tampering via - Robuta Search

https://detection.fyi/sigmahq/sigma/windows/process_creation/proc_creation_win_vulnerable_driver_blocklist_registry_tampering/ Vulnerable Driver Blocklist Registry Tampering Via CommandLine | Detection.FYI Detects tampering of the Vulnerable Driver Blocklist registry via command line tools such as PowerShell or REG.EXE. The Vulnerable Driver Blocklist is a … commandline detection fyi tampering via vulnerable driver blocklist https://detection.fyi/sigmahq/sigma/windows/process_creation/proc_creation_win_credential_guard_registry_tampering/ Windows Credential Guard Registry Tampering Via CommandLine | Detection.FYI Detects attempts to add, modify, or delete Windows Credential Guard related registry keys or values via command line tools such as Reg.exe or PowerShell. … commandline detection fyi windows credential tampering via guard registry https://detection.fyi/sigmahq/sigma/windows/process_creation/proc_creation_win_reg_windows_defender_tamper/ Suspicious Windows Defender Registry Key Tampering Via Reg.EXE | Detection.FYI Detects the usage of exe detection fyi suspicious windows registry key tampering via defender