added links to other bluekeep queries

martyav · martyav · commit d69c608d009b · 2020-07-17T16:44:15.000-04:00
diff --git a/Command and Control/c2-bluekeep.md b/Command and Control/c2-bluekeep.md
@@ -42,6 +42,12 @@ This query can be used to detect the following attack techniques and tactics ([s
 | Misconfiguration |  |  |
 | Malware, component |  |  |
 
+## See also
+
+* [Detect BlueKeep-related mining](../Execution/detect-bluekeep-related-mining.md)
+* [Detect BlueKeep exploitation attempts](../Initial%20access/detect-bluekeep-exploitation-attempts.md)
+* [Detect suspicious RDP activity related to BlueKeep](..\Lateral%20Movement\detect-suspicious-rdp-connections.md)
+
 ## Contributor info
 
 **Contributor:** Microsoft Threat Protection team
diff --git a/Execution/detect-bluekeep-related-mining.md b/Execution/detect-bluekeep-related-mining.md
@@ -41,6 +41,12 @@ This query can be used to detect the following attack techniques and tactics ([s
 | Misconfiguration |  |  |
 | Malware, component |  |  |
 
+## See also
+
+* [Detect BlueKeep exploitation attempts](../Initial%20access/detect-bluekeep-exploitation-attempts.md)
+* [Detect suspicious RDP activity related to BlueKeep](..\Lateral%20Movement\detect-suspicious-rdp-connections.md)
+* [Detect command-and-control communication related to BlueKeep cryptomining](../Command%20and%20Control/c2-bluekeep.md)
+
 ## Contributor info
 
 **Contributor:** Microsoft Threat Protection team
diff --git a/Initial access/detect-bluekeep-exploitation-attempts.md b/Initial access/detect-bluekeep-exploitation-attempts.md
@@ -38,6 +38,12 @@ This query can be used to detect the following attack techniques and tactics ([s
 | Misconfiguration |  |  |
 | Malware, component |  |  |
 
+## See also
+
+* [Detect BlueKeep-related mining](../Execution/detect-bluekeep-related-mining.md)
+* [Detect command-and-control communication related to BlueKeep cryptomining](../Command%20and%20Control/c2-bluekeep.md)
+* [Detect suspicious RDP activity related to BlueKeep](..\Lateral%20Movement\detect-suspicious-rdp-connections.md)
+
 ## Contributor info
 
 **Contributor:** Microsoft Threat Protection team
diff --git a/Lateral Movement/detect-suspicious-rdp-connections.md b/Lateral Movement/detect-suspicious-rdp-connections.md
@@ -52,6 +52,12 @@ This query can be used to detect the following attack techniques and tactics ([s
 | Misconfiguration |  |  |
 | Malware, component |  |  |
 
+## See also
+
+* [Detect BlueKeep-related mining](../Execution/detect-bluekeep-related-mining.md)
+* [Detect command-and-control communication related to BlueKeep cryptomining](../Command%20and%20Control/c2-bluekeep.md)
+* [Detect BlueKeep exploitation attempts](../Initial%20access/detect-bluekeep-exploitation-attempts.md)
+
 ## Contributor info
 
 **Contributor:** Microsoft Threat Protection team
