b1t-hunter
b1t-hunter
There are multiple rules that have event references with multiple possible matches. I have found the current cases in the repository: ### win_susp_sam_dump.yml Event 16 in the system channel has...
After checking this rule for its event dependencies, I was unable to identify event code 4909 in the `Microsoft-Windows-PrintService/Admin` channel. The manifests for this channel/provider does not list this event,...
Dear OSSEM-DM Team, thanks for your great work! I have worked with your detection model relationships to extract Windows events that would be required for comprehensive monitoring in a Windows...
I would like to have a switch that triggers the execution of requests in sequence. In my example, I want to say something over multiple Sonos speakers using the sonos-http-api....