bump versions and dates on modified detections

Author: pyth0n1c

detections/application/windows_ad_dcshadow_privileges_acl_addition.yml

@@ -1,7 +1,7 @@
 name: Windows AD DCShadow Privileges ACL Addition
 id: ae915743-1aa8-4a94-975c-8062ebc8b723
-version: 3
-date: '2025-01-21'
+version: 4
+date: '2025-02-17'
 author: Dean Luxton
 status: production
 type: TTP

detections/application/windows_ad_gpo_deleted.yml

@@ -1,7 +1,7 @@
 name: Windows AD GPO Deleted
 id: 0d41772b-35ab-4e1c-a2ba-d0b455481aee
-version: 3
-date: '2025-01-21'
+version: 4
+date: '2025-02-17'
 author: Dean Luxton
 status: production
 type: TTP

detections/application/windows_ad_gpo_disabled.yml

@@ -1,7 +1,7 @@
 name: Windows AD GPO Disabled
 id: 72793bc0-c0cd-400e-9e60-fdf36f278917
-version: 3
-date: '2025-01-21'
+version: 4
+date: '2025-02-17'
 author: Dean Luxton
 status: production
 type: TTP

detections/application/windows_ad_self_dacl_assignment.yml

@@ -1,7 +1,7 @@
 name: Windows AD Self DACL Assignment
 id: 16132445-da9f-4d03-ad44-56d717dcd67d
-version: 3
-date: '2025-01-21'
+version: 4
+date: '2025-02-17'
 author: Dean Luxton
 status: production
 type: TTP

detections/endpoint/windows_archived_collected_data_in_temp_folder.yml

@@ -1,7 +1,7 @@
 name: Windows Archived Collected Data In TEMP Folder
 id: cb56a1ea-e0b1-46d5-913f-e024cba40cbe
-version: 2
-date: '2024-11-13'
+version: 3
+date: '2025-02-17'
 author: Teoderick Contreras, Splunk
 data_source:
 - Sysmon EventID 11

detections/endpoint/windows_bitlockertogo_with_network_activity.yml

@@ -1,7 +1,7 @@
 name: Windows BitLockerToGo with Network Activity
 id: 14e3a089-cc23-4f4d-a770-26e44a31fbac
-version: 2
-date: '2025-01-21'
+version: 3
+date: '2025-02-17'
 author: Michael Haag, Nasreddine Bencherchali, Splunk
 data_source:
 - Sysmon EventID 22

detections/endpoint/windows_credentials_access_via_vaultcli_module.yml

@@ -1,7 +1,7 @@
 name: Windows Credentials Access via VaultCli Module
 id: c0d89118-3f89-4cd7-8140-1f39e7210681
-version: 2
-date: '2025-01-21'
+version: 3
+date: '2025-02-17'
 author: Teoderick Contreras, Splunk
 data_source:
 - Sysmon EventID 7

detections/endpoint/windows_obfuscated_files_or_information_via_rar_sfx.yml

@@ -1,7 +1,7 @@
 name: Windows Obfuscated Files or Information via RAR SFX
 id: 4ab6862b-ce88-4223-96c0-f6da2cffb898
-version: 1
-date: '2024-12-12'
+version: 2
+date: '2025-02-17'
 author: Teoderick Contreras, Splunk
 data_source:
 - Sysmon EventID 11

detections/endpoint/windows_runmru_command_execution.yml

@@ -1,7 +1,7 @@
 name: Windows RunMRU Command Execution
 id: a15aa1ab-2b79-467f-8201-65e0f32d5b1a
-version: 2
-date: '2025-01-21'
+version: 3
+date: '2025-02-17'
 author: Nasreddine Bencherchali, Michael Haag, Splunk
 data_source:
 - Sysmon EventID 11

detections/endpoint/windows_scheduled_tasks_for_compmgmtlauncher_or_eventvwr.yml

@@ -1,7 +1,7 @@
 name: Windows Scheduled Tasks for CompMgmtLauncher or Eventvwr
 id: feb43b86-8c38-46cd-865e-20ce8a96c26c
-version: 4
-date: '2024-11-13'
+version: 5
+date: '2025-02-17'
 author: Teoderick Contreras, Splunk
 data_source:
 - Windows Event Log Security 4698