Samik Roy
|
6e4432f4c3
|
Fixed playbook links
Fixed Issues - #3124
@sreedharande - please have a review.
|
2021-10-04 22:14:19 +05:30 |
v-rucdu
|
5ba197b626
|
Merge pull request #3089 from tobystic/patch-1
Update AzureFirewallWorkbook.json
|
2021-10-04 16:48:22 +05:30 |
v-rucdu
|
1b086333a9
|
Merge pull request #3161 from Azure/v-maudan-patch-2
Updated badges img link
|
2021-10-04 16:28:46 +05:30 |
v-maudan
|
8673d1a31c
|
Updated badges img link
|
2021-10-04 16:20:38 +05:30 |
Yaniv Shasha
|
960d4af087
|
Merge pull request #3159 from javiersoriano/sentinel-training
adding OAuth hunting query
|
2021-10-04 12:44:53 +03:00 |
Javier Soriano
|
c05c012b13
|
adding OAuth hunting query
|
2021-10-04 11:35:21 +02:00 |
NikTripathi
|
aee717fe44
|
Update WorkbooksMetadata.json
|
2021-10-04 15:04:28 +05:30 |
Yaron
|
d79c1596bf
|
yaml structure bug
|
2021-10-04 11:31:11 +03:00 |
Yaron
|
e59ad5407d
|
Yaml structure bug
|
2021-10-04 11:30:29 +03:00 |
Yuval Naor
|
1880c714b0
|
Merge pull request #3157 from Azure/dev/normalization/sysmon_DataTypes
Dev/normalization/sysmon data types
|
2021-10-04 11:08:00 +03:00 |
YuvalNaor
|
f6f286a746
|
last fix
|
2021-10-04 11:04:18 +03:00 |
YuvalNaor
|
6bf061620f
|
small fixes
|
2021-10-04 10:05:13 +03:00 |
v-rucdu
|
b6cb23d9ff
|
Merge pull request #2728 from Azure/v-maudan/QualysVM_V2
Qualys VM v2 data connector, workbook , detection
|
2021-10-04 12:27:53 +05:30 |
aprakash13
|
31fe143e02
|
Merge pull request #3098 from tpa-cyb/pr-malicious-inbox-triggering
New detection parameter added to match the desired behavior
|
2021-10-03 18:53:42 -07:00 |
aprakash13
|
bbde89f744
|
Merge branch 'master' into pr-malicious-inbox-triggering
|
2021-10-03 18:39:37 -07:00 |
aprakash13
|
bd001e23f2
|
Update Malicious_Inbox_Rule.yaml
|
2021-10-03 18:28:19 -07:00 |
aprakash13
|
609a0053e7
|
Merge pull request #3149 from Azure/ZeroTrustMappingUpdate
Update ZeroTrustTIC3Mapping.csv
|
2021-10-03 17:08:48 -07:00 |
sagamzu
|
e2d3a7d953
|
fix bugs (#3156)
|
2021-10-03 17:58:30 +03:00 |
YuvalNaor
|
877fd0d6a8
|
fixes
|
2021-10-03 17:44:55 +03:00 |
YuvalNaor
|
a1e9830cf6
|
fixing types conflicts
|
2021-10-03 17:44:37 +03:00 |
Yaron
|
5e4f84fb68
|
Normalized Expansion queries DNS
* Normalized Expansions
|
2021-10-03 14:02:52 +03:00 |
Shain
|
3a677a04bc
|
Merge pull request #3143 from Azure/NamedPipeQueryparsingchanges
Updating the query
|
2021-10-02 09:28:06 -07:00 |
TJ Banasik
|
b0ef0ce2f5
|
Update ZeroTrustTIC3Mapping.csv
|
2021-10-01 10:30:26 -04:00 |
v-jayakal
|
b787aaf714
|
Merge pull request #3119 from Azure/ThreatIntelligenceWorkbookv2
ThreatIntelligenceWorkbookv2
|
2021-10-01 06:26:19 -07:00 |
Shain
|
95bf4b98df
|
Merge pull request #3144 from ChuckWil/master
Replaced file - AIPMassDowngradeTestData_v4.csv
|
2021-09-30 14:06:29 -07:00 |
Chuck Wilcox
|
b638e6eb31
|
Delete WriteToLA - AIPMassDowngrade.ps1.csv
Replaced with file: AIPMassDowngradeTestData_v4.csv
|
2021-09-30 15:28:14 -05:00 |
Chuck Wilcox
|
812edd1c45
|
Add files via upload
Updated .csv filename to correspond with script.
|
2021-09-30 15:20:54 -05:00 |
aprakash13
|
525f6ad5b8
|
Update SolorigateNamedPipe.yaml
|
2021-09-30 12:58:27 -07:00 |
Ajeet Prakash (MSTIC)
|
1dfc6c0c28
|
Updating the query
|
2021-09-30 11:52:24 -07:00 |
Sreedhar Ande
|
bae12578e4
|
Merge pull request #3133 from javiersoriano/sentinel-training
Azure Sentinel Training Lab 1.0
|
2021-09-30 11:23:01 -07:00 |
Shain
|
1f68e39e5a
|
Merge pull request #3138 from Azure/OMIGOD_GUIDChange
Updating GUID to avoid collison
|
2021-09-30 08:00:40 -07:00 |
Yuval Naor
|
df9e87ad85
|
Update ASimFullDeployment.json
adding NetworkEvent deployment to full deployment
|
2021-09-30 17:15:00 +03:00 |
Javier Soriano
|
97703facc9
|
Update Module-1-Setting-up-the-environment.md
|
2021-09-30 14:56:19 +02:00 |
Yuval Naor
|
b1b3bcfcc0
|
Update README.md
adding vimProcessTerminateLinuxSysmon
|
2021-09-30 15:06:44 +03:00 |
Yuval Naor
|
b994b496ac
|
Update SysmonForLinuxFullDeployment.json
adding linkedProcessEventMicrosoftLinuxSysmonTerminate
|
2021-09-30 15:05:49 +03:00 |
Yuval Naor
|
ef4f647ae6
|
Update ProcessEventFullDeployment.json
adding linkedProcessEventMicrosoftLinuxSysmonTerminate
|
2021-09-30 15:04:28 +03:00 |
Yuval Naor
|
8630f8fc43
|
Merge pull request #3093 from Azure/dev/normalization/sysmon_new_version
Dev/normalization/sysmon new version
|
2021-09-30 15:01:05 +03:00 |
v-rucdu
|
a495fd7639
|
Merge pull request #3122 from Azure/v-ntripathi/PaloAltoNetworks(Firewall)
Updating the name of existing Palo Alto Networks data connector to Pa…
|
2021-09-30 16:47:41 +05:30 |
v-maudan
|
e36b4e6634
|
updated description
|
2021-09-30 15:41:42 +05:30 |
YuvalNaor
|
41bd8435b5
|
fixes after review
|
2021-09-30 11:58:13 +03:00 |
aprakash13
|
0f56dc6011
|
Update NetworkConnectiontoOMIPorts.yaml
Updating Tactics
|
2021-09-30 00:27:55 -07:00 |
v-rucdu
|
af76a8b43e
|
Merge pull request #3014 from Azure/addAwsReadmeFile
[data connectors] Add Aws S3 readme file
|
2021-09-30 12:41:54 +05:30 |
Ajeet Prakash (MSTIC)
|
182bdb8845
|
Updating GUID to avoid collison
|
2021-09-29 23:50:40 -07:00 |
v-rucdu
|
13cd497fa2
|
Updated the powershell instructions URL
|
2021-09-30 11:34:08 +05:30 |
Sreedhar Ande
|
3177f9141c
|
Merge pull request #3136 from FlyingBlueMonkey/master
Querying WHOIS/Registration Data Access Protocol (RDAP) with Azure Sentinel and Azure Functions
|
2021-09-29 17:05:04 -07:00 |
Matt Egen
|
3f9bf66ca9
|
Removed localization in URL
|
2021-09-29 16:58:16 -07:00 |
Matt Egen
|
025c916e8c
|
Merge branch 'Azure:master' into master
|
2021-09-29 16:57:19 -07:00 |
Sreedhar Ande
|
44beeae3a6
|
Merge pull request #3135 from sreedharande/master
AnalyticsNotications update
|
2021-09-29 15:38:32 -07:00 |
Sreedhar Ande
|
3e86787361
|
updated graphics
|
2021-09-29 15:31:08 -07:00 |
Sreedhar Ande
|
f0be601f81
|
Merge pull request #3134 from sreedharande/master
Monitoring Azure Sentinel Analytical Rules Fixes
|
2021-09-29 15:23:48 -07:00 |