4903 Коммитов

Все ветки

Поиск

Автор	SHA1	Сообщение	Дата
Shain	e2773f9281	Merge pull request #1619 from Azure/timeseries-jan2021 ... adding materialise in time series queries	2021-01-21 09:03:48 -08:00
Shain	74af3a58f1	Merge pull request #1628 from Azure/shainw-patch-1 ... Update UserSearchingForVIPUserActivity.yaml	2021-01-21 08:46:54 -08:00
Shain Wray (MSTIC)	ec81a162a4	Removing validation skip	2021-01-21 07:50:03 -08:00
Shain	154a6626ac	Update UserSearchingForVIPUserActivity.yaml ... Fixing connector	2021-01-21 07:46:03 -08:00
Offir Shvartz	7e96dee6f5	Merge pull request #1538 from RonenISRb/robutire-AddDetectionConnectorsIdsTest ... [DetectionTests] Connector Id validity test	2021-01-21 15:38:31 +02:00
Ronen Butirev	31ba8d86b3	add invalid temaplte to whitelist	2021-01-21 12:12:13 +02:00
Ronen Butirev	d4d944aaa0	Merge branch 'master' into robutire-AddDetectionConnectorsIdsTest	2021-01-21 11:38:00 +02:00
Ronen Butirev	8733007394	Readme update	2021-01-21 11:35:51 +02:00
Ronen Butirev	8c6bd4c289	changes	2021-01-21 11:11:48 +02:00
Ronen Butirev	8a18399054	uncomment section	2021-01-21 11:03:39 +02:00
Ronen Butirev	256c5603f8	refactor	2021-01-21 10:54:47 +02:00
v-jayakal	c68dfab32b	Merge pull request #1446 from cyberpion-yotam/cyberpion-sl-connector ... Cyberpion sl connector	2021-01-21 10:47:11 +05:30
v-jayakal	570b3c3428	Merge pull request #1560 from techwriter-dev/nxlog-bsm-macos ... NXLog BSM macOS (Custom) data connector	2021-01-21 10:44:08 +05:30
Ashwin Patil	270859954c	fix yaml	2021-01-20 18:03:02 -08:00
Ashwin Patil	0f2692e9cf	adding materialise in time series queries	2021-01-20 17:58:08 -08:00
Shain	368628902b	Merge pull request #1618 from andedevsecops/master ... Fix for Brute Force Attack Against GitHub Account	2021-01-20 13:13:51 -08:00
Shain	a315a95729	Merge pull request #1607 from Azure/RegistryACL ... Query to identify attempts to modify registry ACL to evade security s…	2021-01-20 13:03:57 -08:00
Shain	bab4edd403	Update SecurityServiceRegistryACLModification.yaml	2021-01-20 13:00:18 -08:00
Sreedhar Ande	4245169606	Merge branch 'master' of https://github.com/Azure/Azure-Sentinel	2021-01-20 12:59:42 -08:00
Sreedhar Ande	8c8b2c9753	Updated Brute Force Attack against GitHub Account detection query	2021-01-20 12:59:23 -08:00
Shain	e349573cbf	Merge pull request #1617 from Azure/pebryan/2020-1-20-SolorigateWorkbookUpdate ... Workbook update	2021-01-20 12:56:01 -08:00
Pete Bryan	a3d9f6bece	Removed StS refresh sections	2021-01-20 12:28:24 -08:00
Shain	dbcbd7da78	Merge pull request #1616 from Azure/Updating_Tampering_Query ... Updated Security Event section of the query which had CreatedProcessC…	2021-01-20 12:04:02 -08:00
Pete Bryan	70681aadfc	Workbook update	2021-01-20 12:03:11 -08:00
Ajeet Prakash (MSTIC)	3ce9f3333f	Updated Security Event section of the query which had CreatedProcessCommandLine to CommandLine.	2021-01-20 11:13:23 -08:00
aprakash13	a1a20c1bc3	Update SecurityServiceRegistryACLModification.yaml ... Updating a few things as per suggestion from Shain	2021-01-20 10:49:06 -08:00
Yotam Rosenmann	e742aee6fc	Removed detection code	2021-01-20 16:12:08 +02:00
Ronen Butirev	1c3badfc1c	Merge branch 'master' into robutire-AddDetectionConnectorsIdsTest	2021-01-20 11:36:59 +02:00
Ronen Butirev	2a5d68427d	update readme	2021-01-20 11:35:11 +02:00
Ronen Butirev	b70f0bec83	fixes	2021-01-20 11:34:46 +02:00
Shain	326b46c43d	Merge pull request #1601 from Ronmarsiano/master ... rebranding of detections	2021-01-19 23:00:46 -08:00
Shain	ee12d6d308	Merge pull request #1582 from Azure/Fix-a-template ... Fix time period of a template	2021-01-19 23:00:10 -08:00
Shain	641aa6481a	Merge pull request #1570 from Azure/Updating_Tampering ... Updating the Microsoft Defender tampering query to also include AATP …	2021-01-19 22:50:57 -08:00
Shain Wray (MSTIC)	8638af13e5	Merge branch 'master' into Updating_Tampering	2021-01-19 22:47:39 -08:00
Shain	8813910cb7	Merge pull request #1541 from KustoKing/patch-5 ... Update FirstAppOrServicePrincipalCredential.yaml	2021-01-19 21:52:40 -08:00
Shain	39d5a95883	Merge pull request #1590 from Azure/shainw-connectorFix ... updating connector value in template	2021-01-19 21:37:02 -08:00
Shain	db3965541c	Merge pull request #1591 from Azure/shainw-entityMapFix ... fixing entity identifiers	2021-01-19 21:36:33 -08:00
Shain	da58304c4f	Update ExternalUserAddedRemovedInTeams.yaml	2021-01-19 21:34:15 -08:00
Shain Wray (MSTIC)	df4b8c04d9	updating PR with additional change	2021-01-19 21:30:46 -08:00
Shain	8c280eb363	Merge pull request #1524 from KustoKing/patch-4 ... Update MFADisable.yaml	2021-01-19 21:22:03 -08:00
Shain	85adf5ae8a	Update Readme	2021-01-19 21:07:07 -08:00
Shain	691d6b4665	Update Readme	2021-01-19 21:06:50 -08:00
Shain	18436b46c0	Merge pull request #1501 from chicduong/acn_cd_sepparser03 ... ACN_CD_SymantecEndpointProtection_Parser_03	2021-01-19 20:43:05 -08:00
Shain	54e7371804	Merge pull request #1499 from chicduong/acn_cd_sepanalytics01 ... ACN_CD_SymantectEndpointProtection_AnalyticsRules_01	2021-01-19 20:31:59 -08:00
John Kirch	76036f8a41	Added missing key-value pair -> "isPreview": true	2021-01-19 21:25:15 -06:00
Ajeet Prakash (MSTIC)	14aaf0020b	Query to identify attempts to modify registry ACL to evade security solutions	2021-01-19 18:16:58 -08:00
v-jayakal	c7c0ad7866	Merge pull request #1586 from Azure/v-jayakal-Barracuda-Parserupdate ... Update to include processname filter for Barracuda CGFWFirewallActivity Parser	2021-01-20 04:43:00 +05:30
v-jayakal	75c49784f4	Update CGFWFirewallActivity	2021-01-20 04:26:55 +05:30
Ronen Butirev	a8755a3ace	Merge branch 'master' into robutire-AddDetectionConnectorsIdsTest	2021-01-19 16:37:07 +02:00
liatlishams	8bb6797620	Merge pull request #1575 from Azure/pebryan/2021-1-12-SolorigateWorkbookUpdate ... SolarWinds Workbook update	2021-01-19 13:33:36 +02:00