keyboardcrunch-sentinelone-attack-queries

mirror of https://github.com/keyboardcrunch/SentinelOne-ATTACK-Queries synced 2026-06-08 17:17:21 +00:00

Author	SHA1	Message	Date
keyboardcrunch	08549f4716	Update queries.md	2020-09-15 19:15:32 -05:00
keyboardcrunch	254ec7feb7	Added T1546.013 T1546.013 Malicious Process Start Added to Powershell Profile	2020-09-15 17:20:50 -05:00
keyboardcrunch	a26444ba8d	Update queries.md	2020-09-15 17:01:01 -05:00
keyboardcrunch	af530aae58	T1134.004 Parent PID Spoofing added	2020-09-15 16:47:21 -05:00
keyboardcrunch	2b11a2768b	Added T1546.007 netsh helper dll	2020-09-15 15:44:50 -05:00
keyboardcrunch	cfdf3a71a0	Update queries.md	2020-09-15 15:23:25 -05:00
keyboardcrunch	16bd9f43d0	formatting and added technique adde T1546.012 Image File Execution Options Injection	2020-09-15 14:13:18 -05:00
keyboardcrunch	1aedf1532f	Adding T1574.002 and T1078.001 techniques	2020-09-15 13:29:47 -05:00
keyboardcrunch	02a1dd8b7f	Added additional queries, updated formatting.	2020-09-15 12:41:24 -05:00
keyboardcrunch	87e6932879	added T1574.012 COR Profiler	2020-09-14 19:53:24 -05:00
keyboardcrunch	fda9ecadb2	Create queries.md working my way through RedCanary Atomic Red Team and building detections	2020-09-14 19:37:26 -05:00
keyboardcrunch	16e465ea05	Initial commit	2020-09-14 19:36:19 -05:00

1 2