-
**Describe the feature:**
The Threat Detection team is requesting Defend Agent "Behavior" rules to be separated out by their associated "rule".
**Describe a specific use case for the feature:**
…
-
### ⚠️ This issue respects the following points: ⚠️
- [X] This is a **bug**, not a question or a configuration/webserver/proxy issue.
- [X] This issue is **not** already reported on [Github](https…
-
This is at runtime. For example, if you run "bincapz /bin/ls", Elastic Defend starts popping up notifications.
I believe this is due to Elastic Defend matching the YARA rules from https://github…
-
I have found the source of a big bug. Its the log.
Sometimes when installing the program it simply just doesn't run. This is caused by the Avast Anti-Ransomware module.
When you install the progra…
-
Hello,
I figured the encryptor stopped calling the handshake.php page that inserts the victim details in the database. After investigating, I noticed the TLS handshake between encryptor and api.ipi…
-
Testing this, after seeing a BIG RED notification that there were issues (there weren't -- these were nothing but versions issues with automated image uploads), I clicked on A SINGLE ISSUE.
After t…
-
Hello Team,
When using wazuh syscheck for FIM, we are able to specify directories and/or files to be monitored.
I am trying to detect various ransomware simulations that I am conducting but hav…
-
Current builds uploaded to Nexusmods.com are tagged as 'some suspicious files'. This also disables mod downloads until site moderation manually allows it for download after an e-mail.
Since there …
-
-
### Steps to reproduce
Preconditions:
- Only approx. 1GB space left on the internal storage.
- Big video file with approx. 800MB on SDCard.
- I am currently beta tester of the Android App using 3…