Rule Library

Sigma Rules

2 rules found for "Lars B. P. Frydenskov (Trifork Security)"

3,707Total

3,116Detection

451Emerging

137Hunting

Filters

Type

Severity

Status

Product

Exploitation Indicators Of CVE-2023-20198

Detecting exploitation indicators of CVE-2023-20198 a privilege escalation vulnerability in Cisco IOS XE Software Web UI.

Ciscosyslog

TA0004 · Privilege EscalationTA0001 · Initial Accessdetection.emerging-threats

Lars B. P. Frydenskov (Trifork Security)Fri Oct 202023

Emerging Threathightest

Exploitation Attempt Of CVE-2023-46214 Using Public POC Code

Detects exploitation attempt of CVE-2023-46214, a remote code execution (RCE) in Splunk Enterprise through insecure XML parsing using known public proof of concept code

Web Server Log

TA0008 · Lateral MovementT1210 · Exploitation of Remote Servicescve.2023-46214detection.emerging-threats

Lars B. P. Frydenskov(Trifork Security)Mon Nov 272023