github JerryLinLinLin/Huorong-ATP-Rules v0.1.7
on GitHub

latest releases: v0.1.11, v0.1.10, v0.1.9...
2 years ago

更新日志

  • 新增遥测组别 Telemetry ,默认状态为关闭
  • 新增以下规则组:
    • Suspicious.AppCertDLLs
    • Suspicious.AppInitDLLs
    • Suspicious.NetDebugger
    • Suspicious.NetWinAppXRT
    • Telemetry.ActiveSetup
    • Telemetry.CredentialProviders
    • Telemetry.LSAConfig
    • Telemetry.PowerShell
    • Telemetry.ReadBrowserData
    • Telemetry.TerminalServer
  • 其他规则组调整

What's Changed

  • Added new group category Telemetry, the default state is off
  • The following rule groups have been added:
    • Suspicious.AppCertDLLs
    • Suspicious.AppInitDLLs
    • Suspicious.NetDebugger
    • Suspicious.NetWinAppXRT
    • Telemetry.ActiveSetup
    • Telemetry.CredentialProviders
    • Telemetry.LSAConfig
    • Telemetry.PowerShell
    • Telemetry.ReadBrowserData
    • Telemetry.TerminalServer
  • Other ruleset adjustments

Full Changelog: v0.1.6...v0.1.7

Check out latest releases or
releases around JerryLinLinLin/Huorong-ATP-Rules v0.1.7

Don't miss a new Huorong-ATP-Rules release

NewReleases is sending notifications on new releases.

Get notifications