Nasreddine Bencherchali

Nextron Systems

@nasbench @nas_bench

First rule: Sun Feb 19 2017 01:00:00 GMT+0100 (Central European Standard Time)

Commits on SigmaHQ Pull Requests

Share profile card

0rules authored

624sole author

333co-authored

Top Log Sources

windows / process_creation

462 rules

windows / registry_set

Rule Types

By Severity

critical

high

473

medium

405

low

informational

By Status

stable

test

934

experimental

deprecated

unsupported

Total Rules

Stable Rules

High / Critical

Log Source Types

Recent RulesAll rules →

Suspicious Double Extension Files

Sun Jun 19 2022 02:00:00 GMT+0200 (Central European Summer Time)

highDetection

Mail Forwarding/Redirecting Activity Via ExchangePowerShell Cmdlet

Sun Mar 01 2026 01:00:00 GMT+0100 (Central European Standard Time)

mediumThreat Hunt

System File Execution Location Anomaly

Mon Nov 27 2017 01:00:00 GMT+0100 (Central European Standard Time)

highDetection

Files With System Process Name In Unsuspected Locations

Tue May 26 2020 02:00:00 GMT+0200 (Central European Summer Time)

mediumDetection

Capabilities Discovery - Linux

Wed Dec 28 2022 01:00:00 GMT+0100 (Central European Standard Time)

lowDetection

Creation Of Non-Existent System DLL

Thu Dec 01 2022 01:00:00 GMT+0100 (Central European Standard Time)

mediumDetection

Browse all 957 rules by Nasreddine Bencherchali

Filter the full rule library to see only their contributions

View Rules →