| .. |
|
c2
|
false positives: dots, ipn, apport-gtk, homebrew, hyperkey, contexts
|
2023-01-09 09:34:20 -05:00 |
|
collection
|
Flush out more false positives across the stack
|
2023-01-06 10:36:48 -05:00 |
|
credentials
|
false positives: dots, ipn, apport-gtk, homebrew, hyperkey, contexts
|
2023-01-09 09:34:20 -05:00 |
|
discovery
|
Speed query up by first referencing processes table
|
2023-01-13 13:48:22 -05:00 |
|
evasion
|
Also include binaries running from a hidden directory (1 deep)
|
2023-01-13 13:48:47 -05:00 |
|
execution
|
Fix regular expressions, include more commands
|
2023-01-13 13:50:37 -05:00 |
|
exfil
|
Add some hash fields, fix some false positives
|
2023-01-09 09:04:38 -05:00 |
|
impact
|
Resolve latest reported false positives
|
2022-12-02 11:20:18 -05:00 |
|
initial_access
|
Remove Python whitelist, see pymafka
|
2023-01-13 13:47:19 -05:00 |
|
persistence
|
false positives: dots, ipn, apport-gtk, homebrew, hyperkey, contexts
|
2023-01-09 09:34:20 -05:00 |
|
privesc
|
false positives: dots, ipn, apport-gtk, homebrew, hyperkey, contexts
|
2023-01-09 09:34:20 -05:00 |
