Adding no defualt paths to pass schema validations

This commit is contained in:
xenoscr 2022-09-11 00:16:59 -04:00
parent c933426c1a
commit aa1e1ea2be
No known key found for this signature in database
GPG Key ID: 52C26F96860C0DAA
4 changed files with 5 additions and 3 deletions

View File

@ -18,6 +18,8 @@ Commands:
Privileges: User
MitreID: T1202
OperatingSystem: Windows 8.1 and higher, Windows Server 2012 and higher.
Full_Path:
- Path: no default
Detection:
- Sigma: https://github.com/SigmaHQ/sigma/blob/f36b1cbd2a3f1a7423f43a67a182549778700615/rules/windows/process_creation/win_susp_procdump.yml
- Sigma: https://github.com/SigmaHQ/sigma/blob/f36b1cbd2a3f1a7423f43a67a182549778700615/rules/windows/process_creation/win_procdump.yml

View File

@ -19,7 +19,7 @@ Commands:
MitreID: T1127
OperatingSystem: Windows
Full_Path:
- Path:
- Path: no default
Code_Sample:
- Code:
Detection:

View File

@ -12,7 +12,7 @@ Commands:
MitreID: T1127
OperatingSystem: Windows
Full_Path:
- Path:
- Path: no default
Code_Sample:
- Code:
Detection:

View File

@ -19,7 +19,7 @@ Commands:
MitreID: T1127
OperatingSystem: Windows
Full_Path:
- Path:
- Path: no default
Code_Sample:
- Code:
Detection: