Yamato-Security hayabusa-rules issues

Yamato-Security / hayabusa-rules

Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.

Other

144 stars 23 forks source link

issues

Newest

Newest Most commented Recently updated Oldest Least commented Least recently updated

[Auto] Sigma Rule Supported Modifier Update report(2024-11-14 21:11:59)

#773 github-actions[bot] closed 1 day ago
0
[Auto] Sigma Update report(2024-11-14 20:15:22)

#772 github-actions[bot] closed 1 day ago
0
make the levels consistent for correlation referenced rules

#771 YamatoSecurity closed 3 days ago
0
add opening and closing messages

#770 YamatoSecurity closed 3 days ago
0
update RDP rules

#769 YamatoSecurity closed 6 days ago
0
lessen FPs

#768 YamatoSecurity closed 1 week ago
0
Add AppLocker rules

#767 YamatoSecurity opened 1 week ago
0
update actions to v4

#766 YamatoSecurity closed 1 week ago
0
udpate rds gtw rules

#765 YamatoSecurity closed 1 week ago
0
[Auto] Sigma Update report(2024-11-04 20:14:47)

#764 github-actions[bot] closed 1 week ago
0
chg: add `Microsoft-Windows-TerminalServices-Gateway/Operational` abbreviation

#763 fukusuket closed 1 week ago
0
feat: add RDS Session Reconnect rule (EID:25)

#762 fukusuket closed 1 week ago
1
[Auto] Sigma Rule Supported Modifier Update report(2024-11-01 21:11:50)

#761 github-actions[bot] closed 2 weeks ago
0
[Auto] Sigma Update report(2024-11-01 20:14:54)

#760 github-actions[bot] closed 2 weeks ago
0
[Auto] Sigma Rule Supported Modifier Update report(2024-10-28 21:11:59)

#759 github-actions[bot] closed 2 weeks ago
0
[Auto] Sigma Update report(2024-10-28 20:15:07)

#758 github-actions[bot] closed 2 weeks ago
0
[Auto] Sigma Update report(2024-10-27 20:14:17)

#757 github-actions[bot] closed 2 weeks ago
0
GitHub Actions fail due to release package name change in 2.8.0

#756 fukusuket closed 2 weeks ago
0
fix: changed GitHub Action's linux package name

#755 fukusuket closed 2 weeks ago
0
Update rules to use `fieldref` instead of `equalsfield`, etc... [mid-late November]

#754 YamatoSecurity opened 3 weeks ago
0
[Auto] Sigma Rule Supported Modifier Update report(2024-10-19 21:11:41)

#753 github-actions[bot] closed 3 weeks ago
0
update hayabusa rules to correlations

#752 YamatoSecurity closed 4 weeks ago
0
feat: Add correlation rules support tables to SupportedSigmaFieldModifiers.md

#751 fukusuket closed 4 weeks ago
0
Add correlation rules support tables to SupportedSigmaFieldModifiers.md

#750 YamatoSecurity closed 4 weeks ago
1
[Auto] Sigma Rule Supported Modifier Update report(2024-10-16 21:12:18)

#749 github-actions[bot] closed 1 month ago
0
fix: Do not update `SupportedSigmaFieldModifiers.md` when there are no updates

#748 fukusuket closed 1 month ago
0
[Auto] Sigma Rule Supported Modifier Update report(2024-10-15 21:12:16)

#747 github-actions[bot] closed 1 month ago
0
[Auto] Sigma Rule Supported Modifier Update report(2024-10-14 21:11:25)

#746 github-actions[bot] closed 1 month ago
0
Block merge if the same ID is used multiple times

#745 YamatoSecurity opened 1 month ago
0
add windash config file

#744 YamatoSecurity closed 1 month ago
0
fix: modify unsupported modifiers

#743 fukusuket closed 1 month ago
1
Update supported modifiers table

#742 YamatoSecurity closed 1 month ago
0
Add "NTFS volume mounted" rule

#741 Qazeer closed 1 month ago
2
add sigma correlation doc

#740 YamatoSecurity closed 1 month ago
1
Add documentation on sigma correlations

#739 YamatoSecurity closed 1 month ago
0
[Auto] Sigma Update report(2024-10-09 20:16:25)

#738 github-actions[bot] closed 1 month ago
0
[Auto] Sigma Rule Supported Modifier Update report(2024-10-08 21:12:14)

#737 github-actions[bot] closed 1 month ago
0
[Auto] Sigma Update report(2024-10-08 20:13:13)

#736 github-actions[bot] closed 1 month ago
0
[Auto] Sigma Update report(2024-10-07 20:15:08)

#735 github-actions[bot] closed 1 month ago
0
[Auto] Sigma Rule Supported Modifier Update report(2024-10-06 21:10:47)

#734 github-actions[bot] closed 1 month ago
0
refactor: remove unused `event_id_info.txt`

#733 fukusuket closed 1 month ago
0
[Auto] Sigma Rule Supported Modifier Update report(2024-10-03 21:11:38)

#732 github-actions[bot] closed 1 month ago
0
fix external file reference error

#731 YamatoSecurity closed 1 month ago
0
regex directory removed

#730 sdaaish closed 1 month ago
1
[Auto] Sigma Rule Supported Modifier Update report(2024-10-02 21:13:38)

#729 github-actions[bot] closed 1 month ago
0
[Auto] Sigma Rule Supported Modifier Update report(2024-10-01 21:12:40)

#728 github-actions[bot] closed 1 month ago
0
[Auto] Sigma Update report(2024-10-01 20:14:34)

#727 github-actions[bot] closed 1 month ago
0
reduce config files update readme

#726 YamatoSecurity closed 1 month ago
1
Reduce the number of config files

#725 YamatoSecurity closed 1 month ago
0
[Auto] Sigma Rule Supported Modifier Update report(2024-09-22 21:10:38)

#724 github-actions[bot] closed 1 month ago
0