D

D3F7A5105

First rule: Thu Sep 26 2019 02:00:00 GMT+0200 (Central European Summer Time)

Share profile card

0rules authored

2sole author

1co-authored

Top Log Sources

windows / file_event

windows / process_creation

windows / registry_set

Rule Types

By Severity

critical

0

high

2

medium

1

low

0

informational

0

By Status

stable

1

test

2

experimental

0

deprecated

0

unsupported

0

0

Total Rules

0

Stable Rules

0

High / Critical

0

Log Source Types

Recent RulesAll rules →

Suspicious Eventlog Clearing or Configuration Change Activity

Thu Sep 26 2019 02:00:00 GMT+0200 (Central European Summer Time)

EVTX Created In Uncommon Location

Mon Jan 02 2023 01:00:00 GMT+0100 (Central European Standard Time)

mediumDetection

Potential EventLog File Location Tampering

Mon Jan 02 2023 01:00:00 GMT+0100 (Central European Standard Time)

Browse all 3 rules by D3F7A5105

Filter the full rule library to see only their contributions