Skip to content

Pull requests: olafhartong/sysmon-modular

New pull request New
23 Open 86 Closed
23 Open 86 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

Add Sysmon Rule: Certutil Abuse Detection (T1105)
#214 opened Jul 13, 2025 by LeamanB Loading…
Update include_all.xml
#211 opened Feb 24, 2025 by efaraas Loading…
Create include_powershell_profiles.xml
#210 opened Nov 5, 2024 by zbalkan Loading…
More ps script policy test exclusion
#207 opened Aug 21, 2024 by ipfyx Loading…
Fix some typo
#206 opened Aug 21, 2024 by ipfyx Loading…
1
fix incorrection logic exclusion for Powershell PipeEvent
#205 opened Aug 21, 2024 by ipfyx Loading…
Adding .jse extension to include_javascript.xml
#204 opened Jul 22, 2024 by fornotes Loading…
Update include_possible_dll_injection.xml
#203 opened Jul 17, 2024 by fornotes Loading…
Update include_microsoft_cmstp.xml
#202 opened Jul 17, 2024 by fornotes Loading…
Improving Sysmon config parsing
#201 opened May 4, 2024 by MihhailSokolov Loading…
ImageLoad detections from hijacklibs.net
#195 opened Jan 29, 2024 by nterl0k Loading…
included image load of dbghelp.dll or dbgcore.dll
#192 opened Nov 23, 2023 by swachchhanda000 Loading…
change 25 include_all to include on match
#188 opened Oct 23, 2023 by clairmont32 Loading…
1
Create include_Havoc_C2.xml
#186 opened Aug 22, 2023 by giomke Loading…
Update for Kaspersky Modules
#183 opened Aug 8, 2023 by maiconjs Loading…
Fixed filename typos.
#182 opened Aug 3, 2023 by fahersom Loading…
disable blocking download of an executable
#180 opened Jul 29, 2023 by Yaxser Loading…
#178 - Adds schema update for research configuration file.
#179 opened Jul 29, 2023 by Korving-F Loading…
Updates - PSExec_PSH - SecureBoot - Office Process Creation - Zoom
#177 opened Jul 14, 2023 by DCData-OPS Loading…
Update exclude_svchost.xml
#176 opened Jul 12, 2023 by giomke Loading…
Enriched rule names
#82 opened Apr 13, 2021 by Doserdog Loading…
4
Version 1.0 of Sysmon to MITRE ATT&CK compare script
#80 opened Apr 12, 2021 by nicpenning Loading…
4
File creation of ransomware extensions and notes
#77 opened Feb 26, 2021 by sduff Loading…
1
ProTip! Type g p on any issue or pull request to go back to the pull request listing page.