555908d1-a6d7-4695-8e1e-26931d2012f4

Have a question around this project? Sign up for a cost-free vr-tab-quebec.com account to open up an concern and contact its maintainers and also the area.

Pick a username Email Address Password Sign up for vr-tab-quebec.com

By clicking “Sign up for vr-tab-quebec.com”, you agree to our terms of company and privacy statement. We’ll occasionally send you account connected emails.

Already on vr-tab-quebec.com? Sign in to your account




You watching: 555908d1-a6d7-4695-8e1e-26931d2012f4

*
Lopuiz commented Sep 27, 2019
wazuh-ruleset/rules/0610-win-ms_logs_rules.xml

Lines 37 to 63 in 725a015




See more: Network Recording Player Unknown File Format, Which Is The Player To View The Recordings (

preeminence id="63103" level="5"> if_sid>63100if_sid> field name="win.system.eventID">^1102$field> description>The audit log was cleareddescription> options>no_full_logoptions> group>log_clearing_auditlog,gpg13_10.1,gdpr_II_5.1.f,gdpr_IV_30.1.g,group> rule> ascendancy id="63104" level="5"> if_sid>63100if_sid> field name="win.device.eventID">^104$field> description>A Windows log file was cleareddescription> options>no_full_logoptions> group>log_clearing,gpg13_10.1,gdpr_II_5.1.f,group> rule> rule id="63105" level="5"> if_sid>63100if_sid> area name="win.system.eventID">^6005$field> description>The Event log organization was starteddescription> options>no_full_logoptions> group>windows_log_service_started,gpg13_10.1,group> rule>
wazuh-ruleset/rules/0575-win-base_rules.xml

Lines 31 to 36 in 725a015




See more: The Operation Failed As No Adapter, Error: Is In The State Permissible

rule id="60002" level="0">
if_sid>60000if_sid>
area name="win.mechanism.channel">^System$field>
options>no_full_logoptions>
description>Group of Windows rules for the System channeldescription>
rule>

wazuh-ruleset/rules/0575-win-base_rules.xml