{"payload":{"feedbackUrl":"https://github.com/orgs/community/discussions/53140","repo":{"id":332519962,"defaultBranch":"master","name":"sigma","ownerLogin":"nasbench","currentUserCanPush":false,"isFork":true,"isEmpty":false,"createdAt":"2021-01-24T18:08:26.000Z","ownerAvatar":"https://avatars.githubusercontent.com/u/8741929?v=4","public":true,"private":false,"isOrgOwned":false},"refInfo":{"name":"","listCacheKey":"v0:1721216936.0","currentOid":""},"activityList":{"items":[{"before":null,"after":"af9ffdb2fd22a7135432fb17d8234be98c88b323","ref":"refs/heads/meta-rules-integration","pushedAt":"2024-07-17T11:48:56.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"nasbench","name":"Nasreddine Bencherchali","path":"/nasbench","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8741929?s=80&v=4"},"commit":{"message":"Merge branch 'SigmaHQ:master' into master","shortMessageHtmlLink":"Merge branch 'SigmaHQ:master' into master"}},{"before":null,"after":"af9ffdb2fd22a7135432fb17d8234be98c88b323","ref":"refs/heads/updates-jul-aug","pushedAt":"2024-07-17T11:48:36.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"nasbench","name":"Nasreddine Bencherchali","path":"/nasbench","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8741929?s=80&v=4"},"commit":{"message":"Merge branch 'SigmaHQ:master' into master","shortMessageHtmlLink":"Merge branch 'SigmaHQ:master' into master"}},{"before":"f2985e65c2a2a30017a97427f3352ec3ed390fbf","after":"af9ffdb2fd22a7135432fb17d8234be98c88b323","ref":"refs/heads/master","pushedAt":"2024-07-17T09:04:40.000Z","pushType":"push","commitsCount":3,"pusher":{"login":"nasbench","name":"Nasreddine Bencherchali","path":"/nasbench","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8741929?s=80&v=4"},"commit":{"message":"Merge branch 'SigmaHQ:master' into master","shortMessageHtmlLink":"Merge branch 'SigmaHQ:master' into master"}},{"before":"ba6ccc586bfeed4aa7efac80c9ccb6b897bae0d5","after":"9cd7f972ee997dd34bb8700f725c6f9b87c16d9e","ref":"refs/heads/updates-july","pushedAt":"2024-07-17T08:28:58.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"nasbench","name":"Nasreddine Bencherchali","path":"/nasbench","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8741929?s=80&v=4"},"commit":{"message":"Update registry_set_persistence_com_hijacking_builtin.yml","shortMessageHtmlLink":"Update registry_set_persistence_com_hijacking_builtin.yml"}},{"before":"280747e33f2e6b75492d489e755dd7e554ef778e","after":"ba6ccc586bfeed4aa7efac80c9ccb6b897bae0d5","ref":"refs/heads/updates-july","pushedAt":"2024-07-17T08:23:04.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"nasbench","name":"Nasreddine Bencherchali","path":"/nasbench","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8741929?s=80&v=4"},"commit":{"message":"even more updates","shortMessageHtmlLink":"even more updates"}},{"before":"8674dd08ec707f6e39254fe9811a6461cd5746cb","after":"280747e33f2e6b75492d489e755dd7e554ef778e","ref":"refs/heads/updates-july","pushedAt":"2024-07-16T11:15:54.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"nasbench","name":"Nasreddine Bencherchali","path":"/nasbench","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8741929?s=80&v=4"},"commit":{"message":"multiple updates","shortMessageHtmlLink":"multiple updates"}},{"before":"9d2c6cae6dd198f72b1d21b69d2752abe1187518","after":"8674dd08ec707f6e39254fe9811a6461cd5746cb","ref":"refs/heads/updates-july","pushedAt":"2024-07-16T09:36:52.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"nasbench","name":"Nasreddine Bencherchali","path":"/nasbench","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8741929?s=80&v=4"},"commit":{"message":"Update registry_set_susp_run_key_img_folder.yml","shortMessageHtmlLink":"Update registry_set_susp_run_key_img_folder.yml"}},{"before":"cd7cc10ed81363d004a448a1b9d2b2ff1c6a1be0","after":"f2985e65c2a2a30017a97427f3352ec3ed390fbf","ref":"refs/heads/master","pushedAt":"2024-07-16T09:32:44.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"nasbench","name":"Nasreddine Bencherchali","path":"/nasbench","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8741929?s=80&v=4"},"commit":{"message":"Revert \"Update registry_set_susp_run_key_img_folder.yml\"\n\nThis reverts commit cd7cc10ed81363d004a448a1b9d2b2ff1c6a1be0.","shortMessageHtmlLink":"Revert \"Update registry_set_susp_run_key_img_folder.yml\""}},{"before":"568f1aef336e62a0c52bc28e6b635950ca900f97","after":"cd7cc10ed81363d004a448a1b9d2b2ff1c6a1be0","ref":"refs/heads/master","pushedAt":"2024-07-16T09:31:35.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"nasbench","name":"Nasreddine Bencherchali","path":"/nasbench","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8741929?s=80&v=4"},"commit":{"message":"Update registry_set_susp_run_key_img_folder.yml","shortMessageHtmlLink":"Update registry_set_susp_run_key_img_folder.yml"}},{"before":"b584e199787141938e31ca6c7e37ba5cedfa6dcb","after":"568f1aef336e62a0c52bc28e6b635950ca900f97","ref":"refs/heads/master","pushedAt":"2024-07-15T15:53:31.000Z","pushType":"push","commitsCount":9,"pusher":{"login":"nasbench","name":"Nasreddine Bencherchali","path":"/nasbench","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8741929?s=80&v=4"},"commit":{"message":"Merge PR #4878 from @prashanthpulisetti - Update \"Create Remote Thread\" based rules \n\nupdate: Rare Remote Thread Creation By Uncommon Source Image - Add dialer.exe\r\nupdate: Remote Thread Creation By Uncommon Source Image - Update filters\r\nupdate: Remote Thread Creation In Uncommon Target Image - Update filters \r\n\r\n---------\r\n\r\nCo-authored-by: nasbench <8741929+nasbench@users.noreply.github.com>","shortMessageHtmlLink":"Merge PR <a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2353565205\" data-permission-text=\"Title is private\" data-url=\"https://github.com/SigmaHQ/sigma/issues/4878\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/SigmaHQ/sigma/pull/4878/hovercard\" href=\"https://github.com/SigmaHQ/sigma/pull/4878\">SigmaHQ#4878</a> from <a class=\"user-mention notranslate\" data-hovercard-type=\"user\" data-hovercard-url=\"/users/prashanthpulisetti/hovercard\" data-octo-click=\"hovercard-link-click\" data-octo-dimensions=\"link_type:self\" href=\"https://github.com/prashanthpulisetti\">@prashanthpulisetti</a> - Update \"Create Remot…"}},{"before":"9aad70710ae7feff3f350b4350ef5bcdbf7a2356","after":"9d2c6cae6dd198f72b1d21b69d2752abe1187518","ref":"refs/heads/updates-july","pushedAt":"2024-07-15T12:24:58.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"nasbench","name":"Nasreddine Bencherchali","path":"/nasbench","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8741929?s=80&v=4"},"commit":{"message":"even more updates","shortMessageHtmlLink":"even more updates"}},{"before":"ffb8613d705e14b91aa9c9392ccf8d01c2e94125","after":"19d4abce2f1c5d6a701c932183d26133e364daef","ref":"refs/heads/create-pull-request/reference-archiver","pushedAt":"2024-07-15T02:27:30.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"github-actions[bot]","name":null,"path":"/apps/github-actions","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/15368?s=80&v=4"},"commit":{"message":"chore: archive new rule references and update cache file","shortMessageHtmlLink":"chore: archive new rule references and update cache file"}},{"before":"1056968232623ccdd4ad1afa6f7785e0e7940288","after":"9aad70710ae7feff3f350b4350ef5bcdbf7a2356","ref":"refs/heads/updates-july","pushedAt":"2024-07-12T16:47:58.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"nasbench","name":"Nasreddine Bencherchali","path":"/nasbench","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8741929?s=80&v=4"},"commit":{"message":"small update","shortMessageHtmlLink":"small update"}},{"before":"0c17ca8e5511937efda2295bf342988ff7dde01e","after":"1056968232623ccdd4ad1afa6f7785e0e7940288","ref":"refs/heads/updates-july","pushedAt":"2024-07-12T13:57:44.000Z","pushType":"push","commitsCount":11,"pusher":{"login":"nasbench","name":"Nasreddine Bencherchali","path":"/nasbench","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8741929?s=80&v=4"},"commit":{"message":"Merge branch 'SigmaHQ:master' into updates-july","shortMessageHtmlLink":"Merge branch 'SigmaHQ:master' into updates-july"}},{"before":"5edf9ff8829a2d792c25c586f056c4bfd5f2f868","after":"0ea9bd766ec4ec8242271f916ce4451f5bc0ce6d","ref":"refs/heads/fix-cli-conf","pushedAt":"2024-07-11T06:00:31.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"frack113","name":null,"path":"/frack113","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/62423083?s=80&v=4"},"commit":{"message":"Update sigma_cli_conf.yml\n\nFix typo error","shortMessageHtmlLink":"Update sigma_cli_conf.yml"}},{"before":"83976e1da7bfc64580ce2b6d5abd413d8b53426d","after":"5edf9ff8829a2d792c25c586f056c4bfd5f2f868","ref":"refs/heads/fix-cli-conf","pushedAt":"2024-07-11T05:54:45.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"frack113","name":null,"path":"/frack113","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/62423083?s=80&v=4"},"commit":{"message":"Update sigma_cli_conf.yml\n\nExclude sigmahq_categorie_eventid and sigmahq_ofthem_condition","shortMessageHtmlLink":"Update sigma_cli_conf.yml"}},{"before":"0a1ae055cf4743882ac73b9ecb4b23259741ca23","after":"83976e1da7bfc64580ce2b6d5abd413d8b53426d","ref":"refs/heads/fix-cli-conf","pushedAt":"2024-07-11T00:32:39.000Z","pushType":"push","commitsCount":7,"pusher":{"login":"nasbench","name":"Nasreddine Bencherchali","path":"/nasbench","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8741929?s=80&v=4"},"commit":{"message":"Merge branch 'fix-cli-conf' of https://github.com/nasbench/sigma into fix-cli-conf","shortMessageHtmlLink":"Merge branch 'fix-cli-conf' of <a href=\"https://github.com/nasbench/sigma\">https://github.com/nasbench/sigma</a> into…"}},{"before":"677b9ce475c9e548b02b7acd8c6a06be03599833","after":"0a1ae055cf4743882ac73b9ecb4b23259741ca23","ref":"refs/heads/fix-cli-conf","pushedAt":"2024-07-10T23:14:36.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"nasbench","name":"Nasreddine Bencherchali","path":"/nasbench","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8741929?s=80&v=4"},"commit":{"message":"update","shortMessageHtmlLink":"update"}},{"before":"d65400a39e78157a68a8490a1869abf19757e5f7","after":"0c17ca8e5511937efda2295bf342988ff7dde01e","ref":"refs/heads/updates-july","pushedAt":"2024-07-10T23:02:54.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"nasbench","name":"Nasreddine Bencherchali","path":"/nasbench","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8741929?s=80&v=4"},"commit":{"message":"Update file_event_win_apt_forest_blizzard_activity.yml","shortMessageHtmlLink":"Update file_event_win_apt_forest_blizzard_activity.yml"}},{"before":"05bfd96c973befa37e9d5a60195116fd002c9e09","after":"677b9ce475c9e548b02b7acd8c6a06be03599833","ref":"refs/heads/fix-cli-conf","pushedAt":"2024-07-10T22:56:37.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"nasbench","name":"Nasreddine Bencherchali","path":"/nasbench","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8741929?s=80&v=4"},"commit":{"message":"Update netflow_cleartext_protocols.yml","shortMessageHtmlLink":"Update netflow_cleartext_protocols.yml"}},{"before":"310a40874083db8a39476c62b780d2e616654be7","after":"05bfd96c973befa37e9d5a60195116fd002c9e09","ref":"refs/heads/fix-cli-conf","pushedAt":"2024-07-10T22:54:09.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"nasbench","name":"Nasreddine Bencherchali","path":"/nasbench","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8741929?s=80&v=4"},"commit":{"message":"Update sigma-test.yml","shortMessageHtmlLink":"Update sigma-test.yml"}},{"before":"dc35ae5600db2a6654a72eaeb97fa9439aabff4e","after":"b584e199787141938e31ca6c7e37ba5cedfa6dcb","ref":"refs/heads/master","pushedAt":"2024-07-10T22:22:55.000Z","pushType":"push","commitsCount":2,"pusher":{"login":"nasbench","name":"Nasreddine Bencherchali","path":"/nasbench","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8741929?s=80&v=4"},"commit":{"message":"Merge PR #4905 from @kelnage - Fix error in field name\n\nfix: Potential Bucket Enumeration on AWS - Fix error in field name","shortMessageHtmlLink":"Merge PR <a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2400316705\" data-permission-text=\"Title is private\" data-url=\"https://github.com/SigmaHQ/sigma/issues/4905\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/SigmaHQ/sigma/pull/4905/hovercard\" href=\"https://github.com/SigmaHQ/sigma/pull/4905\">SigmaHQ#4905</a> from <a class=\"user-mention notranslate\" data-hovercard-type=\"user\" data-hovercard-url=\"/users/kelnage/hovercard\" data-octo-click=\"hovercard-link-click\" data-octo-dimensions=\"link_type:self\" href=\"https://github.com/kelnage\">@kelnage</a> - Fix error in field name"}},{"before":"dc35ae5600db2a6654a72eaeb97fa9439aabff4e","after":"310a40874083db8a39476c62b780d2e616654be7","ref":"refs/heads/fix-cli-conf","pushedAt":"2024-07-10T22:13:16.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"nasbench","name":"Nasreddine Bencherchali","path":"/nasbench","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8741929?s=80&v=4"},"commit":{"message":"Update sigma_cli_conf.yml","shortMessageHtmlLink":"Update sigma_cli_conf.yml"}},{"before":null,"after":"dc35ae5600db2a6654a72eaeb97fa9439aabff4e","ref":"refs/heads/fix-cli-conf","pushedAt":"2024-07-10T22:13:10.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"nasbench","name":"Nasreddine Bencherchali","path":"/nasbench","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8741929?s=80&v=4"},"commit":{"message":"Merge PR #4904 from @cygnetix - Fix typo in `Suspicious SignIns From A Non Registered Device`\n\nchore: fix typo in `Suspicious SignIns From A Non Registered Device`\r\n\r\nThanks: cygnetix","shortMessageHtmlLink":"Merge PR <a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2397027742\" data-permission-text=\"Title is private\" data-url=\"https://github.com/SigmaHQ/sigma/issues/4904\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/SigmaHQ/sigma/pull/4904/hovercard\" href=\"https://github.com/SigmaHQ/sigma/pull/4904\">SigmaHQ#4904</a> from <a class=\"user-mention notranslate\" data-hovercard-type=\"user\" data-hovercard-url=\"/users/cygnetix/hovercard\" data-octo-click=\"hovercard-link-click\" data-octo-dimensions=\"link_type:self\" href=\"https://github.com/cygnetix\">@cygnetix</a> - Fix typo in `Suspicious SignIn…"}},{"before":"0bb6f0c0d75ae3e1c37f9ab77d68f20cdb32ecd3","after":"dc35ae5600db2a6654a72eaeb97fa9439aabff4e","ref":"refs/heads/master","pushedAt":"2024-07-10T22:11:51.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"nasbench","name":"Nasreddine Bencherchali","path":"/nasbench","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8741929?s=80&v=4"},"commit":{"message":"Merge PR #4904 from @cygnetix - Fix typo in `Suspicious SignIns From A Non Registered Device`\n\nchore: fix typo in `Suspicious SignIns From A Non Registered Device`\r\n\r\nThanks: cygnetix","shortMessageHtmlLink":"Merge PR <a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2397027742\" data-permission-text=\"Title is private\" data-url=\"https://github.com/SigmaHQ/sigma/issues/4904\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/SigmaHQ/sigma/pull/4904/hovercard\" href=\"https://github.com/SigmaHQ/sigma/pull/4904\">SigmaHQ#4904</a> from <a class=\"user-mention notranslate\" data-hovercard-type=\"user\" data-hovercard-url=\"/users/cygnetix/hovercard\" data-octo-click=\"hovercard-link-click\" data-octo-dimensions=\"link_type:self\" href=\"https://github.com/cygnetix\">@cygnetix</a> - Fix typo in `Suspicious SignIn…"}},{"before":"cf04f128718c15509224abc20f78859967b65864","after":"d65400a39e78157a68a8490a1869abf19757e5f7","ref":"refs/heads/updates-july","pushedAt":"2024-07-10T21:34:39.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"nasbench","name":"Nasreddine Bencherchali","path":"/nasbench","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8741929?s=80&v=4"},"commit":{"message":"Update win_security_pass_the_hash_2.yml","shortMessageHtmlLink":"Update win_security_pass_the_hash_2.yml"}},{"before":"9ac82673c0c05a5ed6b3098aa8e473070f08a68d","after":"cf04f128718c15509224abc20f78859967b65864","ref":"refs/heads/updates-july","pushedAt":"2024-07-08T22:05:48.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"nasbench","name":"Nasreddine Bencherchali","path":"/nasbench","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8741929?s=80&v=4"},"commit":{"message":"update thor.yml and add regedit rule","shortMessageHtmlLink":"update thor.yml and add regedit rule"}},{"before":"16f49e1d8a903a041885ad1631cdcbac995494a3","after":"9ac82673c0c05a5ed6b3098aa8e473070f08a68d","ref":"refs/heads/updates-july","pushedAt":"2024-07-05T09:07:15.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"nasbench","name":"Nasreddine Bencherchali","path":"/nasbench","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8741929?s=80&v=4"},"commit":{"message":"updates!","shortMessageHtmlLink":"updates!"}},{"before":"905a0134683d94c8259f29c0d6e22751e4daf448","after":"16f49e1d8a903a041885ad1631cdcbac995494a3","ref":"refs/heads/updates-july","pushedAt":"2024-07-03T22:38:09.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"nasbench","name":"Nasreddine Bencherchali","path":"/nasbench","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8741929?s=80&v=4"},"commit":{"message":"Update net_connection_win_office_outbound_non_local_ip.yml","shortMessageHtmlLink":"Update net_connection_win_office_outbound_non_local_ip.yml"}},{"before":"274647647fd57dc2bfcba6d86a72985a7f54de9d","after":"905a0134683d94c8259f29c0d6e22751e4daf448","ref":"refs/heads/updates-july","pushedAt":"2024-07-03T22:33:35.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"nasbench","name":"Nasreddine Bencherchali","path":"/nasbench","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8741929?s=80&v=4"},"commit":{"message":"fix indentation","shortMessageHtmlLink":"fix indentation"}}],"hasNextPage":true,"hasPreviousPage":false,"activityType":"all","actor":null,"timePeriod":"all","sort":"DESC","perPage":30,"cursor":"djE6ks8AAAAEgcaLyAA","startCursor":null,"endCursor":null}},"title":"Activity · nasbench/sigma"}