Bhavin Patel

icon indicating an email [email protected]

icon company Splunk icon location SF icon location Sr. Threat Research Engineer @Splunk Threat Research Team. Maintainer, Avid fan - Atomic Red Team

Results 24 comments of Bhavin Patel

improve output of risk severity field.

Does this code require the risk_score to be present in the yaml since we are trying to remove risk_score and convert it into a computed field as per this security...

[BUG] Detect Outbound LDAP Traffic, missing dm summary macro

@DipsyTipsy : thank you for raising the issue. The fix has been merged and we will release this update in 4.43.0!

Create domain_enumeration_using_netdom.yml

@thegreatmhn : Hello there! Can you please help us with sharing an attack data sample event? This will help us test this detection and get it shipped!

Create domain_enumeration_using_netdom.yml

Closing this PR for due to inactivity. @thegreatmhn - please feel free to re open this PR once we have updates to this!