2 Releases published by 1 person

• v5.12.0

  published Aug 20, 2025

• v5.13.0

  published Aug 22, 2025

6 Pull requests merged by 4 people

• Remove Drilldown

  #3654 merged Aug 21, 2025

• CVE-2018-0171

  #3653 merged Aug 21, 2025

• update message

  #3648 merged Aug 19, 2025

• The Lost Payload: MSIX Resurrection

  #3646 merged Aug 18, 2025

• 3886 updates

  #3647 merged Aug 18, 2025

• rdp_artifacts_and_evasion

  #3628 merged Aug 18, 2025

8 Pull requests opened by 5 people

• Create RMM_Agent_Install_Followed_By_First_Outbound_Connection.yml

  #3645 opened Aug 17, 2025

• path_wiper

  #3649 opened Aug 20, 2025

• disable_lsa

  #3650 opened Aug 20, 2025

• Update windows_wmi_process_and_service_list.yml

  #3651 opened Aug 20, 2025

• Automated Splunk TA Update 365

  #3655 opened Aug 22, 2025

• objectivity_stealer

  #3656 opened Aug 22, 2025

• Remove duplicate filter macro

  #3657 opened Aug 22, 2025

• Automated Splunk TA Update 366

  #3658 opened Aug 23, 2025

1 Issue opened by 1 person

• [BUG] ESCU - AWS Defense Evasion Impair Security Services false positives

  #3652 opened Aug 21, 2025

3 Unresolved conversations

Sometimes conversations happen on old items that aren’t yet closed. Here is a list of all the Issues and Pull Requests with unresolved conversations.

• Enhancement to Rule: Disabling Windows Local Security Authority Defenses via Registry – Missing Detection for Value Modification

  #3631 commented on Aug 18, 2025 • 0 new comments

• add YAML schema and autocomplete snippet for detections

  #3612 commented on Aug 19, 2025 • 0 new comments

• secret_blizzard

  #3644 commented on Aug 20, 2025 • 0 new comments