theotterone
@theotterone@lemmy.world
This is a remote user, information on this page may be incomplete. View at Source ↗
- Comment on Many such cases 3 months ago:
Only run as an experiment myself but Wazuh can do it apparently: …wazuh.com/…/detect-malware-yara-integration.html
MDE can do something similar but you’ll need to rewrite your rules which is of course more than suboptimal… learn.microsoft.com/…/advanced-hunting-overview?v…