osquery-defense-kit/detection
Thomas Stromberg f3fd822a55
Refactor recently-created-executables to fit within complexity limits
2023-05-03 17:57:58 -04:00
..
c2 fpr: libopenblas, snapd, k3d, opera, nix, ssh, cargo, adobe installer 2023-05-03 16:28:00 -04:00
collection fpr: RetailMeNot, LogiTune, macOS, mediawriter, etc 2023-05-02 15:25:36 -04:00
credentials fpr: microbit, i3, Grammarly for Safari, wine 2023-05-02 17:49:53 -04:00
discovery fpr: aws-sdk, melange, Tailscale, Xprotect, etc 2023-03-03 07:24:42 -05:00
evasion Fix trailing comma 2023-05-03 16:56:15 -04:00
execution Refactor recently-created-executables to fit within complexity limits 2023-05-03 17:57:58 -04:00
exfil fpr: libopenblas, snapd, k3d, opera, nix, ssh, cargo, adobe installer 2023-05-03 16:28:00 -04:00
impact fpr: minikube, tailscale, dex, pacman, virtualbox, steam, lsmod, busybox, etc 2023-01-23 20:33:52 -05:00
initial_access fpr: RetailMeNot, LogiTune, macOS, mediawriter, etc 2023-05-02 15:25:36 -04:00
persistence fpr: libopenblas, snapd, k3d, opera, nix, ssh, cargo, adobe installer 2023-05-03 16:28:00 -04:00
privesc fpr: libopenblas, snapd, k3d, opera, nix, ssh, cargo, adobe installer 2023-05-03 16:28:00 -04:00