__mlspl_detect_dns_data_exfiltration_using_pretrained_model_in_dsdl.mlmodel
__mlspl_detect_dns_data_exfiltration_using_pretrained_model_in_dsdl.yml
__mlspl_detect_suspicious_dns_txt_records_using_pretrained_model_in_dsdl.mlmodel
__mlspl_detect_suspicious_dns_txt_records_using_pretrained_model_in_dsdl.yml
__mlspl_detect_suspicious_processnames_using_pretrained_model_in_dsdl.mlmodel
__mlspl_detect_suspicious_processnames_using_pretrained_model_in_dsdl.yml
__mlspl_pretrained_dga_model_dsdl.mlmodel
__mlspl_pretrained_dga_model_dsdl.yml
__mlspl_unusual_commandline_detection.mlmodel
__mlspl_unusual_commandline_detection.yml
ace_access_rights_lookup.csv
ace_access_rights_lookup.yml
advanced_audit_policy_guids.csv
advanced_audit_policy_guids.yml
api_call_by_user_baseline.yml
baseline_blocked_outbound_connections.csv
baseline_blocked_outbound_connections.yml
brandmonitoring_lookup.csv
brandmonitoring_lookup.yml
builtin_groups_lookup.csv
builtin_groups_lookup.yml
char_conversion_matrix.csv
char_conversion_matrix.yml
cloud_instances_enough_data.yml
decommissioned_buckets.yml
discovered_dns_records.csv
discovered_dns_records.yml
dynamic_dns_providers_default.csv
dynamic_dns_providers_default.yml
dynamic_dns_providers_local.csv
dynamic_dns_providers_local.yml
is_suspicious_file_extension_lookup.csv
is_suspicious_file_extension_lookup.yml
is_windows_system_file.csv
is_windows_system_file.yml
k8s_container_network_io_baseline.yml
k8s_container_network_io_ratio_baseline.yml
k8s_process_resource_baseline.yml
k8s_process_resource_ratio_baseline.yml
linux_tool_discovery_process.csv
linux_tool_discovery_process.yml
local_file_inclusion_paths.csv
local_file_inclusion_paths.yml
lookup_rare_process_allow_list_default.csv
lookup_rare_process_allow_list_default.yml
lookup_rare_process_allow_list_local.csv
lookup_rare_process_allow_list_local.yml
lookup_uncommon_processes_default.csv
lookup_uncommon_processes_default.yml
lookup_uncommon_processes_local.csv
lookup_uncommon_processes_local.yml
malicious_powershell_strings.csv
malicious_powershell_strings.yml
mandatory_job_for_workflow.csv
mandatory_job_for_workflow.yml
mandatory_step_for_job.csv
mandatory_step_for_job.yml
network_acl_activity_baseline.csv
network_acl_activity_baseline.yml
previously_seen_api_calls_from_user_roles.yml
previously_seen_aws_cross_account_activity.yml
previously_seen_aws_regions.yml
previously_seen_cloud_api_calls_per_user_role.yml
previously_seen_cloud_compute_creations_by_user.yml
previously_seen_cloud_compute_images.yml
previously_seen_cloud_compute_instance_types.yml
previously_seen_cloud_instance_modifications_by_user.yml
previously_seen_cloud_provisioning_activity_sources.yml
previously_seen_cloud_regions.yml
previously_seen_cmd_line_arguments.csv
previously_seen_cmd_line_arguments.yml
previously_seen_ec2_amis_lookup.yml
previously_seen_ec2_instance_types_lookup.yml
previously_seen_ec2_launches_by_user_lookup.yml
previously_seen_ec2_modifications_by_user.csv
previously_seen_ec2_modifications_by_user.yml
previously_seen_gcp_storage_access_from_remote_ip.yml
previously_seen_provisioning_activity_src.yml
previously_seen_running_windows_services.yml
previously_seen_s3_access_from_remote_ip.yml
previously_seen_users_console_logins.yml
privileged_azure_ad_roles.csv
privileged_azure_ad_roles.yml
prohibited_apps_launching_cmd.csv
prohibited_apps_launching_cmd.yml
ransomware_extensions_lookup.csv
ransomware_extensions_lookup.yml
ransomware_notes_lookup.csv
ransomware_notes_lookup.yml
remote_access_software.csv
remote_access_software.yml
remote_access_software_exceptions.yml
security_group_activity_baseline.yml
security_services_lookup.csv
security_services_lookup.yml
suspicious_writes_lookup.csv
suspicious_writes_lookup.yml
windows_protocol_handlers.csv
windows_protocol_handlers.yml
windows_suspicious_services.csv
windows_suspicious_services.yml
windows_suspicious_tasks.csv
windows_suspicious_tasks.yml
zoom_first_time_child_process.yml
Folders and files Name Name Last commit message
Last commit date
parent directory
View all files
You can’t perform that action at this time.