marius
/
gist
1
0
Fork 0
Code Issues Activity

Added threat hunting docu

main
marius 2023-05-07 18:16:51 +00:00
parent be21cdfd94
commit 81d0c7e08a
1 changed files with 3 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
falco/rules.d/Readme.txt Normal file
View File

@ -0,0 +1,3 @@
Threat Hunting config for Falco
* created a network logger (process, privileged or not, egress IP) - can be used on internal systems (select internal networks can be excluded)