JR

Jonhnathan Ribeiro

First rule: Sun Jan 01 2017 01:00:00 GMT+0100 (Central European Standard Time)

Share profile card

0rules authored

0sole author

44co-authored

Top Log Sources

windows / process_creation

windows / registry_event

windows / security

Rule Types

33 emerging threat

By Severity

critical

9

high

21

medium

14

low

0

informational

0

By Status

stable

2

test

42

experimental

0

deprecated

0

unsupported

0

0

Total Rules

0

Stable Rules

0

High / Critical

0

Log Source Types

Recent RulesAll rules →

Suspicious Download Via Certutil.EXE

Wed Feb 15 2023 01:00:00 GMT+0100 (Central European Standard Time)

mediumDetection

PowerShell Download Pattern

Wed Jan 16 2019 01:00:00 GMT+0100 (Central European Standard Time)

mediumDetection

WannaCry Ransomware Activity

Wed Jan 16 2019 01:00:00 GMT+0100 (Central European Standard Time)

criticalEmerging Threat

Process Proxy Execution Via Squirrel.EXE

Thu Jun 09 2022 02:00:00 GMT+0200 (Central European Summer Time)

mediumDetection

File Decoded From Base64/Hex Via Certutil.EXE

Wed Feb 15 2023 01:00:00 GMT+0100 (Central European Standard Time)

Suspicious PowerShell Invocations - Specific - PowerShell Module

Sun Mar 05 2017 01:00:00 GMT+0100 (Central European Standard Time)

Browse all 44 rules by Jonhnathan Ribeiro

Filter the full rule library to see only their contributions