CSEC_PUBLIC/hayabusa
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Feature/addruletype to sigma rule#230 (#235)

Browse Source 
* added ruletype to SIGMA rule #230

* added ruletype to SIGMA rule converter tool #231
This commit is contained in:
DustInDark
2021-11-28 18:14:51 +09:00
committed by GitHub
parent bc230f7cd5
commit 0cfa806baf
1087 changed files with 1186 additions and 90 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
rules/sigma/sysmon/sysmon_accessing_winapi_in_powershell_credentials_dumping.yml
View File

@@ -27,3 +27,4 @@ status: experimental
tags:
- attack.credential_access
- attack.t1003.001
ruletype: SIGMA

1
rules/sigma/sysmon/sysmon_config_modification_error.yml
View File

@@ -26,3 +26,4 @@ status: experimental
tags:
- attack.defense_evasion
- attack.t1564
ruletype: SIGMA

1
rules/sigma/sysmon/sysmon_config_modification_status.yml
View File

@@ -28,3 +28,4 @@ status: experimental
tags:
- attack.defense_evasion
- attack.t1564
ruletype: SIGMA

1
rules/sigma/sysmon/sysmon_dcom_iertutil_dll_hijack.yml
View File

@@ -35,3 +35,4 @@ tags:
- attack.lateral_movement
- attack.t1021.002
- attack.t1021.003
ruletype: SIGMA