public-mirrors/LOLBAS
1
0
Fork 0
mirror of https://github.com/LOLBAS-Project/LOLBAS synced 2025-11-04 02:29:34 +01:00
Code Issues Projects Releases Wiki Activity
792 Commits 4 Branches 0 Tags
e62749f81aaa33767ed60cf5d990d12853e5fc3b
Commit Graph

71 Commits

Author SHA1 Message Date
hegusung
b9a6cd6a87 Adding Execute tags to most LOLBas (#405) 2024-12-29 17:31:01 +00:00
frack113
2cc01b0113 Add Detection Sigma ref (#368) 2024-04-19 18:53:37 +01:00
Wietze
ebbf08ec4d Adding tags (closes #9, #318) (#362) 
* Adding various tags as a first iteration

* Adding quotes

* Adding 'Custom Format' properly

* Updating to key:value pairs

* Update template
 2024-04-03 11:53:36 -04:00
frack113
4f83231697 Update old sigma link (#303) 
* Update SigmaHQ ref

Signed-off-by: frack113 <62423083+frack113@users.noreply.github.com>

* Update SigmaHQ ref

Signed-off-by: frack113 <62423083+frack113@users.noreply.github.com>

* Update SigmaHq ref

Signed-off-by: frack113 <62423083+frack113@users.noreply.github.com>

* Update SigmaHq ref

Signed-off-by: frack113 <62423083+frack113@users.noreply.github.com>

---------

Signed-off-by: frack113 <62423083+frack113@users.noreply.github.com>
 2023-10-18 11:30:34 -04:00
eral4m
e4c2371a26 Adding scrobj.dll, shimgvw.dll INetCache downloader entries (#189) 
Co-authored-by: Wietze <wietze@users.noreply.github.com>
 2023-08-05 16:50:52 +01:00
frack113
e8ea28d4e9 Update SigmaHQ ref (#301) 
Signed-off-by: frack113 <62423083+frack113@users.noreply.github.com>
 2023-06-19 22:40:24 +01:00
frack113
1072d3dc34 Add sigma ref Detection (#272) 
* Add sigma ref

* Add missing sigma ref

* Fix sigma link

* Remove by Defender

* Remove by Defender
 2022-12-29 09:51:15 -05:00
Wietze
67e1040172 Merge remote-tracking branch 'upstream/master' into windows_11_sprint 2022-10-03 16:18:57 +01:00
xenoscr
654cdd2d61 Fixing file formating. 2022-09-11 01:33:36 -04:00
xenoscr
98813fe01b Fixing errors found in yaml lint action. 2022-09-11 01:07:18 -04:00
xenoscr
c24cad7868 Adding missing OperatingSystem values. 2022-09-10 23:48:38 -04:00
xenoscr
371d1cf2cc Correcting case in Usecase key names. 2022-09-10 23:45:28 -04:00
xenoscr
a040ca3e40 Adding missing OperatingSystem values to Ieadvpack.yml 2022-09-10 23:41:38 -04:00
xenoscr
f5baac1c45 Adding missing authors 2022-09-10 23:37:10 -04:00
xenoscr
0ed1694bf1 Correcting 'AWL bypass' to 'AWL Bypass' 2022-09-10 22:55:32 -04:00
xenoscr
ce36f924fc Removing extra --- from each yaml file 2022-09-10 22:16:47 -04:00
Wietze
7797a1967c Merge branch 'master' into windows_11_sprint 2022-05-24 08:38:50 +01:00
Chris "Lopi" Spehn
e872ce028b Merge pull request #214 from jstnk9/master 
Added new sigma rule and references to desk.cpl
 2022-05-19 10:21:21 -06:00
Wietze
b333db4f91 Fixing typo (ieaframe -> ieframe) 2022-05-15 21:06:33 +01:00
jstnk9
00bc9177bd Added new sigma rule and references 
Added new sigma rule and references
 2022-05-15 16:42:44 +02:00
Wietze
2b20998371 Remove redundant powershell command from comsvcs entry 2022-05-05 11:18:39 +01:00
Wietze
b92ee99627 Addressing @bohops's feedback 2022-05-05 11:12:22 +01:00
bohops
d93539bf9b Quick fix for syntax and removed IOC 2022-04-29 23:06:41 -04:00
cr1sp4
666e6e8645 Update Desk.yml (#210) 
Added Sigma rules.
 2022-04-29 22:52:57 -04:00
Wietze
619aafbfa2 Adding extra contributor to Desk.cpl entry 2022-04-28 13:01:35 +01:00
Wietze
4a8bdf4844 Fix casing on Desk.cpl entry 2022-04-27 11:20:13 +01:00
LuxNoBu!!shit
6ed0fb9326 Create Desk.cpl (#207) 
Co-authored-by: Wietze <wietze@users.noreply.github.com>
 2022-04-27 11:15:15 +01:00
Wietze
085aaa37b1 Adding more missed-out entries 2021-12-15 11:50:18 +00:00
Wietze
6793a7d238 Fixing various issues identified 2021-12-14 16:50:22 +00:00
Wietze
adf171d089 Applying minor format changes (incorrectly formatted dates, typos, etc.) 2021-12-14 15:53:03 +00:00
Wietze
754a451e76 Updating entries that have been confirmed to be working on Windows 11 (21H2) 2021-12-14 15:51:43 +00:00
Wietze
39d4e815af Minor formatting changes (redudant backslashes, incorrect dates, typos, etc.) 2021-12-14 14:57:32 +00:00
bohops
23dd0236ae Detection Resources and Other Updates (#179) 
* Add detection links for scripts

* Add detection links for OtherMSBins. Fixed and updated as needed.

* Add detection links for MSBins. Fixed and updated as needed.

* Add detection links for oslibraries

* Updating template for Detections

* Removing empty Detection:Sigma entries

* Remove redundant blank line

* Replacing commit URL with file URL

Co-authored-by: root <root@DESKTOP-5CR935D.localdomain>
Co-authored-by: Wietze <wietze@users.noreply.github.com>
 2021-11-15 08:19:03 -05:00
Wietze
2380c506d4 LSASS realign to T1003.001 2021-11-05 20:35:58 +00:00
Wietze
4f7ec8d2af MITRE ATT&CK realignment sprint 2021-11-05 18:58:26 +00:00
Oddvar Moe
9f9af1cfee Merge branch 'master' into feat/yamllinting 2021-10-22 15:20:35 +02:00
Filipe Spencer Lopes
b0a321e4c4 Too many whitespaces 2021-03-09 14:58:44 +01:00
Filipe Spencer Lopes
a232cfa007 Too many empty lines 2021-03-09 14:57:47 +01:00
Wietze
2e08819eef Fix Usecase field 2021-01-10 15:54:00 +00:00
Wietze
5ec4de562b Fixed acknowledgements 2021-01-10 15:45:25 +00:00
Wietze
38f9a0a032 Fixed incorrect MItreLink 2021-01-10 15:26:27 +00:00
Wietze
14dca38278 Standardise date formats (see https://yaml.org/type/timestamp.html) 2021-01-10 15:04:52 +00:00
Oddvar Moe
ed266c0983 Fixed some typos 2019-09-17 20:45:49 +02:00
Oddvar Moe
8762fc5735 Acknowledgement fix for comsvcs 2019-09-16 09:50:01 +02:00
Oddvar Moe
4ebf1ac4f7 Adjusted case sensitive type in yml file for Comsvcs 2019-09-16 09:44:14 +02:00
Oddvar Moe
11c6c7c48d Adjusted 2019-09-16 09:38:05 +02:00
plowsec
dd5df7cf3e Add Comsvcs.yml: dump lsass via signed DLL. 2019-08-30 14:12:46 +02:00
Oddvar Moe
94368c1e69 Major changes to Web portal - Small fixes to source files to adjust 2018-12-10 14:28:12 +01:00
bohops
f8e9ac5a0a Fixed a few categories 2018-09-26 10:33:52 -04:00
Oddvar Moe
bac3b9e56c Update scripts with new template. Fixed mgmt script for webportal. Adjustments to existing yml files 2018-09-26 11:41:58 +02:00