Skip to content

Actions: frack113/sigma

Actions

Validate Sigma rules

Actions

Loading...
Loading

Show workflow options

Create status badge

Loading
sigma-validation.yml
233 workflow runs
233 workflow runs

Filter by Event

Filter by Status

Filter by Branch

Filter by Actor

Update proc_access_win_susp_all_access_uncommon_target.yml Validate Sigma rules #220: Commit d04c36d pushed by nasbench
May 27, 2024 12:19 36s redcannary_process_inj
redcannary_process_inj
May 27, 2024 12:19 36s
update rule Validate Sigma rules #219: Commit a9d0be1 pushed by nasbench
May 27, 2024 12:18 33s redcannary_process_inj
redcannary_process_inj
May 27, 2024 12:18 33s
Fix trailing spaces Validate Sigma rules #218: Commit 6bf9e52 pushed by frack113
May 23, 2024 18:16 36s redcannary_process_inj
redcannary_process_inj
May 23, 2024 18:16 36s
redcanaryco Process Injection Validate Sigma rules #217: Commit e8096de pushed by frack113
May 23, 2024 18:13 34s redcannary_process_inj
redcannary_process_inj
May 23, 2024 18:13 34s
Remove smart quotes from file_event_win_iphlpapi_dll_sideloading.yml … Validate Sigma rules #216: Commit f334abf pushed by frack113
May 17, 2024 13:42 33s master
master
May 17, 2024 13:42 33s
Merge PR #4853 from @nasbench - Add some cosmetic changes and small u… Validate Sigma rules #215: Commit ed789f5 pushed by frack113
May 13, 2024 16:17 38s master
master
May 13, 2024 16:17 38s
Merge PR #4852 from @frack113 - Add `Potential Packet Capture Activit… Validate Sigma rules #214: Commit fb3a72b pushed by frack113
May 13, 2024 11:27 38s master
master
May 13, 2024 11:27 38s
chore: update logic Validate Sigma rules #213: Commit 2b04357 pushed by nasbench
May 13, 2024 11:10 33s atomic_t1040
atomic_t1040
May 13, 2024 11:10 33s
Merge PR #4850 from @frack113 - Cleanup rule conditions to align with… Validate Sigma rules #212: Commit 7d6f32d pushed by frack113
May 13, 2024 11:01 34s master
master
May 13, 2024 11:01 34s
chore: additional updates Validate Sigma rules #211: Commit fb71dd8 pushed by nasbench
May 13, 2024 09:58 39s cleanup
cleanup
May 13, 2024 09:58 39s
feat: improve wbadmin rules Validate Sigma rules #210: Commit 23bdf18 pushed by nasbench
May 13, 2024 08:54 34s lolbas_wbadmin
lolbas_wbadmin
May 13, 2024 08:54 34s
Fix yaml Validate Sigma rules #209: Commit efeac41 pushed by frack113
May 12, 2024 08:41 38s atomic_t1040
atomic_t1040
May 12, 2024 08:41 38s
Add posh_ps_capture_network Validate Sigma rules #208: Commit b7d2139 pushed by frack113
May 12, 2024 08:27 35s atomic_t1040
atomic_t1040
May 12, 2024 08:27 35s
update selection_powershell Validate Sigma rules #207: Commit d904579 pushed by frack113
May 11, 2024 14:53 32s fp_apt_forest_blizzard
fp_apt_forest_blizzard
May 11, 2024 14:53 32s
Cleanup condition writing Validate Sigma rules #206: Commit 6d1ecd3 pushed by frack113
May 11, 2024 06:09 37s cleanup
cleanup
May 11, 2024 06:09 37s
Merge PR #4822 from @hasselj - Add `Potentially Suspicious Malware Ca… Validate Sigma rules #205: Commit 6412c1a pushed by frack113
May 10, 2024 15:25 37s master
master
May 10, 2024 15:25 37s
feat: update level and filters Validate Sigma rules #204: Commit 2d4f2d6 pushed by nasbench
May 10, 2024 14:51 32s outlook
outlook
May 10, 2024 14:51 32s
feat: update logic Validate Sigma rules #203: Commit 6e622bc pushed by nasbench
May 10, 2024 13:52 38s Redcannary_T1562_004
Redcannary_T1562_004
May 10, 2024 13:52 38s
feat: split rules and update metadata Validate Sigma rules #202: Commit 3a31e33 pushed by nasbench
May 10, 2024 11:28 37s redcannary_T1548_002
redcannary_T1548_002
May 10, 2024 11:28 37s
Add new registry keys Validate Sigma rules #201: Commit 86380f4 pushed by frack113
May 5, 2024 09:45 33s redcannary_T1548_002
redcannary_T1548_002
May 5, 2024 09:45 33s
Fix allow can be write with or without quote Validate Sigma rules #200: Commit 6f7a68a pushed by frack113
May 3, 2024 14:47 39s Redcannary_T1562_004
Redcannary_T1562_004
May 3, 2024 14:47 39s
Rename ps_script rule Validate Sigma rules #199: Commit 74c66e3 pushed by frack113
May 3, 2024 14:10 31s Redcannary_T1562_004
Redcannary_T1562_004
May 3, 2024 14:10 31s
Add New-NetFirewallRule rule from rhysida ttp Validate Sigma rules #198: Commit e7142ce pushed by frack113
May 3, 2024 14:02 39s Redcannary_T1562_004
Redcannary_T1562_004
May 3, 2024 14:02 39s
Fix yaml Validate Sigma rules #197: Commit f292986 pushed by frack113
May 3, 2024 13:05 34s outlook
outlook
May 3, 2024 13:05 34s
Update file_access_win_outlook_mail_credential_access.yml Validate Sigma rules #196: Commit c29d8ea pushed by frack113
May 3, 2024 12:55 35s outlook
outlook
May 3, 2024 12:55 35s