innoloader

Author: t-contreras

datasets/attack_techniques/T1053/hidden_schedule_task/hidden_schedule_task.yml

@@ -1,11 +1,11 @@
-author: Teoderick Contreras
-id: bd48efd0-c611-11ec-a219-acde48001122
-date: '2022-04-27'
+author: Teoderick Contreras, Splunk
+id: 59d45fb2-3a11-11f0-9e8a-629be3538068
+date: '2025-05-26'
 description: Generated datasets for hidden schedule task in attack range.
 environment: attack_range
 dataset:
-- https://media.githubusercontent.com/media/splunk/attack_data/master/datasets/attack_techniques/T1053/hidden_schedule_task/security.log
+- https://media.githubusercontent.com/media/splunk/attack_data/master/datasets/attack_techniques/T1053/hidden_schedule_task/inno_schtask.log
 sourcetypes:
-- WinEventLog:Security
+- 'XmlWinEventLog:Security'
 references:
 - https://www.welivesecurity.com/2022/04/12/industroyer2-industroyer-reloaded/

datasets/attack_techniques/T1053/hidden_schedule_task/inno_schtask.log

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:5f34e3159b9808e43f41b508d78971ae21a84e89fec10622be1d9f74a8c28f47
+size 9428

datasets/attack_techniques/T1497/chrom_no_sandbox/chrom_no_sandbox.yml

@@ -0,0 +1,11 @@
+author: Teoderick Contreras, Splunk
+id: 842a3076-3a15-11f0-9e8a-629be3538068
+date: '2025-05-26'
+description: Generated datasets for chrom no sandbox in attack range.
+environment: attack_range
+dataset:
+- https://media.githubusercontent.com/media/splunk/attack_data/master/datasets/attack_techniques/T1497/chrom_no_sandbox/chrome-no_sandbox.log
+sourcetypes:
+- 'XmlWinEventLog:Security'
+references:
+- https://unix.stackexchange.com/questions/68832/what-does-the-chromium-option-no-sandbox-mean

datasets/attack_techniques/T1497/chrom_no_sandbox/chrome-no_sandbox.log

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:8d407e5c516063f267694431f34640fa60c9c98f32449f0fcb74ad55904dd0a2
+size 7166