E

elhoim

First rule: Mon Nov 06 2017 00:00:00 GMT+0000 (Coordinated Universal Time)

Share profile card

0rules authored

5sole author

5co-authored

Top Log Sources

windows / process_creation

windows / file_event

windows / security

Rule Types

By Severity

critical

2

high

5

medium

3

low

0

informational

0

By Status

stable

0

test

10

experimental

0

deprecated

0

unsupported

0

0

Total Rules

0

Stable Rules

0

High / Critical

0

Log Source Types

Recent RulesAll rules →

Microsoft Sync Center Suspicious Network Connections

Thu Apr 28 2022 00:00:00 GMT+0000 (Coordinated Universal Time)

mediumDetection

Tamper Windows Defender - ScriptBlockLogging

Sun Jan 16 2022 00:00:00 GMT+0000 (Coordinated Universal Time)

Malicious Named Pipe Created

Mon Nov 06 2017 00:00:00 GMT+0000 (Coordinated Universal Time)

criticalDetection

Security Service Disabled Via Reg.EXE

Wed Jul 14 2021 00:00:00 GMT+0000 (Coordinated Universal Time)

Potentially Suspicious Child Process Of Regsvr32

Thu May 05 2022 00:00:00 GMT+0000 (Coordinated Universal Time)

Renamed Vmnat.exe Execution

Fri Sep 09 2022 00:00:00 GMT+0000 (Coordinated Universal Time)

Browse all 10 rules by elhoim

Filter the full rule library to see only their contributions