New Deployed Rules
Account ManagementExternal Remote RDP Logon from Public IPKrbRelayUp Attack Pattern File EventSuspicious Get-Variable.exe CreationFile Creation In Suspicious Directory By Msdt.EXENTDS Exfiltration Filename Patterns Groups MonitoringA Member was Added into a VIP GroupA Member was Removed From Monitoring Group Image LoadPotential Vivaldi_elf.DLL Sideloading Network Share ObjectDCERPC SMB Spoolss Named PipeCVE-2021-1675 Print Spooler Exploitation IPC Access Process […]