| .. |
|
ADFSKeyExportSysmon.yaml
|
adding tags
|
2021-01-15 17:26:22 -08:00 |
|
ExcessiveLogonFailures.yaml
|
Remove inconsistent BOMs from detections
|
2020-11-19 16:57:39 +00:00 |
|
GroupCreatedAddedToPrivlegeGroup_1h.yaml
|
Merge pull request #1339 from pemontto/remove-BOM
|
2020-12-07 09:07:51 -08:00 |
|
MultipleFailedFollowedBySuccess.yaml
|
Feature/lahisham/migrate scheduled templates to new entity mapping (#1319)
|
2020-11-17 17:27:25 +02:00 |
|
PotentialKerberoast.yaml
|
Merge pull request #1339 from pemontto/remove-BOM
|
2020-12-07 09:07:51 -08:00 |
|
RDP_MultipleConnectionsFromSingleSystem.yaml
|
Feature/lahisham/migrate scheduled templates to new entity mapping (#1319)
|
2020-11-17 17:27:25 +02:00 |
|
RDP_Nesting.yaml
|
Feature/lahisham/migrate scheduled templates to new entity mapping (#1319)
|
2020-11-17 17:27:25 +02:00 |
|
RDP_RareConnection.yaml
|
Feature/lahisham/migrate scheduled templates to new entity mapping (#1319)
|
2020-11-17 17:27:25 +02:00 |
|
SecurityEventLogCleared.yaml
|
Remove inconsistent BOMs from detections
|
2020-11-19 16:57:39 +00:00 |
|
SolorigateNamedPipe.yaml
|
adding tags
|
2021-01-15 17:26:22 -08:00 |
|
TimeSeriesAnomaly-ProcessExecutions.yaml
|
🐛 Remove NBSPs where they break API interaction
|
2020-12-11 12:57:34 +00:00 |
|
UserAccountAdd-Removed.yaml
|
Remove inconsistent BOMs from detections
|
2020-11-19 16:57:39 +00:00 |
|
UserAccountAddedToPrivlegeGroup_1h.yaml
|
Remove inconsistent BOMs from detections
|
2020-11-19 16:57:39 +00:00 |
|
UserAccountCreatedDeleted_10m.yaml
|
Merge pull request #1339 from pemontto/remove-BOM
|
2020-12-07 09:07:51 -08:00 |
|
UserAccountEnabledDisabled_10m.yaml
|
Merge pull request #1339 from pemontto/remove-BOM
|
2020-12-07 09:07:51 -08:00 |
|
UserCreatedAddedToBuiltinAdmins_1d.yaml
|
Merge pull request #1339 from pemontto/remove-BOM
|
2020-12-07 09:07:51 -08:00 |
|
base64_encoded_pefile.yaml
|
Remove inconsistent BOMs from detections
|
2020-11-19 16:57:39 +00:00 |
|
execute_base64_decodedpayload.yaml
|
Remove inconsistent BOMs from detections
|
2020-11-19 16:57:39 +00:00 |
|
gte_6_FailedLogons_10m.yaml
|
Remove inconsistent BOMs from detections
|
2020-11-19 16:57:39 +00:00 |
|
malware_in_recyclebin.yaml
|
Remove inconsistent BOMs from detections
|
2020-11-19 16:57:39 +00:00 |
|
password_never_expires.yaml
|
Update password_never_expires.yaml
|
2020-12-24 17:44:00 -08:00 |
|
password_not_set.yaml
|
Merge pull request #1339 from pemontto/remove-BOM
|
2020-12-07 09:07:51 -08:00 |
|
powershell_empire.yaml
|
Remove inconsistent BOMs from detections
|
2020-11-19 16:57:39 +00:00 |
