ES
Elastic Security
@elastic
First rule: Thu Jul 22 2021 02:00:00 GMT+0200 (Central European Summer Time)
Commits on SigmaHQPull Requests0rules authored
1sole author
37co-authored
Rule Types
By Severity
critical
0
high
17
medium
19
low
2
informational
0
By Status
stable
0
test
34
experimental
4
deprecated
0
unsupported
0
0
Total Rules
0
Stable Rules
0
High / Critical
0
Log Source Types
Recent RulesAll rules →
Potential SAP NetWeaver Webshell Creation - Linux
Mon Apr 28 2025 02:00:00 GMT+0200 (Central European Summer Time)
mediumEmerging Threat
Potential SAP NetWeaver Webshell Creation
Mon Apr 28 2025 02:00:00 GMT+0200 (Central European Summer Time)
mediumEmerging Threat
Suspicious Child Process of SAP NetWeaver - Linux
Mon Apr 28 2025 02:00:00 GMT+0200 (Central European Summer Time)
mediumEmerging Threat
Suspicious Child Process of SAP NetWeaver
Mon Apr 28 2025 02:00:00 GMT+0200 (Central European Summer Time)
mediumEmerging Threat
Conhost Spawned By Uncommon Parent Process
Wed Sep 28 2022 02:00:00 GMT+0200 (Central European Summer Time)
mediumDetection
Suspicious Scheduled Task Creation via Masqueraded XML File
Thu Apr 20 2023 02:00:00 GMT+0200 (Central European Summer Time)
mediumDetection
Browse all 38 rules by Elastic Security
Filter the full rule library to see only their contributions