v-ntripathi
|
05dad077da
|
Merge pull request #6711 from Azure/v-spadarthi-workbookmetadata-m365defender
Renamed the WorkbooksMetadata for Microsoft 365 Defender
|
2022-11-23 17:18:09 +05:30 |
pensivepaddle
|
5ff9824cd0
|
MerakiParser - Fix for IP extract in DHCP events
Seems like IP is not extracted in DHCP events due to the expectation of ":<PORT>" (LogType == "events"). Propose that the colon is optional for extraction.
Ref: https://documentation.meraki.com/General_Administration/Monitoring_and_Reporting/Syslog_Event_Types_and_Log_Samples
|
2022-11-23 12:42:57 +01:00 |
v-sabiraj
|
0a136d10b2
|
AWS package update (#6695)
|
2022-11-23 17:07:09 +05:30 |
v-spadarthi
|
d86d6b3d6d
|
Update WorkbooksMetadata.json
|
2022-11-23 15:11:01 +05:30 |
rushriva
|
44fe5ec44f
|
Update-MDO Content
Tactics name updated from Initial Access to InitialAccess
Workbook name is updated to MDO Insights
|
2022-11-23 14:58:39 +05:30 |
Meena Kumari Chatla
|
1f961dc40c
|
Merge pull request #6626 from Azure/origin/users/rahul/acsc
Origin/users/rahul/acsc
|
2022-11-23 14:05:41 +05:30 |
yashwanth
|
02f1b24d2e
|
Merge pull request #36 from metron-labs/PackageUsingV2Script
zip file updated
|
2022-11-23 13:30:48 +05:30 |
yashwanth-metron
|
c79a0ff675
|
zip file updated
|
2022-11-23 12:56:34 +05:30 |
Meena Kumari Chatla
|
8f39409995
|
Updated Author details in the existing dataconnector
Updated Author details in the existing dataconnector
|
2022-11-23 12:34:04 +05:30 |
v-sabiraj
|
41db357bb4
|
Adding Solution Dependencies for Domain Solutions
|
2022-11-23 12:27:23 +05:30 |
|
v-spadarthi
|
4804bcb7de
|
removed single quotes
|
2022-11-23 07:44:54 +05:30 |
Pete Bryan
|
82014f902f
|
Merge pull request #6578 from darktrace-com/darktrace
Darktrace 2.0.1
|
2022-11-22 14:48:09 -08:00 |
Jessen
|
f7c179e7fa
|
Merge branch 'master' into IPC-detection-changes
|
2022-11-22 14:38:36 -08:00 |
gitj121
|
ee4a605efd
|
Adding with additional timeline guidance
|
2022-11-22 10:05:03 -08:00 |
|
v-sabiraj
|
85bd4e62d4
|
Updated link
|
2022-11-22 21:40:52 +05:30 |
|
Meena Kumari Chatla
|
82f1a8cc28
|
Azure Kubernetes Service Solution Changes
Azure Kubernetes Service Solution Changes
|
2022-11-22 19:17:50 +05:30 |
|
v-sabiraj
|
48fb0ec839
|
Merge branch 'master' into v-sabiraj-ThreatintelligencetemplateSpecSolution
|
2022-11-22 19:07:43 +05:30 |
|
v-spadarthi
|
2e5767e060
|
Hunting queries missing first character fixe the issue
|
2022-11-22 18:53:08 +05:30 |
|
v-spadarthi
|
afb16ac55b
|
Merge branch 'master' into v-spadarthi-Repackage-M365Defender
|
2022-11-22 17:36:33 +05:30 |
v-dvedak
|
c05f60ece2
|
Merge pull request #6701 from Azure/MDO-Enrichment-17-11
Update M365-MDO Hunting query for null values
|
2022-11-22 17:16:39 +05:30 |
danielohfeld
|
c78f6c1dd9
|
Change subscription name (#6698)
* minor changes in scripts
* change subscription name
|
2022-11-22 13:20:15 +02:00 |
Manish Kumar
|
651e31045e
|
Merge pull request #6679 from Azure/origin/users/rahul/aws-athena
Update azuredeploy.json and readme.md files for correct deploy button links
|
2022-11-22 16:35:07 +05:30 |
|
rushriva
|
88b09196fe
|
Update Hunting query for null values
|
2022-11-22 15:48:45 +05:30 |
v-laanjana
|
df71ab61f5
|
removed en-us from links
|
2022-11-22 14:02:23 +05:30 |
|
v-laanjana
|
cb63c67d66
|
remove en-us from links
|
2022-11-22 14:00:21 +05:30 |
|
v-laanjana
|
9c0f34ca3c
|
solution folder created for zoom reports solution
|
2022-11-22 13:30:13 +05:30 |
|
v-spadarthi
|
d0954ff275
|
Preview added
|
2022-11-22 13:27:17 +05:30 |
|
v-spadarthi
|
5a01304986
|
Update 2.0.1.zip
|
2022-11-22 13:16:32 +05:30 |
|
v-spadarthi
|
03fda64805
|
Re-packaged the solution Microsoft 365 Defender
|
2022-11-22 13:14:17 +05:30 |
|
v-laanjana
|
b6d7d39f3f
|
solution folder created for proofpoint POD
|
2022-11-22 12:55:13 +05:30 |
|
v-dvedak
|
05a8766a34
|
Merge pull request #6694 from Azure/v-spadarthi-wbmetadata-m365defender
Adding WorkbooksMetadata for Microsoft 365 defender
|
2022-11-22 12:35:14 +05:30 |
|
v-spadarthi
|
b775c7f944
|
Update WorkbooksMetadata.json
|
2022-11-22 11:20:00 +05:30 |
|
v-spadarthi
|
fdf79fd0a1
|
Merge branch 'master' into v-spadarthi-wbmetadata-m365defender
|
2022-11-22 11:19:38 +05:30 |
|
v-spadarthi
|
88159bfddd
|
Merge pull request #6677 from Azure/MDO-Enrichment-17-11
MDO-Enrichment-Update-17-11
|
2022-11-22 10:36:41 +05:30 |
|
v-spadarthi
|
f6469e29d6
|
Update WorkbooksMetadata.json
|
2022-11-22 10:32:35 +05:30 |
|
v-dvedak
|
158145463a
|
Merge pull request #6690 from Azure/v-atulyadav/ProviderMetadata
Repackage VMware Carbon Black for Provide Change
|
2022-11-22 09:24:11 +05:30 |
Shain
|
42a1460197
|
Merge pull request #6693 from Azure/shainw-NetOMItypefix-1
Update NetworkConnectiontoOMIPorts.yaml
|
2022-11-21 16:08:37 -08:00 |
|
Shain
|
b86a528944
|
Update NetworkConnectiontoOMIPorts.yaml
|
2022-11-21 15:37:50 -08:00 |
|
Pete Bryan
|
d3091dc016
|
Merge pull request #6641 from Azure/CryptoRule
Suspicious cryptocurrency mining related threat activity detected
|
2022-11-21 09:47:36 -08:00 |
|
Pete Bryan
|
764b8cbabb
|
Merge pull request #6531 from hazcod/patch-1
fix(aws): do not trigger missing mfa on sso
|
2022-11-21 09:42:31 -08:00 |
|
Pete Bryan
|
b7ec4d762d
|
Merge pull request #6524 from stephanwaelde/CiscoSEG-Hunting-Query-CiscoSEGInsecureProtocol
Replace dlp_verdict with tls_status
|
2022-11-21 09:38:39 -08:00 |
|
Pete Bryan
|
d6e578f3dd
|
Merge pull request #6505 from thmcelro/fix-analytic-rule
Fix analytic rule
|
2022-11-21 09:37:50 -08:00 |
|
Pete Bryan
|
c8389c946e
|
Merge pull request #6497 from shabaz-github/master
Added SQLi and XSS Detection query files for AFD Premium WAF
|
2022-11-21 09:37:11 -08:00 |
|
Pete Bryan
|
fabb9a7d44
|
Merge pull request #6446 from Azure/OfficeMailRuleCreationWithMailMoveActivity
Office Mail Rule Creation with suspicious archive mail move activity
|
2022-11-21 09:32:50 -08:00 |
|
Pete Bryan
|
9d12fc54bc
|
Merge pull request #6362 from Azure/MailForwardingfromNewLocation
Detecting Suspicious Sign-In from New Location with Mail forwarding activity
|
2022-11-21 09:28:01 -08:00 |
|
Pete Bryan
|
8f41883007
|
Merge pull request #5286 from ep3p/patch-4
Add more operations and more efficient parsing in IPEntity_AzureFirewall.yaml
|
2022-11-21 09:20:31 -08:00 |
cnadler-MSFT
|
2a39089411
|
Update CrowdstrikeReplicator
Function is referencing a non-existent table, needs to be _CL to access data created in the custom logs table based on the content hub solution.
|
2022-11-21 09:06:05 -07:00 |
Ofer Shezaf
|
79d82e8437
|
Merge pull request #6686 from Azure/asim/update-build-script-for-new-parameter-format
asim/update-build-script-for-new-parameter-format
|
2022-11-21 18:03:29 +02:00 |
sivanguetta
|
e6d47d1854
|
Add default value for table:(*)
|
2022-11-21 16:55:14 +02:00 |
|
rushriva
|
a4c6a75d2d
|
Update MDO-Workbook.json
|
2022-11-21 19:14:46 +05:30 |