OTRF Security-Datasets issues

OTRF / Security-Datasets

Re-play Security Events

MIT License

1.59k stars 237 forks source link

issues

Newest

Newest Most commented Recently updated Oldest Least commented Least recently updated

Compound datasets - main technique: T1003.001 LSASS Memory

#65 Cyb3rPandaH closed 1 year ago
0
Added first batch of M365 atomic simulation logs

#64 blueteam0ps opened 1 year ago
0
T1003.003 OS Credential Dumping - NTDS: 3 new datasets

#63 Cyb3rPandaH closed 1 year ago
1
File Type/Link mismatch for two datasets

#62 cnnrshd opened 1 year ago
0
Issue on page docs/notebooks/atomic/linux/defense_evasion/SDLIN-201110081941.ipynb

#61 johnfkraus opened 1 year ago
0
Update to work with newer versions of Elastic?

#60 szeitlin opened 1 year ago
0
Adding script to generate json indexes for remote use.

#59 ianhelle opened 2 years ago
0
Updated metadata files and datasets

#58 Cyb3rPandaH closed 2 years ago
0
Merge pull request #1 from OTRF/master

#57 Cyb3rPandaH closed 2 years ago
0
Updating Stopping Event Log Service datasets

#56 Cyb3rPandaH closed 2 years ago
0
Updated Disable EventLog Service StartUpType

#55 Cyb3rPandaH closed 2 years ago
0
Adding 2 datasets - Windows Defense Evasion

#54 Cyb3rPandaH closed 2 years ago
0
4 datasets - Windows Defense Evasion - MiniNt Registry Key

#53 Cyb3rPandaH closed 2 years ago
0
3 Datasets - Windows - Defense Evasion

#52 Cyb3rPandaH closed 2 years ago
0
Issue on page /notebooks/atomic/linux/discovery/SDLIN-201110074812.html

#51 pcoccoli opened 2 years ago
0
Updates zip vs. tar imports (semi fixes #44)

#50 Korving-F opened 2 years ago
0
Adding aws s3 honeybucket dataset

#49 ashwin-patil closed 2 years ago
2
Benign datasets missing

#48 secDre4mer closed 2 years ago
2
Added zip2tar.py to change zip files to tars compatible with elastic script

#47 automate-tim closed 3 years ago
1
Shipping Mordor logs to HELK

#46 sec-balkan closed 3 years ago
4
Bump urllib3 from 1.25.7 to 1.26.5

#45 dependabot[bot] closed 3 years ago
0
Unable to ship mordor logs to HELK

#44 blueteambram opened 3 years ago
9
Bump urllib3 from 1.25.7 to 1.25.8

#43 dependabot[bot] closed 3 years ago
1
Error when shipping to HELK

#42 jcastillo725 closed 3 years ago
7
% ERROR: Failed to produce message (11500 bytes): Local: Unknown topic

#41 sec-balkan closed 3 years ago
2
Update to fix import argument treated as path

#40 ayman-m closed 3 years ago
1
Modor-Elastic shipper inputs issues

#39 ayman-m closed 3 years ago
1
Possible to convert .evtx log files with Mordor-WinEvents.ps1?

#38 sukster closed 3 years ago
1
Dataset missing for SDLIN-201110081941

#37 ianhelle closed 3 years ago
1
EndDate - mispelling causes invalid argument error

#36 fryguy04 closed 3 years ago
1
Typo error in examples of Mordor-WinEvents.psm1: Export-WinEvents

#35 Cyb3rPandaH closed 3 years ago
1
[SD-ART-T1003.002-01] Registry dump of SAM, creds, and secrets - SimuLand Request

#34 Cyb3rWard0g opened 4 years ago
0
[LD-CTID-FIN6] SimuLand Project Network Template Creation Request

#33 Cyb3rWard0g closed 4 years ago
1
An Error Occured while loading the archive

#32 MikzTwix closed 4 years ago
3
Issue on page /notebooks/small/windows/08_lateral_movement/SDWIN-200724174200.html

#31 duzvik closed 4 years ago
1
Update broken link to legacy libssl

#30 jwsy closed 4 years ago
1
[Question] "Does Mordor support ECS fields mapping" for winlogbeat 7.x?

#29 barvhaim closed 4 years ago
3
Using Mordor

#28 veeral-patel closed 4 years ago
1
APT29 Day 1 and Day 2 Dataset files are missing.

#27 halilozturkci closed 4 years ago
1
[QUESTION] Does Mordor support ECS fields mapping

#26 Cyb3rSn0rlax closed 4 years ago
3
Adding support for logstash http input

#25 jeffrey-e closed 3 years ago
2
[Issue] ERROR: Failed to produce message (12922 bytes): Local: Unknown Topic

#24 J0nnyDisk0 closed 3 years ago
20
Audit policy configuration

#23 0xffca closed 4 years ago
4
kafkacat not available in ubuntu 19.10+

#22 jwsy closed 4 years ago
1
Improved ES imported

#21 thomaspatzke closed 4 years ago
1
Added Elasticsearch import script

#20 thomaspatzke closed 4 years ago
1
[Question] Setup Caldera & Empire in RTO

#19 me009 closed 4 years ago
1
[Feature Request] Tag Mordor datasets with ATT&CK IDs

#18 Cyb3rWard0g closed 2 years ago
1
Update import_mordor.rst minor typo

#17 jwsy closed 5 years ago
5
Covenant Port - Private or Public?

#16 Cyb3rWard0g closed 5 years ago
1