Index of /github/opensearch-project/security-analytics/src/main/resources/rules/windows/builtin/system/
../
win_apt_carbonpaper_turla.yml 05-Aug-2023 01:06 708
win_apt_chafer_mar18_system.yml 05-Aug-2023 01:06 942
win_apt_stonedrill.yml 05-Aug-2023 01:06 730
win_apt_turla_service_png.yml 05-Aug-2023 01:06 689
win_cobaltstrike_service_installs.yml 05-Aug-2023 01:06 1419
win_eventlog_cleared.yml 05-Aug-2023 01:06 1062
win_hack_smbexec.yml 05-Aug-2023 01:06 764
win_invoke_obfuscation_clip_services.yml 05-Aug-2023 01:06 743
win_invoke_obfuscation_obfuscated_iex_services.yml 05-Aug-2023 01:06 1196
win_invoke_obfuscation_stdin_services.yml 05-Aug-2023 01:06 729
win_invoke_obfuscation_var_services.yml 05-Aug-2023 01:06 770
win_invoke_obfuscation_via_compress_services.yml 05-Aug-2023 01:06 897
win_invoke_obfuscation_via_rundll_services.yml 05-Aug-2023 01:06 790
win_invoke_obfuscation_via_stdin_services.yml 05-Aug-2023 01:06 702
win_invoke_obfuscation_via_use_clip_services.yml 05-Aug-2023 01:06 680
win_invoke_obfuscation_via_use_mshta_services.yml 05-Aug-2023 01:06 728
win_invoke_obfuscation_via_use_rundll32_service..> 05-Aug-2023 01:06 900
win_invoke_obfuscation_via_var_services.yml 05-Aug-2023 01:06 737
win_lsasrv_ntlmv1.yml 05-Aug-2023 01:06 647
win_mal_creddumper.yml 05-Aug-2023 01:06 1135
win_meterpreter_or_cobaltstrike_getsystem_servi..> 05-Aug-2023 01:06 1968
win_moriya_rootkit.yml 05-Aug-2023 01:06 677
win_ntfs_vuln_exploit.yml 05-Aug-2023 01:06 928
win_pcap_drivers.yml 05-Aug-2023 01:06 862
win_possible_zerologon_exploitation_using_wellk..> 05-Aug-2023 01:06 837
win_powershell_script_installed_as_service.yml 05-Aug-2023 01:06 677
win_quarkspwdump_clearing_hive_access_history.yml 05-Aug-2023 01:06 565
win_rare_service_installs.yml 05-Aug-2023 01:06 674
win_rdp_potential_cve_2019_0708.yml 05-Aug-2023 01:06 761
win_sample_rule.yml 05-Aug-2023 01:06 602
win_security_krbrelayup_service_installation.yml 05-Aug-2023 01:06 638
win_service_hacktools.yml 05-Aug-2023 01:06 933
win_service_install_susp_double_ampersand.yml 05-Aug-2023 01:06 601
win_susp_dhcp_config.yml 05-Aug-2023 01:06 794
win_susp_dhcp_config_failed.yml 05-Aug-2023 01:06 897
win_susp_proceshacker.yml 05-Aug-2023 01:06 733
win_susp_sam_dump.yml 05-Aug-2023 01:06 644
win_susp_service_installation.yml 05-Aug-2023 01:06 1429
win_susp_service_installation_folder.yml 05-Aug-2023 01:06 642
win_susp_service_installation_folder_pattern.yml 05-Aug-2023 01:06 685
win_susp_service_installation_script.yml 05-Aug-2023 01:06 730
win_susp_system_update_error.yml 05-Aug-2023 01:06 1102
win_system_application_sysmon_crash.yml 05-Aug-2023 01:06 489
win_system_defender_disabled.yml 05-Aug-2023 01:06 1079
win_system_susp_eventlog_cleared.yml 05-Aug-2023 01:06 1106
win_tap_driver_installation.yml 05-Aug-2023 01:06 643
win_tool_psexec.yml 05-Aug-2023 01:06 995
win_volume_shadow_copy_mount.yml 05-Aug-2023 01:06 768
win_vul_cve_2020_1472.yml 05-Aug-2023 01:06 811
win_vul_cve_2021_42278_or_cve_2021_42287.yml 05-Aug-2023 01:06 1155