Mirrors/keyboardcrunch-sentinelone-attack-queries
1
0
Fork 0
mirror of https://github.com/keyboardcrunch/SentinelOne-ATTACK-Queries synced 2026-06-08 17:17:21 +00:00
Code Issues Packages Projects Releases Wiki Activity
42 Commits 1 Branch 0 Tags
210f123b47b79da5073272ba1360b9e8a31f5c60
Commit Graph

42 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
@ 210f123b47 title adjustment 2020-09-18 14:30:53 -05:00
@ 8bf41bd1eb Added T1176 Browser Extension Installation 2020-09-18 14:30:29 -05:00
@ 747886353b added T1197 BITS Jobs 2020-09-18 11:49:09 -05:00
@ 1a9bf0677a added T1136.001 Local Account 2020-09-18 11:16:12 -05:00
@ fd985833c7 added T1098 Account Manipulation 2020-09-18 10:46:39 -05:00
@ 6ef80dde53 updated persistence 2020-09-18 09:28:39 -05:00
@ 5a53575d17 fixed file name 2020-09-17 22:58:30 -05:00
@ 53544d9fc7 more techniques 2020-09-17 22:57:06 -05:00
@ 3fd635488c updated language 2020-09-17 21:35:53 -05:00
@ 16d274b826 added T1218.001 compiled html files 2020-09-17 21:33:53 -05:00
@ c3ecbc62a5 Added T1070.001 eventlog clearing 2020-09-17 21:16:36 -05:00
@ 68e93b08eb added desc to T1027.004 2020-09-17 21:01:31 -05:00
@ c440e902e8 more queries 2020-09-17 20:57:35 -05:00
@ 2f1a7813d3 updated queries 2020-09-17 19:34:17 -05:00
@ 0746ad946e fix formatting 2020-09-17 16:44:50 -05:00
@ 56264d2db1 fix formatting 2020-09-17 16:43:33 -05:00
@ b4081d94bb merging changes 2020-09-17 16:41:15 -05:00
keyboardcrunch a758a042c5 Update README.md 2020-09-16 18:04:11 -05:00
keyboardcrunch a2fd422766 Add files via upload 2020-09-16 18:02:19 -05:00
keyboardcrunch 92ce710612 Update DefenseEvasion.md 2020-09-16 13:24:41 -05:00
keyboardcrunch 29c34d3d21 Update PrivilegeEscalation.md 2020-09-16 13:24:21 -05:00
keyboardcrunch 113a4dd908 Update README.md 2020-09-15 22:44:12 -05:00
keyboardcrunch 9b036e6363 Update README.md 2020-09-15 22:42:25 -05:00
keyboardcrunch a11206d450 Create README.md 2020-09-15 22:35:58 -05:00
keyboardcrunch e0b325f71d Create DefenseEvasion.md 2020-09-15 22:28:41 -05:00
keyboardcrunch 30a46908af Update and rename queries.md to PrivilegeEscalation.md 2020-09-15 22:09:46 -05:00
keyboardcrunch 289e26e94d Completed PrivEsc tactics. 2020-09-15 22:06:57 -05:00
keyboardcrunch 1193f4dad0 Update queries.md 2020-09-15 21:38:22 -05:00
keyboardcrunch 94daff9080 Update queries.md 2020-09-15 21:10:54 -05:00
keyboardcrunch a64e020479 T1546.002 Screensaver 2020-09-15 20:28:52 -05:00
keyboardcrunch 08549f4716 Update queries.md 2020-09-15 19:15:32 -05:00
keyboardcrunch 254ec7feb7 Added T1546.013 
T1546.013 Malicious Process Start Added to Powershell Profile
 2020-09-15 17:20:50 -05:00
keyboardcrunch a26444ba8d Update queries.md 2020-09-15 17:01:01 -05:00
keyboardcrunch af530aae58 T1134.004 Parent PID Spoofing added 2020-09-15 16:47:21 -05:00
keyboardcrunch 2b11a2768b Added T1546.007 netsh helper dll 2020-09-15 15:44:50 -05:00
keyboardcrunch cfdf3a71a0 Update queries.md 2020-09-15 15:23:25 -05:00
keyboardcrunch 16bd9f43d0 formatting and added technique 
adde T1546.012 Image File Execution Options Injection
 2020-09-15 14:13:18 -05:00
keyboardcrunch 1aedf1532f Adding T1574.002 and T1078.001 techniques 2020-09-15 13:29:47 -05:00
keyboardcrunch 02a1dd8b7f Added additional queries, updated formatting. 2020-09-15 12:41:24 -05:00
keyboardcrunch 87e6932879 added T1574.012 COR Profiler 2020-09-14 19:53:24 -05:00
keyboardcrunch fda9ecadb2 Create queries.md 
working my way through RedCanary Atomic Red Team and building detections
 2020-09-14 19:37:26 -05:00
keyboardcrunch 16e465ea05 Initial commit 2020-09-14 19:36:19 -05:00