Skip to content

Actions: SigmaHQ/sigma

Actions

PR Labeler Workflow

Actions

Loading...
Loading

Show workflow options

Create status badge

Loading
pr-labeler.yml
66 workflow run results
66 workflow run results

Filter by Event

Filter by Status

Filter by Branch

Filter by Actor

This is a proposal for SUID Enumeration Using Find PR Labeler Workflow #477: Pull request #5071 opened by mlakri
November 4, 2024 15:43 17s
November 4, 2024 15:43 17s
Add more imgaes to the rule (proc_creation_lnx_omigod_scx_runasprovider_executeshellcommand) PR Labeler Workflow #475: Pull request #5069 opened by CheraghiMilad
November 2, 2024 13:36 10s
November 2, 2024 13:36 10s
detect vacuuming of journald as clearing syslog PR Labeler Workflow #459: Pull request #5050 opened by wieso-itzi
October 14, 2024 10:18 16s
October 14, 2024 10:18 16s
add new rule for os credential dumping in linux PR Labeler Workflow #454: Pull request #5044 opened by CheraghiMilad
October 10, 2024 19:12 13s
October 10, 2024 19:12 13s
Update win_security_register_new_logon_process_by_rubeus.yml PR Labeler Workflow #452: Pull request #5041 opened by Koifman
October 9, 2024 09:19 16s
October 9, 2024 09:19 16s
update rule with new images PR Labeler Workflow #450: Pull request #5039 opened by CheraghiMilad
October 8, 2024 17:48 13s
October 8, 2024 17:48 13s
sigma rules around using MSI for privilege escalation PR Labeler Workflow #429: Pull request #5010 opened by sec-hbaer
September 16, 2024 08:08 15s
September 16, 2024 08:08 15s
Create proc_creation_win_code_devtunnel_tunneling.yaml PR Labeler Workflow #424: Pull request #5004 opened by 0xAnalyst
September 9, 2024 11:11 22s
September 9, 2024 11:11 22s
PowerShell Web Access PR Labeler Workflow #417: Pull request #4997 opened by MHaggis
September 3, 2024 19:56 12s
September 3, 2024 19:56 12s
Add Sigma rule for CVE-2024-38063 IPv6 memory corruption detection PR Labeler Workflow #412: Pull request #4988 opened by zenzue
August 28, 2024 09:28 18s
August 28, 2024 09:28 18s
Detect Execution of BCP Utility PR Labeler Workflow #397: Pull request #4968 opened by Mahir-Ali-khan
August 13, 2024 07:01 14s
August 13, 2024 07:01 14s
Update of the fields for EventId 5145 PR Labeler Workflow #377: Pull request #4945 opened by GtUGtHGtNDtEUaE
August 1, 2024 12:33 15s
August 1, 2024 12:33 15s
Moved Two File Event Rules Under File Access PR Labeler Workflow #356: Pull request #4920 opened by fornotes
July 18, 2024 21:04 16s
July 18, 2024 21:04 16s
New Rules PR Labeler Workflow #351: Pull request #4913 opened by skaynum
July 12, 2024 10:02 15s
July 12, 2024 10:02 15s
Added Rule - Microsoft Office Word Add-In Load (WLL) PR Labeler Workflow #348: Pull request #4910 opened by dr0pd34d
July 10, 2024 20:06 14s
July 10, 2024 20:06 14s
Update proc_creation_lnx_exploit_cve_2024_3094_sshd_child_process.yml PR Labeler Workflow #336: Pull request #4898 opened by ruppde
July 3, 2024 17:22 15s
July 3, 2024 17:22 15s
Update New Behaviours Okta Admin Console rule PR Labeler Workflow #332: Pull request #4890 opened by kelnage
June 26, 2024 13:36 13s
June 26, 2024 13:36 13s
XXD Command Line Obfuscation on Linux & Compiler Execution Within Kubernetes Containers & Three Others PR Labeler Workflow #327: Pull request #4884 opened by signalblur
June 21, 2024 16:46 14s
June 21, 2024 16:46 14s
Shorten AV string "Mimikatz" to "mikatz" PR Labeler Workflow #320: Pull request #4873 opened by ruppde
June 5, 2024 19:06 16s
June 5, 2024 19:06 16s
Refactor azure_aad_secops_ca_policy_updatedby_bad_actor.yml to use a map of fields PR Labeler Workflow #314: Pull request #4864 opened by cygnetix
May 28, 2024 01:03 11s
May 28, 2024 01:03 11s
Create net_connection_win_cloudflared_tunnels PR Labeler Workflow #313: Pull request #4863 opened by deFr0ggy
May 26, 2024 18:09 17s
May 26, 2024 18:09 17s
Suspicious Browser Launch PR Labeler Workflow #296: Pull request #4840 opened by skaynum
April 30, 2024 21:13 18s
April 30, 2024 21:13 18s
Network connection from Microsoft Dialer PR Labeler Workflow #291: Pull request #4834 opened by CertainlyP
April 24, 2024 09:26 12s
April 24, 2024 09:26 12s
Add new rule to detect MFA bypass in Cisco Duo PR Labeler Workflow #275: Pull request #4814 opened by nikitah4x
April 14, 2024 09:32 11s
April 14, 2024 09:32 11s
Update proc_creation_lnx_exploit_cve_2024_3094_sshd_child_process.yml PR Labeler Workflow #273: Pull request #4811 opened by ruppde
April 12, 2024 17:28 13s
April 12, 2024 17:28 13s