-
-
Notifications
You must be signed in to change notification settings - Fork 2.2k
Pull requests: SigmaHQ/sigma
Author
Label
Projects
Milestones
Reviews
Assignee
Sort
Pull requests list
Update proc_creation_win_hktl_certipy.yml
Rules
Windows
Pull request add/update windows related rules
Work In Progress
Some changes are needed
#5008
opened Sep 13, 2024 by
BlackB0lt
Loading…
Sigma tactics organizer
Maintenance
Related to additions and update of the repository features
Work In Progress
Some changes are needed
#4625
opened Dec 12, 2023 by
dan21san
Loading…
Add deprecated csv script
Maintenance
Related to additions and update of the repository features
Rules
Work In Progress
Some changes are needed
#4858
opened May 17, 2024 by
frack113
Loading…
XXD Command Line Obfuscation on Linux & Compiler Execution Within Kubernetes Containers & Three Others
Linux
Pull request add/update linux related rules
Rules
Work In Progress
Some changes are needed
#4884
opened Jun 21, 2024 by
signalblur
Loading…
Unconstrained delegation
Rules
Windows
Pull request add/update windows related rules
Work In Progress
Some changes are needed
#4886
opened Jun 23, 2024 by
frack113
Loading…
Regasm Without CommandLine
Rules
Windows
Pull request add/update windows related rules
Work In Progress
Some changes are needed
#4901
opened Jul 5, 2024 by
frack113
Loading…
New Rules
Rules
Windows
Pull request add/update windows related rules
Work In Progress
Some changes are needed
#4913
opened Jul 12, 2024 by
skaynum
Loading…
Add iis configuration rules
Maintenance
Related to additions and update of the repository features
Rules
Windows
Pull request add/update windows related rules
#4935
opened Jul 27, 2024 by
frack113
Loading…
Winscp rule from Akira Ransomware report
Rules
Windows
Pull request add/update windows related rules
Work In Progress
Some changes are needed
#4939
opened Jul 30, 2024 by
frack113
Loading…
Add Rule: proc_creation_win_renamed_ssh.yml
Author Input Required
changes the require information from original author of the rules
Rules
Windows
Pull request add/update windows related rules
#4971
opened Aug 15, 2024 by
omaramin17
•
Draft
Add Sigma rule for CVE-2024-38063 IPv6 memory corruption detection
Author Input Required
changes the require information from original author of the rules
Emerging-Threats
Rules
Work In Progress
Some changes are needed
Sigma FP fixes
Rules
Windows
Pull request add/update windows related rules
Work In Progress
Some changes are needed
Add LDAP firewall application rules
Rules
Work In Progress
Some changes are needed
#4528
opened Oct 30, 2023 by
dekelpaz
Loading…
Create proc_creation_win_code_devtunnel_tunneling.yaml
2nd Review Needed
PR need a second approval
Rules
Windows
Pull request add/update windows related rules
Work In Progress
Some changes are needed
#5004
opened Sep 9, 2024 by
0xAnalyst
Loading…
sigma rules around using MSI for privilege escalation
Rules
Windows
Pull request add/update windows related rules
Work In Progress
Some changes are needed
#5010
opened Sep 16, 2024 by
sec-hbaer
Loading…
Added the string corresponding to "{"alg":" since some token headers start with this
Rules
Windows
Pull request add/update windows related rules
Work In Progress
Some changes are needed
#5012
opened Sep 18, 2024 by
ionsor
Loading…
github-new-rules
Rules
Work In Progress
Some changes are needed
#5018
opened Sep 20, 2024 by
saakovv
Loading…
aws_new_rules
Author Input Required
changes the require information from original author of the rules
Rules
Work In Progress
Some changes are needed
#5021
opened Sep 21, 2024 by
saakovv
Loading…
Update Suspicious Double Extension File Execution
Rules
Windows
Pull request add/update windows related rules
#5030
opened Oct 1, 2024 by
MalGamy12
Loading…
Python DLL sideloading
Rules
Windows
Pull request add/update windows related rules
#5031
opened Oct 2, 2024 by
swachchhanda000
Loading…
Update proc_creation_win_taskkill_execution.yml
Rules
Windows
Pull request add/update windows related rules
#5033
opened Oct 2, 2024 by
MalGamy12
Loading…
Previous Next
ProTip!
Mix and match filters to narrow down what you’re looking for.