Any Suggestions On Creating A Detection Rule In Defender For CVE-2023-23397

This page summarizes the projects mentioned and recommended in the original post on /r/DefenderATP
Security Monitoring Siem Logging signatures

InfluxDB - Power Real-Time Data Analytics at Scale
Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
www.influxdata.com
featured
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com
featured

  • sigma

    Main Sigma Rule Repository

    • I created a Defender Advanced Hunting query based of the Sigma rule https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_webdav_client_susp_execution.yml

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

    InfluxDB logo
NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts

  • Sigma rules in real life

    1 project | /r/cybersecurity | 14 Oct 2023

  • SOC SIEM Use Cases for First Internship

    1 project | /r/cybersecurity | 10 Jun 2023

  • Open Source SIEM Tools

    1 project | /r/HackProtectSlo | 4 May 2023

  • Detection Engineering Source Websites

    1 project | /r/cybersecurity | 26 Apr 2023

  • Scheduling query to look for whenever net group is ran.

    1 project | /r/sophos | 20 Apr 2023