DefSecSentinel
Follow
Popular repositories Loading
-
elastic-container
elastic-container PublicForked from peasead/elastic-container
Stand up a simple Elastic container with Kibana, Fleet, and the Detection Engine
Shell 1
-
detection-rules
detection-rules PublicForked from elastic/detection-rules
Rules for Elastic Security's detection engine
Python
-
adversary_emulation_library
adversary_emulation_library PublicForked from center-for-threat-informed-defense/adversary_emulation_library
An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.
C
68 contributions in the last year
Contribution activity
March 2025
Created 6 commits in 1 repository
Created a pull request in elastic/detection-rules that received 23 comments
[Tuning] MacOS DR Tuning PR
Summary A long awaiting tuning PR for MacOS Detection Rules. These tunings have updated all KQL query based rules to EQL and ensured all of the rul…
Opened 1 other pull request in 1 repository
elastic/detection-rules
1
open
-
[Deprecate] LaunchDaemon Creation or Modification and Immediate Loading
This contribution was made on Mar 19
Reviewed 6 pull requests in 1 repository
elastic/detection-rules
6 pull requests
-
[Tuning] MacOS DR Tuning PR
This contribution was made on Mar 20
-
[New Rule] Adding Coverage for DynamoDB Exfiltration Behaviors
This contribution was made on Mar 20
-
[Tuning] Potential DLL Side-Loading via Trusted Microsoft Programs
This contribution was made on Mar 14
-
[FN Tuning] Shared Object Created or Changed by Previously Unknown Pr…
This contribution was made on Mar 14
-
[New/Tuning] Docker Socket Enumeration
This contribution was made on Mar 6
-
[New Rules] Potential Port/Subnet Scanning Activity from Compromised Host
This contribution was made on Mar 6