{"payload":{"feedbackUrl":"https://github.com/orgs/community/discussions/53140","repo":{"id":82400741,"defaultBranch":"master","name":"sysmon-config","ownerLogin":"ion-storm","currentUserCanPush":false,"isFork":true,"isEmpty":false,"createdAt":"2017-02-18T16:40:59.000Z","ownerAvatar":"https://avatars.githubusercontent.com/u/4742332?v=4","public":true,"private":false,"isOrgOwned":false},"refInfo":{"name":"","listCacheKey":"v0:1530910895.0","currentOid":""},"activityList":{"items":[{"before":"e6fe247bda53355f93c186941e55f5546f146815","after":"94d353f219ce3c62ae01737c0b3d758631328dfa","ref":"refs/heads/master","pushedAt":"2023-09-12T13:09:26.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"NerbalOne","name":null,"path":"/NerbalOne","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/100296978?s=80&v=4"},"commit":{"message":"Merge pull request #26 from NerbalOne/master\n\nUpdated rules and added exclusions. This config also doesn't have the duplicate Event ID 29 rules. Thanks to @benmontour for making us aware of the excludes any issue on line 3962.","shortMessageHtmlLink":"Merge pull request <a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"1890551754\" data-permission-text=\"Title is private\" data-url=\"https://github.com/ion-storm/sysmon-config/issues/26\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/ion-storm/sysmon-config/pull/26/hovercard\" href=\"https://github.com/ion-storm/sysmon-config/pull/26\">#26</a> from NerbalOne/master"}},{"before":"3f3ccfea6e539a0e193afdbd27534fd050ea4820","after":"e6fe247bda53355f93c186941e55f5546f146815","ref":"refs/heads/master","pushedAt":"2023-09-12T13:03:53.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"NerbalOne","name":null,"path":"/NerbalOne","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/100296978?s=80&v=4"},"commit":{"message":"Merge pull request #26 from NerbalOne/master\n\nUpdated rules and added exclusions. This config also doesn't have the duplicate Event ID 29 rules.","shortMessageHtmlLink":"Merge pull request <a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"1890551754\" data-permission-text=\"Title is private\" data-url=\"https://github.com/ion-storm/sysmon-config/issues/26\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/ion-storm/sysmon-config/pull/26/hovercard\" href=\"https://github.com/ion-storm/sysmon-config/pull/26\">#26</a> from NerbalOne/master"}},{"before":"91c9f540009ca4a94224d38d45d3e4837fc045c0","after":"3f3ccfea6e539a0e193afdbd27534fd050ea4820","ref":"refs/heads/master","pushedAt":"2023-09-08T20:30:29.000Z","pushType":"pr_merge","commitsCount":24,"pusher":{"login":"ion-storm","name":"ionstorm","path":"/ion-storm","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/4742332?s=80&v=4"},"commit":{"message":"Merge pull request #25 from NerbalOne/master\n\nRepo Overhaul","shortMessageHtmlLink":"Merge pull request <a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"1888288207\" data-permission-text=\"Title is private\" data-url=\"https://github.com/ion-storm/sysmon-config/issues/25\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/ion-storm/sysmon-config/pull/25/hovercard\" href=\"https://github.com/ion-storm/sysmon-config/pull/25\">#25</a> from NerbalOne/master"}},{"before":"00185b9a96a2a4b9b5d32725210327a3ff1ce7d9","after":"91c9f540009ca4a94224d38d45d3e4837fc045c0","ref":"refs/heads/master","pushedAt":"2023-07-10T20:06:47.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"ion-storm","name":"ionstorm","path":"/ion-storm","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/4742332?s=80&v=4"},"commit":{"message":"Re-enable Browser Extension monitoring for Chrome, added MITRE Tagging","shortMessageHtmlLink":"Re-enable Browser Extension monitoring for Chrome, added MITRE Tagging"}},{"before":"baaf02da504a9c56b419f17f5d04a63107cdd9ca","after":"00185b9a96a2a4b9b5d32725210327a3ff1ce7d9","ref":"refs/heads/master","pushedAt":"2023-07-10T17:13:00.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"ion-storm","name":"ionstorm","path":"/ion-storm","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/4742332?s=80&v=4"},"commit":{"message":"Fix some inactive/broken rules and filtering","shortMessageHtmlLink":"Fix some inactive/broken rules and filtering"}},{"before":"0ab30cc1652c88291fe7b270b4ac3e2737c752ea","after":"baaf02da504a9c56b419f17f5d04a63107cdd9ca","ref":"refs/heads/master","pushedAt":"2023-07-06T21:20:27.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"ion-storm","name":"ionstorm","path":"/ion-storm","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/4742332?s=80&v=4"},"commit":{"message":"misc Updates","shortMessageHtmlLink":"misc Updates"}},{"before":"30c2337447ef21a1e9481b009c258e7b21da9cbf","after":"0ab30cc1652c88291fe7b270b4ac3e2737c752ea","ref":"refs/heads/master","pushedAt":"2023-07-05T16:17:31.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"ion-storm","name":"ionstorm","path":"/ion-storm","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/4742332?s=80&v=4"},"commit":{"message":"Add NerbalOne's Powershell Sysmon Installer, add exclusions for asus firmware bin file","shortMessageHtmlLink":"Add NerbalOne's Powershell Sysmon Installer, add exclusions for asus …"}},{"before":"dac2f473a34493b5fbd2b4d6ec43ebdafd677c96","after":"30c2337447ef21a1e9481b009c258e7b21da9cbf","ref":"refs/heads/master","pushedAt":"2023-07-05T15:04:25.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"ion-storm","name":"ionstorm","path":"/ion-storm","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/4742332?s=80&v=4"},"commit":{"message":"Add Spear Phishing detection, add @twitter tagging","shortMessageHtmlLink":"Add Spear Phishing detection, add <a class=\"user-mention notranslate\" data-hovercard-type=\"organization\" data-hovercard-url=\"/orgs/twitter/hovercard\" data-octo-click=\"hovercard-link-click\" data-octo-dimensions=\"link_type:self\" href=\"https://github.com/twitter\">@twitter</a> tagging"}},{"before":"60f27bb3072ed576f12576addd33bd81e113566b","after":"dac2f473a34493b5fbd2b4d6ec43ebdafd677c96","ref":"refs/heads/master","pushedAt":"2023-07-05T15:00:59.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"ion-storm","name":"ionstorm","path":"/ion-storm","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/4742332?s=80&v=4"},"commit":{"message":"Break out some Pe Executable rules with MITRE Tagging","shortMessageHtmlLink":"Break out some Pe Executable rules with MITRE Tagging"}},{"before":"6a5df4c6cf03448c80c83b9bc672e67273bdd1d7","after":"60f27bb3072ed576f12576addd33bd81e113566b","ref":"refs/heads/master","pushedAt":"2023-07-05T14:18:58.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"ion-storm","name":"ionstorm","path":"/ion-storm","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/4742332?s=80&v=4"},"commit":{"message":"Misc Updates & Tagging","shortMessageHtmlLink":"Misc Updates &amp; Tagging"}},{"before":"306a62802a3dad97403ab7cb935cd0c4e22f4f7c","after":"6a5df4c6cf03448c80c83b9bc672e67273bdd1d7","ref":"refs/heads/master","pushedAt":"2023-07-05T13:55:16.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"ion-storm","name":"ionstorm","path":"/ion-storm","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/4742332?s=80&v=4"},"commit":{"message":"Big update thanks to Florian Roth, Majority of updates are mirrored and MITRE Tagged from Florian's Sysmon config here:\nhttps://github.com/Neo23x0/sysmon-config/blob/master/sysmonconfig-export.xml","shortMessageHtmlLink":"Big update thanks to Florian Roth, Majority of updates are mirrored a…"}},{"before":"aa679c7ba5bbac9497d4e66effe284e3b282328d","after":"306a62802a3dad97403ab7cb935cd0c4e22f4f7c","ref":"refs/heads/master","pushedAt":"2023-06-27T21:53:32.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"ion-storm","name":"ionstorm","path":"/ion-storm","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/4742332?s=80&v=4"},"commit":{"message":"Unusual File extension written as PE, enabled alerting","shortMessageHtmlLink":"Unusual File extension written as PE, enabled alerting"}},{"before":"d5382ff813a582a628b83e6de2103f640815c439","after":"aa679c7ba5bbac9497d4e66effe284e3b282328d","ref":"refs/heads/master","pushedAt":"2023-06-27T21:51:43.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"ion-storm","name":"ionstorm","path":"/ion-storm","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/4742332?s=80&v=4"},"commit":{"message":"Added Potential Noisy Rule, exclusions need to be added under global as its an or rule.","shortMessageHtmlLink":"Added Potential Noisy Rule, exclusions need to be added under global …"}},{"before":"f93cc992d3281039b2f88041737997266af23db3","after":"d5382ff813a582a628b83e6de2103f640815c439","ref":"refs/heads/master","pushedAt":"2023-06-27T21:24:25.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"ion-storm","name":"ionstorm","path":"/ion-storm","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/4742332?s=80&v=4"},"commit":{"message":"Sysmon v15 update schema + 1 test rule for C:\\users\\*\\Downloads","shortMessageHtmlLink":"Sysmon v15 update schema + 1 test rule for C:\\users\\*\\Downloads"}},{"before":"a99afce0868b51bd5d06bd69a38eab55456a20f2","after":"f93cc992d3281039b2f88041737997266af23db3","ref":"refs/heads/master","pushedAt":"2023-06-27T20:53:30.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"ion-storm","name":"ionstorm","path":"/ion-storm","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/4742332?s=80&v=4"},"commit":{"message":"Updates from @NerbalOne","shortMessageHtmlLink":"Updates from <a class=\"user-mention notranslate\" data-hovercard-type=\"user\" data-hovercard-url=\"/users/NerbalOne/hovercard\" data-octo-click=\"hovercard-link-click\" data-octo-dimensions=\"link_type:self\" href=\"https://github.com/NerbalOne\">@NerbalOne</a>"}}],"hasNextPage":false,"hasPreviousPage":false,"activityType":"all","actor":null,"timePeriod":"all","sort":"DESC","perPage":30,"cursor":"djE6ks8AAAADfsrQhAA","startCursor":null,"endCursor":null}},"title":"Activity · ion-storm/sysmon-config"}