Pull requests: SwiftOnSecurity/sysmon-config

New pull request New

28 Open 68 Closed

Pull requests list

Loldrivers extension

#193 opened Jul 3, 2024 by khulnasoft-bot

Accept EULA cannot combine with loading a config

#180 opened May 12, 2023 by HenkPoley

Line 239 registry formatting

#179 opened Mar 29, 2023 by kevinelwell

Add pwsh.exe to list of suspicious Windows tools

#176 opened Jan 28, 2023 by miscalibrated

Added Installscript

#174 opened Dec 23, 2022 by bytew0lf

Many errors when install

#170 opened Oct 18, 2022 by MrAndrii

Add some "TargetFilename" in "SYSMON EVENT ID 15" section

#164 opened Feb 21, 2022 by matcha-shake

Update the Antivirus Tampering configuration, using general condition

#160 opened Oct 18, 2021 by hieuttmmo

test

#159 opened Sep 13, 2021 by w09rkerbee

Add Splunk exclusions per sysmon-modular

#156 opened Jul 30, 2021 by Gusty-Dusty

Registry key to detect definitions of Windows Defender Exclusions

#155 opened Jul 12, 2021 by phantinuss

Outlook Webview URL changes

#154 opened Jun 14, 2021 by humpalum

Added named pipe used by Cobalt Strike

#150 opened May 26, 2021 by WojciechLesicki

Fix FileDelete example.

#149 opened May 26, 2021 by sigalpes

Add exclusion for WUDFHost.exe to Event 11

#148 opened Apr 19, 2021 by lord-garmadon

Corrected event name for Event ID 23

#147 opened Apr 16, 2021 by lord-garmadon

Monitor for .js files for Microsoft JScript

#146 opened Apr 7, 2021 by KevinDeNotariis

Added WinRM ports and Service names

#145 opened Mar 16, 2021 by tobor88

Add ASP files for webshells

#144 opened Mar 8, 2021 by GossiTheDog

Update NetworkConnect rule to fix Metasploit default port

#143 opened Mar 6, 2021 by brokenvhs

Ransomware artifacts added to File Creation config

#140 opened Feb 18, 2021 by sduff

MiniNT registry key check

#130 opened Sep 9, 2020 by ThisIsNotTheUserYouAreLookingFor

Added detection for CVE-2017-0199 and CVE-2017-8759.

#118 opened May 21, 2020 by d4rk-d4nph3

Printer port changes as used in CVE-2020-1048

#115 opened May 15, 2020 by Neo23x0

Update sysmonconfig-export.xml

#108 opened Mar 1, 2020 by harmonkc

ProTip! Add no:assignee to see everything that’s not assigned.

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Pull requests: SwiftOnSecurity/sysmon-config

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Pull requests list