Skip to content

v3.0.8
Compare
Choose a tag to compare
@josehelps josehelps released this 20 Oct 22:29
v3.0.8
ddf9d10
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

New Detections

  • GCP Detect accounts with high risk roles by project
  • GCP Detect gcploit framework
  • GCP Detect high risk permissions by resource and account
  • System Information Discovery Detection

Updates

  • Attempted Credential Dump From Registry via Reg exe
  • Detect Activity Related to Pass the Hash Attacks
  • Windows Event Log Cleared
  • Kerberoasting spn request with RC4 encryption

Other

  • Automated detection testing framework
  • Improved and extended response phases/tasks
Assets 3
Loading