EXPLORE DETECTIONS
581 detections found
Website Redirectors DeviceNetworkEvents
raw.githubusercontent.com/jkerai1/SoftwareCertificates/refs/heads/main/Bulk-IOC-CSVs/WebsiteRedirectors.csv"] with (format="csv", ignoreFirstRecord=True);
KQL
Wevutil Clear Windows Event Logs
Adversaries may clear Windows Event Logs to hide the activity of an intrusion. Windows Event Logs are a record of a computer's alerts and notifications. There are three system-defined sources of events: System, Application, and Security.
T1070.001T1070
KQL
WiFi Password Dumping Detection
This query detects attempts to dump WiFi passwords in plain text from cmd
KQL
Zscalar IP Sign-in Check
Experimental, query needs optimization.
KQL
Zscaler Registry Tampering Detection
This query detects tampering of Zscaler registry keys for Start and State values
KQL
PreviousPage 25 of 25