McAfee, Trellix, Kaspersky and Microsoft Windows Security Essentials Rules

WithSecureLabs / chainsaw

Rapidly Search and Hunt through Windows Forensic Artefacts

GNU General Public License v3.0

2.7k stars 242 forks source link

McAfee, Trellix, Kaspersky and Microsoft Windows Security Essentials Rules #157

Closed reece394 closed 8 months ago

reece394 commented 8 months ago

Attached are rules for McAfee and Trellix Endpoint Security, Kaspersky Endpoint Security and Windows Security Essentials (It actually still gets Definition Updates shockingly!).

Events for testing are attached AV Test.zip