Index of /github/opensearch-project/security-analytics/src/main/resources/rules/windows/process_access/
../
proc_access_win_cmstp_execution_by_access.yml 05-Aug-2023 01:06 925
proc_access_win_cobaltstrike_bof_injection_patt..> 05-Aug-2023 01:06 829
proc_access_win_cred_dump_lsass_access.yml 05-Aug-2023 01:06 4933
proc_access_win_direct_syscall_ntopenprocess.yml 05-Aug-2023 01:06 1577
proc_access_win_handlekatz_lsass_access.yml 05-Aug-2023 01:06 1071
proc_access_win_in_memory_assembly_execution.yml 05-Aug-2023 01:06 4495
proc_access_win_invoke_phantom.yml 05-Aug-2023 01:06 770
proc_access_win_lazagne_cred_dump_lsass_access.yml 05-Aug-2023 01:06 813
proc_access_win_littlecorporal_generated_maldoc..> 05-Aug-2023 01:06 707
proc_access_win_load_undocumented_autoelevated_..> 05-Aug-2023 01:06 811
proc_access_win_lsass_dump_comsvcs_dll.yml 05-Aug-2023 01:06 874
proc_access_win_lsass_memdump.yml 05-Aug-2023 01:06 1828
proc_access_win_lsass_memdump_evasion.yml 05-Aug-2023 01:06 1728
proc_access_win_lsass_memdump_indicators.yml 05-Aug-2023 01:06 1452
proc_access_win_lsass_werfault.yml 05-Aug-2023 01:06 922
proc_access_win_malware_verclsid_shellcode.yml 05-Aug-2023 01:06 1195
proc_access_win_mimikatz_trough_winrm.yml 05-Aug-2023 01:06 872
proc_access_win_pypykatz_cred_dump_lsass_access..> 05-Aug-2023 01:06 814
proc_access_win_rare_proc_access_lsass.yml 05-Aug-2023 01:06 3793
proc_access_win_susp_proc_access_lsass.yml 05-Aug-2023 01:06 3954
proc_access_win_susp_proc_access_lsass_susp_sou..> 05-Aug-2023 01:06 2766
proc_access_win_svchost_cred_dump.yml 05-Aug-2023 01:06 742
proc_access_win_uac_bypass_wow64_logger.yml 05-Aug-2023 01:06 712
process_access_win_shellcode_inject_msf_empire.yml 05-Aug-2023 01:06 630
process_access_win_susp_seclogon.yml 05-Aug-2023 01:06 995