Skip to content

Activity

Showing most recent first

Update execution_sap_netweaver_jsp_webshell.toml

Samirbouspushed 1 commit to SAP-NV • 426e0d6…9c39262 • 
20 hours ago

++

Samirbouspushed 1 commit to SAP-NV • f48721b…426e0d6 • 
20 hours ago

[New] Potential SAP NetWeaver Exploitation

Samirbouscreated SAP-NV • f48721b • 
20 hours ago

Lock versions for releases: 8.14,8.15,8.16,8.17,8.18,9.0 (#4665)

tradebot-elasticpushed 1 commit to 9.0 • 508f0a3…517f942 • 
yesterday

Lock versions for releases: 8.14,8.15,8.16,8.17,8.18,9.0 (#4665)

tradebot-elasticpushed 1 commit to 8.18 • 66701ff…571e524 • 
yesterday

Lock versions for releases: 8.14,8.15,8.16,8.17,8.18,9.0 (#4665)

tradebot-elasticpushed 1 commit to 8.17 • 6684bf1…46e4d04 • 
yesterday

Lock versions for releases: 8.14,8.15,8.16,8.17,8.18,9.0 (#4665)

tradebot-elasticpushed 1 commit to 8.16 • da1b4c3…2ef3bc5 • 
yesterday

Lock versions for releases: 8.14,8.15,8.16,8.17,8.18,9.0 (#4665)

tradebot-elasticpushed 1 commit to 8.15 • d014379…e669129 • 
yesterday

Lock versions for releases: 8.14,8.15,8.16,8.17,8.18,9.0 (#4665)

tradebot-elasticpushed 1 commit to 8.14 • e05441e…4ad25e1 • 
yesterday

Deleted branch

shashank-elasticdeleted lock_versions • 
yesterday

Lock versions for releases: 8.14,8.15,8.16,8.17,8.18,9.0 (#4665)

Pull request merge
shashank-elasticpushed 1 commit to main • f02ccfe…97e6d8b • 
yesterday

Add patch version

shashank-elasticpushed 1 commit to lock_versions • 53b5642…208d059 • 
yesterday

Lock versions for releases: 8.14,8.15,8.16,8.17,8.18,9.0

shashank-elasticcreated lock_versions • 53b5642 • 
yesterday

[New Rule] Suspicious Path Mounted

Aegrahcreated suspicious-mount-created • 8c68cc9 • 
yesterday

Update and rename discovery_manual_mount_discovery_via_exports.toml t…

Aegrahpushed 1 commit to exports-discovery-linux • 8b7255d…67ea751 • 
yesterday

[New Rule] Git Repository or File Download to Suspicious Directory

Aegrahcreated git-repo-or-file-download-to-sus-dir • 69996ae • 
yesterday

[New Rule] Manual Mount Discovery via /etc/exports

Aegrahcreated exports-discovery-linux • 8b7255d • 
yesterday

Update rules/linux/discovery_proc_maps_read.toml

Aegrahpushed 1 commit to proc-maps-read-fn-tuning • d3bb88c…a930791 • 
yesterday

Update rules/linux/credential_access_manual_memory_dumping.toml

Aegrahpushed 1 commit to new-rule-memory-reading • 8118b0b…30317a4 • 
yesterday

Update rules/linux/privilege_escalation_docker_release_file_creation.…

Aegrahpushed 1 commit to release-file-creation-docker • af0a8ee…2793a4d • 
yesterday

[New Rule] Docker Release File Creation

Aegrahcreated release-file-creation-docker • af0a8ee • 
yesterday

[New Rule] Manual Memory Dumping via Proc Filesystem

Aegrahcreated new-rule-memory-reading • 8118b0b • 
yesterday

Update rules/linux/discovery_proc_maps_read.toml

Aegrahpushed 1 commit to proc-maps-read-fn-tuning • af58608…d3bb88c • 
yesterday

Update discovery_proc_maps_read.toml

Aegrahpushed 1 commit to proc-maps-read-fn-tuning • 26e26a7…af58608 • 
yesterday

[FN Tuning] Suspicious /proc/maps Discovery

Aegrahcreated proc-maps-read-fn-tuning • 26e26a7 • 
yesterday

[New Rule] Potential Linux Tunneling and/or Port Forwarding via SSH O…

Aegrahcreated ssh-port-forwarding-tunneling • 5d5558a • 
yesterday

Merge branch 'double_bump_check_automation' of github.com:elastic/det…

eric-forte-elasticpushed 2 commits to double_bump_check_automation • ac2c8bb…a4e813c • 
2 days ago

Merge branch 'main' into double_bump_check_automation

eric-forte-elasticpushed 2 commits to double_bump_check_automation • b90e3b5…ac2c8bb • 
2 days ago

Re-restrict to main

eric-forte-elasticpushed 1 commit to double_bump_check_automation • e76d804…b90e3b5 • 
2 days ago

Locked versions for releases: 8.14,8.15,8.16,8.17,8.18,9.0

github-actions[bot]created version-lock-e76d8043b • 964e371 • 
2 days ago