Nader Shalabi

Thank you, I am currently considering the open source option, but it will take some time to get it done as it requires a significant rewrite, while still work on...

Thank you for your feedback. I am currently reviewing it, SysmonBox definitely needs more testing and enhancements, there are threading issues reported too when attempting to dump the Sysmon events...

You are not missing anything, you can only create or delete rules, if you want to edit an existing rule, you have to re-create it. I will try to add...

Thank you, working on it, will update soon

Thank you, I am currently considering this, but it will take some time to get it done as it requires a significant rewrite, while still work on new features and...

Thank you. Yes the database needs update, I am updating SysmonTools and will continue working on ATT&CK tools after. I will also work on a utility to help import the...

Thank you! - Regarding the first request, it used to exist but was removed and replaced with filtering the techniques related to a certain adversary or software for selection while...

Thank you for your feedback, added to the list of requested features.

Updated. Import tools and guide are in the way too.

> It would be very helpful if test cases had predefined tags, as for example if the test needs local admin and where it should be ran from (domain controller,...