SSA finding report body generation

Open P4T12ICK opened this issue 2 years ago • 1 comments

PR Template for new Detections

For Authors:

[ ] Make sure that CI/CD detection-testing and build-and-validate jobs passed ✔️.

For Reviewers:

[ ] Verify CI/CD jobs have passed without errors.
[ ] Validate SPL logic.
[ ] Validate tags, description, and how to implement.
[ ] Validate name matches <platform>_<mitre att&ck technique>_<short description>
[ ] Verify references match analytic.
[ ] Is there an Atomic Test?

Mar 17 '22 11:03 P4T12ICK

tested all ssa detections.

Failed: ssa___fsutil_zeroing_file.yml ssa___wbadmin_delete_system_backups.yml

Mar 23 '22 12:03 P4T12ICK

stale closing for now

Aug 15 '22 21:08 josehelps