Phoenix
Sigma IntelligenceBeta
All Authors
RR

Roberto Rodriguez

Cyb3rWard0g
@Cyb3rWard0g
First rule: Mon Feb 12 2018 00:00:00 GMT+0000 (Coordinated Universal Time)
Commits on SigmaHQPull Requests
Share profile card
0rules authored
19sole author
69co-authored
Top Log Sources
1
windows / security
26 rules
2
windows / image_load
10 rules
3
windows / process_creation
10 rules
Rule Types
detection
82threat hunting
6
By Severity
critical
5
high
35
medium
34
low
10
informational
4
By Status
stable
1
test
86
experimental
1
deprecated
0
unsupported
0
0
Total Rules
0
Stable Rules
0
High / Critical
0
Log Source Types
Recent RulesAll rules →
New Cron File Created
Fri Oct 15 2021 00:00:00 GMT+0000 (Coordinated Universal Time)
lowDetection
CredUI.DLL Loaded By Uncommon Process
Tue Oct 20 2020 00:00:00 GMT+0000 (Coordinated Universal Time)
mediumDetection
Startup Folder File Write
Sat May 02 2020 00:00:00 GMT+0000 (Coordinated Universal Time)
mediumDetection
RDP Sensitive Settings Changed
Sat Aug 06 2022 00:00:00 GMT+0000 (Coordinated Universal Time)
highDetection
Sysmon Channel Reference Deletion
Tue Jul 14 2020 00:00:00 GMT+0000 (Coordinated Universal Time)
highDetection
Suspicious Non PowerShell WSMAN COM Provider
Wed Jun 24 2020 00:00:00 GMT+0000 (Coordinated Universal Time)
mediumDetection
Browse all 88 rules by Roberto Rodriguez
Filter the full rule library to see only their contributions
View Rules →