Azure
/
Azure-Sentinel
зеркало из
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
Azure-Sentinel/Hunting Queries/ZoomLogs
История
Ajeet Prakash (MSTIC) 16fe6108dd Removed the deprecated MITRE techniques from hunting and detection queries and updating them with the latest ones that seem most appropriate. 
TechniqueId      TechniqueName                                                    New
T1483                 Domain Generation Algorithms                         T1568
T1064                 Scripting                                                                  T1059
T1043                 Commonly Used Port                                            T1071
T1065                 Uncommonly Used Port                                       T1571
T1100                 Web Shell                                                                T1505
T1089                 Disabling Security Tools                                       T1562
T1035                 Service Execution                                                  ( Removed totally T1035 without replacement)
T1109                 Component Firmware                                          T1542
T10178                                                                                                T1078
 		2021-08-12 10:58:18 -07:00
..
HighCPURoom.yaml Removed the deprecated MITRE techniques from hunting and detection queries and updating them with the latest ones that seem most appropriate. 2021-08-12 10:58:18 -07:00
MultipleRegistrationDenies.yaml
NewDomainAccess.yaml
NewTZ.yaml Sylog to Zoom 2021-08-06 13:39:23 -07:00