MN
Markus Neis
@markus-go
First rule: Mon Aug 28 2017 02:00:00 GMT+0200 (Central European Summer Time)
Commits on SigmaHQPull Requests0rules authored
14sole author
27co-authored
Rule Types
By Severity
critical
8
high
24
medium
7
low
2
informational
0
By Status
stable
1
test
39
experimental
1
deprecated
0
unsupported
0
0
Total Rules
0
Stable Rules
0
High / Critical
0
Log Source Types
Recent RulesAll rules →
Potential Remote SquiblyTwo Technique Execution
Wed Jan 16 2019 01:00:00 GMT+0100 (Central European Standard Time)
highDetection
Malicious PowerShell Scripts - FileCreation
Sat Apr 07 2018 02:00:00 GMT+0200 (Central European Summer Time)
highDetection
Suspicious Copy From or To System Directory
Fri Jul 03 2020 02:00:00 GMT+0200 (Central European Summer Time)
mediumDetection
PUA - Sysinternal Tool Execution - Registry
Mon Aug 28 2017 02:00:00 GMT+0200 (Central European Summer Time)
lowDetection
New RUN Key Pointing to Suspicious Folder
Sat Aug 25 2018 02:00:00 GMT+0200 (Central European Summer Time)
highDetection
Suspicious Volume Shadow Copy VSS_PS.dll Load
Wed Jul 07 2021 02:00:00 GMT+0200 (Central European Summer Time)
highDetection
Browse all 41 rules by Markus Neis
Filter the full rule library to see only their contributions