Closed jsecurity101 closed 5 years ago
Ah yes! I've been meaning to do that since he released it
Could you also add Jpcert Logontracer?
Added this in https://github.com/clong/DetectionLab/pull/177. Seems to work decently well. I don't have any spare time to add Logontracer, but feel free to open up a PR if you'd like to add it yourself.
Hey could you add Olaf Hatrong's Threat Hunting App/SplunkBase and sysmon modules https://github.com/olafhartong/ThreatHunting https://splunkbase.splunk.com/app/4305/