Recent changes

From Atomicorp Wiki
Jump to: navigation, search

Track the most recent changes to the wiki on this page.

Recent changes options Show last 50 | 100 | 250 | 500 changes in last 1 | 3 | 7 | 14 | 30 days
Hide minor edits | Show bots | Show anonymous users | Hide logged-in users | Hide my edits
Show new changes starting from 15:53, 24 October 2020
   

23 October 2020

  • (diff | hist) . . HIDS 2960‎; 13:54 . . (+10). .Scott (Talk | contribs)
  • (diff | hist) . . N HIDS 2960‎; 13:54 . . (+777). .Scott (Talk | contribs)(Created page with "|header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = User added to group == What you should do == ...")
  • (diff | hist) . . N HIDS 2945‎; 13:52 . . (+882). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = Rsyslog may be dropping messages due ...")
  • (diff | hist) . . N WAF 303937‎; 11:59 . . (+2,092). .Scott (Talk | contribs)(Created page with "{{Infobox |header1= Rule 303801 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Atomicorp.com WAF Rules: Fake Baidu webcrawler }} = Description = This exc...")
  • (diff | hist) . . N HIDS 300061‎; 11:51 . . (+777). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Webserver event }} = Description = Atomicorp.com WAF AntiSpam Rules: Possibl...")
  • (diff | hist) . . N HIDS 60249‎; 11:46 . . (+750). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Webserver event }} = Description = Connection dropped by apache due to slow ...")
  • (diff | hist) . . N HIDS 60138‎; 11:44 . . (+881). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Webserver event }} = Description = Webserver logged 413, request entity too ...")
  • (diff | hist) . . N HIDS 60119‎; 11:43 . . (+945). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Webserver event }} = Description = Multiple access attempts blocked by Mod S...")
  • (diff | hist) . . N HIDS 60118‎; 11:42 . . (+907). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Webserver event }} = Description = Access attempt blocked by Mod Security. ...")
  • (diff | hist) . . N HIDS 60058‎; 11:39 . . (+952). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Atomicorp Threat Intel event }} = Description = The source IP address was de...")
  • (diff | hist) . . N HIDS 60057‎; 11:39 . . (+932). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Atomicorp Threat Intel event }} = Description = The source IP address was de...")
  • (diff | hist) . . N HIDS 60056‎; 11:38 . . (+947). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Atomicorp Threat Intel event }} = Description = The source IP address was de...")
  • (diff | hist) . . N HIDS 57390‎; 11:32 . . (+879). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = SSH: Multiple successful ssh logins f...")
  • (diff | hist) . . N HIDS 52504‎; 11:28 . . (+708). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = Clamav generic Warning message == Wh...")
  • (diff | hist) . . N HIDS 40112‎; 11:18 . . (+860). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = Multiple login failures followed by a...")
  • (diff | hist) . . N HIDS 40106‎; 11:16 . . (+898). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = Possible buffer overflow attempt == ...")
  • (diff | hist) . . N HIDS 30618‎; 11:07 . . (+709). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = Apache: PHP notice in apache log == ...")
  • (diff | hist) . . N HIDS 12149‎; 11:05 . . (+715). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = Bind: Multiple query (cache) failures...")
  • (diff | hist) . . N HIDS 9707‎; 11:03 . . (+700). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = Dovecot: Aborted Login. == What you ...")
  • (diff | hist) . . N HIDS 5758‎; 11:03 . . (+723). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = SSH: Maximum authentication attempts ...")
  • (diff | hist) . . N HIDS 5405‎; 11:01 . . (+717). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = Unauthorized user attempted to use su...")
  • (diff | hist) . . N HIDS 4103‎; 11:00 . . (+777). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = Advanced portscan detected, an attack...")
  • (diff | hist) . . N HIDS 3396‎; 10:58 . . (+714). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = Postfix: hostname verification failed...")
  • (diff | hist) . . N HIDS 3381‎; 10:58 . . (+754). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = Postfix: (Medium 5/60s) Multiple att...")
  • (diff | hist) . . N HIDS 3379‎; 10:57 . . (+749). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = Postfix: (Fast 5/10s) Multiple attemp...")
  • (diff | hist) . . N HIDS 3337‎; 10:55 . . (+728). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = IP Address black-listed by Spamhaus ...")
  • (diff | hist) . . N HIDS 3355‎; 10:54 . . (+780). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = Postfix: Multiple attempts to send e-...")
  • (diff | hist) . . N HIDS 3335‎; 10:54 . . (+724). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = Postfix: too many errors after RCPT f...")
  • (diff | hist) . . N HIDS 3305‎; 10:53 . . (+763). .Scott (Talk | contribs)(Created page with " {{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = Postfix: Recipient address must conta...")
  • (diff | hist) . . N HIDS 1007‎; 10:52 . . (+804). .Scott (Talk | contribs)(Created page with " {{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = File system is full == What you sho...")
  • (diff | hist) . . N HIDS 62818‎; 10:46 . . (+982). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Webserver event }} = Description = Bad Gateway. The server, while acting as ...")
  • (diff | hist) . . N HIDS 80711‎; 10:27 . . (+711). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Auditd event }} = Description = Auditd: process ended abnormally == What yo...")
  • (diff | hist) . . N HIDS 61104‎; 10:26 . . (+732). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = Microsoft: Service startup type was c...")
  • (diff | hist) . . N HIDS 60809‎; 10:25 . . (+748). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = A windows database engine has recover...")
  • (diff | hist) . . N HIDS 60808‎; 10:25 . . (+741). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = A windows database engine is replayin...")
  • (diff | hist) . . N HIDS 60807‎; 10:23 . . (+744). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = A windows database engine is initiati...")
  • (diff | hist) . . N HIDS 60805‎; 10:22 . . (+781). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = A windows database engine has attache...")
  • (diff | hist) . . N HIDS 60798‎; 10:21 . . (+752). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = A windows database engine has attache...")
  • (diff | hist) . . N HIDS 60635‎; 10:18 . . (+731). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = Windows installer reconfigured the pr...")
  • (diff | hist) . . N HIDS 60610‎; 10:18 . . (+743). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = A windows installer as started an ins...")
  • (diff | hist) . . N HIDS 59249‎; 10:17 . . (+747). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = A windows active directory group acco...")
  • (diff | hist) . . N HIDS 59246‎; 10:16 . . (+747). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = A windows active directory group acco...")
  • (diff | hist) . . N HIDS 59243‎; 10:16 . . (+747). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = A windows active directory group acco...")
  • (diff | hist) . . N HIDS 59239‎; 10:16 . . (+746). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = A windows active directory group acco...")
  • (diff | hist) . . N HIDS 19011‎; 10:15 . . (+1,131). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Compliance Scanner }} = Description = The CIS Compliance scanner is reportin...")
  • (diff | hist) . . N HIDS 19010‎; 10:14 . . (+1,093). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Compliance Scanner }} = Description = The CIS Compliance scanner is reportin...")
  • (diff | hist) . . N HIDS 18258‎; 10:10 . . (+960). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Microsoft terminal server gat...")
  • (diff | hist) . . N HIDS 18183‎; 10:07 . . (+857). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Multiple MSSQL login failures...")
  • (diff | hist) . . N HIDS 18141‎; 10:03 . . (+992). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows has unexpectedly shut...")
  • (diff | hist) . . N HIDS 5559‎; 10:00 . . (+873). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = PAM event }} = Description = Authentication failure detected. == What you...")
  • (diff | hist) . . N HIDS 536‎; 09:58 . . (+885). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OSSEC event }} = Description = Disk partition usage has reached 80% == What ...")
  • (diff | hist) . . N HIDS 531‎; 09:58 . . (+892). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OSSEC event }} = Description = Disk partition usage has reached 90% == What ...")
  • (diff | hist) . . N HIDS 19014‎; 09:34 . . (+1,143). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Compliance Scanner }} = Description = The CIS Compliance scanner is reportin...")
  • (diff | hist) . . N HIDS 19013‎; 09:33 . . (+1,123). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Compliance Scanner }} = Description = The CIS Compliance scanner is reportin...")
  • (diff | hist) . . N HIDS 19009‎; 09:31 . . (+926). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Compliance Scanner }} = Description = The CIS Compliance scanner is reportin...")
  • (diff | hist) . . N HIDS 19008‎; 09:30 . . (+771). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Compliance Scanner }} = Description = The CIS Compliance scanner is reportin...")
  • (diff | hist) . . N HIDS 19007‎; 09:29 . . (+986). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Compliance Scanner }} = Description = The CIS Compliance scanner is reportin...")
  • (diff | hist) . . HIDS 19003‎; 09:28 . . (0). .Scott (Talk | contribs)
  • (diff | hist) . . N HIDS 19005‎; 09:28 . . (+1,166). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Compliance Scanner }} = Description = The CIS Compliance scanner is reportin...")
  • (diff | hist) . . N HIDS 19003‎; 09:27 . . (+1,166). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Compliance Scanner }} = Description = The CIS Compliance scanner is reportin...")
  • (diff | hist) . . N HIDS 23506‎; 09:26 . . (+765). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Vulnerability scanner has det...")
  • (diff | hist) . . N HIDS 23504‎; 09:25 . . (+764). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Vulnerability scanner has det...")
  • (diff | hist) . . N HIDS 23503‎; 09:25 . . (+761). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Vulnerability scanner has det...")
  • (diff | hist) . . N HIDS 18145‎; 09:23 . . (+1,005). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows service startup type ...")
  • (diff | hist) . . N HIDS 3398‎; 09:21 . . (+1,162). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Postfix event }} = Description = Postfix is indicating that an invalid (aka ...")
  • (diff | hist) . . N HIDS 80717‎; 09:18 . . (+824). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Auditd event }} = Description = Auditd: Role-Based Access Control (RBAC) fai...")
  • (diff | hist) . . N HIDS 5555‎; 09:15 . . (+744). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = PAM event }} = Description = PAM has logged that the user account password h...")
  • (diff | hist) . . N HIDS 81544‎; 09:13 . . (+1,132). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OpenSCAP event }} = Description = OpenSCAP has reported the system is less t...")
  • (diff | hist) . . N HIDS 81542‎; 09:13 . . (+1,132). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OpenSCAP event }} = Description = OpenSCAP has reported the system is less t...")
  • (diff | hist) . . N HIDS 81541‎; 09:12 . . (+1,132). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OpenSCAP event }} = Description = OpenSCAP has reported the system is less t...")
  • (diff | hist) . . N HIDS 62819‎; 09:10 . . (+1,086). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Webserver event }} = Description = The webserver has returned a 503 error co...")
  • (diff | hist) . . N HIDS 59221‎; 09:06 . . (+1,366). .Scott (Talk | contribs)(Created page with " {{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = Windows user account has changed. Th...")

22 October 2020

  • (diff | hist) . . N HIDS 504‎; 14:53 . . (+868). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OSSEC event }} = Description = An agent has disconnected from the server. =...")
  • (diff | hist) . . N HIDS 3334‎; 14:51 . . (+722). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Postfix has started successfu...")
  • (diff | hist) . . N HIDS 80703‎; 14:50 . . (+713). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Auditd has stopped successful...")
  • (diff | hist) . . N HIDS 80701‎; 14:49 . . (+715). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Auditd has restarted successf...")
  • (diff | hist) . . N HIDS 2932‎; 13:55 . . (+856). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Yum event }} = Description = The yum package manager has installed a package...")
  • (diff | hist) . . N HIDS 3333‎; 13:53 . . (+868). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Postfix event }} = Description = The Postfix mail server has stopped == Wha...")
  • (diff | hist) . . N HIDS 59302‎; 13:51 . . (+907). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Security Enabled Global Group...")
  • (diff | hist) . . N HIDS 62816‎; 13:49 . . (+1,107). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Webserver event }} = Description = The webserver has returned a 500 error cod...")
  • (diff | hist) . . N HIDS 2934‎; 13:45 . . (+843). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Yum event }} = Description = The yum package manager as removed a package. ...")
  • (diff | hist) . . N HIDS 60126‎; 13:42 . . (+953). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Apache event }} = Description = Webserver authorization failed (401) == What...")
  • (diff | hist) . . N HIDS 23505‎; 12:40 . . (+762). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Vulnerability scanner has det...")
  • (diff | hist) . . N HIDS 59327‎; 12:09 . . (+868). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows network login failure...")
  • (diff | hist) . . N HIDS 59300‎; 12:07 . . (+1,031). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = IIS NetworkCleartext Logon su...")
  • (diff | hist) . . N HIDS 18154‎; 12:04 . . (+859). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Multiple windows ERROR messag...")
  • (diff | hist) . . N HIDS 59208‎; 12:02 . . (+829). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Session reconnected/disconnec...")
  • (diff | hist) . . N HIDS 18600‎; 12:00 . . (+768). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Generic level 0 bucket for wi...")
  • (diff | hist) . . N HIDS 554‎; 11:58 . . (+795). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = FIM event }} = Description = FIM has detected a new file was added to the sy...")
  • (diff | hist) . . N HIDS 59328‎; 11:57 . . (+879). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows network login failure...")
  • (diff | hist) . . N HIDS 81528‎; 11:55 . . (+741). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OpenSCAP event }} = Description = OpenSCAP has skipped this test because it ...")
  • (diff | hist) . . N HIDS 59330‎; 11:54 . . (+973). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows: Network Logon Failur...")
  • (diff | hist) . . N HIDS 59326‎; 11:51 . . (+990). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows Local login failure d...")
  • (diff | hist) . . N HIDS 18305‎; 11:48 . . (+785). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows Application Event (10...")
  • (diff | hist) . . N HIDS 510‎; 11:46 . . (+823). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Rootcheck event }} = Description = Host-based anomaly detection event (rootc...")
  • (diff | hist) . . N HIDS 503‎; 11:44 . . (+756). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OSSEC event }} = Description = OSSEC agent started. == What you should do =...")
  • (diff | hist) . . N HIDS 18303‎; 11:43 . . (+785). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows Application Event (82...")
  • (diff | hist) . . N HIDS 59248‎; 11:40 . . (+826). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Security Enabled Global group...")
  • (diff | hist) . . N HIDS 59210‎; 11:38 . . (+835). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows user account has chan...")
  • (diff | hist) . . N HIDS 18147‎; 11:36 . . (+760). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows application installed...")
  • (diff | hist) . . N HIDS 512‎; 11:33 . . (+878). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Rootcheck event }} = Description = Rootcheck has detected a compliance failu...")
  • (diff | hist) . . N HIDS 59241‎; 11:31 . . (+808). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Security Enabled Global Group...")
  • (diff | hist) . . N HIDS 59213‎; 11:29 . . (+952). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows group account has cha...")
  • (diff | hist) . . N HIDS 607‎; 11:27 . . (+836). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OSSEC event }} = Description = Active Reponse has been triggered. == What...")
  • (diff | hist) . . N HIDS 59242‎; 11:24 . . (+805). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Security Enabled Global Group...")
  • (diff | hist) . . N HIDS 5716‎; 11:22 . . (+882). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = SSH event }} = Description = SSH authentication failed. == What you should d...")
  • (diff | hist) . . N HIDS 59334‎; 11:20 . . (+912). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Multime attempts to access an...")
  • (diff | hist) . . N HIDS 81529‎; 11:17 . . (+736). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OpenSCAP event }} = Description = OpenSCAP test has failed. == What you shou...")
  • (diff | hist) . . N HIDS 81521‎; 11:16 . . (+634). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OpenSCAP event }} = Description = OpenSCAP test has passed. == What you sho...")
  • (diff | hist) . . HIDS 81530‎; 11:13 . . (-113). .Scott (Talk | contribs)
  • (diff | hist) . . HIDS 81530‎; 11:13 . . (-1,317). .Scott (Talk | contribs)
  • (diff | hist) . . N HIDS 81530‎; 11:12 . . (+2,297). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows has failed to properl...")
  • (diff | hist) . . N HIDS 61102‎; 11:10 . . (+817). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows generic Error event. ...")
  • (diff | hist) . . N HIDS 83201‎; 10:59 . . (+928). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = The internet explorer log fil...")
  • (diff | hist) . . HIDS 59209‎; 10:56 . . (-123). .Scott (Talk | contribs)
  • (diff | hist) . . N HIDS 59209‎; 10:55 . . (+1,024). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows detected a logon fail...")
  • (diff | hist) . . N HIDS 59215‎; 10:47 . . (+882). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows: User account has bee...")
  • (diff | hist) . . N HIDS 18306‎; 10:45 . . (+853). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows Application Event (10...")
  • (diff | hist) . . N HIDS 59304‎; 10:39 . . (+926). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Multiple Windows login failur...")
  • (diff | hist) . . N HIDS 18146‎; 10:33 . . (+847). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows application uninstall...")
  • (diff | hist) . . N HIDS 59309‎; 10:31 . . (+932). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows IPSec VPN negotiation...")
  • (diff | hist) . . N HIDS 18105‎; 10:28 . . (+953). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Generic Windows auditing has ...")
  • (diff | hist) . . N HIDS 59211‎; 10:24 . . (+807). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows user account has been...")
  • (diff | hist) . . N HIDS 516‎; 10:23 . . (+879). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Rootcheck event }} = Description = OSSEC Rootcheck has identified a complian...")
  • (diff | hist) . . N HIDS 59244‎; 10:21 . . (+793). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Security Enabled Local Group ...")
  • (diff | hist) . . N HIDS 59245‎; 10:20 . . (+853). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Security Enabled Local Group ...")
  • (diff | hist) . . N HIDS 18601‎; 10:18 . . (+1,073). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows System Event (7038): ...")
  • (diff | hist) . . N HIDS 19004‎; 10:16 . . (+812). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = CIS Compliance event }} = Description = CIS Benchmark has scored less than 5...")
  • (diff | hist) . . N HIDS 59233‎; 10:10 . . (+813). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = User account unlocked. == W...")
  • (diff | hist) . . N HIDS 60059‎; 10:09 . . (+949). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Atomicorp Threat Intel event }} = Description = The source IP address was de...")
  • (diff | hist) . . N HIDS 18301‎; 10:05 . . (+1,430). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows has failed to write t...")
  • (diff | hist) . . N HIDS 501‎; 10:03 . . (+770). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = An OSSEC agent has started. ...")
  • (diff | hist) . . N HIDS 80705‎; 10:02 . . (+740). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Auditd event }} = Description = Auditd configuration has changed. == What ...")
  • (diff | hist) . . N HIDS 59252‎; 10:00 . . (+863). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = Security Enabled Universal Group Memb...")
  • (diff | hist) . . N HIDS 60790‎; 09:57 . . (+999). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = This indicates that the reigs...")
  • (diff | hist) . . N HIDS 59250‎; 09:54 . . (+816). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = Security Enabled Universal Group Chan...")
  • (diff | hist) . . N HIDS 59251‎; 09:53 . . (+830). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = Security Enabled Universal Group Memb...")
  • (diff | hist) . . HIDS 83200‎; 09:51 . . (-694). .Scott (Talk | contribs)
  • (diff | hist) . . N HIDS 83200‎; 09:49 . . (+1,430). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows has failed to properl...")
  • (diff | hist) . . N HIDS 11‎; 09:46 . . (+928). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OSSEC event }} = Description = This is an internal OSSEC anomaly detection e...")
  • (diff | hist) . . N HIDS 40703‎; 09:39 . . (+986). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Systemd event }} = Description = Systemd has detected that a service is in a...")
  • (diff | hist) . . N HIDS 81543‎; 09:37 . . (+879). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OpenSCAP event }} = Description = OpenSCAP Report overview: Score is less th...")
  • (diff | hist) . . N HIDS 19015‎; 09:34 . . (+833). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = CIS Compliance event }} = Description = Status has changed from 'not applica...")
  • (diff | hist) . . N HIDS 59207‎; 09:32 . . (+965). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = This indicates that the specified use...")

21 October 2020

  • (diff | hist) . . HIDS 59229‎; 15:15 . . (0). .Cpriester (Talk | contribs)(Description: )
  • (User creation log); 14:48 . . User account Cpriester (Talk | contribs) was created by Mshinn (Talk | contribs)
  • (diff | hist) . . N HIDS 19012‎; 13:45 . . (+773). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = CIS Compliance event }} = Description = CIS Compliance benchmark for this se...")
  • (diff | hist) . . N HIDS 7501‎; 13:42 . . (+746). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Mcafee event }} = Description = Mcafee Informational level event. == What...")
  • (diff | hist) . . N HIDS 533‎; 13:39 . . (+820). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OSSEC event }} = Description = OSSEC Rootkit detection has detected a servic...")
  • (diff | hist) . . N HIDS 81531‎; 13:37 . . (+753). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OpenSCAP event }} = Description = OpenSCAP has indicated that the compliance ...")
  • (diff | hist) . . N HIDS 81522‎; 13:35 . . (+673). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OpenSCAP event }} = Description = Informational message indicating the setti...")
  • (diff | hist) . . N HIDS 514‎; 13:33 . . (+907). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Rootcheck has detected an app...")
  • (diff | hist) . . N HIDS 502‎; 13:30 . . (+647). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OSSEC event }} = Description = OSSEC Server Service has been restarted == Wh...")
  • (diff | hist) . . N HIDS 5715‎; 13:29 . . (+664). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = SSH event }} = Description = A successful SSH login has been detected == Wha...")
  • (diff | hist) . . N HIDS 52506‎; 13:27 . . (+653). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Clamav event }} = Description = The Clam-AV malware database has been update...")
  • (diff | hist) . . N HIDS 59306‎; 13:25 . . (+1,414). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Composite rule for multiple w...")
  • (diff | hist) . . N HIDS 506‎; 13:22 . . (+675). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OSSEC Audit event }} = Description = Indicates that the OSSEC client.keys fi...")
  • (diff | hist) . . N HIDS 60602‎; 13:21 . . (+1,010). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = This is a generic catchall for Window...")
  • (diff | hist) . . N HIDS 80730‎; 13:15 . . (+989). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = SELinux event }} = Description = SELinux has logged a permissions violation...")
  • (diff | hist) . . N HIDS 60608‎; 13:12 . . (+1,091). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows error event }} = Description = This is a summary event from the win...")
  • (diff | hist) . . N HIDS 59247‎; 13:07 . . (+1,003). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = A local security group has been been...")
  • (diff | hist) . . N HIDS 5108‎; 13:03 . . (+898). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Linux System Event }} = Description = The Linux kernel has indicated that th...")
  • (diff | hist) . . N HIDS 18153‎; 13:01 . . (+1,491). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = This is a composite rule, 10 ...")
  • (diff | hist) . . N HIDS 60642‎; 12:59 . . (+1,026). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = This event indicates that the Softwar...")
  • (diff | hist) . . N HIDS 60702‎; 12:54 . . (+1,204). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = This indicates that the VSS s...")
  • (diff | hist) . . N HIDS 59335‎; 12:49 . . (+1,880). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = Windows threat protection has indica...")
  • (diff | hist) . . N HIDS 61138‎; 12:44 . . (+1,021). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = A new windows service has been added...")
  • (diff | hist) . . N HIDS 81101‎; 12:39 . . (+721). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = USB Auditing rule }} = Description = A new USB device has been attached to t...")
  • (diff | hist) . . N HIDS 593‎; 12:37 . . (+782). .Scott (Talk | contribs)(Created page with " {{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Ossec event log }} = Description = This indicates that the OSSEC event log ...")
  • (diff | hist) . . N HIDS 61060‎; 12:34 . . (+1,151). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows performance library }} = Description = This indicates that the windo...")
  • (diff | hist) . . N HIDS 59240‎; 12:28 . . (+1,010). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = A security enabled group has been cr...")
  • (diff | hist) . . N HIDS 18259‎; 12:23 . . (+1,043). .Scott (Talk | contribs)(Created page with " {{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = Windows Terminal Server has indicate...")
  • (diff | hist) . . N HIDS 52511‎; 12:21 . . (+940). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Anti-Virus }} = Description = This is a generic (level 3) event to collect r...")
  • (diff | hist) . . N HIDS 59238‎; 12:17 . . (+747). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = A windows active directory group acco...")
  • (diff | hist) . . HIDS 60612‎; 12:14 . . (0). .Scott (Talk | contribs)
  • (diff | hist) . . N HIDS 60612‎; 12:14 . . (+921). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows System Event }} = Description = Application has been installed on th...")
  • (diff | hist) . . N HIDS 18602‎; 12:10 . . (+1,111). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows System Event }} = Description = Composite rule identified multiple W...")
  • (diff | hist) . . N HIDS 19002‎; 12:05 . . (+1,166). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Compliance Scanner }} = Description = The CIS Compliance scanner is reportin...")
  • (diff | hist) . . N HIDS 61110‎; 12:01 . . (+1,012). .Scott (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Composite IDS rule indicating...")

20 October 2020

  • (Block log); 18:12 . . Mshinn (Talk | contribs) blocked Advantageim (Talk | contribs) with an expiry time of indefinite (account creation disabled, autoblock disabled, e-mail disabled) ‎(foo)
  • (Block log); 18:12 . . Mshinn (Talk | contribs) blocked Dfitzsimmons (Talk | contribs) with an expiry time of indefinite (account creation disabled, autoblock disabled, e-mail disabled) ‎(foo)
  • (Block log); 18:11 . . Mshinn (Talk | contribs) blocked Ben (Talk | contribs) with an expiry time of indefinite (account creation disabled, autoblock disabled, e-mail disabled) ‎
  • (diff | hist) . . m HIDS 59227‎; 18:01 . . (+184). .Mshinn (Talk | contribs)(Logon types: )
  • (diff | hist) . . m HIDS 59227‎; 18:00 . . (+162). .Mshinn (Talk | contribs)(Description: )
  • (diff | hist) . . m HIDS 59227‎; 17:59 . . (+144). .Mshinn (Talk | contribs)(What you should do: )
  • (diff | hist) . . m HIDS 59227‎; 17:58 . . (+1). .Mshinn (Talk | contribs)(Logon types: )
  • (diff | hist) . . m HIDS 59227‎; 17:58 . . (+781). .Mshinn (Talk | contribs)(Associated Windows Event IDs: )
  • (diff | hist) . . N HIDS 59230‎; 17:53 . . (+1,827). .Mshinn (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 59222 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Account locked out }} = Description = Windows is reporting that the acco...")
  • (diff | hist) . . N HIDS 59229‎; 17:51 . . (+1,617). .Mshinn (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 59222 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Logon Failure - Internal error }} = Description = Windows has detected a ...")
  • (diff | hist) . . N HIDS 59228‎; 17:49 . . (+1,549). .Mshinn (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 59222 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Logon Failure - Account's password expired }} = Description = Windows ha...")
  • (diff | hist) . . N HIDS 59227‎; 17:49 . . (+1,656). .Mshinn (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 59222 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Logon Failure - User not granted logon type }} = Description = Windows ...")
  • (diff | hist) . . N HIDS 59226‎; 17:47 . . (+1,861). .Mshinn (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 59222 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Logon Failure - User not allowed to login at this computer }} = Descripti...")
  • (diff | hist) . . N HIDS 59225‎; 17:46 . . (+1,837). .Mshinn (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 59222 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Logon Failure - Specified account expired }} = Description = Windows has...")
  • (diff | hist) . . N HIDS 59223‎; 17:44 . . (+1,843). .Mshinn (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 59222 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Account logon time restriction violation }} = Description = Windows has d...")
  • (diff | hist) . . N HIDS 59224‎; 17:42 . . (+1,713). .Mshinn (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 59222 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Account currently disabled }} = Description = Windows has detected that a ...")
  • (diff | hist) . . N HIDS 59222‎; 17:38 . . (+1,740). .Mshinn (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 59222 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Remote Logon Failure - Unknown user or bad password }} = Description = Wi...")
  • (diff | hist) . . m HIDS 59205‎; 17:36 . . (+17). .Mshinn (Talk | contribs)(What you should do: )
  • (diff | hist) . . N HIDS 59205‎; 17:35 . . (+1,970). .Mshinn (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 59205 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows Logon Failure }} = Description = Windows has detected a logon fai...")
  • (diff | hist) . . m HIDS 59204‎; 17:27 . . (0). .Mshinn (Talk | contribs)
  • (diff | hist) . . N HIDS 59204‎; 17:26 . . (+1,434). .Mshinn (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 59203 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = }} Windows audit failure event = Description = Windows has failed to pro...")
  • (diff | hist) . . m HIDS 59203‎; 17:22 . . (+1). .Mshinn (Talk | contribs)
  • (diff | hist) . . N HIDS 59203‎; 17:22 . . (+672). .Mshinn (Talk | contribs)(Created page with "{Infobox |header1 = Rule 59203 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit success event }} = Description = Windows has successfully aud...")
  • (diff | hist) . . N HIDS 59202‎; 17:21 . . (+597). .Mshinn (Talk | contribs)(Created page with "{Infobox |header1 = Rule 59202 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows Security error event }} = Description = An error has occurred on Wi...")

19 October 2020

  • (diff | hist) . . N HIDS 18103‎; 16:40 . . (+591). .Mshinn (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 18103 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows error event. }} = Description = An error has occurred on Windows. ...")
  • (diff | hist) . . N HIDS 18100‎; 16:38 . . (+591). .Mshinn (Talk | contribs)(Created page with "{{Infobox |header1 = Rule 18100 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows error event. }} = Description = An error has occurred on Windows. ...")

30 September 2020

Views
Personal tools