Things to look into - Githubissues

Ruler-Project / ruler-project

Remote access and Antivirus Logging Database

Apache License 2.0

31 stars 3 forks source link

Things to look into #1

Open randomaccess3 opened 4 years ago

randomaccess3 commented 4 years ago

https://www.slideshare.net/heirhabarov/hunting-for-credentials-dumping-in-windows-environment

sigma yara

randomaccess3 commented 2 years ago

https://www.cyberdrain.com/documenting-with-powershell-documenting-remote-access/

randomaccess3 commented 2 years ago

https://github.com/jklepsercyber/defender-detectionhistory-parser

randomaccess3 commented 1 year ago

https://justanothergeek.chdir.org/2023/03/investigation-scenario-no-user-agent-in-the-proxy-logs/

randomaccess3 commented 1 year ago

ESET = \programdata\eset\eset security\local.db = scanned files

randomaccess3 commented 1 year ago

https://github.com/splunk/security_content/blob/develop/lookups/remote_access_software.csv

randomaccess3 commented 1 year ago

https://twitter.com/malmoeb/status/1656407847754670081?t=mJXXeX1S6LQ6NDdP-TIMXQ&s=09

randomaccess3 commented 11 months ago

https://medium.com/walmartglobaltech/state-of-the-remote-access-tools-part-2-6e290ca7261b

randomaccess3 commented 2 weeks ago

https://cloud.google.com/blog/topics/threat-intelligence/unc3944-targets-saas-applications/