Skip to content

v3.64.0
Compare
Choose a tag to compare
@github-actions github-actions released this 04 Apr 19:42
· 5046 commits to develop since this release
v3.64.0
962eec4
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

Updated Analytic Story

  • 3CX Supply Chain Attack

New Analytics

  • PowerShell Invoke-WmiExec Usage
  • PowerShell Invoke CIMMethod CIMSession
  • PowerShell Enable PowerShell Remoting
  • PowerShell Start or Stop Service
  • Windows PowerShell Get-CIMInstance Remote Computer
  • Windows Enable Win32_ScheduledJob via Registry
  • Windows PowerShell WMI Win32_ScheduledJob
  • Windows Service Create with Tscon
  • Windows Lateral Tool Transfer RemCom
  • Windows Service Create RemComSvc

Other Updates

  • Updated 3CX related analytics with the CVE ID(CVE-2023-29059)
  • Updated git actions with appropriate permissions
Assets 7
Loading