/parsersKqlValidator
|
2022-04-10 13:11:40 +03:00 |
Ofer Shezaf
|
43e65e476b
|
Merge pull request #4609 from Azure/asim/fix-vectra-dns
Fix vimDns for VectraAI
|
2022-04-10 12:42:30 +03:00 |
Ofer Shezaf
|
d3285e94dc
|
Fix vimDns for VectraAI
|
2022-04-10 12:23:12 +03:00 |
|
sivanguetta
|
ec49b58bee
|
Merge remote-tracking branch 'upstream2/master' into users/sivang/parsersKqlValidator
|
2022-04-10 10:55:19 +03:00 |