updating version

Author: patel-bhavin

detections/application/crushftp_server_side_template_injection.yml

@@ -1,7 +1,7 @@
 name: CrushFTP Server Side Template Injection
 id: ccf6b7a3-bd39-4bc9-a949-143a8d640dbc
-version: 2
-date: '2024-09-30'
+version: 3
+date: '2025-01-21'
 author: Michael Haag, Splunk
 data_source:
 - CrushFTP

detections/application/detect_distributed_password_spray_attempts.yml

@@ -1,7 +1,7 @@
 name: Detect Distributed Password Spray Attempts
 id: b1a82fc8-8a9f-4344-9ec2-bde5c5331b57
-version: 2
-date: '2024-10-17'
+version: 3
+date: '2025-01-21'
 author: Dean Luxton
 status: production
 type: Hunting

detections/application/detect_new_login_attempts_to_routers.yml

@@ -1,7 +1,7 @@
 name: Detect New Login Attempts to Routers
 id: bce3ed7c-9b1f-42a0-abdf-d8b123a34836
-version: 3
-date: '2024-10-17'
+version: 4
+date: '2025-01-21'
 author: Bhavin Patel, Splunk
 status: experimental
 type: TTP

detections/application/detect_password_spray_attempts.yml

@@ -1,7 +1,7 @@
 name: Detect Password Spray Attempts
 id: 086ab581-8877-42b3-9aee-4a7ecb0923af
-version: 4
-date: '2024-10-17'
+version: 5
+date: '2025-01-21'
 author: Dean Luxton
 status: production
 type: TTP

detections/application/email_attachments_with_lots_of_spaces.yml

@@ -1,7 +1,7 @@
 name: Email Attachments With Lots Of Spaces
 id: 56e877a6-1455-4479-ada6-0550dc1e22f8
-version: 4
-date: '2024-10-17'
+version: 5
+date: '2025-01-21'
 author: David Dorsey, Splunk
 status: experimental
 type: Anomaly

detections/application/email_files_written_outside_of_the_outlook_directory.yml

@@ -1,7 +1,7 @@
 name: Email files written outside of the Outlook directory
 id: 8d52cf03-ba25-4101-aa78-07994aed4f74
-version: 5
-date: '2024-10-17'
+version: 6
+date: '2025-01-21'
 author: Bhavin Patel, Splunk
 status: experimental
 type: TTP

detections/application/email_servers_sending_high_volume_traffic_to_hosts.yml

@@ -1,7 +1,7 @@
 name: Email servers sending high volume traffic to hosts
 id: 7f5fb3e1-4209-4914-90db-0ec21b556378
-version: 4
-date: '2024-10-17'
+version: 5
+date: '2025-01-21'
 author: Bhavin Patel, Splunk
 status: experimental
 type: Anomaly

detections/application/ivanti_vtm_new_account_creation.yml

@@ -1,7 +1,7 @@
 name: Ivanti VTM New Account Creation
 id: b04be6e5-2002-4349-8742-52285635b8f5
-version: 2
-date: '2024-09-30'
+version: 3
+date: '2025-01-21'
 author: Michael Haag, Splunk
 data_source:
 - Ivanti VTM Audit

detections/application/monitor_email_for_brand_abuse.yml

@@ -1,7 +1,7 @@
 name: Monitor Email For Brand Abuse
 id: b2ea1f38-3a3e-4b8a-9cf1-82760d86a6b8
-version: 4
-date: '2024-10-17'
+version: 5
+date: '2025-01-21'
 author: David Dorsey, Splunk
 status: experimental
 type: TTP

detections/application/no_windows_updates_in_a_time_frame.yml

@@ -1,7 +1,7 @@
 name: No Windows Updates in a time frame
 id: 1a77c08c-2f56-409c-a2d3-7d64617edd4f
-version: 3
-date: '2024-10-17'
+version: 4
+date: '2025-01-21'
 author: Bhavin Patel, Splunk
 status: experimental
 type: Hunting