├── MITRE_TECHNIQUES_FROM_SYSMON_EVENT1.xml
├── MITRE_TECHNIQUES_FROM_SYSMON_EVENT10.xml
├── MITRE_TECHNIQUES_FROM_SYSMON_EVENT11.xml
├── MITRE_TECHNIQUES_FROM_SYSMON_EVENT12.xml
├── MITRE_TECHNIQUES_FROM_SYSMON_EVENT13.xml
├── MITRE_TECHNIQUES_FROM_SYSMON_EVENT14.xml
├── MITRE_TECHNIQUES_FROM_SYSMON_EVENT15.xml
├── MITRE_TECHNIQUES_FROM_SYSMON_EVENT2.xml
├── MITRE_TECHNIQUES_FROM_SYSMON_EVENT22.xml
├── MITRE_TECHNIQUES_FROM_SYSMON_EVENT3.xml
├── MITRE_TECHNIQUES_FROM_SYSMON_EVENT7.xml
├── README.md
├── autoruns.ps1
├── logonsessions.ps1
├── sigcheck.ps1
├── win_autoruns_rules.xml
├── win_logonsessions_rules.xml
└── win_sigcheck_rules.xml


/MITRE_TECHNIQUES_FROM_SYSMON_EVENT1.xml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/juaromu/wazuh/HEAD/MITRE_TECHNIQUES_FROM_SYSMON_EVENT1.xml


--------------------------------------------------------------------------------
/MITRE_TECHNIQUES_FROM_SYSMON_EVENT10.xml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/juaromu/wazuh/HEAD/MITRE_TECHNIQUES_FROM_SYSMON_EVENT10.xml


--------------------------------------------------------------------------------
/MITRE_TECHNIQUES_FROM_SYSMON_EVENT11.xml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/juaromu/wazuh/HEAD/MITRE_TECHNIQUES_FROM_SYSMON_EVENT11.xml


--------------------------------------------------------------------------------
/MITRE_TECHNIQUES_FROM_SYSMON_EVENT12.xml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/juaromu/wazuh/HEAD/MITRE_TECHNIQUES_FROM_SYSMON_EVENT12.xml


--------------------------------------------------------------------------------
/MITRE_TECHNIQUES_FROM_SYSMON_EVENT13.xml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/juaromu/wazuh/HEAD/MITRE_TECHNIQUES_FROM_SYSMON_EVENT13.xml


--------------------------------------------------------------------------------
/MITRE_TECHNIQUES_FROM_SYSMON_EVENT14.xml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/juaromu/wazuh/HEAD/MITRE_TECHNIQUES_FROM_SYSMON_EVENT14.xml


--------------------------------------------------------------------------------
/MITRE_TECHNIQUES_FROM_SYSMON_EVENT15.xml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/juaromu/wazuh/HEAD/MITRE_TECHNIQUES_FROM_SYSMON_EVENT15.xml


--------------------------------------------------------------------------------
/MITRE_TECHNIQUES_FROM_SYSMON_EVENT2.xml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/juaromu/wazuh/HEAD/MITRE_TECHNIQUES_FROM_SYSMON_EVENT2.xml


--------------------------------------------------------------------------------
/MITRE_TECHNIQUES_FROM_SYSMON_EVENT22.xml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/juaromu/wazuh/HEAD/MITRE_TECHNIQUES_FROM_SYSMON_EVENT22.xml


--------------------------------------------------------------------------------
/MITRE_TECHNIQUES_FROM_SYSMON_EVENT3.xml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/juaromu/wazuh/HEAD/MITRE_TECHNIQUES_FROM_SYSMON_EVENT3.xml


--------------------------------------------------------------------------------
/MITRE_TECHNIQUES_FROM_SYSMON_EVENT7.xml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/juaromu/wazuh/HEAD/MITRE_TECHNIQUES_FROM_SYSMON_EVENT7.xml


--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/juaromu/wazuh/HEAD/README.md


--------------------------------------------------------------------------------
/autoruns.ps1:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/juaromu/wazuh/HEAD/autoruns.ps1


--------------------------------------------------------------------------------
/logonsessions.ps1:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/juaromu/wazuh/HEAD/logonsessions.ps1


--------------------------------------------------------------------------------
/sigcheck.ps1:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/juaromu/wazuh/HEAD/sigcheck.ps1


--------------------------------------------------------------------------------
/win_autoruns_rules.xml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/juaromu/wazuh/HEAD/win_autoruns_rules.xml


--------------------------------------------------------------------------------
/win_logonsessions_rules.xml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/juaromu/wazuh/HEAD/win_logonsessions_rules.xml


--------------------------------------------------------------------------------
/win_sigcheck_rules.xml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/juaromu/wazuh/HEAD/win_sigcheck_rules.xml


--------------------------------------------------------------------------------