-
Hello there!
First time user of chainsaw, it has a tremendous potential! 🚀
I was trying to use it with the current version of [Sigma](https://github.com/SigmaHQ/sigma/commit/2755bcfe80e0ebaaf9c…
-
## Link to rule
https://github.com/elastic/detection-rules/blob/main/rules/windows/privilege_escalation_posh_token_impersonation.toml
## Description
High false positive rate when using **Defender…
-
### Packages tests metrics information
|||
| :-- | :-- |
| **Main release stage issue** | #21386 …
-
Hello, I tried converting this rule to elasticsearch: https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_regsvr32_no_dll.yml.
This yields the following Lu…
-
*************edited November 20***************
**TRACKER**
BA.2.86: -C6541T,A7842, C8293T, G8393A (new query thx to @aviczhl2 )
JN.1 QUERY: C18894T, T15756A, A7842, -C6541T
XDD Query : C6541T…
-
# 每日安全资讯(2023-07-14)
- SecWiki News
- [ ] [SecWiki News 2023-07-13 Review](http://www.sec-wiki.com/?2023-07-13)
- HackerOne Hacker Activity
- [ ] [Brute force protection allows to send more reque…
-
# 每日安全资讯(2023-06-15)
- HackerOne Hacker Activity
- [ ] [internal dev tokens disclosure](https://hackerone.com/reports/1940443)
- 先知安全技术社区
- [ ] [dedeCMS后台RCE](https://xz.aliyun.com/t/12609)
- […
-
# 每日安全资讯(2023-06-14)
- SecWiki News
- [ ] [SecWiki News 2023-06-13 Review](http://www.sec-wiki.com/?2023-06-13)
- HackerOne Hacker Activity
- [ ] [[CPP]: Add query for CWE-805: Buffer Access with…
-
Hi when im using my Sorel NeuralNet and CGammaSectionsEvasionProblem attack, the engine.confidences_ seems like the attack was not successful. Do you know why and what is the parameter to increase the…
-
An ongoing Google ads malvertising campaign is spreading malware installers that leverage KoiVM virtualization technology to evade detection when installing the Formbook data stealer. \[...\]