Rule Library

Sigma Rules

2 rules found for "Aedan Russell"

3,707Total

3,116Detection

451Emerging

137Hunting

Filters

Type

Severity

Status

Product

Category

Detectionmediumtest

Chromium Browser Instance Executed With Custom Extension

Detects a Chromium based browser process with the 'load-extension' flag to start a instance with a custom extension

WindowsProcess Creation

TA0003 · Persistenceattack.t1176.001

Aedan Russell+2Sun Jun 19windows

Detectionhightest

Suspicious Chromium Browser Instance Executed With Custom Extension

Detects a suspicious process spawning a Chromium based browser process with the 'load-extension' flag to start an instance with a custom extension

WindowsProcess Creation

TA0003 · Persistenceattack.t1176.001

Aedan Russell+2Sun Jun 19windows