https://www.intelfusions.com/ 2026-06-06 daily 1.0 https://www.intelfusions.com/news 2026-06-06 daily 0.9 https://www.intelfusions.com/threat-actors 2026-06-06 daily 0.9 https://www.intelfusions.com/incidents 2026-06-06 daily 0.8 https://www.intelfusions.com/malware 2026-06-06 weekly 0.8 https://www.intelfusions.com/rules 2026-06-06 weekly 0.8 https://www.intelfusions.com/worldmap 2026-06-06 weekly 0.7 https://www.intelfusions.com/about 2026-06-06 monthly 0.5 https://www.intelfusions.com/contact 2026-06-06 monthly 0.4 https://www.intelfusions.com/threat-actors/black-x 2026-06-02 weekly 0.8 https://www.intelfusions.com/threat-actors/blackwater 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/apt73 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/payoutsking 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/payload 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/krybit 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/nova 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/genesis 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/lamashtu 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/world-leaks 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/everest 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/fulcrumsec 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/m3rx 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/gunra 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/chaos 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/kairos 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ailock 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/anubis 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/sinobi 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/space-bears 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/audit-team 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/interlock 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/aurora 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/bravox 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/blacknevas 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/insomnia 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/shadowbyt3 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/netrunner 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/medusalocker 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/pear-team 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/cmd 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/coinbase-cartel 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/alp-001 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/titan 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/silent-ransom-group 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/secpo 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/leakbazaar 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/0day-syndicate 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/osiris 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/orca 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/radar 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ms13089 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/vect 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ransomexx 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/nitrogen 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/linkc 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/timc 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/mnt6 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/morpheus 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/abyss 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/exitium 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/crypto24 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/beast 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/termite 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/securotrop 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/icarus 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/prinz-eugen 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/the-gentlemen 2026-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/fog-ransomware 2026-02-28 weekly 0.8 https://www.intelfusions.com/threat-actors/safepay 2026-02-28 weekly 0.8 https://www.intelfusions.com/threat-actors/void-manticore 2026-02-28 weekly 0.8 https://www.intelfusions.com/threat-actors/mirrorface 2026-02-28 weekly 0.8 https://www.intelfusions.com/threat-actors/dark-storm-team 2026-02-28 weekly 0.8 https://www.intelfusions.com/threat-actors/lynx-ransomware 2026-02-28 weekly 0.8 https://www.intelfusions.com/threat-actors/handala 2026-02-28 weekly 0.8 https://www.intelfusions.com/threat-actors/blacksuit 2026-02-28 weekly 0.8 https://www.intelfusions.com/threat-actors/medusa-ransomware 2026-02-28 weekly 0.8 https://www.intelfusions.com/threat-actors/dark-angels 2026-02-28 weekly 0.8 https://www.intelfusions.com/threat-actors/sarcoma 2026-02-28 weekly 0.8 https://www.intelfusions.com/threat-actors/snatch 2026-02-28 weekly 0.8 https://www.intelfusions.com/threat-actors/brain-cipher 2026-02-28 weekly 0.8 https://www.intelfusions.com/threat-actors/shinyhunters 2026-02-28 weekly 0.8 https://www.intelfusions.com/threat-actors/intelbroker 2026-02-28 weekly 0.8 https://www.intelfusions.com/threat-actors/romcom 2026-02-28 weekly 0.8 https://www.intelfusions.com/threat-actors/storm-0558 2026-02-28 weekly 0.8 https://www.intelfusions.com/threat-actors/i-soon 2026-02-28 weekly 0.8 https://www.intelfusions.com/threat-actors/hunters-international 2026-02-28 weekly 0.8 https://www.intelfusions.com/threat-actors/goldenjackal 2026-02-28 weekly 0.8 https://www.intelfusions.com/threat-actors/famous-chollima 2026-02-28 weekly 0.8 https://www.intelfusions.com/threat-actors/lazarus-group 2026-02-17 weekly 0.8 https://www.intelfusions.com/threat-actors/reynolds 2026-02-11 weekly 0.8 https://www.intelfusions.com/threat-actors/scattered-spider 2026-02-08 weekly 0.8 https://www.intelfusions.com/threat-actors/volt-typhoon 2026-02-05 weekly 0.8 https://www.intelfusions.com/threat-actors/lockbit 2026-02-03 weekly 0.8 https://www.intelfusions.com/threat-actors/nightspire 2025-03-12 weekly 0.8 https://www.intelfusions.com/threat-actors/coral-sleet 2025-03-07 weekly 0.8 https://www.intelfusions.com/threat-actors/jasper-sleet 2025-03-07 weekly 0.8 https://www.intelfusions.com/threat-actors/cyber-toufan 2025-03-04 weekly 0.8 https://www.intelfusions.com/threat-actors/cyber-islamic-resistance 2025-03-04 weekly 0.8 https://www.intelfusions.com/threat-actors/cyb3r-drag0nz 2025-03-04 weekly 0.8 https://www.intelfusions.com/threat-actors/iranian-avenger 2025-03-04 weekly 0.8 https://www.intelfusions.com/threat-actors/cyber-support-front 2025-03-04 weekly 0.8 https://www.intelfusions.com/threat-actors/russian-legion 2025-03-04 weekly 0.8 https://www.intelfusions.com/threat-actors/cotton-sandstorm 2025-03-04 weekly 0.8 https://www.intelfusions.com/threat-actors/cardinal 2025-03-04 weekly 0.8 https://www.intelfusions.com/threat-actors/keymousteam 2025-03-04 weekly 0.8 https://www.intelfusions.com/threat-actors/apt28 2025-02-01 weekly 0.8 https://www.intelfusions.com/threat-actors/funksec 2024-12-01 weekly 0.8 https://www.intelfusions.com/threat-actors/embargo 2024-05-01 weekly 0.8 https://www.intelfusions.com/threat-actors/actor240524 2024-05-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ransomhub 2024-02-01 weekly 0.8 https://www.intelfusions.com/threat-actors/poisonseed 2024-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/unc5221 2024-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/gamacopy 2024-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/flyingyeti 2024-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/unc5325 2024-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/elusive-comet 2024-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/operation-cobalt-whisper 2024-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/storm-1811 2024-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/toxic-panda 2023-11-01 weekly 0.8 https://www.intelfusions.com/threat-actors/3am 2023-09-01 weekly 0.8 https://www.intelfusions.com/threat-actors/gambleforce 2023-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/rhysida 2023-05-01 weekly 0.8 https://www.intelfusions.com/threat-actors/money-message 2023-03-01 weekly 0.8 https://www.intelfusions.com/threat-actors/cactus 2023-03-01 weekly 0.8 https://www.intelfusions.com/threat-actors/akira 2023-03-01 weekly 0.8 https://www.intelfusions.com/threat-actors/triplestrength 2023-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/frostyneighbor 2023-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ghostr 2023-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/moonstone-sleet 2023-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/fusioncore 2023-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/contagious-interview 2023-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/overflame 2023-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/unfading-sea-haze 2023-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/inc-ransom 2023-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/unc5174 2023-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/angry-likho 2023-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/r00tk1t 2023-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/pikabot 2023-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/killsec 2023-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/tag-112 2023-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/dragonforce 2023-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/tag-124 2023-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/tidrone 2023-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/anonymous-sudan 2023-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/toxcar-cyber-team 2023-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/unc4841 2022-10-01 weekly 0.8 https://www.intelfusions.com/threat-actors/trigona 2022-10-01 weekly 0.8 https://www.intelfusions.com/threat-actors/aeroblade 2022-09-01 weekly 0.8 https://www.intelfusions.com/threat-actors/royal 2022-09-01 weekly 0.8 https://www.intelfusions.com/threat-actors/siegedsec 2022-09-01 weekly 0.8 https://www.intelfusions.com/threat-actors/qilin 2022-07-01 weekly 0.8 https://www.intelfusions.com/threat-actors/bianlian 2022-07-01 weekly 0.8 https://www.intelfusions.com/threat-actors/play 2022-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/rorschach 2022-04-01 weekly 0.8 https://www.intelfusions.com/threat-actors/black-basta 2022-04-01 weekly 0.8 https://www.intelfusions.com/threat-actors/noname05716 2022-03-01 weekly 0.8 https://www.intelfusions.com/threat-actors/0ktapus 2022-03-01 weekly 0.8 https://www.intelfusions.com/threat-actors/8base 2022-03-01 weekly 0.8 https://www.intelfusions.com/threat-actors/team-onefist 2022-03-01 weekly 0.8 https://www.intelfusions.com/threat-actors/bumblebee 2022-03-01 weekly 0.8 https://www.intelfusions.com/threat-actors/xaknet-team 2022-02-01 weekly 0.8 https://www.intelfusions.com/threat-actors/rahdit 2022-02-01 weekly 0.8 https://www.intelfusions.com/threat-actors/it-army-of-ukraine 2022-02-01 weekly 0.8 https://www.intelfusions.com/threat-actors/peoples-cyber-army-of-russia 2022-02-01 weekly 0.8 https://www.intelfusions.com/threat-actors/nokoyawa 2022-02-01 weekly 0.8 https://www.intelfusions.com/threat-actors/evilweb 2022-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/evilbyte 2022-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ransomhouse 2022-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/femwar02 2022-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/homeland-justice 2022-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/killnet 2022-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/muddled-libra 2022-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/adrastea 2022-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/aggressive-inventory-zombies 2022-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/crimson-palace 2022-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/anonymous64 2022-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/punk-003 2022-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/storm-0501 2022-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/shadowsyndicate 2022-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/cyber-army-of-russia-reborn 2022-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/evilpost 2022-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/excobalt 2022-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/tag-56 2022-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/educated-manticore 2022-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/tradertraitor 2022-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/phantomcontrol 2022-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/team46 2022-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/threat-actor-888 2022-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/water-galura 2022-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/yorotrooper 2022-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/fishmedley 2022-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ref2924 2022-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/thewizards 2022-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/uac-0020 2022-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/uac-0082 2022-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/threatsec 2022-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/unc3886 2022-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/usersec 2022-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/earth-yako 2022-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/patched-lightning 2022-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/tag-140 2022-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/alphv 2021-11-01 weekly 0.8 https://www.intelfusions.com/threat-actors/moses-staff 2021-09-01 weekly 0.8 https://www.intelfusions.com/threat-actors/blackmatter 2021-07-01 weekly 0.8 https://www.intelfusions.com/threat-actors/blackbyte 2021-07-01 weekly 0.8 https://www.intelfusions.com/threat-actors/avoslocker 2021-07-01 weekly 0.8 https://www.intelfusions.com/threat-actors/karakurt 2021-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/hive 2021-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/lapsus 2021-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/vice-society 2021-05-01 weekly 0.8 https://www.intelfusions.com/threat-actors/lorenz 2021-04-01 weekly 0.8 https://www.intelfusions.com/threat-actors/exotic-lily 2021-03-01 weekly 0.8 https://www.intelfusions.com/threat-actors/earth-krahang 2021-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/apt-c-60 2021-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/earth-freybug 2021-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/earth-lamia 2021-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/purplehaze 2021-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/saint-bear 2021-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ta829 2021-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/diceyf 2021-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/flax-typhoon 2021-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/hafnium 2021-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/plum-typhoon 2021-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/tag-28 2021-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/tempheretic 2021-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/tiltedtemple 2021-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/velvet-ant 2021-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/appmilad 2021-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/nemesis-kitten 2021-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/storm-0133 2021-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/andromeda-spider 2021-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/anthropoid-spider 2021-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/cinnamon-tempest 2021-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/lv-ransomware 2021-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/medusa-group 2021-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/overlord-spider 2021-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ta575 2021-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ta579 2021-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ta580 2021-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/tiny-spider 2021-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/traveling-spider 2021-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/edalat-e-ali 2021-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/indian-cyber-force 2021-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/n3tw0rm 2021-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/predatory-sparrow 2021-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/stormous 2021-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/gc01 2021-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/polonium 2021-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ta576 2021-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/luminousmoth 2020-10-01 weekly 0.8 https://www.intelfusions.com/threat-actors/cyber-partisans 2020-10-01 weekly 0.8 https://www.intelfusions.com/threat-actors/darkside 2020-08-01 weekly 0.8 https://www.intelfusions.com/threat-actors/meow 2020-07-01 weekly 0.8 https://www.intelfusions.com/threat-actors/prolific-puma 2020-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/cyber-av3ngers 2020-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/altdos 2020-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/shadowlad 2020-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/toddycat 2020-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ta578 2020-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/earth-estries 2020-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/redecho 2020-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ta572 2020-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/tridentlocker 2020-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ta574 2020-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ta577 2020-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/tetrisphantom 2020-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/earth-kurma 2020-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/altoufan-team 2020-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/earth-baku 2020-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/emennet-pasargad 2020-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/conti 2020-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/worok 2020-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/team-insane-pakistan 2020-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/metador 2020-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ghostredirector 2020-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/gootloader 2020-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/terbium 2020-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/earth-centaur 2020-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/earth-longzhi 2020-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/alpha-spider 2020-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/unc2267 2020-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/unc3890 2020-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ember-bear 2020-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ta570 2020-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/tracer-kitten 2020-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ruza-flood 2020-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/winter-vivern 2020-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/agrius 2020-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ta584 2020-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/cuba 2019-12-01 weekly 0.8 https://www.intelfusions.com/threat-actors/blue-mockingbird 2019-12-01 weekly 0.8 https://www.intelfusions.com/threat-actors/malteiro 2019-11-01 weekly 0.8 https://www.intelfusions.com/threat-actors/operation-wizardopium 2019-11-01 weekly 0.8 https://www.intelfusions.com/threat-actors/pysa 2019-10-01 weekly 0.8 https://www.intelfusions.com/threat-actors/doppelpaymer 2019-06-01 weekly 0.8 https://www.intelfusions.com/threat-actors/aquatic-panda 2019-04-01 weekly 0.8 https://www.intelfusions.com/threat-actors/earth-lusca 2019-04-01 weekly 0.8 https://www.intelfusions.com/threat-actors/cl0p 2019-02-01 weekly 0.8 https://www.intelfusions.com/threat-actors/pizzo-spider 2019-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ta866 2019-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/space-kite 2019-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/gold-southfield 2019-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/costaricto 2019-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/altahrea-team 2019-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/teleboyi 2019-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/operation-drbcontrol 2019-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ta2101 2019-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/topaz-typhoon 2019-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/earth-wendigo 2019-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/tstark 2019-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/tunnelsnake 2019-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/twosail-junk 2019-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/earth-berberoka 2019-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/earth-kitsune 2019-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/witchetty 2019-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ta410 2019-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/amaranth-dragon 2019-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/earth-kapre 2019-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/operation-kabar-cobra 2019-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ta800 2019-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/moshen-dragon 2019-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/teamtnt 2019-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/flash-kitten 2019-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ta571 2019-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/redhotel 2019-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/sidecopy 2019-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/fishing-elephant 2019-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/frankenstein 2019-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/salt-typhoon 2019-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/plushdaemon 2019-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/operation-shadowhammer 2019-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/operation-triangulation 2019-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/operation-comando 2019-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/parinacota 2019-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/sharpshooter 2018-10-01 weekly 0.8 https://www.intelfusions.com/threat-actors/operation-sharpshooter 2018-10-01 weekly 0.8 https://www.intelfusions.com/threat-actors/wirte 2018-08-01 weekly 0.8 https://www.intelfusions.com/threat-actors/curium 2018-07-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ta558 2018-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/tianwu 2018-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/redcurl 2018-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/tortoiseshell 2018-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/gorgon-group 2018-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/rocke 2018-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/chimera 2018-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/operation-red-signature 2018-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/nomadic-octopus 2018-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/the-gorgon-group 2018-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/genesis-market 2018-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/lazyscripter 2018-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/honeybee 2018-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/eviltraffic 2018-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/apt-c-36 2018-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/nocturnous-blizzard 2018-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/perswaysion 2018-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/mekotio 2018-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/evilnum 2018-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ta547 2018-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/pacha-group 2018-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ghostemperor 2018-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/poison-carp 2018-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/darkgate 2018-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/operation-poison-needles 2018-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/outlaw-spider 2018-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/applejeus 2018-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/powerpool 2018-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/antlion 2018-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/apt-c-34 2018-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/zirconium 2017-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/operation-wocao 2017-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/apt-c-27 2017-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/backdoordiplomacy 2017-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/phlox-typhoon 2017-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ta2541 2017-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/whitefly 2017-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ta544 2017-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/leafminer 2017-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/paytool 2017-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/pearl-sleet 2017-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/windshift 2017-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/fox-kitten 2017-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/hexane 2017-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/muddywater 2017-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/sea-turtle 2017-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/space-pirates 2017-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/operation-parliament 2017-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/icedid 2017-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/mustard-tempest 2017-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/operation-forumtroll 2017-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/prophet-spider 2017-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/fxmsp 2017-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/gallmaker 2017-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/the-white-company 2017-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ec2-grouper 2017-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/darkvishnya 2017-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/the-shadow-brokers 2016-08-01 weekly 0.8 https://www.intelfusions.com/threat-actors/silence 2016-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/teamxrat 2016-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/darkhydrus 2016-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/the-big-bang 2016-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/fin8 2016-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ourmine 2016-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/higaisa 2016-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ta459 2016-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/neodymium 2016-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/thedarkoverlord 2016-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/fin11 2016-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/cobalt-group 2016-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/donot-team 2016-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/sage-typhoon 2016-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ta428 2016-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/star-blizzard 2016-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/fin13 2016-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/fastcash 2016-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ta551 2016-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/stealth-mango-and-tangelo 2016-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/promethium 2016-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/patchwork 2015-12-01 weekly 0.8 https://www.intelfusions.com/threat-actors/apt3102 2015-05-06 weekly 0.8 https://www.intelfusions.com/threat-actors/spandex-typhoon 2015-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/operation-ghoul 2015-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ghostsec 2015-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/orangeworm 2015-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/apt42 2015-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/rancor 2015-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/rtm 2015-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/wax-typhoon 2015-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/apt-c-23 2015-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/apt-c-12 2015-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/sowbug 2015-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/copper-typhoon 2015-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/test-panda 2015-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ferocious-kitten 2015-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/gcman 2015-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/fin6 2015-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/blackoasis 2015-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/citrine-typhoon 2014-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/apt32 2014-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/apt35 2014-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/gelsemium 2014-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/emotet 2014-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/group5 2014-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/tempveles 2014-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/gibberish-panda 2014-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/canvas-typhoon 2014-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/operation-emmental 2014-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/oilrig 2014-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/carbanak 2014-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ta413 2014-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/opal-sleet 2014-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ta406 2014-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/indigozebra 2014-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/apt39 2014-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/silverterrier 2014-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/suckfly 2014-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/onyx-typhoon 2014-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/moustachedbouncer 2014-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/apt38 2014-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ta505 2014-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/inception 2014-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/operation-shadow-force 2013-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/poisonus-panda 2013-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/tangerine-typhoon 2013-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/temptick 2013-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/aoqin-dragon 2013-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/dragonok 2013-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/oniondog 2013-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/temphermit 2013-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/apt40 2013-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/apt33 2013-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/copykittens 2013-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/silent-librarian 2013-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/operation-c-major 2013-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/transparent-tribe 2013-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/bitter 2013-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/confucius 2013-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/quilted-tiger 2013-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/1937cn 2013-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/fin7 2013-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/tajmahal-apt 2013-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/invisimole 2013-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/uac-0006 2013-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/foxy-panda 2013-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/eloquent-panda 2013-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/gamaredon-group 2013-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/threat-group-1314 2013-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/team-xecuter 2013-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/fin10 2013-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/fin4 2013-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/anonymous-ksa 2012-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/operation-soft-cell 2012-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/predator-panda 2012-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/mustang-panda 2012-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/fin1 2012-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/mofang 2012-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/lotus-blossom 2012-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/volatile-cedar 2012-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/zacinlo 2012-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/molerats 2012-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/dark-caracal 2012-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/apt20 2012-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/apt23 2012-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/sidewinder 2012-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/modifiedelephant 2012-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/apt26 2012-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/apt22 2012-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/daggerfly 2012-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/cleaver 2012-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/apt41 2012-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/temper-panda 2012-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/stealth-falcon 2012-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/kimsuky 2012-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/apt16 2012-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/apt37 2012-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/gallium 2012-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/turkhackteam 2012-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/apt19 2012-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/anonymous-palestine 2012-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/admin338 2012-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/pale-panda 2012-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/electric-panda 2011-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/deep-panda 2011-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/apt4 2011-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/tropic-trooper 2011-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/strider 2011-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/moafee 2011-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/windigo 2011-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/apt24 2011-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/apt15 2010-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/machete 2010-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/apt27 2010-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/dust-storm 2010-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/pittytiger 2010-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/naikon 2010-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/dragonfly 2010-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/apt3 2010-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ajax-security-team 2010-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/apt12 2010-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/taskmasters 2010-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/blacktech 2010-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/teamspy-crew 2010-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/apt17 2010-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/apt21 2010-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/winnti-group 2010-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/andariel 2009-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/apt14 2009-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/elderwood 2009-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/evil-corp 2009-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/apt10 2009-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/apt18 2009-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/platinum 2009-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/tonto-team 2009-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/scarlet-mimic 2009-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/neon-typhoon 2009-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/taidoor 2008-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/packrat 2008-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/sandworm-team 2008-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/apt29 2008-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/fin5 2008-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/bronze-butler 2008-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/axiom 2008-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/apt5 2007-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/fail0verflow 2007-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/ghostnet 2007-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/putter-panda 2007-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/apt1 2006-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/night-dragon 2006-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/apt30 2005-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/poseidon-group 2005-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/darkhotel 2004-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/turla 2004-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/anonymous 2003-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/equation 2001-01-01 weekly 0.8 https://www.intelfusions.com/threat-actors/equation-group 2001-01-01 weekly 0.8 https://www.intelfusions.com/news/windows-search-uri-handler-ntlm-coercion-no-cve-no-fix-huntress-2026 2026-06-06 monthly 0.7 https://www.intelfusions.com/news/pan-os-globalprotect-cve-2026-0257-active-exploitation-auth-bypass-2026 2026-06-06 monthly 0.7 https://www.intelfusions.com/news/checkpoint-tds-click-hijacking-software-impersonation-sessiongate-remusstealer-2026 2026-06-06 monthly 0.7 https://www.intelfusions.com/news/gamaredon-fsb-matryoshka-gammaphish-gammaworm-gammaload-gammasteel-sekoia-2026 2026-06-06 monthly 0.7 https://www.intelfusions.com/news/dirty-frag-linux-kernel-cve-2026-43284-43500-fortinet-2026 2026-06-06 monthly 0.7 https://www.intelfusions.com/news/cloudsek-unauthenticated-mcp-server-ssrf-lfi-aws-credential-theft-2026 2026-06-06 monthly 0.7 https://www.intelfusions.com/news/copy-fail-cve-2026-31431-linux-kernel-page-cache-lpe 2026-06-06 monthly 0.7 https://www.intelfusions.com/news/pan-os-captive-portal-cve-2026-0300-cl-sta-1132 2026-06-06 monthly 0.7 https://www.intelfusions.com/news/cisco-catalyst-sd-wan-cve-2026-20182-active-exploitation-webshells-2026 2026-06-06 monthly 0.7 https://www.intelfusions.com/news/unit42-18-genai-browser-extensions-stealing-prompts 2026-06-06 monthly 0.7 https://www.intelfusions.com/news/cloud-atlas-powercloud-ssh-tunneling-russia-belarus-2026 2026-06-06 monthly 0.7 https://www.intelfusions.com/news/screening-serpens-iran-apt-miniupdate-minijunk-rats-espionage-2026 2026-06-06 monthly 0.7 https://www.intelfusions.com/news/ahnlab-endpoint-ransomware-babuk-derived-windows-esxi-nas-2026 2026-06-05 monthly 0.7 https://www.intelfusions.com/news/mr-rot13-cpanel-cve-2026-41940-exploitation 2026-06-05 monthly 0.7 https://www.intelfusions.com/news/unit42-operation-flutterbridge-fluttershell-macos-backdoor 2026-06-05 monthly 0.7 https://www.intelfusions.com/news/xrdp-cve-2025-68670-preauth-stack-overflow 2026-06-05 monthly 0.7 https://www.intelfusions.com/news/kaspersky-argamal-rat-trojanized-hentai-games 2026-06-04 monthly 0.7 https://www.intelfusions.com/news/group-ib-smishing-error524-cloudflare-decoy 2026-06-04 monthly 0.7 https://www.intelfusions.com/news/ghost-stadium-fifa-world-cup-2026-fraud-ecosystem-group-ib 2026-06-01 monthly 0.7 https://www.intelfusions.com/news/clickfix-ghost-cms-cve-2026-26980-700-websites-malware-delivery-2026 2026-05-25 monthly 0.7 https://www.intelfusions.com/news/onlyfans-340-million-records-sale-seller-admits-no-breach-2026 2026-05-25 monthly 0.7 https://www.intelfusions.com/news/glassworm-unicode-supply-chain-github-npm-vscode-2026 2026-03-17 monthly 0.7 https://www.intelfusions.com/news/oneplus-s3-bucket-takeover-stored-xss-multiple-domains 2026-03-17 monthly 0.7 https://www.intelfusions.com/news/google-chrome-zero-day-skia-v8-cve-2026-3909-3910 2026-03-15 monthly 0.7 https://www.intelfusions.com/news/nightspire-166-victims-33-countries-global-expansion-2026 2026-03-15 monthly 0.7 https://www.intelfusions.com/news/vibe-security-radar-ai-coding-vulnerabilities-2026 2026-03-09 monthly 0.7 https://www.intelfusions.com/news/cve-2026-27944-nginx-ui-unauthenticated-backup-encryption-key-disclosure-2026 2026-03-08 monthly 0.7 https://www.intelfusions.com/news/spectral-flux-nightspire-ransomware-threat-actor-profile-2026 2026-03-07 monthly 0.7 https://www.intelfusions.com/news/ai-as-tradecraft-threat-actors-operationalize-ai-attack-lifecycle-2026 2026-03-06 monthly 0.7 https://www.intelfusions.com/news/freepbx-cve-2026-28210-cve-2026-28284-cve-2026-28287-sql-injection-command-injection-2026 2026-03-05 monthly 0.7 https://www.intelfusions.com/news/cve-2026-25921-gogs-lfs-supply-chain-xss-token-leakage-0-14-2-2026 2026-03-05 monthly 0.7 https://www.intelfusions.com/news/cve-2026-3009-cve-2026-3047-keycloak-authentication-bypass-disabled-idp-saml-2026 2026-03-05 monthly 0.7 https://www.intelfusions.com/news/mirax-bot-android-maas-banking-trojan-hvnc-injects-2026 2026-03-05 monthly 0.7 https://www.intelfusions.com/news/cve-2026-20127-cisco-sd-wan-exploitation-webshells-iocs-2026 2026-03-05 monthly 0.7 https://www.intelfusions.com/news/tycoon-2fa-phishing-as-a-service-europol-takedown-2026 2026-03-04 monthly 0.7 https://www.intelfusions.com/news/raidforums-breachforums-leakbase-credential-market-succession-2026 2026-03-04 monthly 0.7 https://www.intelfusions.com/news/operation-leak-leakbase-seizure-europol-doj-2026 2026-03-04 monthly 0.7 https://www.intelfusions.com/news/keymous-op-epstein-gulf-ddos-jordan-oman-kuwait-2026 2026-03-04 monthly 0.7 https://www.intelfusions.com/news/handala-storm-0842-void-manticore-iran-attribution-profile 2026-03-03 monthly 0.7 https://www.intelfusions.com/news/handala-claims-saudi-aramco-breach-2026 2026-03-03 monthly 0.7 https://www.intelfusions.com/news/handala-clalit-healthcare-breach-israel-2026 2026-02-26 monthly 0.7 https://www.intelfusions.com/news/openclaw-malicious-skills-atomic-macos-stealer-trend-micro 2026-02-23 monthly 0.7 https://www.intelfusions.com/news/state-sponsored-actors-weaponize-ai-china-russia-attack-chain 2026-02-23 monthly 0.7 https://www.intelfusions.com/news/muddywater-operation-olalampo-char-rust-ghostfetch-ghostbackdoor-telegram-c2-mena 2026-02-20 monthly 0.7 https://www.intelfusions.com/news/openclaw-security-crisis-rce-clawhavoc-malicious-skills-2026 2026-02-20 monthly 0.7 https://www.intelfusions.com/news/cisco-state-of-ai-security-2026-report-paradigm-shift 2026-02-19 monthly 0.7 https://www.intelfusions.com/news/international-ai-safety-report-2026-real-world-harm 2026-02-14 monthly 0.7 https://www.intelfusions.com/news/chat-ask-ai-breach-300-million-messages-firebase-2026 2026-02-10 monthly 0.7 https://www.intelfusions.com/news/reynolds-ransomware-byovd-nseckrnl-payload-defense-evasion 2026-02-05 monthly 0.7 https://www.intelfusions.com/news/apt28-cve-2026-21509-operation-neusploit-eastern-europe 2026-02-02 monthly 0.7 https://www.intelfusions.com/news/nightspire-kill-chain-fortios-cve-2024-55591-technical-analysis 2026-02-01 monthly 0.7 https://www.intelfusions.com/news/cert-ua-danger-bulletin-apt28-cve-2026-21509-ukraine-eu 2026-02-01 monthly 0.7 https://www.intelfusions.com/news/nightspire-rbfs-rebrand-double-extortion-profile 2026-01-15 monthly 0.7 https://www.intelfusions.com/news/keymous-holy-league-hacktivist-alliance-network-2025-2026 2026-01-04 monthly 0.7 https://www.intelfusions.com/news/two-us-cybersecurity-pros-plead-guilty-alphv-blackcat 2025-12-30 monthly 0.7 https://www.intelfusions.com/news/handala-bibi-gate-israeli-officials-telegram-breach-2025 2025-12-28 monthly 0.7 https://www.intelfusions.com/news/agentic-ai-insider-threat-palo-alto-networks-82-to-1-agents 2025-12-19 monthly 0.7 https://www.intelfusions.com/news/ai-generated-bec-phishing-40-percent-llm-2025 2025-12-17 monthly 0.7 https://www.intelfusions.com/news/lazarus-scoringmathtea-rat-reflective-plugin-loader-peb-walking-operation-dreamjob 2025-11-17 monthly 0.7 https://www.intelfusions.com/news/owasp-top-10-llm-applications-2025-prompt-injection 2025-11-15 monthly 0.7 https://www.intelfusions.com/news/lazarus-comebacker-chacha20-aes-c2-aerospace-defense-espionage-2025 2025-11-07 monthly 0.7 https://www.intelfusions.com/news/lazarus-operation-dreamjob-uav-defense-scoringmathtea-trojanized-open-source-2025 2025-10-23 monthly 0.7 https://www.intelfusions.com/news/flax-typhoon-arcgis-soe-webshell-softether-vpn-year-long-persistence 2025-10-14 monthly 0.7 https://www.intelfusions.com/news/lockbit-5-chacha20-esxi-vm-shutdown-cross-platform-windows-linux-analysis 2025-10-01 monthly 0.7 https://www.intelfusions.com/news/muddywater-dhcspy-android-spyware-earth-vpn-openvpn-trojan-whatsapp-mois 2025-09-29 monthly 0.7 https://www.intelfusions.com/news/lockbit-5-windows-etw-patching-dll-reflection-linux-esxi-trend-micro-analysis 2025-09-25 monthly 0.7 https://www.intelfusions.com/news/doj-charges-apt27-hackers-unit42-confirms-active-45-countries 2025-09-15 monthly 0.7 https://www.intelfusions.com/news/kimsuky-github-private-token-malware-delivery-exfiltration-powershell 2025-09-09 monthly 0.7 https://www.intelfusions.com/news/ai-supply-chain-attacks-model-poisoning-hugging-face-2025 2025-09-03 monthly 0.7 https://www.intelfusions.com/news/kimsuky-httptroy-memload-vpn-invoice-lure-com-persistence-south-korea 2025-09-01 monthly 0.7 https://www.intelfusions.com/news/amazon-disrupts-apt29-watering-hole-device-code-auth 2025-08-29 monthly 0.7 https://www.intelfusions.com/news/mustang-panda-hive0154-toneshell9-snakedisk-usb-worm-thailand-yokai-cambodia 2025-08-20 monthly 0.7 https://www.intelfusions.com/news/muddywater-cfo-firebase-captcha-netbird-atera-agent-hidden-admin-rdp-persistence 2025-08-20 monthly 0.7 https://www.intelfusions.com/news/secret-blizzard-turla-aitm-moscow-embassies-apolloshadow-root-cert-updatususer-sorm 2025-07-31 monthly 0.7 https://www.intelfusions.com/news/tradertraitor-lazarus-bybit-dmm-bitcoin-jumpcloud-aws-session-token-safewallet-nextjs-injection 2025-07-28 monthly 0.7 https://www.intelfusions.com/news/apt41-africa-government-cobalt-strike-sharepoint-c2 2025-07-21 monthly 0.7 https://www.intelfusions.com/news/cursor-ide-zero-click-rce-mcp-prompt-injection-cve-2025 2025-07-15 monthly 0.7 https://www.intelfusions.com/news/scattered-spider-unc3944-teleport-aws-ec2-stonestop-poortry-byovd-dragonforce-2025 2025-07-03 monthly 0.7 https://www.intelfusions.com/news/scattered-spider-2025-vcenter-ntds-dit-chisel-s3-browser-transport-rule-esxi-ransomware 2025-07-02 monthly 0.7 https://www.intelfusions.com/news/hive0145-starfish-backdoor-strela-stealer-svg-phishing-germany-2025 2025-07-01 monthly 0.7 https://www.intelfusions.com/news/salt-typhoon-european-telecom-cve-2025-5777-snappybee-deedrat-dll-sideloading-lightnode 2025-07-01 monthly 0.7 https://www.intelfusions.com/news/apt37-rust-backdoor-rustonotto-python-loader-fadestealer 2025-07-01 monthly 0.7 https://www.intelfusions.com/news/mcp-server-security-sqli-anthropic-trend-micro-2025 2025-06-24 monthly 0.7 https://www.intelfusions.com/news/cobalt-strike-threat-hunting-fingerprinting-c2-infrastructure 2025-06-23 monthly 0.7 https://www.intelfusions.com/news/echoleak-zero-click-prompt-injection-microsoft-365-copilot 2025-05-20 monthly 0.7 https://www.intelfusions.com/news/kimsuky-apt43-lnk-hta-powershell-stealer-keylogger-south-korea-espionage 2025-05-01 monthly 0.7 https://www.intelfusions.com/news/lazarus-contagious-interview-tsunami-framework-beavertail-invisibleferret-tor-pastebin 2025-04-25 monthly 0.7 https://www.intelfusions.com/news/deepfake-as-a-service-200-million-fraud-q1-2025 2025-04-18 monthly 0.7 https://www.intelfusions.com/news/akira-topped-sophos-2024-veeam-cve-2024-40711 2025-04-16 monthly 0.7 https://www.intelfusions.com/news/keymous-elitestress-ddos-for-hire-hacktivism-commercialization-2025 2025-03-04 monthly 0.7 https://www.intelfusions.com/news/keymous-north-african-hacktivist-profile-700-ddos-2025 2025-03-04 monthly 0.7 https://www.intelfusions.com/news/ransomhub-knight-cyclops-cve-2024-3400-zerologon-pcHunter-filezilla-locker-multi-platform 2025-02-12 monthly 0.7 https://www.intelfusions.com/news/sandworm-apt44-ukraine-kms-activator-backorder-dcrat-kalambur-tor-rdp-backdoor 2025-02-11 monthly 0.7 https://www.intelfusions.com/news/handala-israeli-police-breach-2tb-2025 2025-02-09 monthly 0.7 https://www.intelfusions.com/news/picus-dissects-alphv-blackcat-ttps-change-healthcare 2025-02-05 monthly 0.7 https://www.intelfusions.com/news/lazarus-linkedin-recruiting-scam-tsunami-framework-python-stager-tor-c2 2025-02-05 monthly 0.7 https://www.intelfusions.com/news/cyberav3ngers-irgc-unitronics-plc-water-energy-healthcare-ot 2024-12-18 monthly 0.7 https://www.intelfusions.com/news/andariel-linked-play-ransomware-nation-state-collaboration 2024-11-07 monthly 0.7 https://www.intelfusions.com/news/andariel-play-ransomware-precursor-unit42-2024 2024-10-30 monthly 0.7 https://www.intelfusions.com/news/anonymous-sudan-charged-35000-ddos-attacks-dismantled 2024-10-16 monthly 0.7 https://www.intelfusions.com/news/evil-corp-benderskiy-kgb-fsb-russian-intelligence-yakubets 2024-10-01 monthly 0.7 https://www.intelfusions.com/news/blackbyte-ransomware-byovd-esxi-cve-2024-37085-victim-credentials 2024-08-28 monthly 0.7 https://www.intelfusions.com/news/handala-wiper-malware-crowdstrike-outage-2024 2024-07-27 monthly 0.7 https://www.intelfusions.com/news/microsoft-andariel-onyx-sleet-dora-rat-2024 2024-07-25 monthly 0.7 https://www.intelfusions.com/news/us-allied-agencies-warn-andariel-espionage-defense-nuclear 2024-07-25 monthly 0.7 https://www.intelfusions.com/news/microsoft-exposes-onyx-sleet-malware-arsenal-aerospace-defense 2024-07-25 monthly 0.7 https://www.intelfusions.com/news/mandiant-andariel-apt45-north-korea-2024 2024-07-25 monthly 0.7 https://www.intelfusions.com/news/muddywater-muddyrot-custom-implant-atera-replacement-com-scheduled-task-raw-tcp-c2 2024-07-15 monthly 0.7 https://www.intelfusions.com/news/muddywater-bugsleep-backdoor-israel-municipalities-egnyte-processignaturepolicy-dynamic-code 2024-07-15 monthly 0.7 https://www.intelfusions.com/news/fin7-packxor-avneutralizer-aukill-packer-xmrig-r77-rootkit 2024-07-01 monthly 0.7 https://www.intelfusions.com/news/lockbit-khoroshev-indictment-lockbitsup-500m-operation-cronos-doj-sanctions 2024-05-07 monthly 0.7 https://www.intelfusions.com/news/mustang-panda-vietnam-forfiles-dll-sideloading-rc4-mac-exfil-lnk-hta-plugx 2024-05-01 monthly 0.7 https://www.intelfusions.com/news/sandworm-uac-0133-ukraine-ics-biasboat-queueseed-loadgrip-ptrace-supply-chain-gossipflow 2024-04-19 monthly 0.7 https://www.intelfusions.com/news/lockbit-operation-cronos-fallout-admin-panel-193-affiliates-lockbit-ng-dev-analysis 2024-04-03 monthly 0.7 https://www.intelfusions.com/news/akira-linux-esxi-conti-code-sentinelone-2024 2024-04-02 monthly 0.7 https://www.intelfusions.com/news/themoon-botnet-faceless-proxy-soho-routers-iot-40000-bots 2024-03-26 monthly 0.7 https://www.intelfusions.com/news/morris-ii-first-ai-worm-genai-ecosystems-cornell-tech 2024-03-05 monthly 0.7 https://www.intelfusions.com/news/noname057-ddosia-2024-freebsd-machine-guid-c2-rotation-finland-italy-japan-ukraine 2024-03-01 monthly 0.7 https://www.intelfusions.com/news/cisa-fbi-advisory-alphv-blackcat-critical-infrastructure 2024-02-27 monthly 0.7 https://www.intelfusions.com/news/volt-typhoon-cisa-frpc-frp-scanline-reverse-proxy-critical-infrastructure-c2 2024-02-07 monthly 0.7 https://www.intelfusions.com/news/operation-triangulation-ios-zero-day-gpu-coresight-mmio-ppl-bypass-adjust-truetype 2023-12-27 monthly 0.7 https://www.intelfusions.com/news/akira-ransomware-sophos-cisco-vpn-mfa-2023 2023-12-21 monthly 0.7 https://www.intelfusions.com/news/play-ransomware-playcrypt-cisa-fbi-asd-double-extortion-gmx-closed-group-900-victims 2023-12-18 monthly 0.7 https://www.intelfusions.com/news/mustang-panda-plugx-nim-dll-rc4-taiwan-election-lure-smartx-onenom-exe 2023-12-11 monthly 0.7 https://www.intelfusions.com/news/lazarus-operation-dream-magic-magicline-watering-hole-south-korea-2023 2023-10-13 monthly 0.7 https://www.intelfusions.com/news/stately-taurus-mustang-panda-sea-government-toneshell-dll-shadowpad-dropbox-exfil 2023-09-22 monthly 0.7 https://www.intelfusions.com/news/oilrig-outer-space-juicy-mix-solar-mango-backdoor-israel-xor-exchange-web-services 2023-09-21 monthly 0.7 https://www.intelfusions.com/news/emotet-2023-onenote-droppers-zip-bomb-thread-hijacking-return 2023-09-01 monthly 0.7 https://www.intelfusions.com/news/noname057-ddosia-aes-gcm-decryption-wagner-ratp-ukraine-nato-victimology-2023 2023-06-29 monthly 0.7 https://www.intelfusions.com/news/kimsuky-chrome-remote-desktop-appleseed-rdp-patcher-ngrok-south-korea 2023-06-28 monthly 0.7 https://www.intelfusions.com/news/mustang-panda-australia-aukus-solidpdfcreator-dll-sideloading-plugx-stager 2023-05-03 monthly 0.7 https://www.intelfusions.com/news/noname057-ddosia-go-rewrite-proxy-architecture-token-0xf-increment-auto-updater 2023-04-18 monthly 0.7 https://www.intelfusions.com/news/lockbit-green-conti-source-code-bazaloader-trickbot-random-extensions-glimps 2023-04-14 monthly 0.7 https://www.intelfusions.com/news/killnet-russia-ddos-nato-healthcare-government-cyber-militia-2022-2023 2023-03-01 monthly 0.7 https://www.intelfusions.com/news/cl0p-linux-elf-ransomware-flawed-encryption-free-decryptor 2023-02-07 monthly 0.7 https://www.intelfusions.com/news/noname057-infrastructure-prometheus-rabbitmq-redis-stark-industries-mirhosting-moscow-time 2023-02-01 monthly 0.7 https://www.intelfusions.com/news/noname057-poland-sejm-ddos-abw-csirt-ghostwriter-charlie-crp-retaliation 2022-12-30 monthly 0.7 https://www.intelfusions.com/news/moses-staff-abrahams-ax-cobalt-sapling-iran-israel-saudi-arabia-pydcrypt-dcsrv-strifwater 2022-12-07 monthly 0.7 https://www.intelfusions.com/news/hive-ransomware-cisa-1300-victims-100m-healthcare-critical-infrastructure 2022-11-25 monthly 0.7 https://www.intelfusions.com/news/apt42-iran-irgc-multi-persona-phishing-android-spyware-dissidents 2022-09-20 monthly 0.7 https://www.intelfusions.com/news/apt35-infrastructure-egyptian-shipping-israeli-pipeline-phishing 2022-09-01 monthly 0.7 https://www.intelfusions.com/news/apt38-lazarus-group-north-korea-banks-crypto-critical-infrastructure 2022-08-15 monthly 0.7 https://www.intelfusions.com/news/gold-southfield-revil-reemergence-source-code-march-april-2022 2022-05-09 monthly 0.7 https://www.intelfusions.com/news/lockbit-vmwarexferlogs-dll-sideloading-cobalt-strike-edr-hook-bypass-etw-amsi 2022-04-27 monthly 0.7 https://www.intelfusions.com/news/deep-panda-log4shell-vmware-horizon-milestone-backdoor-rootkit 2022-04-01 monthly 0.7 https://www.intelfusions.com/news/lapsus-dev-0537-social-engineering-sim-swap-insider-extortion-destruction 2022-03-22 monthly 0.7 https://www.intelfusions.com/news/conti-ransomware-cisa-fbi-nsa-trickbot-cobalt-strike-double-extortion 2022-03-09 monthly 0.7 https://www.intelfusions.com/news/singapore-csa-analyzes-anonymous-hacktivism-russia-ukraine 2022-03-09 monthly 0.7 https://www.intelfusions.com/news/gamaredon-primitive-bear-fsb-ukraine-spearphishing-sfx-ultravnc-custom-malware 2022-02-01 monthly 0.7 https://www.intelfusions.com/news/muddywater-turkey-pakistan-canary-token-pdf-powershell-downloader-mois-iran 2022-01-31 monthly 0.7 https://www.intelfusions.com/news/german-intelligence-apt27-hyperbro-exchange-zoho-exploits 2022-01-26 monthly 0.7 https://www.intelfusions.com/news/apt33-iran-irgc-espionage-aviation-energy-defense 2022-01-01 monthly 0.7 https://www.intelfusions.com/news/blacktech-japan-spearphishing-exchange-flagpro-tscookie-malware 2022-01-01 monthly 0.7 https://www.intelfusions.com/news/mosesstaff-pydcrypt-dcsrv-diskcryptor-israel-ideology-no-ransom-check-point 2021-11-15 monthly 0.7 https://www.intelfusions.com/news/apt31-infrastructure-footprints-soho-router-spy-network 2021-11-10 monthly 0.7 https://www.intelfusions.com/news/ta505-cve-2021-35211-solarwinds-serv-u-cobalt-strike-regidlebackup-flawedgrace-clop 2021-11-08 monthly 0.7 https://www.intelfusions.com/news/wizard-spider-sidoh-ryuk-stealer-ftp-keyword-exfiltration-government-military-arp-smb 2021-08-31 monthly 0.7 https://www.intelfusions.com/news/apt40-fbi-cisa-china-mss-hainan-indictment-espionage 2021-07-20 monthly 0.7 https://www.intelfusions.com/news/carbanak-fin7-ttps-banks-retail-hospitality-attack-techniques 2021-04-20 monthly 0.7 https://www.intelfusions.com/news/hafnium-proxylogon-exchange-cve-2021-26855-ssrf-44000-exploitation-attempts 2021-03-26 monthly 0.7 https://www.intelfusions.com/news/indrik-spider-hades-ransomware-wastedlocker-ofac-sanctions-evolution 2021-03-19 monthly 0.7 https://www.intelfusions.com/news/apt31-jian-equation-group-epme-nsa-zero-day-stolen-exploit 2021-02-22 monthly 0.7 https://www.intelfusions.com/news/apt32-macos-trojan-crimeware-scripting-technique 2020-12-02 monthly 0.7 https://www.intelfusions.com/news/energetic-bear-dragonfly-critical-infrastructure-fsb-svr-ot-access 2020-11-04 monthly 0.7 https://www.intelfusions.com/news/oilrig-rdat-steganography-bmp-ews-email-c2-dns-tunnel-aes-telecom-middle-east 2020-07-22 monthly 0.7 https://www.intelfusions.com/news/winnti-group-hong-kong-universities-shadowpad-hp-dll-sideloading-parent-patch-keylogger 2020-01-31 monthly 0.7 https://www.intelfusions.com/news/apt39-iran-personal-data-telecom-travel-surveillance 2019-01-29 monthly 0.7 https://www.intelfusions.com/news/menupass-apt10-cobalt-strike-dkmc-bitmap-shellcode-japan-redleaves-himawari 2018-05-21 monthly 0.7 https://www.intelfusions.com/news/dragonfly-2-0-energy-sector-ot-access-sabotage-capability 2017-10-20 monthly 0.7 https://www.intelfusions.com/news/leviathan-apt40-maritime-naval-defense-orz-nanhaishi-cobalt-strike-spearphishing 2017-10-16 monthly 0.7 https://www.intelfusions.com/news/shadow-brokers-nsa-eternalblue-eternalromance-doublepulsar-fuzzbunch-ms17-010-equation-group 2017-04-18 monthly 0.7 https://www.intelfusions.com/news/apt10-operation-cloud-hopper-china-mss-global-espionage 2017-04-01 monthly 0.7 https://www.intelfusions.com/news/magic-hound-saudi-arabia-pupy-rat-rocket-kitten-leash-irc-bot-apt35 2017-02-15 monthly 0.7 https://www.intelfusions.com/news/fireeye-apt3-operation-clandestine-wolf-flash-zero-day 2015-06-23 monthly 0.7 https://www.intelfusions.com/news/fbi-warns-anonymous-breached-us-government-agencies-campaign 2013-11-18 monthly 0.7 https://www.intelfusions.com/news/mandiant-unmasks-apt1-china-pla-unit-61398-espionage 2013-02-19 monthly 0.7 https://www.intelfusions.com/news/dhs-warns-anonymous-new-attack-tools-refref-apache-killer 2011-09-15 monthly 0.7 https://www.intelfusions.com/news/ghostnet-ghostrat-1295-computers-103-countries-pla-espionage 2009-04-03 monthly 0.7 https://www.intelfusions.com/country/AD 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/AE 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/AF 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/AG 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/AL 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/AM 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/AO 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/AR 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/AT 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/AU 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/AZ 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/BA 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/BB 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/BD 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/BE 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/BF 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/BG 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/BH 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/BI 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/BJ 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/BN 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/BO 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/BR 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/BS 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/BT 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/BW 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/BY 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/BZ 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/CA 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/CD 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/CF 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/CG 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/CH 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/CI 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/CL 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/CM 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/CN 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/CO 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/CR 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/CU 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/CV 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/CY 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/CZ 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/DE 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/DJ 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/DK 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/DM 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/DO 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/DZ 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/EC 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/EE 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/EG 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/ER 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/ES 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/ET 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/FI 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/FJ 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/FM 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/FR 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/GA 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/GB 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/GD 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/GE 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/GH 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/GM 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/GN 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/GQ 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/GR 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/GT 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/GW 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/GY 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/HN 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/HR 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/HT 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/HU 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/ID 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/IE 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/IL 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/IN 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/IQ 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/IR 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/IS 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/IT 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/JM 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/JO 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/JP 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/KE 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/KG 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/KH 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/KI 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/KM 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/KN 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/KP 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/KR 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/KW 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/KZ 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/LA 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/LB 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/LC 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/LI 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/LK 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/LR 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/LS 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/LT 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/LU 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/LV 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/LY 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/MA 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/MC 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/MD 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/ME 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/MG 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/MH 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/MK 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/ML 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/MM 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/MN 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/MR 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/MT 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/MU 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/MV 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/MW 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/MX 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/MY 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/MZ 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/NA 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/NE 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/NG 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/NI 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/NL 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/NO 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/NP 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/NR 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/NZ 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/OM 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/PA 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/PE 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/PG 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/PH 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/PK 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/PL 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/PS 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/PT 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/PW 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/PY 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/QA 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/RO 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/RS 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/RU 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/RW 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/SA 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/SB 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/SC 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/SD 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/SE 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/SG 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/SI 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/SK 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/SL 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/SM 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/SN 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/SO 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/SR 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/SS 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/ST 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/SV 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/SY 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/SZ 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/TD 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/TG 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/TH 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/TJ 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/TL 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/TM 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/TN 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/TO 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/TR 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/TT 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/TV 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/TW 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/TZ 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/UA 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/UG 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/US 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/UY 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/UZ 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/VA 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/VC 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/VE 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/VN 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/VU 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/WS 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/XK 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/YE 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/ZA 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/ZM 2026-06-06 weekly 0.6 https://www.intelfusions.com/country/ZW 2026-06-06 weekly 0.6 https://www.intelfusions.com/malware/3para-rat-s0066 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/4h-rat-s0065 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/aadinternals-s0677 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/abk-s0469 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/acidpour-s1167 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/acidrain-s1125 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/action-rat-s1028 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/adbupd-s0202 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/adfind-s0552 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/advstoreshell-s0045 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/agent-tesla-s0331 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/agent-btz-s0092 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/akira-s1129 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/akira-v2-s1194 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/amadey-s1025 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/anchor-s0504 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/andromeda-s1074 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/anelldr-s9027 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/apostle-s1133 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/applejeus-s0584 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/appleseed-s0622 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/aria-body-s0456 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/arp-s0099 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/ashtag-s9031 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/aspxspy-s0073 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/astaroth-s0373 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/asyncrat-s1087 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/at-s0110 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/attor-s0438 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/attrib-s1176 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/auditcred-s0347 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/auto-stealer-s1029 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/autoit-backdoor-s0129 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/avaddon-s0640 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/avenger-s0473 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/avoslocker-s1053 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/azorult-s0344 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/babuk-s0638 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/babyshark-s0414 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/backconfig-s0475 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/backdoor-oldrea-s0093 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/backspace-s0031 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/bad-rabbit-s0606 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/badcall-s0245 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/badflick-s0642 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/badhatch-s1081 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/badnews-s0128 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/badpatch-s0337 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/bandook-s0234 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/bankshot-s0239 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/bazar-s0534 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/bbk-s0470 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/bbsrat-s0127 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/beavertail-s1246 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/bendybear-s0574 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/bfg-agonizer-s1136 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/biscuit-s0017 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/bisonal-s0268 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/bitpaymer-s0570 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/bitsadmin-s0190 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/black-basta-s1070 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/blackbyte-2-0-ransomware-s1181 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/blackbyte-ransomware-s1180 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/blackcat-s1068 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/blackcoffee-s0069 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/blackenergy-s0089 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/blackmould-s0564 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/blindingcan-s0520 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/bloodhound-s0521 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/bluelight-s0657 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/boldmove-s1184 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/bonadan-s0486 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/bondupdater-s0360 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/bookworm-s1226 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/boombox-s0635 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/boostwrite-s0415 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/bootrash-s0114 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/boxcaon-s0651 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/bpfdoor-s1161 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/brave-prince-s0252 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/briba-s0204 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/brickstorm-s9015 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/brushfire-s9011 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/brute-ratel-c4-s1063 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/bs2005-s0014 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/bubblewrap-s0043 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/build-downer-s0471 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/bumblebee-s1039 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/bundlore-s0482 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/bushwalk-s1118 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/cachedump-s0119 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/caddywiper-s0693 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/cadelspy-s0454 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/calendar-s0025 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/calisto-s0274 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/callme-s0077 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/caminho-s9016 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/cannon-s0351 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/canonstager-s1237 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/carbanak-s0030 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/carberp-s0484 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/carbon-s0335 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/cardinal-rat-s0348 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/carrotball-s0465 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/carrotbat-s0462 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/castletap-s1224 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/catchamas-s0261 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/caterpillar-webshell-s0572 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/ccbkdr-s0222 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/ccf32-s1043 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/cd00r-s1204 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/certutil-s0160 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/chaes-s0631 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/chaos-s0220 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/charmpower-s0674 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/chches-s0144 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/cheerscrypt-s1096 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/cherry-picker-s0107 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/chimneysweep-s1149 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/china-chopper-s0020 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/chinoxy-s1041 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/chopstick-s0023 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/chrommme-s0667 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/cipher-exe-s1205 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/claimloader-s1236 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/clambling-s0660 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/clop-s0611 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/cloudduke-s0054 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/cmd-s0106 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/coathanger-s1105 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/cobalt-strike-s0154 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/cobian-rat-s0338 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/cointicker-s0369 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/comnie-s0244 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/comrat-s0126 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/conficker-s0608 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/connectwise-s0591 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/conti-s0575 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/cookieminer-s0492 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/coraldeck-s0212 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/coreshell-s0137 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/corklog-s1235 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/cosmicduke-s0050 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/costabricks-s0614 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/covenant-s1155 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/cozycar-s0046 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/crackmapexec-s0488 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/creepydrive-s1023 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/creepysnail-s1024 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/crimson-s0115 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/crocodilus-s9004 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/crossrat-s0235 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/crutch-s0538 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/cryptoistic-s0498 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/cspy-downloader-s0527 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/cuba-s0625 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/cuckoo-stealer-s1153 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/cyclops-blink-s0687 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/dacls-s0497 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/danbot-s1014 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/darkcomet-s0334 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/darkgate-s1111 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/darktortilla-s1066 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/darkwatchman-s0673 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/daserf-s0187 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/dcrat-s9017 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/dcsrv-s1033 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/ddkong-s0255 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/deadeye-s1052 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/deadwood-s1134 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/dealerschoice-s0243 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/deathransom-s0616 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/denis-s0354 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/derusbi-s0021 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/diavol-s0659 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/dipsind-s0200 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/disco-s1088 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/diskpart-s9002 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/dnssystem-s1021 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/dogcall-s0213 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/dok-s0281 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/doki-s0600 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/donut-s0695 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/down-new-s0472 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/downdelph-s0134 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/downiissa-s9021 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/downpaper-s0186 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/dratzarus-s0694 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/dridex-s0384 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/dropbook-s0547 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/drovorub-s0502 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/dryhook-s9013 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/dsquery-s0105 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/dtrack-s0567 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/duqu-s0038 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/dustpan-s1158 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/dusttrap-s1159 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/dustysky-s0062 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/dynowiper-s9038 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/dyre-s0024 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/ebury-s0377 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/eccentricbandwagon-s0593 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/ecipekac-s0624 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/egregor-s0554 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/ekans-s0605 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/elise-s0081 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/elmer-s0064 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/embargo-s1247 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/emissary-s0082 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/emotet-s0367 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/empire-s0363 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/envyscout-s0634 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/epic-s0091 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/esentutl-s0404 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/evilbunny-s0396 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/evilginx2-s9003 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/evilgrab-s0152 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/evilnum-s0568 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/exaramel-for-linux-s0401 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/exaramel-for-windows-s0343 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/exbyte-s1179 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/expand-s0361 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/explosive-s0569 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/fakem-s0076 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/fallchill-s0181 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/fatduke-s0512 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/felismus-s0171 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/felixroot-s0267 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/ferocious-s0679 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/fgdump-s0120 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/final1stspy-s0355 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/finfisher-s0182 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/fivehands-s0618 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/flagpro-s0696 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/flame-s0143 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/flashflood-s0036 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/flawedammyy-s0381 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/flawedgrace-s0383 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/flipside-s0173 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/foggyweb-s0661 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/fooder-s9033 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/forfiles-s0193 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/framesting-s1120 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/frameworkpos-s0503 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/frp-s1144 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/fruitfly-s0277 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/ftp-s0095 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/funnydream-s1044 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/fyanti-s0628 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/fysbis-s0410 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/gazer-s0168 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/gelsemium-s0666 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/geminiduke-s0049 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/get2-s0460 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/gh0st-rat-s0032 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/glasstoken-s1117 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/glassworm-s9010 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/glooxmail-s0026 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/gobear-s1197 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/gold-dragon-s0249 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/goldenspy-s0493 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/goldfinder-s0597 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/goldmax-s0588 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/gomir-s1198 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/goopy-s0477 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/gootloader-s1138 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/grandoreiro-s0531 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/gravityrat-s0237 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/green-lambert-s0690 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/greyenergy-s0342 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/griffon-s0417 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/grimagent-s0632 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/gsecdump-s0008 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/guloader-s0561 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/h1n1-s0132 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/hacking-team-uefi-rootkit-s0047 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/halfbaked-s0151 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/hammertoss-s0037 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/hancitor-s0499 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/hannotog-s1211 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/happywork-s0214 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/hardrain-s0246 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/havij-s0224 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/havoc-s1229 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/hawkball-s0391 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/hcdloader-s0071 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/hdoor-s0061 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/heartcrypt-s9018 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/hellokitty-s0617 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/helminth-s0170 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/hermeticwiper-s0697 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/hermeticwizard-s0698 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/hexeval-loader-s1249 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/heyoka-backdoor-s1027 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/hi-zor-s0087 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/hiddenface-s9023 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/hiddenwasp-s0394 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/hidedrv-s0135 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/hikit-s0009 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/hildegard-s0601 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/hiupan-s1230 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/homefry-s0232 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/hoplight-s0376 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/hotcroissant-s0431 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/htran-s0040 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/httpbrowser-s0070 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/httpclient-s0068 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/httptroy-s9007 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/hui-loader-s1097 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/hydraq-s0203 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/hyperbro-s0398 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/hyperstack-s0537 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/iceapple-s1022 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/icedid-s0483 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/ifconfig-s0101 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/ikitten-s0278 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/imaploader-s1152 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/imminent-monitor-s0434 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/impacket-s0357 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/inc-ransomware-s1139 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/industroyer-s0604 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/industroyer2-s1072 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/innaputrat-s0259 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/invisibleferret-s1245 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/invisimole-s0260 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/invoke-psimage-s0231 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/ipconfig-s0100 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/ipsec-helper-s1132 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/ironnetinjector-s0581 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/ironwind-s9029 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/isminjector-s0189 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/ixeshe-s0015 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/j-magic-s1203 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/janicab-s0163 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/javali-s0528 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/jcry-s0389 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/jhuhugit-s0044 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/jpin-s0201 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/jrat-s0283 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/jss-loader-s0648 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/jumbledpath-s1206 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/kapeka-s1190 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/karae-s0215 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/kasidet-s0088 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/kazuar-s0265 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/kerrdown-s0585 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/kessel-s0487 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/kevin-s1020 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/keyboy-s0387 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/keydnap-s0276 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/keymarble-s0271 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/keyplug-s1051 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/kgh-spy-s0526 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/killdisk-s0607 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/kinsing-s0599 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/kivars-s0437 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/koadic-s0250 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/kobalos-s0641 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/koctopus-s0669 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/komplex-s0162 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/komprogo-s0156 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/konni-s0356 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/kopiluwak-s1075 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/kwampirs-s0236 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/lamehug-s9035 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/latrodectus-s1160 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/lazagne-s0349 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/lazywiper-s9039 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/lightneuron-s0395 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/lightspy-s1185 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/lightwire-s1119 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/line-dancer-s1186 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/line-runner-s1188 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/linfo-s0211 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/linux-rabbit-s0362 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/liteduke-s0513 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/litepower-s0680 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/littlelamb-wooltea-s1121 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/lizar-s0681 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/lockbit-2-0-s1199 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/lockbit-3-0-s1202 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/lockergoga-s0372 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/lodeinfo-s9020 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/lofise-s1101 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/lojax-s0397 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/lokibot-s0447 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/lookback-s0582 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/loudminer-s0451 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/lowball-s0042 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/lp-notes-s9036 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/lslsass-s0121 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/lucifer-s0532 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/lumma-stealer-s1213 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/lunarloader-s1143 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/lunarmail-s1142 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/lunarweb-s1141 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/lurid-s0010 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/machete-s0409 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/macma-s1016 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/macos-osaminer-s1048 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/macspy-s0282 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/mafalda-s1060 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/magicrat-s1182 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/mailsniper-s0413 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/mango-s1169 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/manjusaka-s1156 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/markirat-s0652 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/matryoshka-s0167 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/maze-s0449 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/mcmd-s0500 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/mechaflounder-s0459 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/medusa-s1220 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/medusa-ransomware-s1244 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/meek-s0175 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/megacortex-s0576 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/megazord-s1191 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/melcoz-s0530 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/messagetap-s0443 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/metamain-s1059 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/metamorfo-s0455 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/meteor-s0688 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/mgbot-s1146 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/micropsia-s0339 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/milan-s1015 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/mimikatz-s0002 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/mimipenguin-s0179 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/miner-c-s0133 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/miniduke-s0051 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/miragefox-s0280 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/mirrorstealer-s9022 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/mis-type-s0084 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/misdat-s0083 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/mispadu-s1122 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/mivast-s0080 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/mobileorder-s0079 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/molenet-s0553 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/moneybird-s1137 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/mongall-s1026 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/moonwind-s0149 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/mopsled-s1221 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/more-eggs-s0284 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/mori-s1047 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/mosquito-s0256 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/muddyviper-s9032 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/multilayer-wiper-s1135 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/murkytop-s0233 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/mythic-s0699 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/naid-s0205 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/nanhaishu-s0228 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/nanocore-s0336 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/nativezone-s0637 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/navrat-s0247 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/nbtscan-s0590 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/nbtstat-s0102 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/ndiskmonitor-s0272 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/nebulae-s0630 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/neo-regeorg-s1189 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/neoichor-s0691 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/nerex-s0210 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/net-s0039 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/net-crawler-s0056 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/neteagle-s0034 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/netsh-s0108 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/netstat-s0104 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/nettraveler-s0033 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/netwalker-s0457 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/netwire-s0198 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/nglite-s1106 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/ngrok-s0508 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/nicecurl-s1192 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/nidiran-s0118 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/nightclub-s1090 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/nightdoor-s1147 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/ninja-s1100 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/njrat-s0385 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/nkabuse-s1107 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/nltest-s0359 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/nokki-s0353 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/noopldr-s9025 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/notpetya-s0368 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/nppspy-s1131 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/obliquerat-s0644 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/oceansalt-s0346 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/octopus-s0340 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/odagent-s1170 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/oilbooster-s1172 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/oilcheck-s1171 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/okrum-s0439 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/oldbait-s0138 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/olympic-destroyer-s0365 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/onionduke-s0052 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/oopsie-s0264 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/orz-s0229 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/osinfo-s0165 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/osx-oceanlotus-d-s0352 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/osx-shlayer-s0402 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/out1-s0594 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/outsteel-s1017 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/owaauth-s0072 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/p-a-s-webshell-s0598 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/p2p-zeus-s0016 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/p8rat-s0626 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/pacemaker-s1109 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/pacu-s1091 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/paklog-s1233 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/pandora-s0664 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/pasam-s0208 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/pass-the-hash-toolkit-s0122 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/pay2key-s0556 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/pcexter-s1102 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/pcshare-s1050 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/peirates-s0683 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/penquin-s0587 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/peppy-s0643 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/phasejam-s9014 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/phoreal-s0158 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/phpsert-s9028 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/pikabot-s1145 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/pillowmint-s0517 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/pinchduke-s0048 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/ping-s0097 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/pingpull-s1031 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/pipemon-s0501 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/pisloader-s0124 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/pitstop-s1123 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/plaintee-s0254 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/playcrypt-s1162 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/plead-s0435 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/plugx-s0013 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/pngdowner-s0067 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/poetrat-s0428 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/poisonivy-s0012 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/polyglotduke-s0518 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/pony-s0453 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/pooraim-s0216 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/poshc2-s0378 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/poshspy-s0150 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/power-loader-s0177 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/powerduke-s0139 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/powerexchange-s1173 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/powerless-s1012 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/powerpunch-s0685 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/powershower-s0441 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/powersource-s0145 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/powersploit-s0194 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/powerstallion-s0393 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/powerstats-s0223 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/powerton-s0371 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/powgoop-s1046 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/powruner-s0184 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/prestige-s1058 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/prikormka-s0113 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/prolock-s0654 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/proton-s0279 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/proxysvc-s0238 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/ps1-s0613 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/psexec-s0029 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/psylo-s0078 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/pteranodon-s0147 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/pubload-s1228 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/pulsecheck-s1108 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/punchbuggy-s0196 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/punchtrack-s0197 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/pupy-s0192 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/purecrypter-s9019 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/pwdump-s0006 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/pydcrypt-s1032 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/pysa-s0583 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/qakbot-s0650 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/qilin-s1242 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/quadagent-s0269 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/quasarrat-s0262 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/quick-assist-s1209 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/quietcanary-s1076 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/quietexit-s1084 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/quietsieve-s0686 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/raccoon-stealer-s1148 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/ragnar-locker-s0481 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/raindrop-s0565 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/rainyday-s0629 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/ramsay-s0458 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/ransomhub-s1212 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/rapidpulse-s1113 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/rarstone-s0055 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/raspberry-robin-s1130 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/ratankba-s0241 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/rawdisk-s0364 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/rawpos-s0169 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/rclone-s1040 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/rcsession-s0662 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/rdat-s0495 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/rdfsniffer-s0416 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/reaver-s0172 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/redleaves-s0153 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/redline-stealer-s1240 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/reg-s0075 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/regduke-s0511 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/regeorg-s1187 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/regin-s0019 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/remcos-s0332 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/remexi-s0375 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/remotecmd-s0166 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/remoteutilities-s0592 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/remsec-s0125 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/reptile-s1219 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/responder-s0174 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/revenge-rat-s0379 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/revil-s0496 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/rgdoor-s0258 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/rifdoor-s0433 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/riflespine-s1222 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/riptide-s0003 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/rising-sun-s0448 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/roadsweep-s1150 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/roadtools-s0684 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/roaminghouse-s9026 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/robbinhood-s0400 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/rockboot-s0112 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/roguerobin-s0270 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/rokrat-s0240 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/rotajakiro-s1078 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/route-s0103 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/rover-s0090 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/royal-s1073 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/rtm-s0148 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/rubeus-s1071 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/ruler-s0358 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/runningrat-s0253 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/rustywater-s9037 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/ryuk-s0446 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/s-type-s0085 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/sagerunex-s1210 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/saint-bot-s1018 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/sakula-s0074 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/samecoin-s9030 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/samplecheck5000-s1168 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/samsam-s0370 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/samurai-s1099 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/sardonic-s1085 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/schtasks-s0111 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/sdbbot-s0461 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/sdelete-s0195 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/seaduke-s0053 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/seasalt-s0345 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/seasharpee-s0185 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/servhelper-s0382 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/seth-locker-s0639 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/shadowpad-s0596 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/shai-hulud-s9008 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/shamoon-s0140 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/shark-s1019 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/sharpdisco-s1089 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/sharpstage-s0546 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/sharpstats-s0450 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/shimrat-s0444 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/shimratreporter-s0445 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/shipshape-s0028 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/shotput-s0063 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/shrinklocker-s1178 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/shutterspeed-s0217 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/sibot-s0589 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/sidetwist-s0610 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/silenttrinity-s0692 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/siloscape-s0623 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/skeleton-key-s0007 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/skidmap-s0468 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/slightpulse-s1110 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/sliver-s0633 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/slothfulmedia-s0533 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/slowdrift-s0218 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/slowpulse-s1104 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/small-sieve-s1035 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/smoke-loader-s0226 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/smokedham-s0649 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/snappytcp-s1163 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/snip3-s1086 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/snugride-s0159 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/socgholish-s1124 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/socksbot-s0273 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/sodamaster-s0627 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/solar-s1166 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/sombrat-s0615 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/sorefang-s0516 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/soundbite-s0157 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/spaceship-s0035 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/spark-s0543 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/spawnchimera-s9024 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/speakup-s0374 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/spica-s1140 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/spicyomelette-s0646 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/splatcloak-s1234 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/splatdropper-s1232 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/spwebmember-s0227 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/sqlmap-s0225 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/sqlrat-s0390 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/squirrelwaffle-s1030 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/sslmm-s0058 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/starloader-s0188 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/starproxy-s1227 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/starwhale-s1037 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/staticplugin-s1238 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/steadypulse-s1112 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/stealbit-s1200 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/stonedrill-s0380 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/streamex-s0142 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/strelastealer-s1183 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/strifewater-s1034 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/strongpity-s0491 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/stuxnet-s0603 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/sugardump-s1042 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/sugarush-s1049 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/sunburst-s0559 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/sunspot-s0562 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/supernova-s0578 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/svcready-s1064 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/sykipot-s0018 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/synack-s0242 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/synful-knock-s0519 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/sys10-s0060 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/syscon-s0464 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/systembc-s9001 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/systeminfo-s0096 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/sysupdate-s0663 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/t9000-s0098 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/taidoor-s0011 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/taintedscribe-s0586 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/tajmahal-s0467 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/tamecat-s1193 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/tarrask-s1011 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/tasklist-s0057 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/tdtess-s0164 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/teardrop-s0560 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/textmate-s0146 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/thiefquest-s0595 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/thincrust-s1223 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/threatneedle-s0665 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/tinyturla-s0668 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/tinytyphon-s0131 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/tinyzbot-s0004 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/tomiris-s0671 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/toneshell-s1239 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/tor-s0183 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/torisma-s0678 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/trailblaze-s9012 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/trailblazer-s0682 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/translatext-s1201 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/trickbot-s0266 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/trojan-karagany-s0094 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/trojan-mebromi-s0001 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/troll-stealer-s1196 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/trufflehog-s9009 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/truvasys-s0178 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/tscookie-s0436 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/tsundere-botnet-s9034 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/turian-s0647 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/turnedup-s0199 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/typeframe-s0263 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/uacme-s0116 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/uboatrat-s0333 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/umbreon-s0221 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/unknown-logger-s0130 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/uppercut-s0275 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/upstyle-s1164 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/uroburos-s0022 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/ursnif-s0386 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/usbferry-s0452 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/usbstealer-s0136 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/valak-s0476 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/vaporrage-s0636 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/vasport-s0207 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/vbshower-s0442 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/vermin-s0257 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/versamem-s1154 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/virtualpie-s1218 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/virtualpita-s1217 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/volgmer-s0180 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/vpnfilter-s1010 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/wannacry-s0366 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/warpwire-s1116 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/warzonerat-s0670 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/wastedlocker-s0612 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/waterbear-s0579 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/webc2-s0109 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/wellmail-s0515 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/wellmess-s0514 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/wevtutil-s0645 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/whispergate-s0689 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/wiarp-s0206 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/windows-credential-editor-s0005 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/windshield-s0155 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/windtail-s0466 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/winerack-s0219 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/winexe-s0191 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/wingbird-s0176 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/winmm-s0059 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/winnti-for-linux-s0430 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/winnti-for-windows-s0141 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/wiper-s0041 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/wirefire-s1115 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/woody-rat-s1065 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/xagentosx-s0161 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/xbash-s0341 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/xcaon-s0653 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/xcmd-s0123 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/xcsset-s0658 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/xloader-s1207 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/xorindex-loader-s1248 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/xtunnel-s0117 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/yahoyah-s0388 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/yty-s0248 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/zebrocy-s0251 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/zeroaccess-s0027 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/zerocleare-s1151 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/zerot-s0230 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/zeus-panda-s0330 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/zipline-s1114 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/zlib-s0086 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/zox-s0672 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/zwshell-s0350 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/zxshell-s0412 2026-06-06 monthly 0.6 https://www.intelfusions.com/malware/zxxz-s1013 2026-06-06 monthly 0.6 https://www.intelfusions.com/rules/com-hijacking-via-treatas-dc5c24af 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-scripting-in-a-wmi-consumer-fe21810c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-printer-driver-empty-manufacturer-e0813366 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/old-tls1-0-tls1-1-protocol-version-enabled-439957a7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-pendingfilerenameoperations-tampering-4eec988f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-space-characters-in-typedpaths-registry-path-filefix-8f2a5c3d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uac-bypass-via-sdclt-5b872a46 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sysmon-configuration-modification-1f2b5353 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/enable-local-manifest-installation-with-winget-fa277e82 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-signing-bypass-via-windows-developer-features-registry-b110ebaf 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uac-notification-disabled-c5f6a85d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/execution-dll-of-choice-using-wab-exe-fc014922 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-keyboard-layout-load-34aa0252 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sysmon-file-executable-creation-detected-693a44e9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/vbscript-payload-stored-in-registry-46490193 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-environment-variable-has-been-registered-966315ef 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-encoded-scripts-in-a-wmi-consumer-83844185 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sysmon-configuration-error-815cd91b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/scheduled-taskcache-change-by-uncommon-program-4720b7df 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sysmon-blocked-file-shredding-c3e5c1b1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-service-installed-f2485272 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-registry-persistence-attempt-via-windows-telemetry-73a883d0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uac-bypass-using-windows-media-player-registry-5f9db380 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/enable-lm-hash-storage-c420410f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/registry-persistence-via-explorer-run-key-b7916c2a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/wfp-filter-added-via-registry-1f1d8209 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/winget-admin-settings-modification-6db5eaf9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-timeproviders-registered-with-uncommon-dll-name-e88a6ddc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/disable-windows-defender-functionalities-via-registry-keys-0eb46774 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uac-secure-desktop-prompt-disabled-0d7ceeef 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-shell-open-command-registry-modification-9e8894c0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uac-bypass-abusing-winsat-path-parsing-registry-6597be7b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-space-characters-in-runmru-registry-path-clickfix-7a1b4c5e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/rdp-sensitive-settings-changed-to-zero-a2863fbc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sysmon-blocked-executable-23b71bc5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/wmi-event-subscription-0f06a3a5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/rdp-sensitive-settings-changed-3f6b7b62 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-vulnerable-driver-blocklist-disabled-d526c60a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uac-bypass-via-event-viewer-7c81fec3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sysmon-configuration-change-8ac03a65 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-run-key-pointing-to-suspicious-folder-02ee49e2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/activate-suppression-of-windows-security-center-notifications-0c93308a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/winlogon-allowmultipletssessions-enable-f7997770 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/winlogon-notify-key-logon-persistence-bbf59793 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/modify-user-shell-folders-startup-value-9c226817 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uac-disabled-48437c39 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/wdigest-enable-uselogoncredential-d6a9b252 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hiding-user-account-via-specialaccounts-registry-key-f8aebc67 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/internet-explorer-disablefirstruncustomize-enabled-ab567429 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/disable-internal-tools-or-feature-in-registry-e2482f8d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/disable-pua-protection-on-windows-defender-8ffc5407 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-wmic-execution-via-office-process-e1693bc8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/service-started-stopped-via-wmic-exe-0b7163dc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/disable-exploit-guard-network-protection-on-windows-defender-bf9e1387 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/wmi-persistence-script-event-consumer-ec1d5e28 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/filefix-command-evidence-in-typedpaths-4fee3d51 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/crashcontrol-crashdump-disabled-2ff692c2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/antivirus-filter-driver-disallowed-on-dev-drive-registry-31e124fb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/disable-administrative-share-creation-at-startup-c7dcacd0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/office-macros-warning-disabled-91239011 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-via-autodialdll-e6fe26ee 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-product-class-reconnaissance-via-wmic-exe-e568650b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-product-reconnaissance-via-wmic-exe-15434e33 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/disable-windows-event-logging-via-registry-2f78da12 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/security-privileges-enumeration-via-whoami-exe-97a80ec7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/application-removed-via-wmic-exe-b53317a0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-lateral-movement-via-windows-remote-shell-79df3f68 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-recall-feature-enabled-registry-75180c5f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/whoami-exe-execution-from-privileged-process-79ce34ca 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-command-executed-via-run-dialog-box-registry-a7df0e9e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/usage-of-renamed-sysinternals-tools-registryset-8023f872 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-execution-of-renamed-sysinternals-tools-registry-f50f3c09 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-remote-squiblytwo-technique-execution-8d63dadf 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/wow6432node-classes-autorun-keys-modification-18f2065c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/wab-wabmig-unusual-parent-or-child-processes-63d1ccc0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-defender-service-disabled-registry-e1aa95de 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/persistence-via-hhctrl-ocx-f10ed525 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/password-set-to-never-expire-via-wmi-7864a175 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/lolbas-onedrivestandaloneupdater-exe-proxy-download-3aff0be0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-root-or-ca-or-authroot-certificate-to-store-d223b46b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-via-shim-database-in-uncommon-location-6b6976a3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bypass-uac-using-silentcleanup-task-724ea201 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-eventlog-file-location-tampering-0cb8d736 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-odbc-driver-registered-e4d22291 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/lsass-full-dump-request-via-dumptype-registry-settings-33efc23c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/periodic-backup-for-system-registry-hives-enabled-973ef012 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sensitive-file-recovery-from-backup-via-wbadmin-exe-84972c80 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/disable-tamper-protection-on-windows-defender-93d298a1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hide-schedule-task-via-index-value-tamper-5b16df71 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/custom-file-open-handler-executes-powershell-7530b96f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/change-winevt-channel-access-permission-via-registry-7d9263bd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-via-outlook-today-page-487bb375 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-wmiprvse-child-process-8a582fe2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/registry-hide-function-from-user-5a93eb65 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/webshell-hacking-activity-patterns-4ebc877f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hypervisor-enforced-paging-translation-disabled-7f2954d2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-via-typedpaths-086ae989 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/webshell-detection-with-command-line-keywords-bed2a484 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-reflectdebugger-content-execution-via-werfault-exe-fabfb3a7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/disable-privacy-settings-experience-in-registry-0372e1f9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/python-function-execution-security-warning-disabled-in-excel-registry-17e53739 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/use-of-w32tm-as-timer-6da2c9f5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dns-over-https-enabled-by-registry-04b45a8a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/add-new-download-source-to-winget-05ebafc8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/file-recovery-from-backup-via-wbadmin-exe-6fe4aa1e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/all-backups-deleted-via-wbadmin-exe-639c9081 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-processes-spawned-by-winrm-5cc2cda8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/disable-windows-security-center-notifications-3ae1a046 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-file-download-from-ip-via-wget-exe-paths-40aa399c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/computer-system-reconnaissance-via-wmic-exe-9d7ca793 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/add-disallowrun-execution-to-registry-275641a5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-windows-defender-tampering-via-wmic-exe-51cbac1e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-code-execute-via-winrm-vbs-9df0dd3a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/group-membership-reconnaissance-via-whoami-exe-bd8b828d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hardware-model-reconnaissance-via-wmic-exe-3e3ceccd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-file-download-from-ip-via-wget-exe-17f0c0a8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-bginfo-exe-custom-vbscript-registry-configuration-992dd79f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-credential-guard-disabled-registry-73921b9c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-via-lsa-extensions-41f6531d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-desktop-background-change-via-registry-85b88e05 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/registry-disable-system-restore-5de03871 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-via-mpnotify-92772523 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-wmi-lateral-movement-wmiprvse-spawned-powershell-692f0bec 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-com-object-hijacking-via-treatas-subkey-registry-9b0f8a61 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-via-chm-helper-dll-976dd1f2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-tampering-with-security-products-via-wmic-847d5ff3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/registry-manipulation-via-wmi-stdregprov-c453ab7a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-via-appcompat-registerapprestart-layer-b86852fb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/trust-access-disable-for-vbapplications-1a5c46e9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/macro-enabled-in-a-potentially-suspicious-document-a166f74e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-dns-serverlevelplugindll-installed-e61e8a88 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-defense-evasion-via-raw-disk-access-by-uncommon-tools-db809f10 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-via-app-paths-default-property-707e097c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-via-disk-cleanup-handler-registry-d4f4e0be 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/net-ngenassemblyusagelog-registry-key-tamper-28036918 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-qakbot-registry-activity-1c8e96cd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-defender-threat-severity-default-action-modified-5a9e1b2c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/service-reconnaissance-via-wmic-exe-76f55eaa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/office-application-startup-office-test-3d27f6dd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/folder-removed-from-exploit-guard-protectedfolders-list-registry-272e55a4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/outlook-macro-execution-without-warning-setting-enabled-e3b50fa5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/etw-logging-disabled-in-net-processes-sysmon-registry-bf4fc428 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/registry-entries-for-azorult-malware-f7f9ab88 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-file-association-using-exefile-44a22d59 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hybridconnectionmanager-service-installation-registry-ac8866c7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/removal-of-sd-value-to-hide-schedule-task-registry-acd74772 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/enable-remote-connection-between-anonymous-computer-allowanonymouscallback-4d431012 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/removal-of-index-value-to-hide-schedule-task-registry-526cc8bc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/service-binary-in-suspicious-folder-a07f0359 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/narrator-s-feedback-hub-persistence-f663a6d9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/scripted-diagnostics-turn-off-check-enabled-registry-7d995e63 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/add-port-monitor-persistence-in-registry-944e8941 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/registry-tampering-by-potentially-suspicious-processes-7f4c43f9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-registry-trust-record-modification-295a59c1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/wdigest-credguard-registry-modification-1a2d6c47 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-dll-added-to-appcertdlls-registry-key-6aa1d992 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-via-shim-database-modification-dfb5b4e8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/removal-of-amsi-provider-registry-keys-41d1058a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-via-globalflags-36803969 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-event-log-access-tampering-via-registry-ba226dcf 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uac-bypass-via-wsreset-6ea3bf32 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/wlrmdr-exe-uncommon-argument-or-child-process-9cfc00b6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/system-scripts-autorun-keys-modification-e7a2fd40 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/runmru-registry-key-deletion-registry-3a9b8c1e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/security-support-provider-ssp-added-to-lsa-configuration-eeb30123 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/xwizard-exe-execution-from-non-default-location-193d5ccd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-portproxy-registry-entry-added-a54f842a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-windows-update-agent-empty-cmdline-52d097e2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-process-created-via-wmic-exe-3c89a1e8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cscript-wscript-uncommon-script-extension-execution-99b7460d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/registry-modification-to-hidden-file-extension-5df86130 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/wusa-exe-executed-by-parent-process-located-in-suspicious-location-ef64fc9c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/outlook-enableunsafeclientmailrules-setting-enabled-registry-6763c6c8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/system-disk-and-volume-reconnaissance-via-wmic-exe-c79da740 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/change-user-account-associated-with-the-fax-service-e3fdf743 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-ransomware-activity-using-legalnotice-message-8b9606c9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/disabled-windows-defender-eventlog-fcddca7c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/outlook-security-settings-updated-registry-c3cefdf4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/disable-windows-firewall-by-registry-e78c408a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/directory-service-restore-mode-dsrm-registry-value-tampering-b61e87c0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-application-allowed-through-exploit-guard-42205c73 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-child-process-of-winrar-exe-146aace8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/winrar-execution-in-non-standard-folder-4ede543c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/xsl-script-execution-via-wmic-exe-05c36dd6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-defender-exclusions-added-registry-a982fc9c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/process-reconnaissance-via-wmic-exe-221b251a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/compress-data-and-lock-with-password-for-exfiltration-with-winzip-e2e80da2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/winrar-compressing-dump-files-1ac14d38 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-hotfix-updates-reconnaissance-via-wmic-exe-dfd2fcb7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/local-groups-reconnaissance-via-wmic-exe-164eda96 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/whoami-exe-execution-with-output-option-c30fb093 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/winrs-local-command-execution-bcfece3d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-process-created-via-wmic-exe-526be59f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/add-potential-suspicious-new-download-source-to-winget-c15a46a0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/ppl-tampering-via-werfaultsecure-1f0b4cac 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/webshell-tool-reconnaissance-activity-f64e5c19 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/wmi-backdoor-exchange-transport-agent-797011dc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-file-download-from-file-sharing-domain-via-wget-exe-a0d7e4d2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-registry-persistence-attempt-via-dbgmanageddebugger-9827ae57 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-execution-location-of-wermgr-exe-5394fcc7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-psfactorybuffer-com-hijacking-243380fa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-hypervisor-enforced-code-integrity-disabled-8b7273a4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-child-process-of-wermgr-exe-396f6630 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sensitive-file-dump-via-wbadmin-exe-8b93a509 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-netsh-helper-dll-registered-from-a-suspicious-location-e7b18879 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/enumerate-all-information-with-whoami-exe-c248c896 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dhcp-callout-dll-installation-9d3436ef 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/wab-execution-from-non-default-location-395907ee 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-credential-dumping-attempt-using-new-networkprovider-reg-0442defa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/chopper-webshell-process-pattern-fa3c117a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bypass-uac-using-event-viewer-674202d0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-process-by-web-server-process-8202070f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-bginfo-exe-custom-wmi-query-registry-configuration-cd277474 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-credential-dumping-via-wer-9a4ccd1a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-backup-deleted-via-wbadmin-exe-89f75308 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-webdav-lnk-execution-1412aa78 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-autologger-sessions-tampering-f37b4bce 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/install-new-package-via-winget-local-manifest-313d6012 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dll-load-via-lsass-b3503044 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/add-insecure-download-source-to-winget-81a0ecb5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/whoami-exe-execution-anomaly-8de1cbe8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-where-execution-725a9768 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-via-outlook-loadmacroprovideronboot-setting-396ae3eb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-windowsterminal-child-processes-8de89e52 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-unquoted-service-path-reconnaissance-via-wmic-exe-68bcd73b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-powershell-session-host-process-winrm-734f8d9b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/enabling-cor-profiler-environment-variables-ad89044a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-activescripteventconsumer-created-via-wmic-exe-ebef4391 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/wow6432node-windows-nt-currentversion-autorun-keys-modification-480421f9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/add-debugger-entry-to-hangs-key-for-persistence-833ef470 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/ie-zonemap-setting-downgraded-to-mycomputer-zone-for-http-protocols-3fd4c8d7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-odbc-driver-registered-3390fbef 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-path-in-keyboard-layout-ime-file-registry-value-9d8f9bb8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/tamper-with-sophos-av-registry-keys-9f4662ac 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/wmic-remote-command-execution-7773b877 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uncommon-microsoft-office-trusted-location-added-f742bde7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-via-netsh-helper-dll-registry-c90362e0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uncommon-extension-in-keyboard-layout-ime-file-registry-value-b888e3f2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-via-new-amsi-providers-registry-33efc23c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/wsl-child-process-anomaly-2267fe65 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/persistence-via-disk-cleanup-handler-autorun-d4e2745c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/driver-added-to-disallowed-images-in-hvci-registry-555155a2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-via-logon-scripts-registry-9ace0707 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-application-in-appcompat-60936b49 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-via-custom-protocol-handler-fdbf0b9d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uncommon-system-information-discovery-via-wmic-exe-9d5a1274 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-credential-dumping-via-lsass-silentprocessexit-technique-55e29995 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/application-terminated-via-wmic-exe-49d9671b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/microsoft-office-protected-view-disabled-a5c7a43f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/modification-of-ie-registry-settings-d88d0ab2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cab-file-extraction-via-wusa-exe-from-potentially-suspicious-paths-c74c0390 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/wmiprvse-spawned-a-process-d21374ff 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-dropper-script-execution-via-wscript-cscript-mshta-cea72823 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/terminal-server-client-connection-history-cleared-registry-07bdd2f5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-powershell-in-registry-run-keys-8d85cf08 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/default-rdp-port-changed-to-non-standard-port-509e84b9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/ie-change-domain-zone-45e112d0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/currentversion-autorun-keys-modification-20f0ee37 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/currentcontrolset-autorun-keys-modification-f674e36a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-process-hollowing-activity-c4b890e5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/common-autorun-keys-modification-f59c3faf 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/disable-macro-runtime-scan-scope-ab871450 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-via-scrobj-dll-com-hijacking-fe20dda1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-bginfo-exe-custom-db-path-registry-configuration-53330955 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/servicedll-hijack-612e47e9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/allow-rdp-remote-assistance-feature-37b437cf 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/registry-persistence-via-service-in-safe-mode-1547e27c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/persistence-via-new-sip-provider-5a2b21ee 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-run-key-from-download-9c5037d1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/displaying-hidden-files-feature-disabled-5a5152f1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/internet-explorer-autorun-keys-modification-a80f662f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/disable-microsoft-defender-firewall-via-registry-974515da 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/netntlm-downgrade-attack-registry-d67572a0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/winekey-registry-modification-b98968aa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-dll-added-to-appinit-dlls-registry-key-4f84b697 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/shell-open-registry-keys-manipulation-152f3630 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/classes-autorun-keys-modification-9df5f547 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/screensaver-registry-key-set-40b6e656 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/amsi-disabled-via-registry-modification-aa37cbb0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/proxy-execution-via-wuauclt-exe-af77cf95 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/redmimicry-winnti-playbook-registry-manipulation-5b175490 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/registry-explorer-policy-modification-1c3121ed 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/office-autorun-keys-modification-baecf8fb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-cobaltstrike-service-installations-registry-61a7697c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-camera-and-microphone-access-62120148 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/add-debugger-entry-to-aedebug-for-persistence-092af964 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/registry-persistence-mechanisms-in-recycle-bin-277efb8f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/winsock2-autorun-keys-modification-d6c2ce7e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/atbroker-registry-change-9577edbb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-via-outlook-home-page-ddd171b5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-amsi-com-server-hijacking-160d2780 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/wsl-kali-linux-usage-6f1a11aa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/etw-logging-disabled-for-scm-4f281b83 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/session-manager-autorun-keys-modification-046218bd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/etw-logging-disabled-for-rpcrt4-dll-90f342e1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-script-execution-policy-enabled-8218c875 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-binary-executed-from-wsl-ed825c86 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-attachment-manager-settings-attachments-tamper-ee77a5db 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/delete-defender-scan-shellex-context-menu-registry-key-72a0369a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-sysinternal-tool-execution-registry-25ffa65d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/path-to-screensaver-binary-modified-67a6c006 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cmstp-execution-registry-event-b6d235fc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-sysinternals-tools-execution-registry-c7da8edc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-shim-database-patching-activity-bf344fea 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/clickonce-trust-prompt-tampering-ac9159cc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sticky-key-like-backdoor-usage-registry-baca5663 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/running-chrome-vpn-extensions-via-the-registry-2-vpn-extension-b64a026b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-recall-feature-enabled-disableaidataanalysis-value-deleted-5dfc1465 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/awl-bypass-with-winrm-vbs-and-malicious-wsmpty-xsl-wsmtxt-xsl-074e0ded 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/run-once-task-configuration-in-registry-c74d7efc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-as-a-service-in-registry-4a5f5a5e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/creation-of-a-local-hidden-user-account-by-registry-460479f3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sysmon-driver-altitude-change-4916a35e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/disable-security-events-logging-adding-reg-key-minint-919f2ef0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bypass-uac-using-delegateexecute-46dd5308 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-credential-editor-registry-a6b33c02 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/com-hijack-via-sdclt-07743f65 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-via-visual-studio-tools-for-office-9d15044a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-werfault-reflectdebugger-registry-value-abuse-0cf2e1c6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-via-dllpathoverride-a1b1fd53 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-via-mycomputer-registry-keys-8fbe98a8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/registry-modification-for-oci-dll-redirection-c0e0bdec 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-credential-guard-related-registry-value-deleted-registry-d645ef86 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/removal-of-potential-com-hijacking-registry-keys-96f697b0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/com-object-execution-via-xwizard-exe-53d4bb30 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/register-new-ifiltre-for-persistence-b23818c7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-sentinelone-shell-context-menu-scan-command-tampering-6c304b02 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-via-event-viewer-events-asp-a1e11042 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/maxmpxct-registry-value-changed-0e6a9e62 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/currentversion-nt-autorun-keys-modification-cbf93e5d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-via-excel-add-in-registry-961e33d1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uefi-persistence-via-wpbbin-processcreation-4abc0ec4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/security-event-logging-disabled-via-minint-registry-key-registry-set-8839e550 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-attachment-manager-settings-associations-tamper-a9b6c011 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-logging-disabled-via-registry-key-tampering-fecfd1a1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-provisioning-registry-key-abuse-for-binary-proxy-execution-reg-7021255e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-clickfix-execution-pattern-registry-f5fe36cf 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/wow6432node-currentversion-autorun-keys-modification-b29aed60 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/restrictedadminmode-registry-value-tampering-d6ce7ebd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cscript-wscript-potentially-suspicious-child-process-b6676963 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/installation-of-wsl-kali-linux-eca8ae39 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/service-startup-type-change-via-wmic-exe-c0514f28 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/esentutl-volume-shadow-copy-service-keys-5aad0995 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-using-debugpath-df4dc653 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/enable-microsoft-dynamic-data-exchange-63647769 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/com-object-hijacking-via-modification-of-default-system-clsid-default-value-790317c0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/change-the-fax-dll-9e3357ba 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-powershell-execution-policy-tampering-fad91067 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-execution-of-systeminfo-0ef56343 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sqlite-chromium-profile-data-db-access-24c77512 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-spool-service-child-process-dcdbc940 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/veeam-backup-database-suspicious-query-696bfb54 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/setup16-exe-execution-with-custom-lst-file-99c8be4f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/audio-capture-via-soundrecorder-83865853 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/veeambackup-database-credentials-dump-via-sqlcmd-exe-b57ba453 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sysinternals-psservice-execution-3371f518 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uncommon-svchost-command-line-parameter-f17211f1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-suspicious-activity-using-secedit-c2c76b77 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-speech-runtime-binary-child-process-78f10490 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/port-forwarding-activity-via-ssh-exe-327f48c1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/shell32-dll-execution-in-suspicious-directory-32b96012 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uac-bypass-using-dismhost-853e74f9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sysprep-on-appdata-folder-d5b9ae7a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uac-bypass-abusing-winsat-path-parsing-process-7a01183d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/nodejs-execution-of-javascript-file-ba3874b9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/indirect-command-execution-via-sftp-proxycommand-762bb580 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/scheduled-task-creation-masquerading-as-system-processes-9f8573c9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-command-patterns-in-scheduled-task-creation-f2c64357 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sdiagnhost-calling-suspicious-child-process-f3d39c45 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uac-bypass-using-ieinstal-process-80fc36aa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/compressed-file-extraction-via-tar-exe-bf361876 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/taskkill-symantec-endpoint-protection-4a6713f6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uncommon-one-time-only-scheduled-task-at-00-00-970823b7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uncommon-child-process-of-setres-exe-835e75bf 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-serv-u-process-pattern-58f4ea09 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-execution-of-shutdown-34ebb878 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-schtasks-schedule-type-with-high-privileges-7a02e22e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/scheduled-task-creation-with-curl-and-powershell-execution-combo-1d174d38 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-schtasks-schedule-types-24c8392b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/start-of-nt-virtual-dos-machine-16905e21 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uac-bypass-using-changepk-and-slui-503d581c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-execution-of-sysinternals-tools-7cccd811 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-scheduled-task-creation-via-masqueraded-xml-file-dd2a821e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-shim-database-persistence-via-sdbinst-exe-517490a7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-via-powershell-search-order-hijacking-task-b66474aa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/service-dacl-abuse-to-hide-services-via-sc-exe-a537cfc3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/scheduled-task-executing-payload-from-registry-86588b36 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-schtasks-execution-appdata-folder-c5c00f49 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/raccine-uninstall-a31eeaed 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/service-security-descriptor-tampering-via-sc-exe-98c5aeef 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-ssh-tunnel-persistence-install-using-a-scheduled-task-2daa93a0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-scheduled-task-creation-involving-temp-folder-39019a4e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-attempt-via-existing-service-tampering-38879043 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/delete-important-scheduled-task-dbc1f800 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-scheduled-task-name-as-guid-ff2fff64 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/disable-important-scheduled-task-9ac94dc8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/scheduled-task-creation-via-schtasks-exe-92626ddd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-service-path-modification-138d3531 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/run-once-task-execution-as-configured-in-registry-198effb6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/interesting-service-enumeration-via-sc-exe-e83e8899 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-persistence-via-vmwaretoolboxcmd-exe-vm-state-change-script-236d8e89 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-service-creation-using-sc-exe-85ff530b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/rundll32-spawning-explorer-caa06de8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-rundll32-exe-execution-of-udl-file-0ea52357 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/allow-service-access-using-security-descriptor-tampering-via-sc-exe-6c8fbee5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/schedule-task-creation-from-env-variable-or-potentially-suspicious-path-via-scht-81325ce1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/rundll32-registered-com-objects-f1edd233 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-rundll32-setupapi-dll-activity-285b85b1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-control-panel-dll-load-d7eb979b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-obfuscated-ordinal-call-via-rundll32-43fa5350 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/capture-credentials-with-rpcping-exe-93671f99 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/rundll32-installscreensaver-execution-15bd98ea 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/service-startuptype-change-via-sc-exe-85c312b7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-rundll32-activity-invoking-sys-file-731231b9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-rundll32-activity-e593cf51 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/shimcache-flush-b0524451 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-process-start-locations-15b75071 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-rundll32-invoking-inline-vbscript-1cc50f3f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/rundll32-execution-with-uncommon-dll-extension-c3a99af4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-shellexec-rundll-call-via-ordinal-8823e85d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-rundll32-execution-with-image-extension-4aa6040b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/deny-service-access-using-security-descriptor-tampering-via-sc-exe-99cf1e02 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-workstation-locking-via-rundll32-3b5b0213 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/possible-privilege-escalation-via-weak-service-permissions-d937b75f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-ntlm-authentication-on-the-printer-spooler-service-bb76d96b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/webdav-client-execution-via-rundll32-exe-2dbd9d3d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-shelldispatch-dll-functionality-abuse-82343930 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-usage-of-shellexec-rundll-d87bd452 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/process-memory-dump-via-comsvcs-dll-646ea171 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-splwow64-without-params-1f1a8509 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/mshtml-dll-runhtmlapplication-suspicious-usage-4782eb5a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-advpack-call-via-rundll32-exe-a1473adb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-rundll32-execution-with-dll-stored-in-ads-9248c7e1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/renamed-whoami-execution-f1086bf7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/ruby-inline-command-execution-20a5ffa1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/rundll32-execution-without-parameters-5bb68627 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-modification-of-scheduled-tasks-1c0e41cd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-key-manager-access-a4694263 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-windows-app-activity-f91ed517 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/renamed-vmnat-exe-execution-7b4f794b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/rundll32-execution-without-commandline-parameters-1775e15e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uncommon-child-processes-of-sndvol-exe-ba42babc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-vsls-agent-command-with-agentextensionpath-load-43103702 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/schtasks-from-suspicious-folders-8a8379b8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/visual-studio-code-tunnel-shell-execution-f4a623c2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-vboxdrvinst-exe-parameters-b7b19cb6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-binary-proxy-execution-via-vsdiagnostics-exe-ac1c92b4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-via-vmwaretoolboxcmd-exe-vm-state-change-script-7aa4e81a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-via-microsoft-compatibility-appraiser-f548a603 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/visual-studio-code-tunnel-service-installation-30bf1789 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/verclsid-exe-runs-com-object-d06be4b9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/vmtoolsd-suspicious-child-process-5687f942 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/registry-modification-attempt-via-vbscript-921aa10f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/renamed-visual-studio-code-tunnel-execution-2cf29f11 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/vulnerable-driver-blocklist-registry-tampering-via-commandline-22154f0e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/virtualbox-driver-installation-or-starting-of-vms-bab049ca 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/visual-studio-code-tunnel-execution-90d6bd71 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/proxy-execution-via-vshadow-d7c75059 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uncommon-userinit-child-process-0a98a10c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/schtasks-creation-or-modification-with-system-privileges-89ca78fd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bypass-uac-via-wsreset-exe-d797268e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/user-shell-folders-registry-modification-via-commandline-8f3ab69a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-command-targeting-teams-sensitive-files-d2eb17db 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uac-bypass-using-consent-and-comctl32-process-1ca6bd18 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uac-bypass-via-icmluautil-49f2f17b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-child-process-of-vscode-5a3164f2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/rundll32-spawned-via-explorer-exe-1723e720 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uac-bypass-using-pkgmgr-and-dism-a743ceba 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-rdp-redirect-using-tscon-f72aa3e8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-recursive-takeown-554601fb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uncommon-extension-shim-database-installation-via-sdbinst-exe-18ee686c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cmstp-uac-bypass-via-com-object-access-4b60e6f2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-credential-manager-access-via-vaultcmd-58f50261 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/trustedpath-uac-bypass-pattern-4ac47ed3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bypass-uac-via-fodhelper-exe-7f741dcf 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/use-of-ultravnc-remote-access-software-145322e4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-tscon-start-as-system-9847f263 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uac-bypass-using-windows-media-player-process-0058b9e5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bypass-uac-via-cmstp-e66779cc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uac-bypass-via-windows-firewall-snap-in-hijack-e52cb31c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uac-bypass-using-event-viewer-recentviews-30fc8de7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uac-bypass-using-ntfs-reparse-point-process-39ed3c80 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uac-bypass-using-msconfig-token-modification-process-ad92e3f9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/loaded-module-enumeration-via-tasklist-exe-34275eb8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-process-created-via-taskmgr-exe-3d7679bd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uac-bypass-wsreset-89a9a0e0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uac-bypass-using-idiagnostic-profile-4cbef972 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-rdp-session-hijacking-activity-224f140f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-uac-bypass-via-sdclt-exe-40f9af16 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/compressed-file-creation-via-tar-exe-418a3163 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-virtual-smart-card-created-via-tpmvscmgr-exe-c633622e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-binary-impersonating-sysinternals-tools-7cce6fc8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-psexec-remote-execution-ea011323 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uac-bypass-using-disk-cleanup-b697e69c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sysinternals-pssuspend-execution-48bbc537 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uac-bypass-tools-using-computerdefaults-3c05e90d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-webdav-client-execution-via-rundll32-exe-982e9f2d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sysmon-configuration-update-87911521 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/terminal-service-process-spawn-1012f107 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/psexec-paexec-escalation-to-local-system-8834e2f7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/permission-check-via-accesschk-exe-c625d754 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uncommon-svchost-parent-process-01d2e2a1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/kernel-memory-dump-via-livekd-c7746f1c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/rundll32-unc-path-execution-5cdb711b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-privilege-escalation-to-local-system-207b0396 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-signing-bypass-via-windows-developer-features-a383dec4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/psexec-execution-730fc21b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-process-masquerading-as-svchost-exe-be58d2e2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-use-of-psloglist-aae1243f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/active-directory-database-snapshot-via-adexplorer-9212f354 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uninstall-crowdstrike-falcon-sensor-f0f7be61 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/malicious-pe-execution-by-microsoft-visual-studio-debugger-15c7904e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-file-overwrite-via-sysinternals-sdelete-a4824fca 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-lsass-process-dump-via-procdump-5afee48e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/psexec-service-child-process-execution-as-local-system-7c0dcd3d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-kernel-driver-via-sc-exe-431a1fdb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/stop-windows-service-via-sc-exe-81bcb81b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/procdump-execution-2e65275c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/execution-via-workfolders-exe-0bbc6369 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-ultravnc-execution-871b9555 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-memory-dumping-activity-via-livekd-a85f7765 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/weak-or-abused-passwords-in-cli-91edcfb1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/whoami-as-parameter-e9142d84 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/usage-of-web-request-commands-and-cmdlets-9fc51a3c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-sysvol-domain-group-policy-access-05f3c945 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-active-directory-database-snapshot-via-adexplorer-ef61af62 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-velociraptor-child-process-4bc90587 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-system-user-process-creation-2617e7ed 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/script-interpreter-spawning-credential-scanner-windows-0f60b28c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/taskmgr-as-local-system-9fff585c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-call-to-win32-nteventlogfile-class-caf201a9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/registry-modification-of-ms-settings-protocol-handler-dd3ee8cc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-runas-like-flag-combination-50d66fb0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-sysinternals-procdump-evasion-79b06761 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-process-execution-from-fake-recycle-bin-folder-5ce0f04e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-process-patterns-ntds-dit-exfil-8bc64091 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/script-interpreter-execution-from-suspicious-folder-1228c958 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-shell-scripting-processes-spawning-suspicious-programs-3a6586ad 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-new-service-creation-17a1be64 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-windows-service-tampering-ce72ef99 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uncommon-sigverif-exe-child-process-7d4aaec2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-remote-desktop-tunneling-8a3038e8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/use-ntfs-short-name-in-command-line-dd6b39d9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/tap-installer-execution-99793437 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/process-creation-using-sysnative-folder-3c1b5fb0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/psexec-service-execution-fdfcbd78 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/execution-of-suspicious-file-type-extension-c09dad97 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-execution-of-shutdown-to-log-out-ec290c06 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/use-ntfs-short-name-in-image-3ef5605c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/system-file-execution-location-anomaly-e4a6b256 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/script-event-consumer-spawning-process-f6d1dd2f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/scheduled-task-executing-encoded-payload-from-registry-c4eeeeae 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-processes-suspicious-parent-directory-96036718 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/process-launched-without-image-name-f208d6d8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/recon-information-for-export-with-command-prompt-aa2efee7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/writing-of-malicious-files-to-the-fonts-folder-ae9b0bd7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-winapi-calls-via-commandline-ba3f5c1b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-defense-evasion-via-right-to-left-override-ad691d92 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-eventlog-recon-activity-using-log-query-utilities-beaa66d6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/lsass-dump-keyword-in-commandline-ffa6861c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-reconnaissance-activity-via-gathernetworkinfo-vbs-07aa184a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/delete-all-scheduled-tasks-220457c1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-jwt-token-search-via-cli-6d3a3952 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-file-characteristics-due-to-missing-fields-9637e8a5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-file-download-via-ms-appinstaller-protocol-handler-180c7c5c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-electron-application-commandline-378a05d8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-network-sniffing-activity-using-network-tools-ba1f7802 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hidden-powershell-in-link-file-pattern-30e92f50 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sdclt-child-processes-da2738f2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-hidden-directory-creation-via-ntfs-index-allocation-stream-cli-0900463c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sysinternals-pssuspend-suspicious-execution-4beb6ae0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/lolbin-execution-from-abnormal-drive-d4ca7c59 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-inline-javascript-execution-via-nodejs-binary-8537c866 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-defense-evasion-activity-via-emoji-usage-in-commandline-2-c98f2a0d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-execution-from-parent-process-in-public-folder-69bd9b97 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-defense-evasion-activity-via-emoji-usage-in-commandline-3-f9578658 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-eventlog-clearing-or-configuration-change-activity-cc36992a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-filefix-execution-pattern-b5b29e4e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-download-from-office-domain-00d49ed5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/execution-of-non-existing-file-71158e3f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/elevated-system-shell-spawned-from-uncommon-parent-location-178e615d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-service-binary-directory-883faa95 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/etw-logging-tamper-in-net-processes-via-commandline-41421f44 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-defense-evasion-activity-via-emoji-usage-in-commandline-4-225274c4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/process-execution-from-a-potentially-suspicious-folder-3dfd06d2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-electron-application-child-processes-f26eb764 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uninstall-sysinternals-sysmon-6a5f68d1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/etw-trace-evasion-activity-a238b5d0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-copy-from-or-to-system-directory-fff9d2b7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-homoglyph-attack-using-lookalike-characters-32e280f1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-double-extension-file-execution-1cdd9a09 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dumpstack-log-defender-evasion-4f647cfa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-lnk-command-line-padding-with-whitespace-characters-dd8756e7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-child-process-created-as-system-590a5f4c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-usage-of-for-loop-with-recursive-directory-search-in-cmd-2782fbd8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/base64-mz-header-in-commandline-22e58743 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/local-accounts-discovery-502b42de 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-scan-loop-network-f8ad2e2c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/lol-binary-copied-from-system-directory-f5d19838 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/arbitrary-shell-command-execution-via-settingcontent-ms-24de4f3b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-process-parents-cbec226f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/use-short-name-path-in-image-a96970af 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/program-executed-using-proxy-local-command-via-ssh-exe-7d6d30b8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/privilege-escalation-via-named-pipe-impersonation-9bd04a79 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-network-command-a29c1813 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/non-privileged-usage-of-reg-or-powershell-8f02c935 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-parent-double-extension-file-execution-5e6a80c8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/always-install-elevated-msi-spawned-cmd-and-powershell-1e53dd56 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/abused-debug-privilege-by-arbitrary-parent-processes-d522eca2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-spn-enumeration-via-setspn-exe-1eeed653 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/always-install-elevated-windows-installer-cd951fdc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-program-names-efdd8dd5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/execution-via-stordiag-exe-961e0abb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-powershell-execution-via-dll-6812a10b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-browser-data-stealing-47147b5b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-userinit-child-process-b655a06a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/process-proxy-execution-via-squirrel-exe-45239e6a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-commandline-obfuscation-using-unicode-characters-from-suspicious-image-584bca0f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bad-opsec-defaults-sacrificial-processes-with-improper-arguments-a7c3d773 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/obfuscated-ip-download-activity-cb5a2333 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/user-added-to-highly-privileged-group-10fb649c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/private-keys-reconnaissance-via-commandline-tools-213d6a77 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/execute-from-alternate-data-streams-7f43c430 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-clickfix-filefix-execution-pattern-d487ed4a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-amazon-ssm-agent-hijacking-d20ee2f4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/obfuscated-ip-via-cli-56d19cb4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/automated-collection-command-prompt-f576a613 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-redirection-to-local-admin-share-ab9e3b40 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-commandline-obfuscation-using-escape-characters-f0cdd048 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/shadow-copies-creation-using-operating-systems-utilities-b17ea6f7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-command-line-path-traversal-evasion-attempt-1327381e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/user-added-to-remote-desktop-users-group-ffa28e60 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sensitive-file-access-via-volume-shadow-copy-backup-f57f8d16 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/shadow-copies-deletion-using-operating-systems-utilities-c947b146 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-crypto-mining-activity-66c3b204 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/phishing-pattern-iso-in-archive-fcdf69e5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/malicious-windows-script-components-file-execution-by-taef-detection-634b00d5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/tasks-folder-evasion-cc4e02ba 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sqlite-firefox-profile-data-db-access-4833155a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-explorer-process-with-whitespace-padding-clickfix-filefix-3ae9974a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-data-exfiltration-activity-via-commandline-tools-7d1aaf3d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-rdp-tunneling-via-ssh-f7d7ebd5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-defense-evasion-activity-via-emoji-usage-in-commandline-1-4a30ac0c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/copy-from-or-to-admin-share-or-sysvol-folder-855bc8b5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/user-added-to-local-administrators-group-ad720b90 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-suspicious-browser-launch-from-document-reader-process-1193d960 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/arbitrary-file-download-via-squirrel-exe-1e75c1cc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspect-svchost-activity-16c37b52 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/screen-capture-activity-via-psr-exe-2158f96f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sensitive-file-dump-via-print-exe-2fcda7e2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/system-language-discovery-via-reg-exe-c43a5405 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/renamed-browsercore-exe-execution-8a4519e8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/ie-zonemap-setting-downgraded-to-mycomputer-zone-for-http-protocols-via-cli-10344bb3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-registry-modification-from-ads-via-regini-exe-77946e79 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-regsvr32-http-ip-pattern-2dd2c217 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/restrictedadminmode-registry-value-tampering-proccreation-28ac00d6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/scripting-commandline-process-spawned-regsvr32-ab37a6ec 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/regsvr32-execution-from-highly-suspicious-location-327ff235 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-execution-of-regasm-regsvcs-from-uncommon-location-cc368ed0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/visual-studio-nodejstools-pressanykey-arbitrary-binary-execution-a20391f8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/regsvr32-dll-execution-with-suspicious-file-extension-089fc3d2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/regedit-as-trusted-installer-883835a7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/exports-critical-registry-keys-to-a-file-82880171 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/regsvr32-execution-from-potential-suspicious-location-9525dc73 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/registry-export-of-third-party-credentials-cc1abf27 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-access-tool-anydesk-silent-installation-114e7f1c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-privilege-escalation-via-service-permissions-weakness-0f9c21f1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-regsvr32-commandline-flag-anomaly-b236190c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-tampering-with-rdp-related-registry-keys-via-reg-exe-0d5675be 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/detected-windows-software-discovery-e13f668e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-child-process-of-regsvr32-6f0947a4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-access-tool-anydesk-piped-password-via-cli-b1377339 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-access-tool-rurat-execution-from-unusual-location-e01fa958 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/enable-lm-hash-storage-proccreation-98dedfdd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/enumeration-for-credentials-in-registry-e0b0c2ab 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/python-function-execution-security-warning-disabled-in-excel-023c654f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/persistence-via-typedpaths-commandline-ec88289a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-windows-defender-registry-key-tampering-via-reg-exe-452bce90 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-provisioning-registry-key-abuse-for-binary-proxy-execution-2a4b3e61 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/disabled-volume-snapshots-dee4af55 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/modify-group-policy-settings-ada4b0c4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/changing-existing-service-imagepath-value-via-reg-exe-9b0b7ac3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/security-service-disabled-via-reg-exe-5e95028c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-desktop-background-change-using-reg-exe-8cbc9475 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/system-restore-registry-modification-via-commandline-7c06ab9b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-execution-of-regasm-regsvcs-with-uncommon-extension-e9f8f8cc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-debugger-registration-cmdline-ae215552 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-recall-feature-enabled-via-reg-exe-817f252c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/service-registry-key-deleted-via-reg-exe-05b2aa93 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-access-tool-netsupport-execution-from-unusual-location-37e8d358 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-access-tool-screenconnect-remote-command-execution-b1f73849 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-screensave-change-by-reg-exe-0fc35fc3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-suspicious-activedirectory-enumeration-via-adfind-exe-455b9d50 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-access-tool-gotoassist-execution-b6d98a4f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-access-tool-anydesk-execution-from-suspicious-folder-065b00ca 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/renamed-autohotkey-exe-execution-0f16d9cf 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/file-download-using-protocolhandler-exe-104cdb48 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/write-protect-for-storage-disabled-75f7a0e2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-advancedrun-execution-d2b749ee 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-query-of-machineguid-f5240972 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-access-tool-potential-meshagent-execution-windows-2fbbe9ff 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/runmru-registry-key-deletion-c11aecef 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/disabling-windows-defender-wmi-autologger-session-via-reg-exe-a1b2c3d4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/arbitrary-file-download-via-presentationhost-exe-b124ddf4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-suspicious-registry-file-imported-via-reg-exe-62e0298b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/xbap-execution-from-uncommon-locations-via-presentationhost-exe-d22e2925 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-regsvr32-http-ftp-pattern-867356ee 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/imports-registry-key-from-an-ads-0b80ade5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/regsvr32-dll-execution-with-uncommon-extension-50919691 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/renamed-ftp-exe-execution-277a4393 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-reg-add-bitlocker-0e0255bf 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/rdp-enable-or-disable-via-win32-terminalservicesetting-wmi-class-4b8f6d3a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-rasdial-activity-6bba49bf 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/direct-autorun-keys-modification-24357373 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-windows-defender-folder-exclusion-added-via-reg-exe-48917adc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-recovery-environment-disabled-via-reagentc-db1c21e4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-attempt-via-run-keys-using-reg-exe-de587dce 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/python-spawning-pretty-tty-on-windows-480e7e51 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/files-added-to-an-archive-using-rar-exe-6f3e2987 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/rar-usage-with-password-and-compression-level-faa48cae 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/folder-compress-to-potentially-suspicious-output-via-compress-archive-cmdlet-85a8e5ba 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-seatbelt-execution-38646daa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-adidnsdump-execution-26d3f0a2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/process-memory-dump-via-rdrleakdiag-exe-edadb1e5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dropping-of-password-filter-dll-b7966f4a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-system-informer-execution-5722dff1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/python-one-liners-with-base64-decoding-50a0aa3d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-runxcmd-execution-93199800 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/quickassist-execution-e20b5b14 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/abusing-print-executable-bafac3d6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-greedy-compression-using-rar-exe-afe52666 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/query-usage-to-exfil-data-53ef0cef 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/add-safeboot-keys-via-reg-utility-d7662ff6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-restic-backup-tool-execution-6ddff2e8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-rclone-execution-e37db05d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/python-inline-command-execution-899133d5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-potential-pe-metadata-tamper-using-rcedit-0c92f2e6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-radmin-viewer-utility-execution-5817e76f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-trufflehog-execution-44030449 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/renamed-psexec-service-execution-51ae86a2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-webbrowserpassview-execution-d0dae994 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-wsudo-suspicious-execution-bdeeabc9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/renamed-plink-execution-1c12727d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/renamed-microsoft-teams-execution-88f46b67 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/renamed-nircmd-exe-execution-264982dc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-process-hacker-execution-811e0002 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/renamed-gpg-exe-execution-ec0722a3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/visual-studio-nodejstools-pressanykey-renamed-execution-65c3ca2c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/renamed-procdump-execution-4a0b2c7e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/renamed-sysinternals-sdelete-execution-c1d867fe 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/renamed-pingcastle-binary-execution-2433a154 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/regasm-exe-execution-without-commandline-flags-or-files-651f87f7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/renamed-autoit-execution-f4264e47 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/renamed-schtasks-execution-f91e51c9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-pingcastle-execution-from-potentially-suspicious-parent-b37998de 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/renamed-adfind-execution-df55196f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/renamed-office-binary-execution-0b0cd537 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/renamed-boinc-client-execution-30d07da2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-renamed-rundll32-execution-2569ed8c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-3proxy-execution-f38a82d2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/safeboot-registry-key-deleted-via-reg-exe-fc0e89b5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-xor-encoded-powershell-command-bb780e0c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/renamed-createdump-utility-execution-1a1ed54a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/renamed-zoho-dctask64-execution-340a090b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/renamed-jusched-exe-execution-edd8a48c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-usage-of-qemu-5fc297ae 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-nps-tunneling-tool-execution-68d37776 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-pingcastle-execution-b1cb4ab6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-nircmd-execution-as-local-system-d9047477 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/discovery-of-a-system-time-b243b280 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/renamed-curl-exe-execution-7530cd3d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-defense-evasion-via-rename-of-highly-relevant-binaries-0ba1da6d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-access-tool-simple-help-execution-95e60a2b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-access-tool-tacticalrmm-agent-registration-to-potentially-attacker-contro-2db93a3f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/renamed-mavinject-exe-execution-e6474a1b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-access-tool-screenconnect-server-web-shell-execution-b19146a3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-access-tool-team-viewer-session-started-on-windows-host-ab70c354 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-access-tool-logmein-execution-d85873ef 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-service-dacl-modification-via-set-service-cmdlet-a95b9b42 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-powershell-script-execution-from-temp-folder-a6a39bdb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-powershell-reverseshell-connection-edc2f8ae 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-uninstall-of-windows-defender-feature-via-powershell-c443012c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-access-tool-meshagent-command-execution-via-meshcentral-74a2b202 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/malicious-powershell-commandlets-processcreation-02030f2f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-x509enrollment-process-creation-114de787 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/renamed-megasync-execution-643bdcac 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/renamed-paexec-execution-c4e49831 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-access-tool-screenconnect-execution-57bff678 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/non-interactive-powershell-process-spawned-f4bbd493 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remotefxvgpudisablement-abuse-via-atomictestharnesses-a6fc3c46 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-sam-copy-1af57a4b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-kerberos-ticket-request-via-cli-caa9a802 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-nmap-zenmap-execution-f6ecd1cf 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/renamed-cloudflared-exe-execution-e0c69ebd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/import-powershell-modules-from-suspicious-directories-proccreation-c31364f7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-set-acl-on-windows-folder-0944e002 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-memory-dump-mount-via-memprocfs-8a1b2c3d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-frombase64string-usage-on-gzip-archive-process-creation-d75d6b6b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-ngrok-execution-ee37eb7c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-reconnaissance-activity-using-get-localgroupmember-cmdlet-c8a180d6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-powershell-iex-execution-patterns-09576804 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-nimgrab-execution-74a12f18 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-invoke-webrequest-execution-5e3cc4d8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/execution-of-powershell-script-in-public-folder-fb9d3ff7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/renamed-sysinternals-debugview-execution-cd764533 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-iox-tunneling-tool-execution-d7654f02 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-softperfect-netscan-execution-ca387a8e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/root-certificate-installed-from-susp-locations-5f6a601c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/run-powershell-script-from-redirected-input-stream-c83bf4b5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/base64-encoded-powershell-command-detected-e32d4572 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/renamed-netsupport-rat-execution-0afbd410 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-powershell-invocations-specific-processcreation-536e2947 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/abuse-of-service-permissions-to-hide-services-via-set-service-514e4c3a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/net-webclient-casing-anomalies-c86133ad 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/renamed-remote-utilities-rat-rurat-execution-9ef27c24 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-get-process-lsass-b2815d0d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-invoke-webrequest-execution-with-directip-1edff897 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-mouse-lock-execution-c9192ad9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/email-exifiltration-via-powershell-312d0384 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-dit-snapshot-viewer-d3b70aad 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/certificate-exported-via-powershell-9e716b33 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-powershell-obfuscation-via-wchar-char-e312efd0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/msexchange-transport-agent-installation-83809e84 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/tamper-windows-defender-remove-mppreference-07e3cb2c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-nimscan-execution-4fd6b1c7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-script-run-in-appdata-ac175779 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-file-download-from-file-sharing-domain-via-powershell-exe-b6e04788 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-powershell-mailbox-export-to-share-889719ef 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/run-powershell-script-from-ads-45a594aa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-download-and-execution-cradles-85b0b087 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-defendercheck-execution-f0ca6c24 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-encoded-powershell-patterns-in-commandline-cdf05894 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-inline-execution-from-a-file-ee218c12 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/disabled-ie-security-features-fb50eb7a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dsinternals-suspicious-powershell-cmdlets-43d91656 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-get-clipboard-cmdlet-via-cli-b9aeac14 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-kernel-driver-utility-kdu-execution-e76ca062 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-powershell-downgrade-attack-b3512211 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-csexec-execution-d08a2711 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-script-change-permission-via-set-acl-bdeb2cff 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-msi-install-via-windowsinstaller-com-from-remote-location-222720a7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-download-pattern-3b6ab547 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-execution-with-potential-decryption-capabilities-434c08ba 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/unsigned-appx-installation-attempt-using-add-appxpackage-37651c2a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-service-creation-using-powershell-c02e96b7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/disable-windows-defender-av-security-monitoring-a7ee1722 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-powershell-command-line-obfuscation-d7bcd677 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-base64-encoded-invoke-keyword-6385697e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-advancedrun-suspicious-execution-fa00b701 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-process-execution-proxy-via-cl-invocation-ps1-a0459f02 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-dll-file-download-via-powershell-invoke-webrequest-0f0450f3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/obfuscated-powershell-oneliner-execution-44e24481 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-powershell-console-history-access-attempt-via-history-file-f4ff7323 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-defender-exclusion-17769c90 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-powershell-invocation-from-script-engines-95eadcb2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-base64-encoded-wmi-classes-1816994b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-powershell-parent-process-754ed792 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/malicious-base64-encoded-powershell-keywords-in-command-lines-f26c6093 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-powershell-obfuscation-via-reversed-commands-b6b49cd1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-execution-of-powershell-with-base64-fb843269 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-crassus-execution-2c32b543 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-com-objects-download-cradles-usage-process-creation-02b64f1b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-defender-disable-scan-feature-1ec65a5f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/convertto-securestring-cmdlet-usage-via-commandline-74403157 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-advanced-port-scanner-execution-54773c5f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/computer-discovery-and-export-via-get-adcomputer-cmdlet-435e10e4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/add-windows-capability-via-powershell-cmdlet-b36d01a3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/obfuscated-powershell-msi-install-via-windowsinstaller-com-7b6a7418 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/assembly-loading-via-cl-loadassembly-ps1-c57872c7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-active-directory-enumeration-using-ad-module-proccreation-70bc5215 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-encoded-powershell-command-line-ca2092a1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-powershell-parameter-substring-36210e0d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-access-tool-ultraviewer-execution-88656cec 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-script-proxy-execution-via-cl-mutexverifiers-ps1-1e0e1a81 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/user-discovery-and-export-via-get-aduser-cmdlet-1114e048 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-encoded-and-obfuscated-reflection-assembly-load-function-call-9c0295ce 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-powershell-encoded-command-patterns-b9d9cc83 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-suspicious-windows-feature-enabled-proccreation-c740d4cf 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-cleanwipe-execution-f44800ac 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-fast-reverse-proxy-frp-execution-32410e29 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-firewall-disabled-via-powershell-12f6b752 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-advanced-ip-scanner-execution-bef37fa2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-netcat-suspicious-execution-e31033fc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-powercfg-execution-to-change-lock-screen-timeout-f8d6a15e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aadinternals-powershell-cmdlets-execution-proccesscreation-c86500e9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/audio-capture-via-powershell-932fb0d8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-nircmd-execution-4e2ed651 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-base64-encoded-reflective-assembly-load-62b7ccc9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/ping-hex-ip-1a0d4aba 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-amsi-bypass-using-null-bits-92a974db 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-adfind-suspicious-execution-9a132afa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-chisel-tunneling-tool-execution-8b0e12da 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-execution-of-pdqdeployrunner-12b8e9f5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-plink-port-forwarding-48a61b29 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/onenote-exe-execution-of-malicious-embedded-scripts-84b1706c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/outlook-enableunsafeclientmailrules-setting-enabled-55f0a3a1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-outlook-child-process-208748f7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-base64-encoded-frombase64string-cmdlet-fdb62a13 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-powershell-download-and-execute-pattern-e6c54d94 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-binary-in-user-directory-spawned-from-office-application-aa3a6f94 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-nsudo-execution-771d1eb5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-mpclient-dll-sideloading-via-offlinescannershell-exe-execution-02b18447 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/perl-inline-command-execution-f426547a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-access-tool-netsupport-execution-758ff488 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-execution-from-outlook-temporary-folder-a018fdc3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-rdp-tunneling-via-plink-f38ce0b9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-microsoft-office-child-process-438025f9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/stop-windows-service-via-powershell-stop-service-c49c5062 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pdq-deploy-remote-adminstartion-tool-execution-d679950c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-access-tool-anydesk-execution-with-known-revoked-signing-certificate-41f407b5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-token-obfuscation-process-creation-deb9b646 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-amsi-bypass-via-net-reflection-30edb182 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pktmon-exe-execution-f956c7c1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-arbitrary-dll-load-using-winword-f7375e28 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/php-inline-command-execution-d81871ef 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-microsoft-onenote-child-process-c27515df 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-configuration-and-service-reconnaissance-via-reg-exe-970007b7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/reg-add-suspicious-paths-b7e2a8d4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-adfind-exe-execution-514e7e3e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-obfuscated-powershell-code-8d01b53f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-base64-encoded-iex-cmdlet-88f680b8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-office-document-executed-from-trusted-location-f99abdf0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/renamed-msdt-exe-execution-bd1c6866 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dumping-of-sensitive-hives-via-reg-exe-fd877b94 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-remote-child-process-from-outlook-e212d415 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-access-tool-screenconnect-potential-suspicious-remote-command-execution-7b582f1a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-access-tool-screenconnect-installation-execution-75bfe6e6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-provlaunch-exe-child-process-f9999590 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/exchange-powershell-snap-ins-usage-25676e10 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-credential-dumping-attempt-using-new-networkprovider-cli-baef1ec6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hiding-user-account-via-specialaccounts-registry-key-commandline-9ec9fb1b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/enumeration-for-3rd-party-creds-from-cli-87a476dc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-powershell-execution-policy-tampering-proccreation-cf2e938e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-regsvr32-execution-from-remote-share-88a87a10 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-via-logon-scripts-commandline-21d856f9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/imports-registry-key-from-a-file-73bba97f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-provlaunch-exe-binary-proxy-execution-abuse-7f5d1c9a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/deletion-of-volume-shadow-copies-via-wmi-with-powershell-21ff4ca9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dll-execution-via-register-cimprovider-exe-a2910908 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-access-tool-anydesk-execution-b52e84a3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/exports-registry-key-to-a-file-f0e53e89 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/gzip-archive-decode-via-powershell-98767d61 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/service-startuptype-change-via-powershell-set-service-62b20d44 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/registry-modification-via-regini-exe-5f60740a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/change-powershell-policies-to-an-insecure-level-87e3c4e8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-access-tool-renamed-meshagent-execution-windows-b471f462 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-base64-encoded-mppreference-cmdlet-c6fb44c6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-defense-evasion-via-binary-rename-36480ae1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/arbitrary-file-download-via-msedge-proxy-exe-e84d89c4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-mshta-child-process-03cc0c25 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-defender-definition-files-removed-9719a8aa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-msiexec-execute-arbitrary-dll-6f4191bb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/use-of-visualuiaverifynative-exe-b30a8bc5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-credential-dumping-via-lsass-process-clone-c8da0dfd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/mmc-spawning-windows-shell-05a2ab7e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/password-provided-in-command-line-of-net-exe-d4498716 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-msdt-parent-process-7a74da6b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remotely-hosted-hta-file-executed-via-mshta-exe-b98d0db6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-msbuild-execution-by-uncommon-parent-process-33be4333 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/use-of-vsiisexelauncher-exe-18749301 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-mftrace-exe-abuse-3d48c9d3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-process-injection-via-msra-exe-744a188b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/lsa-ppl-protection-setting-modification-via-commandline-8c0eca51 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-mpclient-dll-sideloading-via-defender-binaries-7002aa10 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-arbitrary-command-execution-using-msdt-exe-258fc8ce 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/codepage-modification-via-mode-com-to-russian-language-12fbff88 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dllunregisterserver-function-call-via-msiexec-exe-84f52741 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/use-of-wfc-exe-49be8799 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/syncappvpublishingserver-vbs-execute-arbitrary-powershell-code-36475a7d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/using-settingsynchost-exe-as-lolbin-b2ddd389 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/syncappvpublishingserver-execute-arbitrary-powershell-code-fbd7c32d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/utilityfunctions-ps1-proxy-dll-0403d67d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-grpconv-execution-f14e169e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dll-execution-via-rasautou-exe-cd3d1298 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/use-of-ttdinject-exe-b27077d6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/execute-code-with-pester-bat-59e938ff 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/indirect-command-execution-by-program-compatibility-wizard-b97cd4b1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-register-app-vbs-lolscript-abuse-28c8f68b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/code-execution-via-pcwutl-dll-9386d78a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dumping-process-via-sqldumper-exe-23ceaf5c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/visual-basic-command-line-compiler-usage-7b10f171 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-runscripthelper-exe-eca49c87 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/use-of-scriptrunner-exe-64760eef 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-diantz-alternate-data-stream-execution-6b369ced 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/execute-pcwrun-exe-to-leverage-follina-6004abd0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/use-of-remote-exe-4eddc365 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/execute-code-with-pester-bat-as-parent-18988e1b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/lolbin-unregmp2-exe-use-as-proxy-727454c0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/mmc-executing-files-with-reversed-extensions-using-rtlo-abuse-9cfe4b27 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-default-domain-gpo-modification-via-gpme-dcff7e85 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/register-app-vbs-proxy-execution-1c8774a0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/gpscript-execution-1e59c230 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-driver-install-by-pnputil-exe-a2ea3ae7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/lolbin-runexehelper-use-as-proxy-cd71385d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-javascript-execution-via-mshta-exe-67f113fa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/devtoolslauncher-exe-executes-specified-binary-cc268ac1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-msiexec-masquerading-e22a6eb2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/time-travel-debugging-utility-usage-0b4ae027 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pubprn-vbs-proxy-execution-1fb76ab8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/ie4uinit-lolbin-use-from-invalid-path-d3bf399f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-rubeus-execution-7ec2c172 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-purplesharp-execution-ff23ffbc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-default-powersploit-empire-scheduled-task-creation-56c217c3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-localpotato-execution-6bd75993 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-koadic-execution-5cddf373 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-via-use-clip-e1561947 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-obfuscated-iex-invocation-4bf943c6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-potential-impacket-lateral-movement-activity-10c14723 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-hydra-password-bruteforce-execution-aaafa146 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-hollowreaper-execution-85d23b42 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-execution-imphash-24e3e58a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-edr-freeze-execution-c598cc0c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-lazagne-execution-c2b86e67 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-jlaive-in-memory-assembly-execution-0a99eb3e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-compress-obfuscation-7eedcc9d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-inveigh-execution-b99a1518 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-handlekatz-lsass-dumper-execution-ca621ba5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-empire-powershell-uac-bypass-3268b746 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-doppelanger-lsass-dumper-execution-d474c8fe 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-covenant-powershell-launcher-c260b6db 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-remotekrbrelay-execution-a7664b14 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-via-use-mshta-ac20ae82 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-stdin-launcher-6c96fc76 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-impacket-tools-execution-4627c6ae 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-htran-natbypass-execution-f5e3b62f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-execution-pe-metadata-37c1333a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-edrsilencer-execution-eb2d07d4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-createminidump-execution-36d88494 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-cobaltstrike-process-patterns-f35c5d71 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-via-stdin-9c14c9fa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-clip-launcher-b222df08 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-hashcat-password-cracker-execution-39b31e81 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-winrm-access-via-evil-winrm-a197e378 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-dumpert-process-dumper-execution-2704ab9e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-crackmapexec-process-patterns-f26307d8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-crackmapexec-execution-42a993dd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/operator-bloopers-cobalt-strike-modules-4f154fb6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-impersonate-execution-cf0c254b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-gmer-rootkit-detector-and-remover-execution-9082ff1f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-empire-powershell-launch-parameters-79f4ede3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-dinjector-powershell-cradle-execution-d78b5d61 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-coercedpotato-execution-e8d34729 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-certipy-execution-6938366d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-hh-exe-execution-e8a95b5e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-crackmapexec-powershell-obfuscation-6f8b3439 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-crackmapexec-execution-patterns-058f4380 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cobaltstrike-load-by-rundll32-ae9c6a7c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-f-secure-c3-load-by-rundll32-b18c9d4c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-chm-file-download-execution-via-hh-exe-f57c58b3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/arbitrary-binary-execution-using-gup-utility-d65aee4d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/file-decryption-using-gpg4win-037dcd71 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-arbitrary-command-execution-via-ftp-exe-06b401f4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-krbrelay-execution-e96253b8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/operator-bloopers-cobalt-strike-commands-647c7b9e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-adcspwn-execution-cd8c163e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-gup-usage-0a4f6091 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/file-encryption-decryption-via-gpg4win-from-suspicious-locations-e1e0b7d7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/github-self-hosted-runner-execution-5bac7a56 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-ntfs-symlink-behavior-modification-c0b2768a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/forfiles-exe-child-process-masquerading-f53714ec 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-certify-execution-762f2482 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/html-help-hh-exe-suspicious-child-process-52cad028 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/file-download-using-notepad-gup-utility-44143844 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/file-encryption-using-gpg4win-550bbb84 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/arbitrary-file-download-via-gfxdownloadwrapper-exe-eee00933 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/use-of-fsharp-interpreters-b96b2031 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/filter-driver-unloaded-via-fltmc-exe-4931188c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-bloodhound-sharphound-execution-f376c8a7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-child-process-of-notepad-updater-gup-exe-bb0e87ce 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/portable-gpg-exe-execution-77df53a5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-git-clone-aef9d1f1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/fsutil-drive-enumeration-63de06b9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sysmon-driver-unloaded-via-fltmc-exe-4d7cda18 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hh-exe-execution-68c8acb4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/gpresult-display-group-policy-information-e56d3073 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-googleupdate-child-process-84b1ecf9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/fsutil-suspicious-invocation-add64136 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/microsoft-iis-service-account-password-dumped-2d3cdeec 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sysmon-discovery-via-default-driver-altitude-using-findstr-exe-37db85d1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-var-launcher-obfuscation-e9f55347 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uncommon-filesystem-load-attempt-by-format-com-9fb6b26e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/finger-exe-execution-af491bca 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/response-file-execution-via-odbcconf-exe-5f03babb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-uacme-akagi-execution-d38d2fa4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uncommon-child-process-spawned-by-odbcconf-exe-8e3c7994 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-sysmoneop-execution-8a7e90c5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-dll-registered-via-odbcconf-exe-ba4cfc11 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/logged-on-user-password-change-via-ksetup-exe-c9783e20 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-excel-exe-dcom-lateral-movement-via-activatemicrosoftapp-551d9c1f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-var-launcher-27aec9c9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-kernel-debugger-execution-27ee9438 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/driver-dll-installation-via-odbcconf-exe-3f5491e2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-arbitrary-file-download-using-office-application-4ae3e30b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-dll-registered-via-odbcconf-exe-9f0a8bf3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-usage-of-active-directory-diagnostic-tool-ntdsutil-exe-a58353df 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-response-file-execution-via-odbcconf-exe-2d32dd6f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-driver-dll-installation-via-odbcconf-exe-cb0fe7c5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/network-reconnaissance-activity-e6313acd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/nltest-exe-execution-903076ff 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/firewall-configuration-discovery-via-netsh-exe-0e4164da 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/odbcconf-exe-suspicious-dll-location-6b65c28e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/nslookup-powershell-download-cradle-processcreation-1b3b01c7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-recon-activity-via-nltest-exe-5cc90652 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-network-trace-capture-started-via-netsh-exe-d3c3861d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/firewall-rule-update-via-netsh-exe-a70dcb37 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/firewall-disabled-via-netsh-exe-57c4bf16 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-user-created-via-net-exe-with-never-expire-option-b9f0e6f5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/notepad-password-files-discovery-3b4e950b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/harvesting-of-wifi-credentials-via-netsh-exe-42b1a5b8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/netsh-allow-group-policy-on-microsoft-defender-firewall-347906f3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/rdp-connection-allowed-via-netsh-exe-01aeb693 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-firewall-rule-added-via-netsh-exe-cd5cfd80 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-share-mount-via-net-exe-f117933c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/unmount-share-via-net-exe-cb7c4a03 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-mstsc-exe-execution-with-local-rdp-file-6e22722b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invocation-of-active-directory-diagnostic-tool-ntdsutil-exe-2afafd61 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/node-process-executions-df1f26d3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/rdp-port-forwarding-rule-added-via-netsh-exe-782d6f3e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-program-location-whitelisted-in-firewall-via-netsh-exe-a35f5a72 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/share-and-session-enumeration-using-net-exe-62510e69 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-internet-hosted-webdav-share-mount-via-net-exe-7e6237fe 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-group-and-account-reconnaissance-activity-using-net-exe-d95de845 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/mstsc-exe-execution-with-local-rdp-file-5fdce3ac 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-arbitrary-code-execution-via-node-exe-6640f31c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-port-forwarding-rule-added-via-netsh-exe-322ed9ec 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-via-netsh-helper-dll-56321594 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-manipulation-of-default-accounts-via-net-exe-5b768e71 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-admin-share-mount-via-net-exe-3abd6094 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-xsl-execution-via-msxsl-exe-75d0a94e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-remote-desktop-connection-initiated-via-mstsc-exe-954f0af7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-user-created-via-net-exe-cd219ff3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/system-network-connections-discovery-via-net-exe-1c67a717 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/start-windows-service-via-net-exe-2a072a96 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/mstsc-exe-execution-from-uncommon-parent-ff3b6b39 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-child-process-of-veeam-dabatase-d55b793d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sql-client-tools-powershell-session-detection-a746c9b8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-msix-package-support-framework-ai-stubs-execution-af5732ed 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/stop-windows-service-via-net-exe-88872991 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/msxsl-exe-execution-9e50a8b3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-mstsc-shadowing-activity-6ba5a05f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-child-process-of-sql-server-869b9ca7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/arbitrary-file-download-via-msohtmed-exe-459f2f98 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/msiexec-quiet-installation-79a87aa6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/mshta-execution-with-suspicious-file-extensions-cc7abbd0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/arbitrary-file-download-via-mspub-exe-3b3c7f55 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-msiexec-quiet-install-from-remote-location-8150732a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-mshta-exe-execution-patterns-e32f92d1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/wscript-shell-run-in-commandline-2c28c248 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-cabinet-file-execution-via-msdt-exe-dc4576d4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/msdt-execution-via-answer-file-9c8c7000 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-suspicious-mofcomp-execution-1dd05363 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/firewall-rule-deleted-via-netsh-exe-1a5fefe6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/detection-of-powershell-execution-via-sqlps-exe-0152550d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/msiexec-web-install-f7b5f842 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-msiexec-embedding-parent-4a2a2c3e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-lethalhta-technique-execution-ed5d72a6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/file-download-via-windows-defender-mpcmprun-exe-46123129 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/mmc-executing-files-with-reversed-extensions-using-rtlo-abuse-9cfe4b27 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/lsa-ppl-protection-setting-modification-via-commandline-8c0eca51 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/password-provided-in-command-line-of-net-exe-d4498716 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-msiexec-execute-arbitrary-dll-6f4191bb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-mshta-child-process-03cc0c25 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/arbitrary-file-download-via-msedge-proxy-exe-e84d89c4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-defender-definition-files-removed-9719a8aa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/mmc-spawning-windows-shell-05a2ab7e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-credential-dumping-via-lsass-process-clone-c8da0dfd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/use-of-visualuiaverifynative-exe-b30a8bc5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-process-injection-via-msra-exe-744a188b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remotely-hosted-hta-file-executed-via-mshta-exe-b98d0db6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-msdt-parent-process-7a74da6b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-msbuild-execution-by-uncommon-parent-process-33be4333 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/codepage-modification-via-mode-com-to-russian-language-12fbff88 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-mftrace-exe-abuse-3d48c9d3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/use-of-vsiisexelauncher-exe-18749301 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/time-travel-debugging-utility-usage-0b4ae027 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-msiexec-masquerading-e22a6eb2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-javascript-execution-via-mshta-exe-67f113fa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-arbitrary-command-execution-using-msdt-exe-258fc8ce 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-mpclient-dll-sideloading-via-defender-binaries-7002aa10 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/mmc20-lateral-movement-f1f3bf22 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-register-app-vbs-lolscript-abuse-28c8f68b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/utilityfunctions-ps1-proxy-dll-0403d67d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/syncappvpublishingserver-vbs-execute-arbitrary-powershell-code-36475a7d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dllunregisterserver-function-call-via-msiexec-exe-84f52741 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-default-domain-gpo-modification-via-gpme-dcff7e85 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/use-of-wfc-exe-49be8799 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/lolbin-unregmp2-exe-use-as-proxy-727454c0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/syncappvpublishingserver-execute-arbitrary-powershell-code-fbd7c32d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/using-settingsynchost-exe-as-lolbin-b2ddd389 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/use-of-remote-exe-4eddc365 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/execute-code-with-pester-bat-59e938ff 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/use-of-ttdinject-exe-b27077d6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-grpconv-execution-f14e169e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-runscripthelper-exe-eca49c87 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dll-execution-via-rasautou-exe-cd3d1298 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/code-execution-via-pcwutl-dll-9386d78a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/indirect-command-execution-by-program-compatibility-wizard-b97cd4b1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/mpiexec-lolbin-729ce0ea 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/gpscript-execution-1e59c230 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-diantz-alternate-data-stream-execution-6b369ced 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/visual-basic-command-line-compiler-usage-7b10f171 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dumping-process-via-sqldumper-exe-23ceaf5c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/use-of-scriptrunner-exe-64760eef 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/register-app-vbs-proxy-execution-1c8774a0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/execute-code-with-pester-bat-as-parent-18988e1b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/execute-pcwrun-exe-to-leverage-follina-6004abd0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/execute-files-with-msdeploy-exe-646bc99f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/ie4uinit-lolbin-use-from-invalid-path-d3bf399f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/devtoolslauncher-exe-executes-specified-binary-cc268ac1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-driver-install-by-pnputil-exe-a2ea3ae7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/lolbin-runexehelper-use-as-proxy-cd71385d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pubprn-vbs-proxy-execution-1fb76ab8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/use-of-pcalua-for-execution-0955e4e1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/mavinject-inject-dll-into-running-process-4f73421b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-reconnaissance-activity-via-gathernetworkinfo-vbs-575dce0c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/lolbas-data-exfiltration-by-datasvcutil-exe-e290b10b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-dll-injection-or-execution-using-tracker-exe-148431ce 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/use-of-the-sftp-exe-binary-as-a-lolbin-a85ffc3a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/replace-exe-usage-9292293b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/printbrm-zip-creation-of-extraction-cafeeba3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/openwith-exe-executes-specified-binary-cec8e918 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-manage-bde-wsf-abuse-to-proxy-execution-c363385c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-extrac32-alternate-data-stream-execution-4b13db67 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-extrac32-execution-aa8e035d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-windows-trace-etw-session-tamper-via-logman-exe-cd1f961e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/use-of-openconsole-814c95cc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/launch-vsdevshell-ps1-proxy-execution-45d3a03d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-diantz-download-and-compress-into-a-cab-file-185d7418 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/rebuild-performance-counter-values-via-lodctr-exe-cc9d3712 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/computer-password-change-via-ksetup-exe-de16d92c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/attempts-of-kerberos-coercion-via-dns-spn-spoofing-0ed99dda 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/kavremover-dropped-binary-lolbin-usage-d047726b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uncommon-link-exe-parent-process-6e968eb1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/import-ldap-data-interchange-format-file-via-ldifde-exe-6f535e01 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/active-directory-structure-export-via-ldifde-exe-4f7a6757 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-child-process-of-keyscrambler-exe-ca5583e9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/jscript-compiler-execution-52788a70 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-sysaidserver-child-60bfeac3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/shell-process-spawned-by-java-exe-dff1e1cc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-processes-spawned-by-java-exe-0d34ed8b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/java-running-with-remote-debugging-8f88e3f6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-child-process-of-manage-engine-servicedesk-cea2b7ea 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-shells-spawn-by-java-utility-keytool-90fb5e62 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-execution-of-installutil-without-log-d042284c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/file-download-via-installutil-exe-75edd216 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/c-il-code-compilation-via-ilasm-exe-850d55f9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/iis-native-code-module-command-line-installation-9465ddf4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-iis-module-registration-043c4b8b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/volumeshadowcopy-symlink-creation-via-mklink-40b19fa6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/file-and-subfolder-enumeration-via-dir-command-7c9340a9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-littlecorporal-generated-maldoc-injection-7bdde3bf 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-generic-process-access-d0d2f720 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/change-default-file-association-to-executable-via-assoc-ae6f14e6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-connection-to-remote-account-1883444f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cloudflared-portable-execution-fadb84f0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/console-codepage-lookup-via-chcp-7090adee 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-firewall-profile-disabled-488b44e7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/wmimplant-hack-tool-8028c2c3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-invoke-item-from-mount-diskimage-902cedee 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/usage-of-web-request-commands-and-cmdlets-scriptblock-1139d2e2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/user-discovery-and-export-via-get-aduser-cmdlet-powershell-c2993223 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/file-encoded-to-base64-via-certutil-exe-e62a9f0c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-root-certificate-installed-via-certutil-exe-d2125259 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/file-deletion-via-del-379fa130 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/change-user-agents-with-webrequest-d4488827 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-powershell-invocations-generic-ed965133 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cloudflared-tunnel-execution-9a019ffc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/process-access-via-trolleyexpress-exclusion-4c0aaedc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/syncappvpublishingserver-execution-to-bypass-powershell-restriction-dddfebae 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-suspicious-win32-pnpentity-b26647de 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-get-information-for-smb-share-95f0643a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/certificate-exported-via-certutil-exe-3ffd6f51 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-file-downloaded-from-direct-ip-via-certutil-exe-13e6fe51 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-dll-loaded-via-certoc-exe-84232095 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-binary-proxy-execution-via-cdb-exe-b5c7395f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cloudflared-quick-tunnel-execution-222129f7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-tcp-tunnel-via-powershell-script-bd33d2aa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/extracting-information-with-powershell-bd5971a7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-codepage-switch-via-chcp-c7942406 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-file-encoded-to-base64-via-certutil-exe-ea0cdc3e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/file-decoded-from-base64-hex-via-certutil-exe-cc9cbe82 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/file-download-from-ip-based-url-via-certoc-exe-b86f6dea 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/tor-client-browser-execution-62f7c9bf 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/chromium-browser-instance-executed-with-custom-extension-88d6e60c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/file-in-suspicious-location-encoded-to-base64-via-certutil-exe-82a6714f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-certreq-command-to-download-4480827a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-root-certificate-installed-via-certmgr-exe-ff992eac 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/file-download-from-browser-process-via-inline-url-94771a71 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/browser-execution-in-headless-mode-ef9dcfed 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/file-with-suspicious-extension-downloaded-via-bitsadmin-5b80a791 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-child-process-of-bginfo-exe-811f459f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-download-via-certutil-exe-19b08b1c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dll-loaded-via-certoc-exe-242301bc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-local-email-collection-2837e152 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-timestomp-c6438007 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/zip-a-folder-with-powershell-for-staging-in-temp-powershell-script-b7a3c9a3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-calculator-usage-737e618a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/chromium-browser-headless-execution-to-mockbin-like-site-1c526788 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/monitoring-for-persistence-via-bits-b9cbbc17 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/file-download-via-bitsadmin-d059842b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/boot-configuration-tampering-via-bcdedit-exe-1444443e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/replace-desktop-wallpaper-by-powershell-c5ac6a1e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-handlekatz-duplicating-lsass-handle-b1bd3a59 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-chromium-browser-instance-executed-with-custom-extension-27ba3207 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-defender-exclusions-added-powershell-c1344fa2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-data-stealing-via-chromium-headless-debugging-3e8207c5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/file-download-via-bitsadmin-to-a-suspicious-target-folder-2ddef153 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/data-export-from-mssql-table-via-bcp-exe-c615d676 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-powershell-obfuscation-using-alias-cmdlets-96cd126d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-gpo-discovery-with-get-gpo-eb2fd349 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-via-security-descriptors-scriptblock-2f77047c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-ransomware-or-unauthorized-mbr-tampering-via-bcdedit-exe-c9fbe8e9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-autorun-registry-modified-via-wmi-c80e66d8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/file-download-via-certoc-exe-70ad0861 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/browser-started-with-remote-debugging-b3d34dc5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/file-download-with-headless-browser-0e8cfe08 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-download-from-file-sharing-website-via-bitsadmin-8518ed3d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-directory-enumeration-162e69a7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-new-psdrive-to-admin-share-1c563233 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uncommon-child-process-of-bginfo-exe-aaf46cdc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/indirect-inline-command-execution-via-bash-exe-5edc2273 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/audit-policy-tampering-via-nt-resource-kit-auditpol-c6c56ada 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-download-from-direct-ip-via-bitsadmin-99c840f2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bitlockertogo-exe-execution-7f2376f9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/indirect-command-execution-from-script-file-via-bash-exe-2d22a514 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/audit-policy-tampering-via-auditpol-0a13e132 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-powershell-obfuscation-using-character-join-e8314f79 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-get-local-groups-information-powershell-fa6a5a45 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-powershell-invocations-specific-ae7fbf8e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/interactive-at-job-60fc936d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uncommon-child-process-of-appvlp-exe-9c7e131a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/deletion-of-volume-shadow-copies-via-wmi-with-powershell-ps-script-c1337eb8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/addinutil-exe-execution-from-uncommon-directory-6120ac2a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/wmic-unquoted-services-path-lookup-powershell-09658312 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-eventlog-autologger-session-registry-modification-via-commandline-d7b81144 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/veeam-backup-servers-credential-dumping-script-execution-976d6e6f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-credential-dumping-activity-via-lsass-5ef9853e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-ssl-connection-195626f3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/recon-information-for-export-with-powershell-a9723fcc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uncommon-assistive-technology-applications-execution-via-atbroker-exe-f24bcaea 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-arcsoc-exe-child-process-8e95e73e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-adplus-exe-abuse-2f869d59 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-dll-injection-via-acccheckconsole-0f6da907 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/function-call-from-undocumented-com-interface-editionupgrademanager-fb3722e4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/malicious-shellintel-powershell-commandlets-402e1e1d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-bitlocker-access-agent-update-utility-execution-9f38c1db 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/set-suspicious-files-as-system-files-using-attrib-exe-efec536f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-child-process-of-aspnetcompiler-9ccba514 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-agentexecutor-powershell-execution-c0b40568 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uncommon-child-process-of-addinutil-exe-b5746143 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-process-access-of-msmpeng-by-werfaultsecure-edr-freeze-387df17d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-mount-diskimage-29e1c216 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-io-filestream-70ad982f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-sensitive-file-discovery-7d416556 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-kerberos-ticket-request-via-powershell-script-scriptblock-a861d835 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-process-discovery-with-get-process-af4c87ce 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/change-powershell-policies-to-an-insecure-level-powershell-61d0475c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-powershell-download-powershell-script-403c2cc0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uncommon-process-access-rights-for-target-image-a24e5861 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-asp-net-compilation-via-aspnetcompiler-9f50fe98 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-amsi-related-registry-tampering-via-commandline-7dbbcac2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-script-change-permission-via-set-acl-psscript-cae80281 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uncommon-addinutil-exe-commandline-execution-4f2cd9b6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/7zip-compressing-dump-files-ec570e53 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-process-access-to-lsass-with-dbgcore-dbghelp-dlls-9f5c1d59 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/lsass-access-from-potentially-white-listed-processes-4be8b654 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/detected-windows-software-discovery-powershell-2650dd1a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remove-account-from-domain-admin-group-48a45d45 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-deleted-mounted-share-66a4d409 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-script-with-file-hostname-resolving-capabilities-fbc5e92f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-keylogger-activity-965e2db9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-get-process-lsass-in-scriptblock-84c174ab 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-execute-batch-script-b5522a23 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/lsass-memory-access-by-tool-with-dump-keyword-in-name-9bd012ee 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-store-file-in-alternate-data-stream-a699b30e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-set-acl-on-windows-folder-psscript-3bf1d859 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hiding-files-with-attrib-exe-4281cb20 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aspnetcompiler-execution-a01b8329 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-hyper-v-cmdlets-42d36aa1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/lsass-memory-dump-via-comsvcs-dll-a49fa4d5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/agentexecutor-powershell-execution-7efd2c8d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-addinutil-exe-commandline-execution-631b22a4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uac-bypass-using-wow64-logger-dll-hijack-4f6c43e2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-powershell-get-current-user-4096a49c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/troubleshooting-pack-cmdlet-execution-03409c93 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/psasyncshell-asynchronous-tcp-reverse-shell-afd3df04 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/credential-dumping-activity-by-python-based-tool-f8be3e82 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-sysmonente-execution-d29ada0f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-x509enrollment-ps-script-504d63cb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-eventlog-clear-0f017df3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/compress-data-and-lock-with-password-for-exfiltration-with-7-zip-9fbf5927 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-svchost-process-access-166e9c50 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/insensitive-subfolder-search-via-findstr-exe-04936b66 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-invoke-mimikatz-powershell-script-189e3b02 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/ad-groups-or-users-enumeration-using-powershell-scriptblock-88f0884b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-shellcode-16b37b70 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-script-with-file-upload-capabilities-d2e3f2f6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-suspicious-powershell-keywords-1f49f2ab 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/credential-dumping-attempt-via-svchost-174afcfa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-direct-syscall-of-ntopenprocess-3f3f3506 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/findstr-launching-lnk-file-33339be3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/credential-dumping-attempt-via-werfault-e5b33f7d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-remote-session-creation-a0edd39f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-lsass-access-via-malseclogon-472159c5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-gettypefromclsid-shellexecute-8bc063d5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/lsass-process-reconnaissance-via-findstr-exe-fe63010f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/file-explorer-folder-opened-using-explorer-folder-shortcut-via-shell-c3d76afc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/esentutl-steals-browser-information-6a69f62d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-dumpminitool-execution-eb1c4225 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-password-spraying-attempt-using-dsacls-exe-bac9fb54 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/permission-misconfiguration-reconnaissance-via-findstr-exe-47e4bab7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-web-access-installation-psscript-5f9c7f1a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/explorer-nouaccheck-flag-534f2ef7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/security-event-logging-disabled-via-minint-registry-key-process-1a4bd6af 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/copying-sensitive-files-with-credential-data-e7be6119 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-capture-session-launched-via-dxcap-exe-60f16a96 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/ntfs-alternate-data-stream-8c521530 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-xml-execute-command-6c6c6282 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/domain-trust-discovery-via-dsquery-3bad990e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/winlogon-helper-dll-851c506b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/process-memory-dump-via-dotnet-dump-53d8d3e1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-psattack-b7ec41a4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-call-to-win32-nteventlogfile-class-psscript-e2812b49 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-via-powershell-user-profile-using-add-content-05b3e303 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/recon-command-output-piped-to-findstr-exe-ccb5742c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-file-download-via-findstr-exe-587254ee 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-event-viewer-child-process-be344333 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/esentutl-gather-credentials-7df1713a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-kernel-dump-using-dtrace-7124aebe 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-recon-activity-using-driverquery-exe-9fc3072c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-dns-serverlevelplugindll-installed-via-dnscmd-exe-f63b56ee 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/security-tools-keyword-lookup-via-findstr-exe-4fe074b4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-unconstrained-delegation-discovery-via-get-adcomputer-scriptblock-cdfa73b6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/findstr-gpp-passwords-91a2c315 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-cabinet-file-expansion-9f107a84 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-windows-defender-av-bypass-via-dump64-exe-rename-129966c9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/root-certificate-installed-powershell-42821614 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/driverquery-exe-execution-a20def93 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-application-whitelisting-bypass-via-dnx-exe-81ebd28b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-discovery-activity-via-dnscmd-exe-b6457d63 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/explorer-process-tree-break-949f1ffb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dumpminitool-execution-dee0a7a3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-credential-prompt-ca8b77a9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-packet-capture-activity-via-start-neteventsession-scriptblock-da34e323 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-over-permissive-permissions-granted-using-dsacls-exe-01c42d3c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/arbitrary-dll-or-csproj-code-execution-via-dotnet-exe-d80d5c81 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-web-access-feature-enabled-via-dism-7e8f2d3b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dirlister-execution-b4dc61f5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/devcon-execution-disabling-vmware-vmci-device-85f520e7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/binary-proxy-execution-via-dotnet-trace-exe-9257c05b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dll-sideloading-by-vmware-xfer-utility-ebea773c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-child-process-of-diskshadow-exe-9f546b25 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-dll-sideloading-via-deviceenroller-exe-e173ad47 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-defender-context-menu-removed-b9e8c7d6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-curl-exe-download-e218595b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dns-exfiltration-and-tunneling-tools-execution-98a96a5a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dllhost-exe-execution-anomaly-e7888eb1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/diskshadow-script-mode-uncommon-script-extension-execution-1dde5376 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/arbitrary-msi-download-via-devinit-exe-90d50722 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-file-download-via-desktopimgdownldr-utility-214641c2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-customshellhost-execution-84b14121 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-file-download-from-file-sharing-domain-via-curl-exe-56454143 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dism-remove-online-package-43e32da2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/system-information-discovery-via-registry-queries-0022869c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/devicecredentialdeployment-execution-b8b1b304 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-defender-threat-severity-default-action-set-to-allow-or-noaction-1e8a9b4d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/local-file-read-using-curl-exe-aa6f6ea6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/file-download-from-ip-url-via-curl-exe-9cc85849 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/tamper-windows-defender-remove-mppreference-scriptblocklogging-ae2bdd58 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-csi-exe-usage-40b95d31 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/diskshadow-script-mode-execution-from-potential-suspicious-location-fa1a7e52 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-grantedaccess-flags-on-lsass-a18dd26b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-child-process-of-clickonce-application-67bc0e75 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-desktopimgdownldr-command-bb58aa4a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/manageengine-endpoint-central-dctask64-exe-potential-abuse-6345b048 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/insecure-transfer-via-curl-exe-cb9cc1d1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-remotefxvgpudisablement-exe-abuse-powershell-scriptblock-cacef8fc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-cookies-session-hijacking-5a6e1e16 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dynamic-net-compilation-via-csc-exe-dcaa3f04 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-cobaltstrike-bof-injection-pattern-09706624 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uncommon-child-process-of-defaultpack-exe-b2309017 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/insecure-proxy-doh-transfer-via-curl-exe-2c1486f5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/curl-web-request-with-potential-custom-user-agent-85de1f22 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/csc-exe-execution-form-potentially-suspicious-parent-b730a276 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-lsass-process-access-through-windows-remote-management-aa35a627 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/control-panel-items-0ba863e6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-high-integritylevel-conhost-legacy-option-3037d961 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-arbitrary-file-download-via-cmdl32-exe-f37aba28 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/unusual-child-process-of-dns-exe-a4e3d776 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-file-download-from-ip-via-curl-exe-5cb299fc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cmstp-execution-process-access-3b4b232a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-use-of-csharp-interactive-console-a9e416a8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/createdump-process-dump-515c8be5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uncommon-child-process-of-conhost-exe-7dc2dedd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/openedr-spawning-command-shell-7f3a9c2d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/unusual-parent-process-for-cmd-exe-4b991083 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/copy-from-volumeshadowcopy-via-cmd-exe-c73124a7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/active-directory-structure-export-via-csvde-exe-e5d36acd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-wmi-persistence-9e07f6e7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-wmi-win32-product-install-msi-91109523 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-credential-guard-registry-tampering-via-commandline-c17d47b7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-child-processes-spawned-by-conhost-dfa03a09 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/arbitrary-file-download-via-configsecuritypolicy-exe-1f0f6176 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-generic-credentials-added-via-cmdkey-exe-b1ec66c6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/read-contents-from-stdin-via-cmd-exe-241e802a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/abuse-of-service-permissions-to-hide-services-via-set-service-ps-953945c5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/tamper-windows-defender-scriptblocklogging-14c71865 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-powershell-windowstyle-option-313fbb0a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-start-process-passthru-0718cd72 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-winapi-calls-via-powershell-scripts-03d83090 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/registry-modification-attempt-via-vbscript-powershell-2a0a169d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-ping-copy-command-combination-ded2b07a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-dmsa-service-account-created-in-specific-ous-0ea8db81 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/testing-usage-of-uncommonly-used-port-adf876b3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powerview-powershell-cmdlets-scriptblock-dcd74b95 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/conhost-exe-commandline-path-traversal-ee5e119b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cmstp-execution-process-creation-7d4cdc5a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-download-upload-activity-using-type-command-aa0b3a82 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/directory-removal-via-rmdir-41ca393d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/ntdllpipe-like-activity-execution-bbc865e4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cmd-launched-with-hidden-start-flags-to-suspicious-targets-5a6b7c8d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/conhost-spawned-by-uncommon-parent-process-cbb9e3d1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/code-executed-via-office-add-in-xll-file-36fbec91 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-executed-from-headless-conhost-process-056c7317 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-reconnaissance-for-cached-credentials-via-cmdkey-exe-07f8bdc2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sticky-key-like-backdoor-execution-2fdefcb3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-ping-del-command-combination-54786ddc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-file-execution-from-internet-hosted-webdav-share-f0507c0f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-dosfuscation-activity-a77c1610 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/persistence-via-sticky-key-backdoor-1070db9a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/password-policy-discovery-with-get-addefaultdomainpasswordpolicy-bbb9495b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/copy-dmp-dump-files-from-remote-share-via-cmd-exe-044ba588 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-cmd-shell-output-redirect-8e0bb260 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cmd-exe-missing-space-characters-execution-anomaly-a16980c2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/command-line-execution-with-suspicious-url-and-appdata-strings-1ac8666b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/curl-download-and-execute-combination-21dd6d38 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cloudflared-tunnel-connections-cleanup-7050bba1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/deleted-data-overwritten-via-cipher-exe-4b046706 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-write-eventlog-usage-35f41cd7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-commandline-path-traversal-via-cmd-exe-087790e3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-privilege-escalation-using-symlink-between-osk-and-cmd-e9b61244 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/greedy-file-deletion-using-del-204b17ae 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/change-default-file-association-via-assoc-3d3aa6cd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/data-copied-to-clipboard-via-clip-exe-ddeff553 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-ntlm-coercion-via-certutil-exe-6c6d9280 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-file-downloaded-from-file-sharing-website-via-certutil-exe-42a5f1e7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-unblock-file-5947497f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-service-dacl-modification-via-set-service-cmdlet-ps-22d80745 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/import-powershell-modules-from-suspicious-directories-21f9162c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-volume-shadow-copy-vssapi-dll-load-37774c23 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-silenttrinity-stager-dll-load-75c505b1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-webshell-creation-on-static-website-39f1f9f2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uefi-persistence-via-wpbbin-filecreation-e94b9ddc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dll-loaded-from-suspicious-location-via-cmspt-exe-75e508f7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-unsigned-dbghelp-dbgcore-dll-loaded-bdc64095 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/load-of-rstrtmgr-dll-by-a-suspicious-process-b48492dc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-core-dll-loaded-by-non-powershell-process-092bc4b9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uac-bypass-using-windows-media-player-file-68578b43 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/vhd-image-download-via-browser-8468111a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/renamed-vscode-code-tunnel-execution-file-indicator-d102b8f5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/wmiexec-default-output-file-8d5aca11 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/wmiprvse-wbemcomn-dll-hijack-file-614a7e17 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-appended-extension-e3f673b3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/creation-of-werfault-exe-wer-dll-in-unusual-folder-28a452f3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/awl-bypass-with-winrm-vbs-and-malicious-wsmpty-xsl-wsmtxt-xsl-file-d353dac0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/writing-local-admin-share-4aafb0fa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/amsi-dll-loaded-via-lolbin-process-6ec86d9e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pcre-net-package-image-load-84b0a8f3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/load-of-rstrtmgr-dll-by-an-uncommon-process-3669afd2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/time-travel-debugging-utility-usage-image-e76c8240 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/visual-studio-code-tunnel-remote-file-creation-56e05d41 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/winrar-creating-files-in-startup-locations-74a2b37d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/wmi-persistence-script-event-consumer-file-write-33f41cdd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-self-extraction-directive-file-created-ab90dab8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-azure-browser-sso-abuse-50f852e6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/diagnostic-library-sdiageng-dll-loaded-by-msdt-exe-ec8c4047 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/unsigned-node-file-loaded-e5f5c693 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/clfs-sys-loaded-by-process-located-in-a-potential-suspicious-location-fb4e2211 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/credui-dll-loaded-by-uncommon-process-9ae01559 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-sharpevtmute-dll-load-49329257 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/clr-dll-loaded-via-office-applications-d13c43f0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-antivirus-software-dll-sideloading-552b6b65 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-ccleanerreactivator-dll-sideloading-3735d5ac 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/system-control-panel-item-loaded-from-uncommon-location-2b140a5c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-edputil-dll-sideloading-e4903324 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-renamed-comsvcs-dll-loaded-by-rundll32-8cde342c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-volume-shadow-copy-vsstrace-dll-load-48bfd177 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dotnet-assembly-dll-loaded-via-office-application-ff0f2b05 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-core-dll-loaded-via-office-application-bb2ba6fb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-dll-load-via-rundll32-exe-f40017b3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/wmi-activescripteventconsumers-activity-via-scrcons-exe-dll-load-b439f47d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aruba-network-service-potential-dll-sideloading-90ae0469 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-dll-sideloading-via-classicexplorer32-dll-caa02837 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-data-exfiltration-via-audio-file-e4f93c99 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-volume-shadow-copy-vss-ps-dll-load-333cdbe8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-dcom-internetexplorer-application-dll-hijack-image-load-f354eba5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/microsoft-excel-add-in-loaded-from-uncommon-location-af4c4609 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/abusable-dll-potential-sideloading-from-suspicious-location-799a5f48 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-avkkid-dll-sideloading-952ed57c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-dll-sideloading-via-comctl32-dll-6360757a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-dll-sideloading-of-dbgmodel-dll-fef394cd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-dll-sideloading-of-libcurl-dll-via-gup-exe-e49b5745 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/unsigned-image-loaded-into-lsass-process-857c8db3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/microsoft-vba-for-outlook-addin-loaded-via-outlook-9a0b8719 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/vba-dll-loaded-via-office-application-e6ce8457 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-appverifui-dll-sideloading-ee6cea48 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-chrome-frame-helper-dll-sideloading-72ca7c75 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-dll-sideloading-of-dbgcore-dll-9ca2bf31 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-system-dll-sideloading-from-non-system-locations-4fc0deee 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-dll-sideloading-via-jsschhlp-68654bf0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/gac-dll-loaded-via-office-applications-90217a70 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-7za-dll-sideloading-4f6edb78 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-ccleanerdu-dll-sideloading-1fbc0671 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-dll-sideloading-using-coregen-exe-0fa66f66 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-eacore-dll-sideloading-edd3ddc3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-iviewers-dll-sideloading-4c21b805 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-mfdetours-dll-sideloading-d2605a99 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-dll-sideloading-of-non-existent-dlls-from-system-folders-6b98b92b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-dll-sideloading-of-dbghelp-dll-6414b5cd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-goopdate-dll-sideloading-b6188d2f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-dll-sideloading-of-keyscramblerie-dll-via-keyscrambler-exe-d2451be2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-dll-sideloading-of-mpsvc-dll-5ba243e5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-rjvplatform-dll-sideloading-from-non-default-location-0e0bc253 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-solidpdfcreator-dll-sideloading-a2edbce1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-vivaldi-elf-dll-sideloading-2092cacb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-waveedit-dll-sideloading-71b31e99 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-jli-dll-side-loading-7a3b6d1f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-rcdll-dll-sideloading-6e78b74f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-shelldispatch-dll-sideloading-844f8eb2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/vmguestlib-dll-sideload-70e8e9b4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-wazuh-security-platform-dll-sideloading-db77ce78 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dll-load-by-system-process-from-suspicious-locations-9e9a9002 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/mmc-loading-script-engines-dlls-a9c73e8b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/wmiprvse-wbemcomn-dll-hijack-7707a579 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-libvlc-dll-sideloading-bf9808c4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/unsigned-mfdetours-dll-sideloading-948a0953 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-dll-sideloading-of-mscorsvc-dll-cdb15e19 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/microsoft-office-dll-sideload-829a3bdf 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-roboform-dll-sideloading-f64c9b2d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/third-party-software-dll-sideloading-f9df325d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/fax-service-dll-search-order-hijack-828af599 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/vmmap-unsigned-dbghelp-dll-potential-sideloading-273a8dd8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-python-dll-sideloading-d36f7c12 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dll-sideloading-of-shellchromeapi-dll-ee4c5d06 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-vcruntime140-dll-sideloading-d7a63acb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-dll-sideloading-via-vmware-xfer-9313dc13 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/baaupdate-exe-suspicious-dll-load-6e8fe0a8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/unsigned-dll-loaded-by-windows-utility-b5de0c9a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-rjvplatform-dll-sideloading-from-default-location-259dda31 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-smadhook-dll-sideloading-24b6cf51 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/vmmap-signed-dbghelp-dll-potential-sideloading-98ffaed4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-mpclient-dll-sideloading-418dc89a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/python-image-load-by-non-python-process-cbb56d62 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-loading-of-dbgcore-dbghelp-dlls-from-uncommon-location-416bc4a2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-wsman-provider-image-loads-ad1f4bb9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-wwlib-dll-sideloading-e2e01011 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dotnet-clr-dll-loaded-by-scripting-applications-4508a70e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/trusted-path-bypass-via-windows-directory-spoofing-0cbe38c0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/network-connection-initiated-by-addinutil-exe-5205613d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/network-connection-initiated-to-azurewebsites-net-by-non-browser-process-5c80b618 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/network-connection-initiated-to-devtunnels-domain-9501f8e6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/network-connection-initiated-to-mega-nz-fdeebdf0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/unsigned-module-loaded-by-clickonce-application-060d5ad4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-unsigned-thor-scanner-execution-ea5c131b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uac-bypass-with-fake-dll-a5ea83a7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/wmic-loading-scripting-libraries-06ce37c2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uncommon-network-connection-initiated-by-certutil-exe-0dba975d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/network-connection-initiated-to-cloudflared-tunnels-domains-7cd1dcdc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-network-connection-to-ip-lookup-service-apis-edf3485d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uac-bypass-using-iscsicpl-imageload-9ed5959a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/wmi-persistence-command-line-event-consumer-05936ce2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uncommon-connection-to-active-directory-web-services-b3ad3c0f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/network-connection-initiated-to-btunnels-domains-9e02c8ec 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-dropbox-api-usage-25eabf56 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/process-initiated-network-connection-to-ngrok-domain-18249279 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-network-connection-to-notion-api-7e9cf7b6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/outbound-network-connection-initiated-by-cmstp-exe-efafe0bf 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/network-communication-with-crypto-mining-pool-fa5b1358 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-non-browser-network-communication-with-google-api-7e9cf7b6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-non-browser-network-communication-with-telegram-api-c3dbbc9f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/network-connection-initiated-via-notepad-exe-e81528db 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/office-application-initiated-network-connection-over-uncommon-ports-3b5ba899 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-access-tool-anydesk-incoming-connection-d58ba5c6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/outbound-network-connection-initiated-by-microsoft-dialer-37e4024a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-connection-initiated-to-potential-dead-drop-resolver-domain-297ae038 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/communication-to-localtonet-tunneling-service-initiated-3ab65069 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/network-connection-initiated-to-visual-studio-code-tunnels-domain-4b657234 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/office-application-initiated-network-connection-to-non-local-ip-75e33ce3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/python-initiated-connection-bef0bc5a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/communication-to-ngrok-tunneling-service-initiated-1d08ac94 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/network-communication-initiated-to-portmap-io-domain-07837ab9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/network-connection-initiated-by-imewdbld-exe-8d7e392e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/network-connection-initiated-by-regsvr32-exe-c7e91a02 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/network-communication-initiated-to-file-sharing-domains-from-process-located-in--e0f8ab85 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/microsoft-sync-center-suspicious-network-connections-9f2cc74d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-wuauclt-network-connection-c649a6c7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/network-connection-initiated-by-eqnedt32-exe-a66bc059 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/outbound-rdp-connections-over-non-standard-tools-ed74fe75 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/rdp-to-http-or-https-target-ports-b1e5da3b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/silenttrinity-stager-msbuild-activity-50e54b8d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/communication-to-uncommon-destination-ports-6d8c3d20 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/outbound-network-connection-to-public-ip-via-winlogon-7610a4ea 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/local-network-connection-initiated-by-script-interpreter-08249dc0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cobaltstrike-named-pipe-pattern-regex-0e7163d4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/network-connection-initiated-via-finger-exe-2fdaf50b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/regasm-exe-initiating-network-connection-to-public-ip-0531e43a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-network-connection-binary-no-commandline-20384606 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uncommon-outbound-kerberos-connection-e54979bd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/outbound-network-connection-initiated-by-script-interpreter-992a6cae 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cobaltstrike-named-pipe-patterns-85adeb13 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-koh-default-named-pipe-0adc67e0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-remcom-default-named-pipe-d36f87ea 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/rdp-over-reverse-ssh-tunnel-5f699bc5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/rundll32-internet-connection-cdc8da7d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-malware-callback-communication-4b89abaa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-remote-powershell-session-initiated-c539afac 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-wordpad-outbound-connections-786cdae8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cobaltstrike-named-pipe-d5601f8c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-efspotato-named-pipe-creation-637f689e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-csexec-default-named-pipe-f318b911 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/network-connection-initiated-from-process-located-in-potentially-suspicious-or-u-7b434893 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-outbound-smtp-connections-9976fa64 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/adfs-database-named-pipe-connection-by-uncommon-tool-1ea13e8c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-diagtrackeop-default-named-pipe-1f7025a6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-powershell-instance-created-ac7102b4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/malicious-named-pipe-created-fe3ac066 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/nslookup-powershell-download-cradle-999bff6d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-coercedpotato-named-pipe-creation-4d0083b3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/alternate-powershell-hosts-pipe-58cb02d5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/wmi-event-consumer-created-named-pipe-493fb4ab 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-called-from-an-executable-version-mismatch-c70e019b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/use-get-nettcpconnection-b366adb4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/alternate-powershell-hosts-powershell-module-64e8e417 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-get-addbaccount-usage-b140afd9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-stdin-launcher-powershell-module-9ac8b09b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-via-use-clip-powershell-module-ebdf49d8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-credential-dumping-tools-named-pipe-created-961d0ba2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-paexec-default-named-pipe-f6451de4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-downgrade-attack-powershell-6331d09b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-remotefxvgpudisablement-exe-abuse-f65e22f9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-non-powershell-wsman-com-provider-df9a0e0e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-decompress-commands-1ddc1472 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-clip-launcher-powershell-module-a136cde0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/psexec-tool-execution-from-suspicious-locations-pipename-41504465 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/delete-volume-shadow-copies-via-wmi-with-powershell-87df9ee1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-powershell-session-ps-classic-60167e5c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/tamper-windows-defender-psclassic-ec19ebab 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/clear-powershell-history-powershell-module-f99276ad 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-evil-winrm-execution-powershell-module-9fe55ea2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-compress-obfuscation-powershell-module-7034cbbb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-via-use-rundll32-powershell-module-88a22f69 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-download-via-net-webclient-powershell-classic-3236fcd0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/renamed-powershell-under-powershell-channel-30a8cb77 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-active-directory-enumeration-using-ad-module-psmodule-74176142 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/malicious-powershell-scripts-poshmodule-41025fd7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-obfuscated-iex-invocation-powershell-module-2f211361 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-via-stdin-powershell-module-c72aca44 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/malicious-powershell-commandlets-poshmodule-7d0d0329 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/netcat-the-powershell-version-c5b20776 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/zip-a-folder-with-powershell-for-staging-in-temp-powershell-71ff406e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bad-opsec-powershell-code-artifacts-8d31a8ce 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-get-clipboard-4cbd4f12 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-var-launcher-powershell-module-6bfb8fa7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-via-use-mshta-powershell-module-07ad2ea8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-powershell-download-poshmodule-de41232e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/clear-powershell-history-powershell-26b692dc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-rundll-launcher-powershell-module-a23791fe 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-var-launcher-obfuscation-powershell-module-f3c89218 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-powershell-session-ps-module-96b9f619 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-powershell-invocations-generic-powershell-module-bbb80e91 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-get-local-groups-information-cef24b90 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aadinternals-powershell-cmdlets-execution-psscript-91e69562 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-remotefxvgpudisablement-exe-abuse-powershell-module-38a7625e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-computer-machine-password-by-powershell-e3818659 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/access-to-browser-login-data-fc028194 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/ad-groups-or-users-enumeration-using-powershell-poshmodule-815bfc17 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-get-information-for-smb-share-powershell-module-6942bd25 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-active-directory-enumeration-using-ad-module-psscript-9e620995 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/use-get-nettcpconnection-powershell-module-aff815cc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-powershell-invocations-specific-powershell-module-8ff28fdd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/syncappvpublishingserver-bypass-powershell-restriction-ps-module-fe5ce7eb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/add-windows-capability-via-powershell-script-155c7fd5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/zip-a-folder-with-powershell-for-staging-in-temp-powershell-module-daf7eb81 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-add-name-resolution-policy-table-rule-4368354e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-adrecon-execution-bf72941a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/amsi-bypass-pattern-assembly-gettype-e0d6c087 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-amsi-bypass-script-using-null-bits-fa2559c8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/silence-eda-detection-3ceb2083 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/get-aduser-enumeration-using-useraccountcontrol-flags-96c982fe 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/automated-collection-command-powershell-c1dda054 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/computer-discovery-and-export-via-get-adcomputer-cmdlet-powershell-db885529 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/create-volume-shadow-copy-with-powershell-afd12fed 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/disable-windowsoptionalfeature-command-powershell-99c4658d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/enable-windows-remote-management-991a9744 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-frombase64string-usage-on-gzip-archive-ps-script-df69cb1d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/automated-collection-bookmarks-using-get-childitem-powershell-e0565f5d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-screen-capture-with-copyfromscreen-d4a11f63 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-install-a-dll-in-system-directory-63bf8794 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-detect-virtualization-environment-d93129cd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-in-memory-execution-using-reflection-assembly-ddcd88cb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-suspicious-windows-feature-enabled-55c925c1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/service-registry-permissions-weakness-check-95afc12e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/security-software-discovery-via-powershell-script-904e8e61 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/clearing-windows-console-history-bde47d4b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-create-local-user-243de76f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/manipulation-of-user-computer-or-group-security-principals-across-ad-b29a93fb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dsinternals-suspicious-powershell-cmdlets-scriptblock-846c7a87 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/disable-of-etw-trace-powershell-115fdba9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/active-directory-group-enumeration-with-get-adgroup-8c3a6607 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-winpwn-execution-scriptblock-851fd622 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-create-scheduled-task-363eccc0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dmsa-service-account-created-in-specific-ous-powershell-02122374 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/disable-powershell-command-history-602f5669 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dump-credentials-from-windows-credential-manager-with-powershell-99c49d9c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/certificate-exported-via-powershell-scriptblock-aa7a3fce 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-get-adreplaccount-060c3ef1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-hotfix-enumeration-f5d1def8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/registry-free-process-scope-cor-profiler-23590215 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/directorysearcher-powershell-exploitation-1f6399cf 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-com-objects-download-cradles-usage-ps-script-3c7d1587 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/enumerate-credentials-from-windows-credential-manager-with-powershell-603c6630 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/active-directory-computers-enumeration-with-get-adcomputer-36bed6b2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-rubeus-execution-scriptblock-3245cd30 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/unsigned-appx-installation-attempt-using-add-appxpackage-psscript-975b2262 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-icmp-exfiltration-4c4af3cd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-clip-launcher-powershell-73e67340 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-rundll-launcher-powershell-e6cb92b4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-var-launcher-obfuscation-powershell-e54f5149 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dmsa-link-attributes-modified-9b111d8e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-obfuscated-iex-invocation-powershell-1b9dc62e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-via-stdin-powershell-86b896ba 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-keylogging-34f90d3c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/modify-group-policy-settings-scriptblocklogging-b7216a7d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/execute-invoke-command-on-remote-host-7b836d7f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-var-launcher-powershell-0adfbc14 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-via-use-mshta-powershell-e55a5195 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-powershell-mailbox-export-to-share-ps-4a241dea 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/malicious-powershell-keywords-f62176f3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/malicious-nishang-powershell-commandlets-f772cee9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-dnsexfiltration-d59d7842 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-compress-obfuscation-powershell-20e5497e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-via-use-rundll32-powershell-a5a30a6e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/malicious-powershell-commandlets-scriptblock-89819aa4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/live-memory-dump-using-powershell-cd185561 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-stdin-launcher-powershell-779c8c12 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-via-use-clip-powershell-db92dd33 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-localaccount-manipulation-4fdc44df 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-msxml-com-object-78aa1347 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/important-windows-service-terminated-unexpectedly-56abae0c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-utilities-host-service-install-85cce894 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-pdqdeploy-service-server-side-ee9ca27c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-scripts-installed-as-services-a2e5019d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-via-use-mshta-system-7e9c7999 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-var-launcher-system-8ca7004b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-defender-threat-detection-service-disabled-6c0a7755 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/zerologon-exploitation-using-well-known-tools-18f37338 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-update-error-13cfeb75 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/crash-dump-created-by-operating-system-882fbe50 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/volume-shadow-copy-mount-f512acbf 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/critical-hive-in-suspicious-location-access-bits-cleared-39f919f3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/no-suitable-encryption-key-found-for-generating-kerberos-ticket-b1e0b3f5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/certificate-use-with-no-strong-mapping-993c2665 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-custom-shim-database-created-ee63c85c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/creation-of-non-existent-system-dll-df6ecb8b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/werfault-lsass-process-memory-dump-c3e76af5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/ntds-dit-created-0b8baa3f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-powerup-write-hijack-dll-602a1f13 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-initial-access-via-dll-search-order-hijacking-dbbd9f66 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/gathernetworkinfo-vbs-reconnaissance-script-output-f92a6f1e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/octopus-scanner-malware-805c55d9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uncommon-file-creation-by-mysql-daemon-process-c61daa90 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-via-microsoft-office-add-in-8e1cb247 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-file-created-via-onenote-application-fcc6d700 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/installation-of-teamviewer-desktop-9711de76 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/lsass-process-memory-dump-files-a5a2d357 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/file-creation-in-suspicious-directory-by-msdt-exe-318557a5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-dotnet-clr-usage-log-artifact-e0b06658 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-file-drop-by-exchange-6b269392 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-inveigh-execution-artefacts-bb09dd3e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/gotoassist-temporary-installation-artefact-5d756aee 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-dmp-hdmp-file-creation-aba15bdd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/files-with-system-process-name-in-unsuspected-locations-d5866ddf 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/scr-file-write-event-c048f047 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/office-macro-file-creation-91174a41 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-outlook-macro-created-8c31f563 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-screensaver-binary-file-creation-97aa2e88 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-binary-writes-via-anydesk-2d367498 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-dns-query-for-ip-lookup-service-apis-ec82e2a5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dns-query-to-azurewebsites-net-by-non-browser-process-e043f529 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/microsoft-teams-sensitive-file-access-by-uncommon-applications-65744385 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windivert-driver-load-679085d5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/tomcat-webserver-logs-deleted-270185ff 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/lsass-process-dump-artefact-in-crashdumps-folder-6902955a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-file-creation-in-uncommon-appdata-folder-d7b50671 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-process-hacker-driver-load-67add051 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dns-query-tor-onion-address-sysmon-b55ca2a3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-via-notepad-plugins-54127bd4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/ntds-dit-creation-by-uncommon-parent-process-4e7050dd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remcom-service-file-creation-7eff1a7f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/files-with-system-dll-name-in-unsuspected-locations-13c02350 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dns-query-request-by-quickassist-exe-882e858a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dns-query-by-finger-utility-c082c2b0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cloudflared-tunnels-related-dns-requests-a1d9eec5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-file-access-to-browser-credential-storage-a1dfd976 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/office-macro-file-download-0e29e3a7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-via-outlook-form-c3edc6a5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/file-with-uncommon-extension-created-by-an-office-application-c7a74c80 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/creation-exe-for-service-with-unquoted-path-8c3c76ca 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/adwind-rat-jrat-file-artifact-0bcfabcb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/ntds-exfiltration-filename-patterns-3a8da4e0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bloodhound-collection-files-02773bed 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-file-created-by-arcsoc-exe-e890acee 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/ads-zone-identifier-deleted-by-uncommon-application-3109530e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/onenote-attachment-file-dropped-in-suspicious-location-7fd164ba 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-outlook-macro-created-117d3d3a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pcre-net-package-temp-files-6e90ae7a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-module-file-created-e36941d0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/rclone-config-file-creation-34986307 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-ripzip-attack-on-startup-folder-a6976974 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/ntds-dit-creation-by-uncommon-process-11b1ed55 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/office-macro-file-creation-from-suspicious-process-b1c50487 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-file-created-in-outlook-temporary-directory-fabb0e80 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uncommon-file-created-in-office-startup-folder-a10a2c40 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/malicious-powershell-scripts-filecreation-f331aa1f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/psscriptpolicytest-creation-by-uncommon-process-1027d292 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/livekd-driver-creation-16fe46bb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/publisher-attachment-file-dropped-in-suspicious-location-3d2a2d59 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-file-created-in-perflogs-bbb7e38c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-suspicious-powershell-module-file-created-e8a52bbd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/rdp-file-created-by-uncommon-application-fccfb43e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-sam-database-dump-4e87b8e2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-shell-scripting-application-file-write-to-suspicious-folder-1277f594 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/startup-folder-file-write-2aa0a6b4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/creation-of-a-diagcab-3d0ed417 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/file-deleted-via-sysinternals-sdelete-6ddab845 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-via-microsoft-office-startup-folder-0e20c89d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-binary-or-script-dropper-via-powershell-7047d730 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-module-file-created-by-non-powershell-process-e3845023 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-winnti-dropper-activity-130c9e58 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-binaries-write-suspicious-extensions-b8fd0e93 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-creation-with-colorcpl-e15b518d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-double-extension-files-b4926b47 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/exchange-powershell-cmdlet-history-deleted-a55349d8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-file-write-to-sharepoint-layouts-directory-1f0489be 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-script-dropped-via-powershell-exe-576426ad 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-startup-shortcut-persistence-via-powershell-exe-92fa78e7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pdf-file-created-by-regedit-exe-145095eb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/screenconnect-temporary-installation-artefact-fec96f39 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/created-files-by-microsoft-sync-center-409f8a98 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dpapi-backup-keys-and-certificate-export-activity-ioc-7892ec59 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-homoglyph-attack-using-lookalike-characters-in-filename-4f1707b1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-access-tool-screenconnect-temporary-file-0afecb6e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-files-in-default-gpo-folder-5f87308a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-msexchangemailboxreplication-aspx-write-7280c9f3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/legitimate-application-dropped-archive-654fcc6d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-profile-modification-b5b78988 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/drop-binaries-into-spool-drivers-color-folder-ce7066a6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-terminal-profile-settings-modification-by-uncommon-process-9b64de98 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/process-explorer-driver-creation-by-non-sysinternals-binary-de46c52b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/self-extraction-directive-file-created-in-potentially-suspicious-location-760e75d8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-desktopimgdownldr-target-file-fc4f4817 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-executable-file-creation-74babdd6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/legitimate-application-dropped-executable-f0540f7e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-procexp152-sys-file-created-in-tmp-3da70954 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-startup-folder-persistence-28208707 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/winsxs-executable-file-creation-by-non-system-process-34746e8c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-file-write-to-webapps-root-directory-89c42960 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-get-variable-exe-creation-0c3fac91 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/legitimate-application-writing-files-in-uncommon-location-1cf465a1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-binaries-and-scripts-in-public-folder-b447f7de 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-interactive-powershell-as-system-5b40a734 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/teamviewer-remote-session-162ab1e4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/adexplorer-writing-complete-ad-snapshot-into-dat-file-0a1255c5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-hidden-directory-creation-via-ntfs-index-allocation-stream-a8f866e1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/legitimate-application-dropped-script-7d604714 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-file-creation-activity-from-fake-recycle-bin-folder-cd8b36ac 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-scheduled-task-write-to-system32-tasks-80e1f67a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/vscode-powershell-profile-modification-3a9fa2ec 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/livekd-kernel-memory-dump-file-created-814ddeca 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uncommon-file-created-by-notepad-updater-gup-exe-3b8f4c92 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-remotekrbrelay-smb-relay-secrets-dump-module-indicators-3ab79e90 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-lnk-double-extension-file-created-3215aa19 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-file-extension-spoofing-using-right-to-left-override-979baf41 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-wdac-policy-file-creation-1d2de8a6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-quarkspwdump-dump-file-847def9e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/iso-or-image-mount-indicator-in-recent-files-4358e5a5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-impacket-file-indicators-03f4ca17 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-nppspy-hacktool-usage-cad1fe90 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/process-monitor-driver-creation-by-non-sysinternals-binary-a05baa88 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cred-dump-tools-dropped-files-8fbf3271 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/csexec-service-file-creation-f0e2b768 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-dcom-internetexplorer-application-dll-hijack-2f7979ae 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-aspx-file-drop-by-exchange-bd1212e5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dynamic-csharp-compile-artefact-e4a74e34 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-typical-hivenightmare-sam-file-export-6ea858a8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-crackmapexec-file-indicators-736ffa74 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-mimikatz-kirbi-file-creation-9e099d99 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-potential-remote-credential-dumping-activity-via-crackmapexec-or-impack-6e2a900a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/psexec-service-file-creation-259e5a6a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/malicious-dll-file-dropped-in-the-teams-or-onedrive-folder-1908fcc1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/wscript-or-cscript-dropper-file-002bdb95 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dns-query-request-to-onelaunch-update-service-df68f791 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dll-search-order-hijackig-via-additional-space-in-path-b6f91281 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/desktop-ini-created-by-uncommon-process-81315b50 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-dumpert-process-dumper-default-file-93d94efc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/psexec-remote-execution-file-artefact-304afd73 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-netexec-file-indicators-efc21479 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-safetykatz-dump-indicator-e074832a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/backup-files-deleted-06125661 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-file-creation-by-openedr-s-itsmservice-9e4b7d3a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/assembly-dll-creation-via-aspnetcompiler-4c7f49ee 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/adsi-cache-file-creation-by-uncommon-tool-75bf09fa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/unusual-file-deletion-by-dns-exe-8f0b1fb1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-privilege-escalation-attempt-via-exe-local-technique-07a99744 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/iis-webserver-access-logs-deleted-3eb8c339 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/eventlog-evtx-file-deleted-63c779ba 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/unusual-file-modification-by-dns-exe-9f383dc0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/credential-manager-access-by-uncommon-applications-407aecb1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-deno-file-written-from-remote-source-6c0ce3b6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/evtx-created-in-uncommon-location-65236ec7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/advanced-ip-scanner-file-event-fed85bf9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/prefetch-file-deleted-0a1f9d29 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/process-deletion-of-its-own-executable-f01d1f70 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/access-to-windows-dpapi-master-keys-by-uncommon-applications-46612ae6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/access-to-windows-credential-history-file-by-uncommon-applications-7a2a22ea 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/vulnerable-driver-load-by-name-72cd00d6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/anydesk-temporary-artefact-0b9ad457 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/lsass-process-memory-dump-creation-via-taskmgr-exe-69ca12af 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/teamviewer-log-file-deleted-b1decb61 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-console-history-logs-deleted-ff301988 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/access-to-potentially-sensitive-sysvol-files-by-uncommon-applications-d51694fe 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/access-to-crypto-currency-wallets-by-uncommon-applications-f41b0311 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/vulnerable-hacksys-extreme-vulnerable-driver-load-295c9289 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hijack-legit-rdp-session-to-move-laterally-52753ea4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uac-bypass-using-consent-and-comctl32-file-62ed5b55 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uac-bypass-using-net-code-profiler-on-mmc-93a19907 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uac-bypass-using-eventvwr-63e4f530 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uac-bypass-using-idiagnostic-profile-file-48ea844d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/appx-package-installation-attempts-via-appinstaller-exe-7cff77e1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/vulnerable-driver-load-7aaaf4b8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-system-informer-driver-load-10cb6535 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dns-query-to-ufile-io-1cbbeaaf 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dns-query-request-by-regsvr32-exe-36e037c4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/notepad-updater-dns-query-to-uncommon-domains-2074e137 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uac-bypass-using-msconfig-token-modification-file-41bb431f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uac-bypass-using-ntfs-reparse-point-file-7fff6773 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dns-query-to-common-malware-hosting-and-shortener-services-f8c1e80b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-suspicious-winget-package-installation-a3f5c081 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/unusual-file-download-from-file-sharing-websites-file-stream-ae02ed70 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dns-query-to-visual-studio-code-tunnels-domain-b3e6418f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dns-query-to-remote-access-software-domain-from-non-browser-app-4d07b1f4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-cobalt-strike-dns-beaconing-sysmon-f356a9c4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uac-bypass-abusing-winsat-path-parsing-file-155dbf56 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dns-hybridconnectionmanager-service-bus-7bd3902d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dns-query-to-devtunnels-domain-1cb0c6ce 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-file-download-from-zip-tld-0bb4bbeb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-file-download-from-file-sharing-websites-file-stream-52182dfb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dns-query-to-mega-hosting-website-613c03ba 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-dns-query-indicating-kerberos-coercion-via-dns-object-spn-spoofing-e7a21b5f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dns-server-discovery-via-ldap-query-a21bcd7e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dns-query-for-anonfiles-com-domain-sysmon-065cceea 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uac-bypass-using-ieinstal-file-bdd8157d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/rare-remote-thread-creation-by-uncommon-source-image-02d1d718 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-thread-creation-via-powershell-in-uncommon-target-99b97608 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-cactustorch-remote-thread-creation-2e4e488a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-thread-creation-by-uncommon-source-image-66d31e5f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/password-dumper-remote-thread-in-lsass-f239b326 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-potential-cobaltstrike-process-injection-6309645e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/microsoft-defender-tamper-protection-trigger-49e5bc24 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-defender-malware-detection-history-deletion-2afe6582 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/lsass-access-detected-via-attack-surface-reduction-a0a278fe 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/mimikatz-use-06d71506 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/scheduled-task-executed-from-a-suspicious-location-424273ea 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/unusual-file-download-from-direct-ip-address-025bd229 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-named-file-stream-created-19b041f6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-thread-creation-in-uncommon-target-image-a1a144b7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-thread-created-in-keepass-exe-77564cc2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-defender-threat-detected-57b649ef 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-defender-malware-and-pua-scanning-disabled-bc275be9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/psexec-and-wmi-process-creations-block-97b9ce1e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-service-installation-script-70f00d10 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/driver-load-from-a-temporary-directory-2c4523d5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/creation-of-a-suspicious-ads-file-outside-a-browser-download-573df571 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-thread-creation-ttdinject-exe-proxy-c15e99a3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-thread-creation-in-mstsc-exe-from-suspicious-location-c0aac16a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-defender-virus-scanning-feature-disabled-686c0b4b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-defender-amsi-trigger-detected-ea9bf0fa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-defender-exclusions-added-1321dc4e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/service-installation-with-suspicious-folder-pattern-1b2ae822 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/important-windows-service-terminated-with-error-d6b5520d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hidden-executable-in-ntfs-alternate-data-stream-b69888d4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-credential-dumping-attempt-via-powershell-remote-thread-fb656378 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/wmi-persistence-0b7889b4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/teamviewer-domain-query-by-non-teamviewer-application-778ba9a8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/win-defender-restored-quarantine-file-bc92ca75 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-defender-real-time-protection-disabled-b28e58e4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/livekd-driver-creation-by-uncommon-process-059c5af9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-defender-exploit-guard-tamper-a3ab73f1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/important-scheduled-task-deleted-or-disabled-9e3cb244 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-service-terminated-with-error-acfa2210 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/exports-registry-key-to-an-alternate-data-stream-0d7a9363 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-defender-configuration-changes-801bd44f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-defender-real-time-protection-failure-restart-dd80db93 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-defender-submit-sample-feature-disabled-91903aba 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-defender-grace-period-expired-360a1340 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/ngrok-usage-with-remote-desktop-service-64d51a51 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/scheduled-task-executed-uncommon-lolbin-f0767f15 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uncommon-service-installation-image-path-26481afe 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-service-installation-1d61f71d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remcom-service-installation-9e36ed87 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/iso-file-created-within-temp-folders-2f9356ae 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/malicious-driver-load-05296024 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/netsupport-manager-service-install-2d510d8d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-service-registration-or-execution-d26ce60c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/meterpreter-or-cobalt-strike-getsystem-service-installation-system-843544a7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/krbrelayup-service-installation-e97d9903 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-var-launcher-obfuscation-system-14bcba49 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-rundll-launcher-system-11b52f18 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-clip-launcher-system-f7385ee2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/tap-driver-installation-8e4cf0e5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/psexec-service-installation-42c575ea 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/service-installed-by-unusual-client-system-71c276aa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/processhacker-privilege-elevation-c4ff1eac 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/mesh-agent-service-installation-e0d1ad53 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/csexec-service-installation-a27e5fa9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-via-use-rundll32-system-641a4bfb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-compress-obfuscation-system-175997c5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/smbexec-py-service-installation-52a85084 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/rtcore-suspicious-service-installation-91c49341 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-access-tool-services-have-been-installed-system-1a31b18a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/vulnerable-winring0-driver-load-1a42dfa6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/malicious-driver-load-by-name-39b64854 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/paexec-service-installation-de7ce410 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/moriya-rootkit-system-25b9c01c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/credential-dumping-tools-service-execution-system-4976aa50 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-via-stdin-system-487c7524 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-obfuscated-iex-invocation-system-51aa9387 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/ntfs-vulnerability-exploitation-f14719ce 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/tacticalrmm-service-installation-4bb79b62 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sliver-c2-default-service-installation-31c51af6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-pdqdeploy-service-client-side-b98a10af 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/anydesk-remote-access-software-service-installation-530a6faa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-via-use-clip-system-63e3365d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-attempt-via-errorhandler-cmd-15904280 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-stdin-launcher-system-72862bf2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cobaltstrike-service-installations-system-5a105d34 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/vulnerable-netlogon-secure-channel-connection-allowed-a0cb7110 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/service-installation-in-suspicious-folder-5e993621 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-kerberos-rc4-ticket-encryption-496a0e47 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-task-creation-via-atsvc-named-pipe-zeek-dde85b37 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-webdav-user-agent-e09aed7a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/apache-threading-error-e9a2b582 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-firewall-rule-added-in-windows-firewall-exception-list-via-wmiprvse-exe-eca81e8d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/failed-dns-zone-transfer-6d444368 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-cobalt-strike-dns-beaconing-dns-client-0d18728b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/codeintegrity-unsigned-kernel-module-loaded-951f8d29 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/codeintegrity-blocked-image-driver-load-for-policy-violation-e4be5675 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uncommon-new-firewall-rule-added-in-windows-firewall-exception-list-cde0a575 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-module-module-added-to-iis-server-dd857d3e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/query-tor-onion-address-dns-client-8384bd26 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/loading-diagcab-package-from-remote-path-50cb47b8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/codeintegrity-blocked-image-load-with-revoked-certificate-6f156c48 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/codeintegrity-unmet-signing-level-requirements-by-file-under-validation-f8931561 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bits-transfer-job-download-from-direct-ip-90f138c1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-digital-signature-of-appx-package-b5aa7d60 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/the-windows-defender-firewall-service-failed-to-load-group-policy-7ec15688 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/failed-logon-from-public-ip-f88e112a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/diagtrackeop-default-login-username-2111118f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/failed-msexchange-transport-agent-installation-c7d16cae 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/certificate-request-export-to-exchange-webserver-b7bc7038 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/standard-user-in-high-privileged-group-7ac407cc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/etw-logging-processing-option-disabled-on-iis-server-a5b40a90 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/all-rules-have-been-deleted-from-the-windows-firewall-configuration-79609c82 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dns-server-error-failed-loading-the-serverlevelplugindll-cbe51394 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-access-token-abuse-02f7c9c1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/msexchange-transport-agent-installation-builtin-4fe151c2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/usb-device-plugged-1a4bd6e3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dhcp-server-loaded-the-callout-dll-13fc89a9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-firewall-settings-have-been-changed-00bb5bd5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-active-directory-reconnaissance-enumeration-via-ldap-31d68132 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dns-query-for-anonfiles-com-domain-dns-client-29f171d7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dhcp-server-error-failed-loading-the-callout-dll-75edd3fd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sysmon-application-crashed-4d7f1827 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-rejected-smb-guest-logon-from-ip-71886b70 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/locked-workstation-411742ad 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dns-query-to-ufile-io-dns-client-090ffaad 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-firewall-rule-added-in-windows-firewall-exception-list-for-potential-suspici-9e2575e7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-defender-firewall-has-been-reset-to-its-default-configuration-04b60639 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/eventlog-cleared-a62b37e0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/isatap-router-address-was-set-d22df9cd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/unsigned-binary-loaded-from-suspicious-location-8289bf8c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-defender-exclusion-registry-key-write-access-requested-e9c8808f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/previously-installed-iis-module-was-removed-9e1a1fdf 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/exchange-set-oabvirtualdirectory-externalurl-property-9db37458 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/important-windows-eventlog-cleared-100ef69e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/active-directory-certificate-services-denied-certificate-enrollment-request-994bfd6d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hybridconnectionmanager-service-running-b55d23e5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/wmi-persistence-security-f033f3f3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-privileged-system-service-operation-seloaddriverprivilege-f63508a0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-remote-desktop-connection-to-non-domain-host-ce5678bb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/local-privilege-escalation-indicator-tabtip-bc2e25ed 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/ntlmv1-logon-between-client-and-server-e9d4ab66 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/microsoft-defender-blocked-from-loading-unsigned-dll-0b0ea3cc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-defender-exclusion-list-modified-46a68649 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/user-couldn-t-call-a-privileged-service-lsaregisterlogonprocess-6daac7fc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sysmon-channel-reference-deletion-18beca67 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/unsigned-or-unencrypted-smb-connection-to-share-established-8d91f6e4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-application-installed-83c161b6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/t1047-wmiprvse-wbemcomn-dll-hijack-f6c68d5f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/user-logoff-event-0badd08f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/transferring-files-with-credential-data-via-network-shares-910ab938 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-service-activity-via-svcctl-named-pipe-586a8d6b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-psexec-execution-c462f537 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/vssaudit-security-event-source-registration-e9faba72 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/user-added-to-local-administrator-group-c265cf08 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/syskey-registry-keys-access-9a4ff3b8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-scheduled-task-creation-3a734d25 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-access-to-sensitive-file-extensions-91c945bc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/password-protected-zip-file-opened-suspicious-filenames-54f0434b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/reconnaissance-activity-968eef52 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-ldap-attributes-used-d00a9a72 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/important-scheduled-task-deleted-disabled-7595ba94 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/password-protected-zip-file-opened-email-attachment-571498c8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-windows-anonymous-logon-local-account-created-1bbf25b9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/account-tampering-suspicious-failed-logon-reasons-9eb99343 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/win-susp-computer-name-containing-samtheadmin-39698b3f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/service-installed-by-unusual-client-security-c4e92a97 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-secure-deletion-with-sdelete-39a80702 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/local-user-creation-66b6be3d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/tap-driver-installation-security-9c8afa4d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-scheduled-task-update-614cf376 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uncommon-outbound-kerberos-connection-security-eca91c7c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-remote-logon-with-explicit-credentials-941e5c45 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/group-policy-abuse-for-privilege-addition-1c480e10 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/file-access-of-signal-desktop-sensitive-data-5d6c375a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/replay-attack-detected-5a44727c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-teams-application-related-objectacess-event-25cde13e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/unauthorized-system-time-modification-faa031b5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/possible-shadow-credentials-added-f598ea0c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/password-dumper-activity-on-lsass-aa1697b7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/startup-logon-script-added-to-group-policy-object-123e4e6d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/smb-create-remote-file-admin-share-b210394c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sam-registry-hive-handle-request-f8748f2c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/rdp-over-reverse-ssh-tunnel-wfp-5bed80b6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/password-change-on-directory-service-restore-mode-dsrm-account-53ad8e36 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/addition-of-sid-history-to-active-directory-object-2632954e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-access-tool-services-have-been-installed-security-c8b00925 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/scm-database-privileged-operation-dae8171c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/service-registry-key-read-access-request-11d00fff 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/possible-dc-shadow-attack-32e19d25 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/denied-access-to-remote-desktop-8e5c03fa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/password-protected-zip-file-opened-00ba9da1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-accessmask-requested-from-lsass-4a1b6da0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/kerberos-manipulation-f7644214 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/a-new-trust-was-created-to-a-domain-0255a820 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/scm-database-handle-failure-13addce7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/register-new-logon-process-by-rubeus-12e6d621 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/petitpotam-suspicious-kerberos-tgt-request-6a53d871 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-or-renamed-user-account-with-character-cfeed607 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-powershell-sessions-network-connections-winrm-13acf386 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/metasploit-or-impacket-service-installation-via-smb-psexec-6fb63b40 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/wce-wceaux-dll-access-1de68c67 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/lsass-access-from-non-system-account-962fe167 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-kerberos-coercion-by-spoofing-spns-via-dns-manipulation-b07e58cf 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-via-use-rundll32-security-cd0f7229 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-compress-obfuscation-security-7a922f1b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/possible-impacket-secretdump-remote-activity-252902e3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-scripts-installed-as-services-security-2a926e6a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/password-policy-enumerated-12ba6a38 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/meterpreter-or-cobalt-strike-getsystem-service-installation-security-ecbc5e16 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/credential-dumping-tools-service-execution-security-f0d1feba 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-var-launcher-obfuscation-security-4c54ba8f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dns-query-to-put-io-dns-client-8b69fd42 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/codeintegrity-unmet-whql-requirements-for-loaded-kernel-module-2f8cd7a0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-rundll-launcher-security-f241cf1b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-clip-launcher-security-4edf51e1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-edrsilencer-execution-filter-added-98054878 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/codeintegrity-revoked-kernel-driver-loaded-320fccbf 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/certificate-exported-from-local-certificate-store-58c0bff0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bits-transfer-job-download-from-file-sharing-domains-d635249d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-appx-deployment-unsigned-package-installation-9a025188 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/protected-storage-service-access-45545954 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-pcap-drivers-7b687634 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/netntlm-downgrade-attack-d3abac66 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/a-rule-has-been-deleted-from-the-windows-firewall-exception-list-c187c075 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dns-query-to-mega-hosting-website-dns-client-66474410 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/codeintegrity-unsigned-image-loaded-c92c24e7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/codeintegrity-blocked-driver-load-with-revoked-certificate-9b72b82d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/iso-image-mounted-0248a7bc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-via-stdin-security-80b708f3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-obfuscated-iex-invocation-security-fd0f5778 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-nofilter-execution-7b14c76a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/certificate-private-key-acquired-e2b5163d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bits-transfer-job-downloading-file-potential-suspicious-extension-b85e5894 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-appx-deployment-full-trust-package-installation-e54279c7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/appx-package-deployment-failed-due-to-signing-requirements-898d5fc9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dpapi-domain-master-key-backup-attempt-39a94fd1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/metasploit-smb-authentication-72124974 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/first-time-seen-remote-named-pipe-52d8b0c6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-as-rep-roasting-via-kerberos-tgt-requests-3e2f1b2c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-via-use-mshta-security-9b8d9203 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-var-launcher-security-dcf2db1f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/impacket-psexec-execution-32d56ea1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/persistence-and-execution-at-scale-via-gpo-scheduled-task-a8f29a7b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/important-windows-event-auditing-disabled-ab4561b1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/possible-petitpotam-coerce-authentication-attempt-1ce8c8a3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-network-access-suspicious-desktop-ini-action-35bc7e28 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/kerberoasting-activity-initial-query-d04ae2b8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-via-use-clip-security-1a0a2ff1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invoke-obfuscation-stdin-launcher-security-0c718a5e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hybridconnectionmanager-service-installation-0ee4d8a5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/external-disk-drive-or-usb-storage-device-was-recognized-by-the-system-f69a87ea 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-event-auditing-disabled-69aeb277 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dpapi-domain-backup-key-extraction-4ac1f50b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-default-domain-gpo-modification-e5ac86dd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dcom-internetexplorer-application-iertutil-dll-hijack-security-c39f0c81 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/security-eventlog-cleared-d99b79d2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/enabled-user-right-in-ad-to-control-user-objects-311b6ce2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-ad-user-enumeration-from-non-machine-account-ab6bffca 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-ad-health-service-agents-registry-keys-access-1d2ab8ac 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hidden-local-user-creation-7b449a5e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/etw-logging-disabled-in-net-processes-registry-a4c90ea1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dcerpc-smb-spoolss-named-pipe-214e8f95 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-task-creation-via-atsvc-named-pipe-f6de6525 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/access-to-admin-network-share-098d7118 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/active-directory-replication-from-non-machine-account-17d619c1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-ad-health-monitoring-agent-registry-keys-access-ff151c33 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/failed-code-integrity-checks-470ec5fa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-ruler-24549159 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/add-or-remove-computer-from-dc-20d96d95 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/ad-object-writedac-access-028c7842 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-filtering-platform-blocked-connection-from-edr-agent-binary-bacf58c6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/rottenpotato-like-attack-pattern-16f5d8ca 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/external-remote-rdp-logon-from-public-ip-259a9cdf 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/mimikatz-dc-sync-611eab06 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/processes-accessing-the-microphone-and-webcam-8cd538a4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/active-directory-user-backdoors-300bac00 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/adcs-certificate-template-configuration-vulnerability-5ee3a654 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powerview-add-domainobjectacl-dcsync-ad-extend-right-2c99737c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/outgoing-logon-with-new-credentials-def8b624 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/rdp-login-from-localhost-51e33403 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/successful-overpass-the-hash-attempt-192a0330 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cobaltstrike-service-installations-security-d7a95147 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/codeintegrity-disallowed-file-for-protected-processes-has-been-blocked-5daf11c3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bits-transfer-job-with-uncommon-or-suspicious-remote-tld-6d44fb93 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-bits-job-created-via-bitsadmin-1ff315dc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/weak-encryption-enabled-and-kerberoast-f6de9536 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/adcs-certificate-template-configuration-vulnerability-with-risky-eku-bfbd3291 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/ad-privileged-users-or-groups-reconnaissance-35ba1d85 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-privilege-escalation-via-local-kerberos-relay-over-ldap-749c9f5e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/a-security-enabled-global-group-was-deleted-b237c54b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/deployment-of-the-appx-package-was-blocked-by-the-policy-e021bbb5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/deployment-appx-package-was-blocked-by-applocker-6ae53108 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-access-tool-screenconnect-command-execution-076ebe48 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/admin-user-remote-logon-0f63e1ef 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/device-installation-blocked-c9eb55c3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/successful-account-login-via-wmi-5af54681 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/external-remote-smb-logon-from-public-ip-78d5cab4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/a-member-was-added-to-a-security-enabled-global-group-c43c26be 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/ntlm-logon-98c3bcf1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/mssql-server-failed-logon-218d2855 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/codeintegrity-revoked-image-loaded-881b7725 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/mailbox-export-to-exchange-webserver-516376b4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/proxylogon-msexchange-oabvirtualdirectory-550d3350 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/http-logging-disabled-on-iis-server-e8ebd53a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pass-the-hash-activity-2-8eef149c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bits-transfer-job-download-to-potential-suspicious-folder-f8a56cb7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-bits-job-created-via-powershell-fe3a2d49 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/appx-located-in-uncommon-directory-added-to-deployment-pipeline-c977cb50 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/a-member-was-removed-from-a-security-enabled-global-group-02c39d30 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/openssh-server-listening-on-socket-3ce8e9a4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/ntlm-brute-force-9c8acf1a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remove-exported-mailbox-from-exchange-webserver-09570ae5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-appx-package-downloaded-from-file-sharing-or-cdn-domain-8b48ad89 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-access-tool-screenconnect-file-transfer-5d19eb78 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/mssql-server-failed-logon-from-external-network-ebfe73c2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/atera-agent-installation-87261fb2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/appx-located-in-known-staging-directory-added-to-deployment-pipeline-5cdeaf3d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/applocker-prevented-application-or-script-from-running-401e5d00 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/mssql-xpcmdshell-suspicious-execution-7f103213 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/mssql-destructive-query-00321fee 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/application-uninstalled-570ae5ec 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/lsass-process-crashed-application-a18e0862 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-windows-strings-in-uri-9f6a34b4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/microsoft-malware-protection-engine-crash-wer-6c82cf5c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/mssql-spprocoption-set-b3d57a5c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/mssql-add-account-to-sysadmin-role-08200f85 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/restricted-software-access-by-srp-b4c8da4a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/audit-cve-event-48d91a3a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/relevant-anti-virus-signature-keywords-in-application-log-78bc5783 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-user-agents-related-to-recon-tools-19aa4f58 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-malicious-appx-package-installation-attempts-09d3b48b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sysinternals-tools-appx-versions-execution-d29a20b2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/mssql-xpcmdshell-option-change-d08dd86f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/mssql-disable-audit-settings-350dfb37 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/msi-installation-from-suspicious-locations-c7c8aa1c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/microsoft-malware-protection-engine-crash-545a5da6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/webshell-regeorg-detection-via-web-logs-2ea44a60 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/source-code-enumeration-detection-by-keyword-953d460b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/backup-catalog-deleted-9703792d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dump-ntds-dit-to-suspicious-location-94dc4390 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cross-site-scripting-strings-65354b83 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/server-side-template-injection-strings-ada3bc4f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/f5-big-ip-icontrol-rest-api-command-execution-webserver-85254a62 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-powershell-user-agent-c8557060 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hack-tool-user-agent-c42a3073 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-network-communication-with-ipfs-eb6c2004 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/msi-installation-from-web-5594e67a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/ntdsutil-abuse-e6e88853 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-webshell-strings-7ff9db12 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sql-injection-strings-in-uri-5513deaf 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-external-webdav-execution-1ae64f96 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/exploit-framework-user-agent-fdd1bfb5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bitsadmin-to-uncommon-ip-server-address-8ccd35a2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/flash-player-update-from-suspicious-location-4922a5dd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/jndiexploit-pattern-412d55bc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/successful-iis-shortname-fuzzing-scan-7cb02516 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/rclone-activity-via-proxy-2c03648b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/malware-user-agent-5c84856b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/telegram-api-access-b494b165 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-advanced-ip-port-scanner-update-check-1a9bb21a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/f5-big-ip-icontrol-rest-api-command-execution-proxy-b59c98c6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/nginx-core-dump-59ec40bb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/path-traversal-exploitation-attempts-7745c2ea 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/java-payload-strings-583aa0a2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-user-agent-7195a772 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/crypto-miner-user-agent-fa935401 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/apt-user-agent-6ec820f2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pwndrp-access-2b1ee7e4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-hello-world-scraper-botnet-activity-1712bafe 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/download-from-suspicious-dyndns-hosts-195c1119 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/transferring-files-with-credential-data-via-network-shares-zeek-2e69f167 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/download-from-suspicious-tld-whitelist-b5de2919 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/apache-segmentation-fault-1da8ce0b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-cobaltstrike-malleable-profile-patterns-proxy-f3f21ce1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bitsadmin-to-uncommon-tld-9eb68894 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-base64-encoded-user-agent-d443095b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/raw-paste-service-access-5468045b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-babyshark-agent-default-url-pattern-304810ed 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/download-from-suspicious-tld-blacklist-00d0b5ab 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/kerberos-network-traffic-rc4-ticket-encryption-503fe26e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-access-to-sensitive-file-extensions-zeek-286b47ed 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/first-time-seen-remote-named-pipe-zeek-021310d9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-psexec-execution-zeek-f1b3a22a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/possible-impacket-secretdump-remote-activity-zeek-92dae1ed 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/http-request-with-empty-user-agent-21e44d78 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-base64-encoded-user-agent-894a8613 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hacktool-empire-useragent-uri-combo-b923f7d6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/binary-padding-linux-c52a914f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/esxi-vsan-information-discovery-via-esxcli-d54c2f06 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-linux-process-code-injection-via-dd-utility-4cad6c64 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/syslog-clearing-or-removal-via-system-utilities-3fcc9b35 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/esxi-network-configuration-discovery-via-esxcli-33e814e0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dd-file-overwrite-2953194b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/capsh-shell-invocation-linux-db1ac3be 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-shell-script-creation-in-profile-folder-13f08f54 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-invocation-of-shell-via-awk-linux-8c1a5675 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/communication-to-localtonet-tunneling-service-initiated-linux-c4568f5d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-c2-activities-f7158a64 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/publicly-accessible-rdp-service-1fc0809e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/persistence-via-sudoers-d-files-ddb26b76 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/executable-from-webdav-aac2fd97 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dns-tor-proxies-a8322756 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/http-request-to-low-reputation-tld-or-suspicious-file-extension-68c2c604 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-kind-of-network-nkn-detection-fa7703d6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dns-events-related-to-mining-pools-bf74135c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/mitre-bzar-indicators-for-persistence-53389db6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/mitre-bzar-indicators-for-execution-b640c0b8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/huawei-bgp-authentication-failures-a557ffe6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/smb-spoolss-name-piped-usage-bae2865c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/juniper-bgp-missing-md5-a7c0ae48 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/fortigate-new-vpn-ssl-web-portal-added-2bfb6216 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/telegram-bot-api-request-c64c5175 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-dns-query-with-b64-encoded-string-4153a907 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/monero-crypto-coin-mining-pool-lookup-b593fd50 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cobalt-strike-dns-beaconing-2975af79 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dns-query-to-external-service-interaction-domains-aff715fa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cisco-ldp-authentication-failures-50e606bf 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dns-txt-answer-with-possible-execution-strings-8ae51330 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cisco-sniffing-b9e1f193 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cisco-modify-configuration-671ffc77 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cisco-show-commands-input-b094d9fb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cisco-denial-of-service-d94a35f0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cisco-discovery-9705a6a1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cisco-collect-data-cd072b25 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-xcsset-malware-infection-47d65ac0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/gatekeeper-bypass-via-xattr-f5141b6d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-file-exclusion-added-to-time-machine-via-tmutil-macos-9acf45ed 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cisco-disabling-logging-9e8f6035 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cisco-clear-logs-ceb407f6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/time-machine-backup-deletion-attempt-via-tmutil-macos-452df256 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-base64-decoded-from-images-09a910bf 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/system-network-connections-discovery-macos-9a7a0393 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cisco-crypto-commands-1f978c6a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/system-shutdown-reboot-macos-40b1fbe2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/user-added-to-admin-group-via-sysadminctl-652c098d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/system-information-discovery-using-sw-vers-5de06a6f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/osacompile-execution-by-potentially-suspicious-applet-osascript-a753a6af 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/system-network-discovery-macos-58800443 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-macos-firmware-activity-7ed2c9f7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-in-memory-download-and-compile-of-payloads-13db8d2e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/guest-account-enabled-via-sysadminctl-d7329412 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-browser-child-process-macos-0250638a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/space-after-filename-macos-b6e2a2e3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/security-software-discovery-macos-0ed75b9c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/screen-capture-macos-0877ed01 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-discovery-activity-using-find-macos-85de3a19 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/split-a-file-into-pieces-7f2bb9d5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cisco-dot1x-disabled-ef0ff092 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-access-tool-team-viewer-session-started-on-macos-host-f459ccb4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-access-tool-renamed-meshagent-execution-macos-bd3b5eaa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-access-tool-potential-meshagent-execution-macos-22c45af6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-persistence-via-plistbuddy-65d506d3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/macos-network-service-scanning-84bae5d4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/local-groups-discovery-macos-89bb1f97 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/local-system-accounts-discovery-macos-ddf36b67 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/osacompile-run-only-execution-b9d9b652 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/file-download-via-nscurl-macos-6d8a7cf1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/overwriting-the-file-with-dev-zero-or-null-37222991 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/data-exfiltration-with-wget-cb39d16b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/data-compressed-a3b5e3e9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/possible-coin-miner-cpu-priority-param-071d5e5a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/steganography-hide-zip-information-in-picture-file-45810b50 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hidden-files-and-directories-d08722cd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/credentials-in-files-linux-df3fcaea 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/linux-capabilities-discovery-fe10751f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/onelogin-user-account-locked-a717c561 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remove-immutable-file-attribute-auditd-a5b977d6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/file-time-attribute-change-linux-b3cec4e7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-microsoft-office-child-process-macos-69483748 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/onelogin-user-assumed-another-user-62fff148 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/clipboard-collection-with-xclip-tool-auditd-214e7e6c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/okta-policy-rule-modified-or-deleted-0c97c1d3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/okta-policy-modified-or-deleted-1667a172 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-okta-password-in-alternateid-field-91b76b84 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/okta-new-admin-console-behaviours-a0b38b70 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/okta-network-zone-deactivated-or-deleted-9f308120 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/okta-unauthorized-access-to-app-6cc2b61b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/okta-suspicious-activity-reported-by-end-user-07e97cc6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/okta-security-threat-detected-5c82f0b9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/okta-fastpass-phishing-detection-ee39a9f7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/okta-application-sign-on-policy-modified-or-deleted-8f668cc4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/okta-application-modified-or-deleted-7899144b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/okta-api-token-revoked-cf1dbc6b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/okta-api-token-created-19951c21 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/okta-admin-role-assignment-created-139bdd4b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/okta-admin-role-assigned-to-an-user-or-group-413d4a81 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/okta-admin-functions-access-through-proxy-9058ca8b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/microsoft-365-unusual-volume-of-file-deletion-78a34b67 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-oauth-app-file-download-activities-ee111937 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-inbox-forwarding-6c220477 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pst-export-alert-using-new-compliancesearchaction-6897cd82 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pst-export-alert-using-ediscovery-alert-18b88d08 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/okta-identity-provider-created-969c7590 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/microsoft-365-user-restricted-from-sending-email-ff246f56 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/activity-from-anonymous-ip-addresses-d8b0a4fe 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/logon-from-a-risky-ip-address-c191e2fa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/microsoft-365-impossible-travel-activity-d7eab125 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/data-exfiltration-to-unsanctioned-apps-2b669496 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/fortigate-firewall-address-object-added-5c8d7b41 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/fortigate-new-local-user-created-ddbbe845 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/system-information-discovery-using-ioreg-2d5e7a8b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/linux-setuid-capability-set-on-a-binary-via-setcap-utility-ed447910 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-cron-file-created-6c4e2f43 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/esxi-storage-information-discovery-via-esxcli-f41dada5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-installer-package-child-process-e0cfaecd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-trufflehog-execution-linux-d7a650c4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-abuse-of-linux-magic-system-request-key-ea61bb82 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aslr-disabled-via-sysctl-or-direct-syscall-linux-e497a24e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-dns-z-flag-bit-set-ede05abc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/special-file-creation-via-mknod-syscall-710bdbce 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/script-interpreter-spawning-credential-scanner-linux-f0025a69 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/python-one-liners-with-base64-decoding-linux-55e862a8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/os-architecture-discovery-via-grep-d27ab432 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/jamf-mdm-execution-be2e3a5c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/jamf-mdm-potential-suspicious-child-process-2316929c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/disk-image-creation-via-hdiutil-macos-1cf98dc2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/user-added-to-admin-group-via-dseditgroup-5d0fdb62 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/user-added-to-admin-group-via-dscl-b743623c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/disable-security-tools-ff39f1a6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/system-integrity-protection-sip-enumeration-53821412 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/credentials-in-files-53b1b378 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/file-and-directory-discovery-macos-089dbdf6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/macos-remote-system-discovery-10227522 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/file-time-attribute-change-88c0f9d8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hidden-user-creation-b22a5b36 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/clipboard-data-collection-via-osascript-7794fa3c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/indicator-removal-on-host-clear-mac-system-logs-acf61bd8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-xterm-reverse-shell-4e25af4b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/decode-base64-encoded-text-macos-719c22d7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/startup-item-file-created-macos-dfe8b941 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/macos-emond-launch-daemon-23c43900 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/linux-webshell-indicators-818f7b24 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/triple-cross-ebpf-rootkit-install-commands-22236d75 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/execution-of-script-located-in-potentially-suspicious-directory-30bcce26 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/user-added-to-root-sudoers-group-using-usermod-6a50f16c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/user-has-been-deleted-via-userdel-08f26069 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/linux-recon-indicators-0cf7a157 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-container-discovery-via-inodes-listing-43e26eb5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/linux-hacktool-execution-a015e032 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/print-history-file-contents-d7821ff1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/history-file-deletion-1182f3b3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-git-clone-linux-cfec9d29 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-discovery-activity-using-find-linux-8344c0e5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/interactive-bash-suspicious-children-ea3ecad2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/container-residence-discovery-via-proc-virtual-fs-746c86fb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-linux-amazon-ssm-agent-hijacking-f9b3edc5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/shell-invocation-via-ssh-linux-8737b7f6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/setuid-and-setgid-c21c4eaa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/docker-container-discovery-via-dockerenv-listing-11701de9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-curl-change-user-agents-linux-b86d356d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/security-software-discovery-linux-c9d8b7fd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/scheduled-cron-task-job-linux-6b14bac8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-ruby-reverse-shell-b8bdac18 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-invocation-of-shell-via-rsync-297241f3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/shell-execution-via-rsync-linux-e2326866 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/linux-package-uninstall-95d61234 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/disabling-security-tools-e3a8a052 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/credentials-from-password-stores-keychain-b120b587 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/linux-network-service-scanning-tools-execution-3e102cd9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/inline-python-execution-spawn-shell-via-os-system-library-2d2f44ff 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/linux-shell-pipe-to-shell-880973f3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-java-children-processes-d292e0af 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/python-reverse-shell-execution-via-pty-and-socket-modules-32e62bc7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/jxa-in-memory-execution-via-osascript-f1408a58 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/connection-proxy-72f4ab3f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-php-reverse-shell-c6714a24 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/shell-execution-via-nice-linux-093d68c7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-nohup-execution-457df417 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/omigod-scx-runasprovider-executeshellcommand-21541900 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/nohup-execution-e4ffe466 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-netcat-reverse-shell-execution-7f734ed0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/named-pipe-created-via-mkfifo-9d779ce8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-gobrat-file-discovery-via-grep-e34cfa0c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/local-groups-discovery-linux-676381a6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/local-system-accounts-discovery-linux-b45e3d6f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/flush-iptables-ufw-chain-3be619f4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-package-installed-linux-700fb7e8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-named-pipe-created-via-mkfifo-999c3b12 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/shell-execution-via-git-linux-47b3bbd4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/shell-execution-gcc-linux-9b5de532 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/shell-execution-via-flock-linux-4b09c71e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/file-deletion-30aed7b6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/file-and-directory-discovery-linux-d3feb4ee 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/default-cobalt-strike-certificate-7100f7e3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/shell-execution-via-find-linux-6adfbf8f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/group-has-been-deleted-via-groupdel-8a46f16c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/esxi-vm-list-discovery-via-esxcli-5f1573a7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/esxi-account-creation-via-esxcli-b28e4eb3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/esxi-system-information-discovery-via-esxcli-e80273e1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/esxi-syslog-configuration-change-via-esxcli-38eb1dbb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/esxi-vm-kill-via-esxcli-2992ac4d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/shell-invocation-via-env-command-linux-bed978f8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/clipboard-collection-with-xclip-tool-ec127035 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/linux-doas-tool-execution-067d8238 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/ufw-force-stop-using-ufw-init-84c9e83c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/esxi-admin-permission-assigned-to-account-via-esxcli-9691f58d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remove-scheduled-cron-task-job-c2e234de 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/copy-passwd-or-shadow-from-tmp-path-fa4aaed5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/linux-setgid-capability-set-on-a-binary-via-setcap-utility-3a716279 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/curl-usage-on-linux-ea34fb97 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/linux-crypto-mining-indicators-9069ea3c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/crontab-enumeration-403ed92c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/decode-base64-encoded-text-e2072cab 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remove-immutable-file-attribute-34979410 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/linux-logs-clearing-attempts-80915f59 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/linux-sudo-chroot-execution-f2bed782 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/chmod-targeting-sensitive-directories-6419afd1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/capabilities-discovery-linux-d8d97d51 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bpftrace-unsafe-option-usage-f8341cb2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/enable-bpf-kprobes-tracing-7692f583 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bash-interactive-shell-6104e693 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/linux-base64-encoded-shebang-in-cli-fe2f9663 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/linux-base64-encoded-pipe-to-shell-ba592c6d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/privileged-user-has-been-created-0ac15ec3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/audit-rules-deleted-via-auditctl-bed26dea 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/scheduled-task-job-at-d2d642d7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/shell-invocation-via-apt-linux-bb382fd5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-malware-callback-communication-linux-dbfc7c98 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/communication-to-ngrok-tunneling-service-linux-19bf6fdb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/kaspersky-endpoint-security-stopped-via-commandline-linux-36388120 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/linux-reverse-shell-indicator-83dcd9f6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/wget-creating-files-in-tmp-directory-35a05c60 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/triple-cross-ebpf-rootkit-default-persistence-1a2ea919 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/triple-cross-ebpf-rootkit-default-lockfile-c0239255 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-filename-with-embedded-base64-commands-179b3686 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/webshell-remote-command-execution-c0d3734d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/system-information-discovery-auditd-f34047d9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-vsftpd-error-messages-377f33a1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-suspicious-bpf-activity-linux-0fadd880 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/password-policy-discovery-linux-ca94a6db 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/linux-doas-conf-file-creation-00eee2a5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/disabling-security-tools-builtin-49f5dfc1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-openssh-daemon-error-e76b413a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/creation-of-an-user-account-759d0d51 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-commands-linux-1543ae20 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-named-error-c8e35e96 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/shellshock-expression-c67e0c98 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-use-of-dev-tcp-6cc5fceb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-reverse-shell-command-line-738d9bcf 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-log-entries-f64b6e9a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-activity-in-shell-commands-2aa1440c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/linux-command-history-tampering-fdc88d25 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-history-file-operations-linux-eae8ce9f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/jexboss-command-sequence-8ec2c8b4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/buffer-overflow-attempts-18b042f0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/commands-to-clear-or-remove-the-syslog-builtin-e09eb557 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/equation-group-indicators-41e5c73d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/guacamole-two-users-sharing-session-anomaly-1edd77db 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/modifying-crontab-af202fd3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/relevant-clamav-message-36aa86ca 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/modify-system-firewall-323ff3f5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-file-copy-7a14080d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/system-info-discovery-via-sysinfo-syscall-b207d563 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/masquerading-as-linux-crond-process-9d4548fa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/program-executions-in-suspicious-folders-a39d7fa7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/split-a-file-into-pieces-linux-2dad0cba 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/linux-network-service-scanning-auditd-3761e026 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/loading-of-kernel-module-via-insmod-106d7cbd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/system-owner-or-user-discovery-linux-9a0d8ca0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/clear-or-disable-kernel-ring-buffer-logs-via-syslog-syscall-eca5e022 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/disable-system-firewall-53059bc0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/system-and-hardware-information-discovery-1f358e2e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/service-reload-or-start-linux-2625cc59 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/okta-user-session-start-via-an-anonymising-proxy-service-bde30855 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/unix-shell-configuration-modification-a94cdd87 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/systemd-service-creation-1bac86ba 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/logging-configuration-changes-on-linux-host-c830f15d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/modification-of-ld-so-preload-4b3cb710 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/okta-mfa-reset-or-deactivated-50e068d7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cisco-duo-successful-mfa-authentication-via-bypass-code-6f7e1c10 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/use-of-hidden-paths-or-files-9e1bef8d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bpfdoor-abnormal-process-id-or-lock-file-accessed-808146b2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/auditing-configuration-changes-on-linux-host-977ef627 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/linux-keylogging-with-pam-d-49aae26c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/audio-capture-a7af2487 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/steganography-unzip-hidden-information-from-picture-file-edd595d7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bpfdoor-tcp-ports-redirect-70b4156e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/microsoft-365-potential-ransomware-activity-bd132164 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/system-shutdown-reboot-linux-4cb57c2f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/clipboard-collection-of-image-data-with-xclip-tool-f200dc3f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/screen-capture-with-import-tool-dbe4b9c5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/steganography-hide-files-with-steghide-ce446a9e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/screen-capture-with-xwd-e2f17c5d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/network-sniffing-linux-f4d3748a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/activity-from-infrequent-country-0f2468a2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/steganography-extract-files-with-steghide-a5a827d9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/file-or-folder-permissions-change-74c01ace 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-download-and-execute-pattern-via-curl-wget-a2d9e2f3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-execution-via-macos-script-editor-6e4dcdd1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-wizardupdate-malware-infection-f68c4a4f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/scheduled-cron-task-job-macos-7c3b43d8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pnscan-binary-data-transmission-activity-97de11cd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/python-webserver-execution-linux-3f0f5957 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/python-spawning-pretty-tty-via-pty-module-c4042d54 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-access-tool-team-viewer-session-started-on-linux-host-1f6b8cd4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/time-machine-backup-disabled-via-tmutil-macos-2c95fa8a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cisco-bgp-authentication-failures-56fa3cd6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cleartext-protocol-usage-d7fb8f0e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/fortigate-new-administrator-account-created-cd0a4943 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/fortigate-new-firewall-policy-added-f24ab7a8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/root-account-enable-via-dsenableroot-821bcf4d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/system-integrity-protection-sip-disabled-3603f18a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/creation-of-a-local-user-account-51719bf5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hidden-flag-set-on-file-directory-via-chflags-macos-3b2c1059 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/binary-padding-macos-95361ce5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/macos-scripting-interpreter-applescript-1bc2e6c5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/download-file-to-potentially-suspicious-directory-via-wget-cf610c15 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/vim-gtfobin-abuse-linux-7ab8f73a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/triple-cross-ebpf-rootkit-execve-hijack-0326c3c8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/touch-suspicious-service-file-31545105 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/mask-system-power-settings-via-systemctl-c172b7b5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/system-network-discovery-linux-e7bd1cfa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/system-network-connections-discovery-linux-4c519226 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/system-information-discovery-42df45e7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/shell-execution-of-process-located-in-tmp-directory-2fade0b6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-suspicious-change-to-sensitive-critical-files-86157017 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/access-of-sudoers-file-content-0f79c4d2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-execution-from-tmp-folder-312b42b1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-curl-file-upload-linux-00b90cc1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/disable-or-stop-services-de25eeb8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/linux-remote-system-discovery-11063ec2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/gui-input-capture-macos-60f1ce20 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/disk-image-mounting-via-hdiutil-macos-bf241472 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/fortigate-user-group-modified-69ffc84e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/launch-agent-daemon-execution-via-launchctl-ae9d710f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/fortigate-vpn-ssl-settings-modified-8b5dacf2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/network-sniffing-macos-adc9bcc4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/payload-decoded-and-decrypted-via-built-in-utilities-234dc5df 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/system-information-discovery-using-system-profiler-4809c683 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-history-file-operations-508a9374 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/system-information-discovery-via-sysctl-macos-6ff08e55 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/install-root-certificate-78a80655 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-petitpotam-attack-via-efs-rpc-calls-4096842a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-dns-query-indicating-kerberos-coercion-via-dns-object-spn-spoofing-ne-5588576c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/mount-execution-with-hidepid-parameter-ec52985a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/omigod-scx-runasprovider-executescript-6eea1bf6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-perl-reverse-shell-execution-259df6bc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/webdav-put-request-705072a5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/linux-crypto-mining-pool-connections-a46c93b7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cisco-local-accounts-6d844f0f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cisco-stage-data-5e51acb2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/wannacry-killswitch-domain-3eaf6218 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cisco-file-deletion-71d65515 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/measurable-increase-of-successful-authentications-67d5f8fc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-application-deleted-410d2a41 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/activity-performed-by-terminated-user-2e669ed8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/activity-from-suspicious-ip-addresses-a3501e8e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-federated-domain-added-exchange-42127bdd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-email-delivered-in-microsoft-365-3569aefd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-federated-domain-added-58f88172 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/disabling-multi-factor-authentication-60de9b57 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-login-bypassing-conditional-access-policies-13f2d3f5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-login-activity-classified-by-google-38360161 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/google-workspace-out-of-domain-email-forwarding-2a0bb2dd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/google-workspace-government-attack-warning-eafe6f2b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/google-workspace-user-granted-admin-privileges-2d1b83e4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/google-workspace-role-privilege-deleted-bf638ef7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/google-workspace-role-modified-or-deleted-6aef64e3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/google-workspace-mfa-disabled-780601d1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/google-workspace-granted-domain-api-access-04e2a23a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/google-workspace-application-removed-ee2803f0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/google-workspace-application-access-level-modified-22f2fb54 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/google-cloud-sql-database-modified-or-deleted-f346bbd5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/google-cloud-service-account-modified-6b67c12e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/google-cloud-service-account-disabled-or-deleted-13f81a90 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/google-cloud-kubernetes-secrets-modified-or-deleted-2f0bae2d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/google-cloud-kubernetes-rolebinding-0322d9f2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/google-cloud-kubernetes-cronjob-cd3a808c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/google-cloud-kubernetes-admission-controller-6ad91e31 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/google-full-network-traffic-packet-capture-980a7598 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/google-cloud-re-identifies-sensitive-information-234f9f48 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/google-cloud-storage-buckets-modified-or-deleted-4d9f2ee2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/google-cloud-storage-buckets-enumeration-e2feb918 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/gcp-break-glass-container-workload-deployed-76737c19 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/gcp-access-policy-deleted-32438676 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/users-authenticating-to-other-azure-ad-tenants-5f521e4b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/user-access-blocked-by-azure-conditional-access-9a60e676 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-unusual-authentication-interruption-8366030e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/multifactor-authentication-interrupted-5496ff55 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/google-cloud-vpn-tunnel-modified-or-deleted-99980a85 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/multifactor-authentication-denied-e40f4962 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/login-to-disabled-account-908655e0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/use-of-legacy-authentication-protocols-60f6535a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sign-in-failure-due-to-conditional-access-requirements-not-met-b4a6d707 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/account-disabled-or-blocked-for-sign-in-attempts-4afac85c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/applications-that-are-using-ropc-authentication-flow-55695bc0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/application-using-device-code-authentication-flow-248649b7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/google-cloud-firewall-modified-or-deleted-fe513c69 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-mfa-bypass-using-legacy-client-authentication-53bb4f7f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sign-ins-by-unknown-devices-4d136857 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sign-ins-from-non-compliant-devices-4f77e1d7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-signins-from-a-non-registered-device-572b12d4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-ad-only-single-factor-authentication-required-28eea407 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/failed-authentications-from-countries-you-do-not-operate-out-of-28870ae4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/device-registration-or-join-without-mfa-5afa454e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/discovery-using-azurehound-35b781cc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/successful-authentications-from-countries-you-do-not-operate-out-of-8c944ecb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/authentications-to-important-apps-using-single-factor-authentication-f272fb46 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/increased-failed-authentications-of-any-type-e1d02b53 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/account-lockout-2b7d6fc0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/too-many-global-admins-7bbc309f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/roles-are-not-being-used-8c6ec464 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/roles-activation-doesn-t-require-mfa-94a66f46 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/roles-activated-too-frequently-645fd80d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/roles-assigned-outside-pim-b1bc08d1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/saml-token-issuer-anomaly-e3393cba 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-country-adf9f4d2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-inbox-manipulation-rules-ceb55fd0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/activity-from-anonymous-ip-address-be4d9c86 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-ad-threat-intelligence-a2cb56ff 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sign-in-from-malware-infected-ip-821b4dc3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-inbox-forwarding-identity-protection-27e4f1d6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/anomalous-user-activity-258b6593 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invalid-pim-license-58af08eb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-browser-activity-944f6adb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/malicious-ip-address-sign-in-suspicious-36440e1c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/impossible-travel-b2572bf9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/anomalous-token-6555754e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/stale-accounts-in-a-privileged-role-e402c26a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/primary-refresh-token-access-attempt-a84fc3b1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/malicious-ip-address-sign-in-failure-rate-a3f55ebd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/atypical-travel-1a41023f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/password-reset-by-user-account-340ee172 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/unfamiliar-sign-in-properties-128faeef 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/password-spray-activity-28ecba0a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-ad-account-credential-leaked-19128e5e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/anonymous-ip-address-53acd925 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/multi-factor-authentication-disabled-for-user-account-b18454c8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/user-risk-and-mfa-registration-policy-updated-d4c7758e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/temporary-access-pass-added-to-an-account-fa84aaf5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-subscription-permission-elevation-via-auditlogs-ca9bf243 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/privileged-account-creation-f7b5b004 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bulk-deletion-changes-to-privileged-account-permissions-102e11e3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/user-added-to-privilege-role-49a268a4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pim-alert-setting-changes-to-disabled-aeaef14c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/user-added-to-group-with-ca-policy-modification-access-91c95675 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pim-approvals-and-deny-elevation-039a7469 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-domain-federation-settings-modified-352a54e1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/app-granted-privileged-delegated-or-app-permissions-5aecf3d5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/guest-user-invited-by-non-approved-inviters-0b4b72e3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-laps-credential-dump-from-entra-id-a4b25073 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/added-owner-to-application-74298991 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/application-appid-uri-configuration-changes-1b45b0d1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/changes-to-pim-settings-db6c06c4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/user-removed-from-group-with-ca-policy-modification-access-665e2d43 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/application-uri-configuration-changes-0055ad1f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/end-user-consent-blocked-7091372f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/users-added-to-global-or-device-admin-roles-11c767ae 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/user-state-changed-from-guest-to-member-8dee7a0d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/change-to-authentication-method-4d78a000 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/app-granted-microsoft-permissions-c1d147ae 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/added-credentials-to-existing-application-cbb67ecc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/changes-to-device-registration-policy-9494bff8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/app-assigned-to-azure-rbac-microsoft-entra-role-b04934b2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/end-user-consent-9b2cc4c4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-root-certificate-authority-added-4bb80281 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/account-created-and-deleted-within-a-close-time-frame-6f583da0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-virtual-network-modified-or-deleted-bcfcc962 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/rare-subscription-level-operations-in-azure-c1182e02 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-point-to-site-vpn-modified-or-deleted-d9557b75 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-kubernetes-secret-or-config-object-access-7ee0b4aa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/delegated-permissions-granted-for-all-users-a6355fbe 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/guest-users-invited-to-tenant-by-non-approved-inviters-4ad97bf5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-ca-policy-by-non-approved-actor-0922467f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-suppression-rule-created-92cc3e5d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-owner-removed-from-application-or-service-principal-636e30d5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-firewall-rule-configuration-modified-or-deleted-2a7d64cf 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-kubernetes-rolebinding-clusterrolebinding-modified-and-deleted-25cb259b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-kubernetes-cronjob-1c71e254 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/certificate-based-authentication-enabled-c2496b41 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/ca-policy-removed-by-non-approved-actor-26e7c5e2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-service-principal-removed-448fd1ea 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-virtual-network-device-modified-or-deleted-15ef3fac 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/disabled-mfa-to-bypass-authentication-mechanisms-7ea78478 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-kubernetes-pods-deleted-b02f9591 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-kubernetes-admission-controller-a61a3c56 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/ca-policy-updated-by-non-approved-actor-50a3c7aa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-subscription-permission-elevation-via-activitylogs-09438caa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-new-cloudshell-created-72af37e2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-network-firewall-policy-modified-or-deleted-83c17918 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-kubernetes-sensitive-role-access-818fee0c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-kubernetes-cluster-created-or-deleted-9541f321 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/granting-of-permissions-to-an-account-a622fcd2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-vpn-connection-modified-or-deleted-61171ffc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-service-principal-created-0ddcff6d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-network-security-configuration-modified-or-deleted-d22b4df4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-kubernetes-service-account-modified-or-deleted-12d027c3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-kubernetes-network-policy-change-08d6ac24 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-keyvault-secrets-modified-or-deleted-b831353c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-firewall-modified-or-deleted-512cf937 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-container-registry-created-or-deleted-93e0ef48 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-kubernetes-events-deleted-225d8b09 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-firewall-rule-collection-modified-or-deleted-025c9fe7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/number-of-resource-creation-or-deployment-activities-d2d901db 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/user-added-to-an-administrator-s-azure-ad-role-ebbeb024 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-sts-getsessiontoken-misuse-b45ab1d2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-securityhub-findings-evasion-a607e1fe 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/restore-public-aws-rds-instance-c3f265c7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-aws-lambda-function-url-configuration-created-ec541962 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/google-cloud-dns-zone-modified-or-deleted-28268a8f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-key-vault-modified-or-deleted-459a2970 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-dns-zone-modified-or-deleted-af6925b0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-application-security-group-modified-or-deleted-835747f1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-active-directory-hybrid-health-ad-fs-new-server-288a39fc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-sts-assumerole-misuse-905d389b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-route-53-domain-transferred-to-another-account-b056de1a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-rds-master-password-change-8a63cdd4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-iam-s3browser-user-or-accesskey-creation-db014773 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-keyvault-key-modified-or-deleted-80eeab92 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-device-or-configuration-modified-or-deleted-46530378 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-application-gateway-modified-or-deleted-ad87d14e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-user-login-profile-was-modified-055fb148 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-identity-center-identity-provider-change-d3adb3ef 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-route-53-domain-transfer-lock-disabled-3940b5f1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-glue-development-endpoint-activity-4990c2e3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-iam-s3browser-templated-s3-bucket-policy-creation-db014773 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-active-directory-hybrid-health-ad-fs-service-delete-48739819 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-sts-getcalleridentity-enumeration-via-trufflehog-9b1b8e9b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-s3-data-management-tampering-78b3756a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/modification-or-deletion-of-an-aws-rds-cluster-457cc9ac 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-kms-imported-key-material-usage-1279262f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-guardduty-important-change-6e61ee20 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-suspicious-saml-activity-f43f5d2f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-snapshot-backup-exfiltration-abae8fec 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-root-credentials-8ad1600d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-new-lambda-layer-attached-97fbabf8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-iam-s3browser-loginprofile-creation-db014773 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-elasticache-security-group-created-4ae68615 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-bucket-enumeration-on-aws-f305fd62 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-elasticache-security-group-modified-or-deleted-7c797da2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-iam-backdoor-users-keys-0a5177f4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bitlocker-key-retrieval-a0413867 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/symlink-etc-passwd-c67fc22a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/code-injection-by-ld-so-preload-7e3c4651 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-okta-user-created-b6c718dd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-device-no-longer-managed-or-compliant-542b9912 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/okta-user-account-locked-out-14701da0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-registry-lateral-movement-35c55673 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-printing-abuse-for-lateral-movement-bc3a4b0c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/python-sql-exceptions-19aefed0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/opencanary-ssh-login-attempt-ff7139bc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/opencanary-rdp-new-connection-attempt-598290cf 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/opencanary-nmap-fin-scan-eae8c0c8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/opencanary-httpproxy-login-attempt-5498fc09 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-rce-exploitation-attempt-in-nodejs-97661d9d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/opencanary-smb-file-open-request-22777c9e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/opencanary-nmap-xmas-scan-d7553d7b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/opencanary-mysql-login-attempt-e7d79a1b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/opencanary-http-get-request-af6c3078 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-sidecar-injection-into-running-deployment-ad9012a6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/rbac-permission-enumeration-attempt-84b777bd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-remote-command-execution-in-pod-container-a1b0ca4e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/opencanary-snmp-oid-request-e9856028 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/opencanary-host-port-scan-syn-scan-974be8d2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/opencanary-ntp-monlist-request-7cded4b3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/opencanary-http-post-login-attempt-af1ac430 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/kubernetes-unauthorized-or-unauthenticated-access-0d933542 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/kubernetes-rolebinding-modification-10b97915 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/container-with-a-hostpath-mount-created-402b955c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/kubernetes-admission-controller-modification-eed82177 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-schedule-task-lateral-movement-via-itaskschedulerservice-ace3ff54 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/opencanary-git-clone-request-4fe17521 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-kubernetes-service-account-created-e31bae15 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/privileged-container-deployed-c5cd1b20 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/kubernetes-events-deleted-3132570d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/process-execution-error-in-jvm-based-application-d65f37da 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-local-file-read-vulnerability-in-jvm-based-application-e032f5bc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/github-repository-archive-status-changed-dca8991c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/kubernetes-potential-enumeration-activity-597a7e84 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/deployment-deleted-from-kubernetes-cluster-40967487 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-jndi-injection-exploitation-in-jvm-based-application-bb0e9cec 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/github-repository-organization-transferred-04ad83ef 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/github-new-secret-created-f9405037 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/github-delete-action-invoked-16a71777 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bitbucket-user-details-export-attempt-detected-5259cbf2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/creation-of-pod-in-system-namespace-a80d927d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/kubernetes-cronjob-job-modification-0c9b3bda 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/github-ssh-certificate-configuration-changed-2f575940 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/github-push-protection-disabled-ccd55945 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-github-organization-member-added-3908d64a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/django-framework-exceptions-fd435618 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bitbucket-unauthorized-full-data-export-triggered-34d81081 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-xxe-exploitation-attempt-in-jvm-based-application-c4e06896 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-ognl-injection-exploitation-in-jvm-based-application-4d0af518 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/github-secret-scanning-feature-disabled-3883d9a0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/github-repository-pages-site-changed-to-public-0c46d4f4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/outdated-dependency-or-vulnerability-alert-disabled-34e1c7d4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bitbucket-user-login-failure-via-ssh-d3f90469 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bitbucket-secret-scanning-rule-deleted-ff91e3f0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/github-self-hosted-runner-changes-detected-f8ed0e8f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/system-drawing-dll-load-666ecfc7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/github-push-protection-bypass-detected-02cf536a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/github-fork-private-repositories-setting-enabled-cleared-69b3bd1e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bitbucket-user-permissions-export-attempt-87cc6698 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bitbucket-unauthorized-access-to-a-resource-7215374a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bitbucket-global-ssh-settings-changed-16ab6143 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/service-binary-in-user-controlled-folder-277dc340 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/github-outside-collaborator-detected-eaa9ac35 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/github-high-risk-configuration-disabled-8622c92d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bitbucket-user-login-failure-70ed1d26 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bitbucket-secret-scanning-exempt-repository-added-b91e8d5e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bitbucket-global-permission-changed-aac6c4f4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/registry-set-with-crypto-classes-from-the-cryptography-powershell-namespace-1c2a3268 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bitbucket-full-data-export-triggered-195e1b9d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/microsoft-office-trusted-location-updated-a0bed973 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cab-file-extraction-via-wusa-exe-59b39960 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/ftp-connection-open-attempt-via-winscp-cli-c1477deb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-tasklist-discovery-command-63332011 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/use-short-name-path-in-command-line-349d891d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-compression-tool-parameters-27a72a60 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bitbucket-audit-log-configuration-updated-6aa12161 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/shell-context-menu-command-tampering-868df2d1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/arbitrary-command-execution-using-wsl-dec44ca7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/process-terminated-via-taskkill-86085955 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/file-or-folder-permissions-modifications-37ae075c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/execution-from-webserver-root-folder-35efb964 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-commandline-obfuscation-using-unicode-characters-e0552b19 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bitbucket-project-secret-scanning-allowlist-added-42ccce6d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-guardduty-detector-deleted-or-updated-d2656e78 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-enableregion-command-monitoring-a5ffb6ea 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-vpc-flow-logs-deleted-e386b9b5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/wsf-jse-js-vba-vbe-file-execution-via-cscript-wscript-1e33157c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/manual-execution-of-script-inside-of-a-compressed-file-95724fc1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/tunneling-tool-execution-c75309a3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-suspicious-execution-from-guid-like-folder-names-90b63c33 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/scheduled-task-creation-from-potential-suspicious-parent-location-9494479d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-s3-bucket-versioning-disable-a136ac98 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/antivirus-relevant-file-paths-alerts-c9a88268 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sc-exe-query-execution-57712d7a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bitbucket-global-secret-scanning-rule-deleted-e16cf0f0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/scheduled-task-created-registry-93ff0ceb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/winscp-execution-from-non-standard-folder-7674f8ef 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/process-execution-from-webdav-share-f8de9dd5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/html-file-opened-from-download-folder-538c5851 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-successful-console-login-without-mfa-77caf516 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-network-route-added-c803b2ce 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/rds-database-security-group-modification-14f3f1c8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/elevated-system-shell-spawned-61065c72 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dll-call-by-ordinal-via-rundll32-exe-e79a9e79 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/command-executed-via-run-dialog-box-registry-f9d091f6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/system-information-discovery-via-wmic-exe-d85ecdd7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-executable-run-itself-as-sacrificial-process-bafd07c6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/ses-identity-has-been-deleted-20f754db 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/eventlog-query-requests-by-builtin-utilities-9cd55b6c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/rundll32-exe-calling-dllregisterserver-export-function-explicitly-d81a9fc6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-access-tool-screenconnect-remote-command-execution-hunting-d1a401ab 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-access-tool-action1-arbitrary-code-execution-and-remote-sessions-aa3168fb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/regsvr32-exe-calling-of-dllregisterserver-export-function-implicitly-ce2c44b5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-powershell-child-processes-e4b6d2a7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-windows-firewall-rule-added-via-new-netfirewallrule-cmdlet-51483085 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/import-new-module-via-powershell-commandline-4ad74d01 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/smb-over-quic-via-net-exe-2238d337 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-bucket-deleted-39c9f26d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/malicious-usage-of-imds-credentials-outside-of-aws-infrastructure-352a918a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/ingress-egress-security-group-modification-6fb77778 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-config-disabling-channel-recorder-07330162 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/invocation-of-crypto-classes-from-the-cryptography-powershell-namespace-ad856965 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-self-extracting-package-created-via-iexpress-exe-c2b478fc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sharphound-recon-account-discovery-65f77b1e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-sql-error-messages-8a670c6d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/antivirus-ransomware-detection-4c6ca276 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-consolelogin-failed-authentication-6393e346 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-network-acl-entry-added-e1f7febb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/microsoft-workflow-compiler-execution-419dbf2b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/diskshadow-script-mode-execution-0c2f8629 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/loadbalancer-security-group-modification-7a4409fc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-console-getsignintoken-potential-abuse-f8103686 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-new-instance-of-an-office-com-object-9bdaf1e9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/net-exe-execution-183e7ea8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-dll-sideloading-activity-via-extexport-exe-fb0b815b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/curl-exe-execution-with-custom-useragent-3286d37a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/antivirus-hacktool-detection-fa0c05b6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/unusually-long-powershell-commandline-d0d28567 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-password-reconnaissance-via-findstr-exe-1a0f6f16 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/clickonce-deployment-execution-dfsvc-exe-child-process-241d52b5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dynamic-net-compilation-via-csc-exe-hunting-acf2807c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/set-files-as-system-files-using-attrib-exe-bb19e94c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/lsass-access-from-program-in-potentially-suspicious-folder-fa34b441 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-access-tool-cmd-exe-execution-via-anyviewer-bc533330 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/codepage-modification-via-mode-com-d48c5ffa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-proxy-execution-via-explorer-exe-from-shell-process-9eb271b9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-data-exfiltration-via-curl-exe-00bca14a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-file-override-append-via-set-command-65e4c134 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-shellcode-injection-250ae82f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/winapi-function-calls-via-powershell-scripts-9f22ccd5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-access-tool-ammy-admin-agent-execution-7da7809e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/headless-process-launched-via-conhost-exe-00ca75ab 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/password-protected-compressed-file-extraction-via-7zip-b717b8fd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-ec2-startup-shell-script-change-1ab3c5ed 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-eks-cluster-created-or-deleted-33d50d03 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/antivirus-web-shell-detection-fdf135a2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-cloudtrail-important-change-4db60cc0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pua-aws-trufflehog-execution-a840e606 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-malicious-usage-of-cloudtrail-system-manager-38e7f511 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-saml-provider-deletion-activity-ccd6a6c8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-ec2-vm-export-failure-54b9a76a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-key-pair-import-activity-92f84194 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-efs-fileshare-mount-modified-or-deleted-6a7ba45c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-ecs-task-definition-that-queries-the-credential-endpoint-b94bf91e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-schedule-task-lateral-movement-via-sasec-aff229ab 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/spring-framework-exceptions-ae48ab93 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/antivirus-password-dumper-detection-78cc2dd2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/recon-activity-via-sasec-0a3ff354 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-spel-injection-in-spring-framework-e9edd087 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-dcom-wmi-lateral-movement-68050b10 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/kubernetes-secrets-modified-or-deleted-58d31a75 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/kubernetes-secrets-enumeration-eeb3e9e1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uncommon-grantedaccess-flags-on-lsass-678dfc63 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-credential-dumping-attempt-via-powershell-0f920ebe 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/use-of-remove-item-to-delete-file-scriptblock-b8af5f36 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/inbox-rules-creation-or-update-activity-via-exchangepowershell-cmdlet-04580eed 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/diskshadow-child-process-spawned-56b1dde8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/file-download-via-curl-exe-9a517fca 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-boinc-software-execution-uc-berkeley-signature-0090b851 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/powershell-token-obfuscation-powershell-f3a98ce4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-windows-firewall-rule-added-via-new-netfirewallrule-cmdlet-scriptblock-8d31dd2e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/local-firewall-rules-enumeration-via-netfirewallrule-cmdlet-ea207a23 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/msiexec-exe-initiated-network-connection-over-http-8e5e38e4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-data-exfiltration-over-smtp-via-send-mailmessage-cmdlet-9a7afa56 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-mail-app-mailbox-access-via-powershell-script-4e485d01 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bxor-operator-usage-in-powershell-command-line-powershell-classic-812837bb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/psexec-default-named-pipe-f3f3a972 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hh-exe-initiated-http-network-connection-468a8cea 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/werfaultsecure-loading-dbgcore-or-dbghelp-edr-freeze-8a2f4b1c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cmd-shell-output-redirect-4f4eaa9f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/winapi-library-calls-via-powershell-scripts-19d65a1c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/smb-over-quic-via-powershell-script-6df07c3b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/compress-archive-cmdlet-execution-6dc5d284 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/network-connection-initiated-by-powershell-process-1f21ec3f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dfsvc-exe-network-connection-to-non-local-ips-3c21219b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/task-scheduler-dll-loaded-by-application-located-in-potentially-suspicious-locat-3b92a1d0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-registry-reconnaissance-via-powershell-script-064060aa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/mail-forwarding-redirecting-activity-via-exchangepowershell-cmdlet-0c7686d5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-azure-front-door-connection-8cb4d14e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dfsvc-exe-initiated-network-connection-over-uncommon-port-4c5fba4a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/microsoft-excel-add-in-loaded-c5f4b5cb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/amsi-dll-load-by-uncommon-process-facd1549 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-creation-txt-file-in-user-desktop-caf02a0a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/uncommon-powershell-hosts-d7326048 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/network-connection-initiated-from-users-public-folder-bcb03938 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dllhost-exe-initiated-network-connection-to-non-local-ip-address-cfed2f44 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/microsoft-word-add-in-loaded-1337afba 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bits-client-bitsproxy-dll-loaded-by-uncommon-process-e700ff14 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/vscode-code-tunnel-execution-file-indicator-9661ec9d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/python-path-configuration-file-creation-windows-e3652ba3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/curl-exe-execution-bbeaed61 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dbghelp-dbgcore-dll-loaded-by-uncommon-suspicious-process-0e277796 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/wdac-policy-file-creation-in-codeintegrity-folder-121b25f7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/file-creation-date-changed-to-another-year-558eebe5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/access-to-browser-credential-files-by-uncommon-applications-91cb43db 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-thread-created-in-shell-application-a9d4d3fa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/webdav-temporary-local-file-creation-4c55738d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/ads-zone-identifier-deleted-7eac0a16 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/access-to-windows-outlook-mail-files-by-uncommon-applications-fc3e237f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/access-to-chromium-browsers-sensitive-files-by-uncommon-applications-c5f37810 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/access-to-browser-credential-files-by-uncommon-applications-security-4b60e527 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/low-reputation-effective-top-level-domain-etld-cf5ee356 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/python-path-configuration-file-creation-macos-4f394635 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/wmi-module-loaded-by-uncommon-process-671bb7e3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/scheduled-task-created-filecreation-a762e74f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pfx-file-creation-dca1b3e8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/access-to-reg-hive-files-by-uncommon-applications-337a31c6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/createremotethread-api-and-loadlibrary-052ec6f6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/successful-msix-appx-package-installation-289dfa9e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potentially-suspicious-long-filename-pattern-linux-11629c4d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-sql-query-d84c0ded 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/non-dll-extension-file-renamed-with-dll-extension-bbfd974c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/creation-of-an-executable-by-an-executable-297afac9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dmp-hdmp-file-creation-3a525307 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/access-to-sysvol-policies-share-by-uncommon-process-8344c19f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/scheduled-task-deletion-4f86b304 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/class-extension-uri-ending-request-53c15703 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/inbox-rules-creation-or-update-activity-in-o365-d3577be1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-remote-wmi-activescripteventconsumers-activity-9599c180 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/clipboard-data-collection-via-pbpaste-d8af0da1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/process-discovery-4e2f5868 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/azure-sign-in-with-axios-user-agent-ea1a07f0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-rdp-connection-initiated-from-domain-controller-fda34293 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/msds-managedaccountprecededbylink-attribute-modified-6c9eb492 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/unattend-xml-file-access-attempt-76a26006 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-thread-creation-via-powershell-eeb2e3dc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/firewall-rule-modified-in-the-windows-firewall-exception-list-5570c4d9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/terminate-linux-process-via-kill-64c41342 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/python-path-configuration-file-creation-linux-fb96c26c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/userdomain-variable-enumeration-43311e65 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/okta-session-impersonation-granted-from-untrusted-domain-fe04b26b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/mail-forwarding-redirecting-activity-in-o365-c726e007 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dns-request-from-windows-script-host-12310575 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/new-msds-delegatedmanagedserviceaccount-dmsa-object-created-e15bc294 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-zerologon-cve-2020-1472-exploitation-dd7876d8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/privilege-role-elevation-not-occuring-on-saw-or-paw-38a5e67b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/teampcp-litellm-supply-chain-attack-persistence-indicators-81c0b7f5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/user-with-privileges-logon-94309181 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/authentication-occuring-outside-normal-business-hours-160f24f3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/axios-npm-compromise-indicators-windows-f6c27ecc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/axios-npm-compromise-file-creation-indicators-macos-2db0458c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-encrypting-file-system-abuse-5f92fff9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/account-created-and-deleted-by-non-approved-users-c98184ba 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/axios-npm-compromise-indicators-macos-a09ee860 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/axios-npm-compromise-file-creation-indicators-linux-b7cb840c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/opencanary-vnc-connection-attempt-9db5446c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-efs-fileshare-modified-or-deleted-25cb1ba1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/privilege-role-sign-in-outside-of-normal-hours-e927a2f5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-console-login-monitoring-313e72de 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/axios-npm-compromise-indicators-linux-0a23a62d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/redsun-tieringengineservice-exe-detected-as-eicar-test-file-a7c3e5f2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/aws-ec2-disable-ebs-encryption-16124c2d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/antivirus-exploitation-framework-detection-238527ad 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/interactive-logon-to-server-systems-3ff152b2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-pass-the-hash-activity-f8d98d6c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/privilege-role-sign-in-outside-expected-controls-cf1e5687 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/litellm-teampcp-supply-chain-attack-indicators-36603778 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/axios-npm-compromise-malicious-c2-domain-dns-query-73e5d24f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/ruby-on-rails-framework-exceptions-0d2c3d4c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/okta-password-health-report-query-0d58814b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-server-service-abuse-for-lateral-movement-10018e73 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-event-log-recon-2053961f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/possible-dcsync-attack-56fda488 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/opencanary-tftp-request-b4e6b016 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-server-side-template-injection-in-velocity-16c86189 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sharphound-recon-sessions-6d580420 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-server-service-abuse-b6ea3cc7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-schedule-task-recon-via-atscv-f177f2bc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/opencanary-telnet-login-attempt-512cff7a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/opencanary-sip-request-e30de276 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/opencanary-nmap-os-scan-e8a677fd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-registry-management-using-reg-utility-68fcba0d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/opencanary-mssql-login-attempt-via-windows-authentication-6e78f90f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-schedule-task-recon-via-itaskschedulerservice-7f7c49eb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-registry-recon-d8ffe17e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/remote-schedule-task-lateral-movement-via-atsvc-0fcd1c79 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/opencanary-ssh-new-connection-attempt-cd55f721 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/axios-npm-compromise-file-creation-indicators-windows-cd6386fa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/opencanary-redis-action-command-attempt-547dfc53 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/opencanary-nmap-null-scan-68b8547b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/opencanary-mssql-login-attempt-via-sqlauth-3ec9a16d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/opencanary-ftp-login-attempt-6991bc2b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/exchange-proxyshell-pattern-23eee45e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2023-40477-potential-exploitation-winrar-application-crash-e5a29b54 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2023-46747-exploitation-activity-proxy-f195b2ff 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/redsun-conhost-exe-spawned-by-tieringengineservice-exe-2ad78473 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/redsun-named-pipe-created-9b4e7c2a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-cve-2026-33829-exploitation-windows-snipping-tool-remote-file-path-uri-7c3a5b1d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/redsun-tieringengineservice-exe-staged-in-rs-prefixed-temp-dir-f2e4b7d9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/shai-hulud-2-0-malicious-npm-package-installation-bae7c70b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/shai-hulud-malicious-bun-execution-5299fadf 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/shai-hulud-malicious-bun-execution-linux-eb827bbd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dns-query-to-katz-stealer-domains-network-6b0c762f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/atomic-macos-stealer-filegrabber-activity-e710a880 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-exploitation-of-cve-2025-5054-or-cve-2025-4598-33b3cfb1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/commvault-qlogin-with-publicsharinguser-and-guid-password-cve-2025-57788-917789e1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/funklocker-ransomware-file-creation-2c76a22b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/shai-hulud-2-0-malicious-npm-package-installation-linux-514f533b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/katz-stealer-dll-loaded-e6c7ab7c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/grixba-malware-reconnaissance-activity-af688c76 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/exploitation-activity-of-cve-2025-59287-wsus-deserialization-e5f66e87 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-suspicious-child-process-from-node-js-react2shell-271de298 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/kalambur-backdoor-curl-tor-socks-proxy-execution-e99375eb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/shai-hulud-npm-package-malicious-exfiltration-via-curl-efd2eb09 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dns-query-to-katz-stealer-domains-9c3d6e32 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/exploitation-activity-of-cve-2025-59287-wsus-suspicious-child-process-43259cc4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/linux-suspicious-child-process-from-node-js-react2shell-c70834fa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/shai-hulud-malware-indicators-windows-540703fb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/shai-hulud-malicious-github-workflow-creation-0aba5685 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/commvault-qlogin-argument-injection-authentication-bypass-cve-2025-57791-ff0225a0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-exploitation-of-crushftp-rce-vulnerability-cve-2025-54309-0fdc7c7f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-exploitation-of-cve-2025-4427-4428-ivanti-epmm-pre-auth-rce-41956f7c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2023-4966-exploitation-attempt-citrix-adc-sensitive-information-disclosure-w-a4e068b5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/katz-stealer-suspicious-user-agent-834c6d2f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/atomic-macos-stealer-persistence-indicators-e710a880 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/commvault-qoperation-path-traversal-webshell-drop-cve-2025-57790-bd3b3fff 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sharepoint-toolshell-cve-2025-53770-exploitation-web-iis-48d053db 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-child-process-of-solarwinds-webhelpdesk-8c7f4a2d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-java-webshell-upload-in-sap-netviewer-server-639b893f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/shai-hulud-malware-indicators-linux-11bb9b26 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-sharepoint-toolshell-cve-2025-53770-exploitation-file-create-ba479447 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-exploitation-of-rce-vulnerability-cve-2025-33053-process-access-9a2d8b3e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-child-process-of-sap-netweaver-5b304bcb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-process-spawned-by-centrestack-portal-apppool-2d79e371 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/forest-blizzard-apt-custom-protocol-handler-dll-registry-set-d807056b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-sharepoint-toolshell-cve-2025-53770-exploitation-indicators-7477881c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-exploitation-of-rce-vulnerability-cve-2025-33053-abe06362 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-sap-netviewer-webshell-command-execution-94e12f41 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-crushftp-child-process-459628e3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/screenconnect-slashandgrab-exploitation-indicators-05164d17 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/forest-blizzard-apt-file-creation-activity-b92d1d19 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-notepad-cve-2025-49144-exploitation-933f0bb5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-exploitation-of-rce-vulnerability-cve-2025-33053-image-load-04fc4b22 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-child-process-of-sap-netweaver-linux-69dea60b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-creation-of-library-ms-file-potential-cve-2025-24054-exploit-5a7132c0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/forest-blizzard-apt-custom-protocol-handler-creation-5cdeb555 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/kapeka-backdoor-scheduled-task-creation-6c130acd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-coldsteel-rat-file-indicators-c708a93f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/non-standard-nsswitch-conf-creation-potential-cve-2025-32463-exploitation-10ac0730 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-sap-netweaver-webshell-creation-86a7c91f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cisco-asa-exploitation-activity-proxy-15697955 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/forest-blizzard-apt-process-creation-activity-07db928c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dprk-threat-actor-c2-communication-dns-indicators-4d16c9a6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/kapeka-backdoor-persistence-activity-64a871dd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/coldsteel-rat-service-persistence-execution-9f9cd389 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-sap-netweaver-webshell-creation-linux-5b91409c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-exploitation-of-goanywhere-mft-vulnerability-6c76b3d0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/forest-blizzard-apt-javascript-constrained-file-creation-ec7c4e9b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-apt-fin7-exploitation-activity-6676896b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/kapeka-backdoor-execution-via-rundll32-exe-e98f741c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-raspberry-robin-cpl-execution-activity-92020b88 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/kapeka-backdoor-configuration-persistence-cbaa3ef3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-kapeka-decrypted-backdoor-indicator-20228d05 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-kamikakabot-activity-winlogon-shell-persistence-c9b86500 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-exploitation-of-cve-2024-37085-suspicious-esx-admins-group-activity-47a1658b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-exploitation-of-cve-2024-3094-suspicious-ssh-child-process-9aa27839 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2024-1708-screenconnect-path-traversal-exploitation-44d7af7e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/unc4841-potential-seaspy-execution-f6a711f3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-raspberry-robin-registry-set-internet-settings-zonemap-16a4c7b3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-kamikakabot-activity-shutdown-schedule-task-creation-fe9e8ba9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2024-49113-exploitation-attempt-ldap-nightmare-3f2c93c7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-cve-2024-3400-exploitation-palo-alto-globalprotect-os-command-injectio-bcd95697 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2024-1708-screenconnect-path-traversal-exploitation-security-4c198a60 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/unc4841-download-tar-file-from-untrusted-direct-ip-via-wget-23835beb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-kamikakabot-activity-lure-document-execution-24474469 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/darkgate-drop-darkgate-loader-in-c-temp-directory-df49c691 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2024-50623-exploitation-attempt-cleo-f007b877 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-cve-2024-3400-exploitation-palo-alto-globalprotect-os-command-injectio-f130a5f1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/screenconnect-user-database-modification-1a821580 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/unc4841-download-compressed-files-from-temp-sh-using-wget-60d050c4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/kapeka-backdoor-autorun-persistence-c0c67b21 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-raspberry-robin-aclui-dll-sideloading-0f3a9db2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/file-creation-related-to-rat-clients-2f3039c8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-csharp-streamer-rat-loading-net-executable-image-6f6afac3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-cve-2024-35250-exploitation-activity-17ce9373 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2024-1709-screenconnect-authentication-bypass-exploitation-d27eabad 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/unc4841-ssl-certificate-exfiltration-via-openssl-60911c07 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/kapeka-backdoor-loaded-via-rundll32-exe-a7e6b1f9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/lummac-stealer-activity-execution-of-more-com-and-vbc-exe-19b3806e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-exploitation-of-cve-2024-37085-suspicious-creation-of-esx-admins-group-c408acfe 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/screenconnect-user-database-modification-security-4109cb6a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2024-1212-exploitation-progress-kemp-loadmaster-unauthenticated-command-inje-eafb8bd5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/unc4841-barracuda-esg-exploitation-indicators-5627c337 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/unc4841-email-exfiltration-file-pattern-0785f462 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-peach-sandstorm-apt-c2-communication-activity-b8225208 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/peach-sandstorm-apt-process-activity-indicators-2e7bbd54 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/papercut-mf-ng-potential-exploitation-0934ac71 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/papercut-mf-ng-exploitation-related-indicators-de1bd0b6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/onyx-sleet-apt-file-creation-indicators-2fef4fd9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/okta-2023-breach-indicator-of-compromise-00a8e92a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/mint-sandstorm-asperafaspex-suspicious-process-execution-91048c0d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-apt-mustang-panda-activity-against-australian-gov-7806bb49 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/lace-tempest-malware-loader-execution-745ea50b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/lace-tempest-powershell-launcher-37dc5463 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/lace-tempest-file-indicators-e94486ea 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-operation-triangulation-c2-beaconing-activity-proxy-aa03c712 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/mint-sandstorm-manageengine-suspicious-process-execution-58d8341a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/lace-tempest-cobalt-strike-download-aa5b0a40 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-apt-fin7-reconnaissance-powertrash-related-activity-911389c7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-operation-triangulation-c2-beaconing-activity-dns-7fc30d63 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/diamond-sleet-apt-file-creation-indicators-e1212b32 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/scheduled-tasks-names-used-by-svr-for-graphicalproton-backdoor-task-scheduler-2bfc1373 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/mint-sandstorm-log4j-wstomcat-process-execution-7c97c625 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-powertrash-script-execution-4e19528a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/diamond-sleet-apt-dll-sideloading-indicators-d1b65d98 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/scheduled-tasks-names-used-by-svr-for-graphicalproton-backdoor-8fa65166 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-compromised-3cxdesktopapp-beaconing-activity-netcon-51eecf75 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/lazarus-apt-dll-sideloading-activity-24007168 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/lace-tempest-powershell-evidence-eraser-b377ddab 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-apt-fin7-related-powershell-script-created-a88d9f45 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/diamond-sleet-apt-scheduled-task-creation-registry-9f9f92ba 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-compromised-3cxdesktopapp-ico-c2-file-download-76bc1601 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/malicious-dll-load-by-compromised-3cxdesktopapp-d0b65ad3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-snake-malware-persistence-service-execution-f7536642 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/diamond-sleet-apt-scheduled-task-creation-3b8e5084 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/diamond-sleet-apt-dns-communication-indicators-fba38e0f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-compromised-3cxdesktopapp-beaconing-activity-proxy-3c4b3bbf 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-compromised-3cxdesktopapp-update-activity-e7581747 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-compromised-3cxdesktopapp-beaconing-activity-dns-bd03a0dc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/ursnif-redirection-of-discovery-commands-7aaa5739 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-snake-malware-installation-binary-indicator-d91ff53f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/rorschach-ransomware-execution-activity-0e9e6c63 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-apt-fin7-powerhold-execution-71c432c4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/diamond-sleet-apt-process-activity-indicators-b5495d8d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dll-names-used-by-svr-for-graphicalproton-backdoor-e64c8ef3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-compromised-3cxdesktopapp-execution-93bbde78 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-encrypted-registry-blob-related-to-snake-malware-7e163e96 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/snake-malware-werfault-persistence-file-creation-64827580 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/qakbot-uninstaller-execution-bc309b7a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pikabot-fake-dll-extension-execution-via-rundll32-exe-1bf0ba65 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-suspicious-child-process-of-3cxdesktopapp-63f3605b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-socgholish-second-stage-c2-dns-query-70761fe8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/snake-malware-service-persistence-b2e60816 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-snake-malware-installation-cli-arguments-indicator-02cbc035 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/rhadamanthys-stealer-module-launch-via-rundll32-exe-5cdbc2e8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/qakbot-regsvr32-calc-pattern-0033cf83 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-pikabot-c2-activity-cae6cee6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/snake-malware-covert-store-registry-key-d0fa35db 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/snake-malware-installer-name-indicators-99eccc2b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/qakbot-rundll32-fake-dll-extension-execution-bfd34392 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-pikabot-hollowing-activity-d8937fe7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/darkgate-autoit3-exe-file-creation-by-uncommon-process-1a433e1d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/coldsteel-rat-anonymous-user-process-execution-e01b6eb5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2023-4966-exploitation-attempt-citrix-adc-sensitive-information-disclosure-p-aee7681f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/icedid-malware-suspicious-single-digit-dll-execution-via-rundll32-2bd8e100 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/griffon-malware-attack-pattern-bcc6f179 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/darkgate-autoit3-exe-execution-parameters-f8e9aa1c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/coldsteel-rat-cleanup-command-execution-88516f06 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-exploitation-attempt-of-undocumented-windowsserver-rce-6d5b8176 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2023-46747-exploitation-activity-webserver-e9928831 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-information-disclosure-cve-2023-43261-exploitation-proxy-f48f5368 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/injected-browser-process-spawning-rundll32-guloader-activity-89e1490f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/darkgate-user-created-via-net-exe-bf906d7b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-qakbot-rundll32-execution-cf879ffb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/qakbot-rundll32-exports-execution-339ed3d6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/snake-malware-kernel-driver-file-indicator-d6d9d23f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2021-41773-exploitation-attempt-3007fec6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sitecore-pre-auth-rce-cve-2021-42237-20c6ed1c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-cve-2021-42278-exploitation-attempt-44bbff3e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-computer-account-name-change-cve-2021-42287-45eb2ae2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-cve-2021-42287-exploitation-attempt-e80a0fee 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/possible-exploitation-of-exchange-rce-cve-2021-42321-c92f1896 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/grafana-path-traversal-exploitation-cve-2021-43798-7b72b328 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2021-44077-poc-default-dropped-file-7b501acf 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sonicwall-ssl-vpn-jarrewrite-exploitation-6f55f047 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-conti-ransomware-activity-689308fc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/darkside-ransomware-pattern-965fff6c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/goofy-guineapig-backdoor-ioc-f0bafe60 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/moriya-rootkit-file-created-a1507d71 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/small-sieve-malware-file-indicator-creation-39466c42 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/exchange-exploitation-used-by-hafnium-67bce556 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-cve-2021-44228-exploitation-attempt-vmware-horizon-3eb91f0a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-systemnightmare-exploitation-attempt-c01f7bd6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/conti-ntds-exfiltration-command-aa92fd02 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-conti-ransomware-database-dumping-activity-via-sqlcmd-2f47f1fd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/foggyweb-backdoor-dll-loading-640dc51c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/goofy-guineapig-backdoor-service-creation-8c15dd74 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pingback-backdoor-activity-b2400ffb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/apt-privatelog-image-load-pattern-33a2d1dd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/log4j-rce-cve-2021-44228-generic-5ea8faa8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-razerinstaller-explorer-subprocess-a4eaf250 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/conti-volume-shadow-listing-7b30e0a7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/devil-bait-potential-c2-communication-traffic-514c50c9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/goofy-guineapig-backdoor-potential-c2-communication-4f573bb6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pingback-backdoor-dll-loading-activity-35a7dc42 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/small-sieve-malware-registry-persistence-65c6e3c1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-cve-2023-21554-queuejumper-exploitation-53207cc2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/log4j-rce-cve-2021-44228-in-fields-9be472ed 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/successful-exchange-proxyshell-attack-992be1eb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/blackbyte-ransomware-registry-83314318 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-devil-bait-malware-reconnaissance-e8954be4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-goofy-guineapig-goolgeupdate-process-anomaly-bdbab15a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pingback-backdoor-file-indicators-2bd63d53 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/small-sieve-malware-potential-c2-communication-b0422664 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-blackbyte-ransomware-activity-999e8307 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-devil-bait-related-indicator-93d5f1b4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-goofy-guineapig-backdoor-activity-477a5ed3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-netwire-rat-activity-registry-1d218616 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/small-sieve-malware-commandline-indicator-21117127 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/revil-kaseya-incident-malware-patterns-5de632bc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hafnium-exchange-exploitation-activity-bbb2dedd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dewmode-webshell-access-fdf96c90 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-cve-2022-21587-exploitation-attempt-d033cb8a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-cve-2022-26809-exploitation-attempt-a7cd7306 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2022-31656-vmware-workspace-one-access-auth-bypass-fcf1101d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-kdc-rc4-hmac-downgrade-exploit-cve-2022-37966-e6f81941 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-raspberry-robin-dot-ending-file-a35c97c8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sourgum-actor-behaviours-7ba08e95 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-exploitation-of-cve-2022-21919-or-cve-2021-34484-for-lpe-52a85084 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/zimbra-collaboration-suite-email-server-unauthenticated-rce-dd218fb6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2022-31659-vmware-workspace-one-access-rce-efdb2003 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-owassrf-exploitation-attempt-proxy-1ddf4596 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/exploitation-indicator-of-cve-2022-42475-293ccb8c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/emotet-loader-execution-via-lnk-file-1f32d820 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-cve-2022-22954-exploitation-attempt-vmware-workspace-one-access-remote-5660d8db 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-cve-2022-29072-exploitation-attempt-9a4ccd1a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/apache-spark-shell-command-injection-processcreation-c8a5f584 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/owassrf-exploitation-attempt-using-public-poc-proxy-fdd7e904 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-centos-web-panel-exploitation-attempt-cve-2022-44877-1b2eeb27 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/chromeloader-malware-execution-0a74c5a9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2022-24527-microsoft-connected-cache-lpe-e0a41412 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-nimbuspwn-exploit-cve-2022-29799-and-cve-2022-27800-7ba05b43 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/apache-spark-shell-command-injection-weblogs-1a9a04fd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-owassrf-exploitation-attempt-webserver-181f49fa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-cve-2022-46169-exploitation-attempt-738cb115 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-bumblebee-remote-thread-creation-994cac2b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/raspberry-robin-initial-execution-from-external-drive-2c6bea3a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-cve-2023-36884-exploitation-file-downloads-6af1617f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/atlassian-confluence-cve-2022-26134-7fb14105 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-set-value-of-msdt-in-registry-cve-2022-30190-2d9403d5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/atlassian-bitbucket-command-injection-via-archive-api-65c0a0ab 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/owassrf-exploitation-attempt-using-public-poc-webserver-92d78c63 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/bluesky-ransomware-artefacts-eee8311f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/raspberry-robin-subsequent-execution-of-commands-d52d2e87 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/mssql-extended-stored-procedure-backdoor-maggie-711ab2fe 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-sysmon-as-execution-parent-6d1058a4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/hermetic-wiper-tg-process-patterns-2f974656 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/fakeupdates-socgholish-activity-97805087 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2023-22518-exploitation-attempt-suspicious-confluence-child-process-windows-1ddaa9a4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2023-23397-exploitation-attempt-73c59189 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-cve-2023-27363-exploitation-hta-file-creation-by-foxitpdfreader-9cae055f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-cve-2023-36874-exploitation-uncommon-report-wer-location-92389a99 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/serpent-backdoor-payload-execution-via-scheduled-task-d5eb7432 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2023-1389-potential-exploitation-attempt-unauthenticated-command-injection-i-6c7defa9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2023-22518-exploitation-attempt-vulnerable-endpoint-connection-proxy-27d2cdde 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-cve-2023-23397-exploitation-attempt-smb-de96b824 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-cve-2023-27997-exploitation-indicators-31e4e649 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-cve-2023-36874-exploitation-fake-wermgr-exe-creation-ad0960eb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-actinium-persistence-activity-e1118a8f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/msmq-corrupted-packet-encountered-ae94b10d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-cve-2023-2283-exploitation-8b244735 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-cve-2023-25157-exploitation-attempt-c0341543 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-moveit-transfer-cve-2023-34362-exploitation-dynamic-compilation-via-cs-39ac1fb0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-cve-2023-36884-exploitation-dropped-file-8023d3a2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-cve-2023-36884-exploitation-share-access-3df95076 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/mercury-apt-activity-a62298a3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/exploitation-indicators-of-cve-2023-20198-2ece8816 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2023-22518-exploitation-attempt-vulnerable-endpoint-connection-webserver-a902d249 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-cve-2023-23752-exploitation-attempt-0e1ebc5a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-moveit-transfer-cve-2023-34362-exploitation-file-activity-c3b2a774 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-cve-2023-36874-exploitation-fake-wermgr-execution-50dbc08b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-cve-2023-36884-exploitation-url-marker-e59f71ff 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2023-22518-exploitation-attempt-suspicious-confluence-child-process-linux-f8987c03 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/outlook-task-note-reminder-received-fc06e655 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-cve-2023-25717-exploitation-attempt-043c1609 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/moveit-cve-2023-34362-exploitation-attempt-potential-web-shell-request-435e41f2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-cve-2023-36884-exploitation-pattern-0066d244 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2023-38331-exploitation-attempt-suspicious-double-extension-file-e4556676 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-information-disclosure-cve-2023-43261-exploitation-web-a2bcca38 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-cve-2303-36884-url-request-pattern-traffic-d9365e39 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2023-38331-exploitation-attempt-suspicious-winrar-child-process-ec3a3c2f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-cve-2023-46214-exploitation-attempt-04017cd5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2023-4966-potential-exploitation-attempt-citrix-adc-sensitive-information-di-ff349b81 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-coldsteel-persistence-service-dll-load-1d7a57da 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/coldsteel-persistence-service-creation-3ced239c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-pikabot-discovery-activity-698d4431 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2023-40477-potential-exploitation-rev-file-creation-c3bd6c55 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/exploitation-attempt-of-cve-2023-46214-using-public-poc-code-ba5268de 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2023-4966-potential-exploitation-attempt-citrix-adc-sensitive-information-di-87c83d8e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-coldsteel-persistence-service-dll-creation-1fea93a2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-coldsteel-rat-windows-user-creation-95214813 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-pikabot-infection-suspicious-command-combinations-via-cmd-exe-e5144106 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-cve-2021-40444-exploitation-attempt-894397c6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/possible-printnightmare-print-driver-install-cve-2021-1675-7b33baef 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-atlassian-confluence-cve-2021-26084-exploitation-attempt-245f92e3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/exchange-exploitation-cve-2021-28480-a2a9d722 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2021-26858-exchange-exploitation-b06335b3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2021-33766-exchange-proxytoken-exploitation-56973b50 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/omigod-http-no-authentication-rce-cve-2021-38647-ab6b1a39 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-exploitation-attempt-from-office-application-868955d9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/proxylogon-reset-virtual-directories-based-on-iis-log-effee1f6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2021-31979-cve-2021-33771-exploits-by-sourgum-ad7085ac 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pwnkit-local-privilege-escalation-0506a799 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2021-31979-cve-2021-33771-exploits-32b5db62 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-word-cab-file-write-cve-2021-40444-60c0a111 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/adselfservice-exploitation-6702b13c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2021-40539-zoho-manageengine-adselfservice-plus-exploit-fcbb4a77 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/installerfiletakeover-lpe-cve-2021-41379-file-create-event-3be82d5d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-cve-2021-41379-exploitation-attempt-af8bbce4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/lpe-installerfiletakeover-poc-cve-2021-41379-7dbb86de 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/zxshell-malware-f0b70adb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/rejetto-http-file-server-rce-a133193c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/exploit-for-cve-2017-0261-864403a1 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/malware-shellcode-in-verclsid-target-process-b7967e22 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/equation-group-c2-communication-881834a4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/turla-png-dropper-service-1228f8e2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sshd-error-message-cve-2018-15473-4c9d903d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/apt29-2018-phishing-campaign-commandline-indicators-7453575c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/tropictrooper-campaign-november-2018-8c7090c3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/exploit-for-cve-2015-1641-7993792c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/notpetya-ransomware-activity-79aeeb41 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/stonedrill-service-install-9e987c6c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/lazarus-system-binary-masquerading-3f7f5b0b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cleartext-protocol-usage-via-netflow-7e4bfe58 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/fortinet-cve-2018-13379-exploitation-a2e97350 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/turla-group-lateral-movement-c601f20d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/oceanlotus-registry-activity-4ac5fc44 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/oilrig-apt-schedule-task-persistence-security-c0580559 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/droppers-exploiting-cve-2017-11882-678eb5f4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/exploit-for-cve-2017-8759-fdd84c68 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cosmicduke-service-installation-cb062102 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/fireball-archer-install-3d4aebe0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-apt10-cloud-hopper-activity-966e4016 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/ps-exe-renamed-sysinternals-tool-18da1007 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/turla-group-named-pipes-739915e4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/turla-service-install-1df8b3da 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/adwind-rat-jrat-1fac1481 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-plugx-activity-aeab5ec5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/wannacry-ransomware-activity-41d40bff 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pandemic-registry-key-47e0852a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/apt27-emissary-panda-activity-9aa01d62 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-muddywater-apt-activity-36222790 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/oilrig-apt-registry-persistence-7bdf2a7c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/oracle-weblogic-exploit-37e8369b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/apt29-2018-phishing-campaign-file-indicators-3a3f81ca 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/defrag-deactivation-958d81aa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/scanner-poc-for-cve-2019-0708-rdp-rce-vuln-8400629e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sudo-privilege-escalation-cve-2019-14287-builtin-7fcc54cb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-emotet-activity-d02e8cf5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-snatch-ransomware-activity-5325945e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/apt31-judgement-panda-activity-03e2746e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/elise-backdoor-activity-e507feb7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sofacy-trojan-loader-activity-ba778144 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/oilrig-apt-activity-ce6e34ca 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/defrag-deactivation-security-c5a178bf 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-bearlpe-exploitation-931b6802 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-rdp-exploit-cve-2019-0708-aaa5b30d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/sudo-privilege-escalation-cve-2019-14287-f74107df 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/oilrig-apt-schedule-task-persistence-system-53ba33fd 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/exploiting-cve-2019-1388-02e0b2ea 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-baby-shark-malware-activity-2b30fa36 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/formbook-process-creation-032f5fb3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/ursnif-malware-c2-url-pattern-932ac737 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/apt40-dropbox-tool-user-agent-5ba715b6 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-empiremonkey-activity-10152a7b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/exploiting-setupcomplete-cmd-cve-2019-1378-1c373b6d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/confluence-exploitation-cve-2019-3398-e9bc39ae 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/chafer-malware-url-pattern-fb502828 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/lockergoga-ransomware-activity-74db3488 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/ursnif-malware-download-url-pattern-a36ce77e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/equation-group-dll-u-export-function-load-d465d1d8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/exploited-cve-2020-10189-zoho-manageengine-846b866e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cisco-asa-ftd-exploit-cve-2020-3452-aba47adc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/citrix-netscaler-attack-cve-2019-19781-ac5a6409 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-dridex-activity-e6eb5a96 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-qbot-activity-4fcac6eb 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-ursnif-malware-activity-registry-21f17060 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/mustang-panda-dropper-2d87d610 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2020-10148-solarwinds-orion-api-auth-bypass-5a35116f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2020-1048-exploitation-attempt-suspicious-new-printer-ports-registry-7ec912f2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2010-5278-exploitation-attempt-a4a899e8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-dtrack-rat-activity-f1531fa4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-ryuk-ransomware-activity-c37510b8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-apt-c-12-bluemushroom-dll-load-activity-via-regsvr32-bd70d3f8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/operation-wocao-activity-1cfac73c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2020-0688-exploitation-via-eventlog-d6266bf5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-printerports-creation-cve-2020-1048-cc08d590 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/terramaster-tos-cve-2020-28188-15c312b9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/host-without-firewall-6b2066c8 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-russian-apt-credential-theft-activity-b83f5166 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/operation-wocao-activity-security-74ad4314 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2020-0688-exchange-exploitation-via-web-log-fce2c2e2 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/oracle-weblogic-exploit-cve-2020-14882-85d466b0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/blue-mockingbird-c3198a27 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-ke3chang-tidepool-malware-activity-7b544661 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/gallium-artefacts-builtin-3db10f25 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/turla-group-commands-may-2020-9e2e51c5 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2020-0688-exploitation-attempt-7c64e577 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/exploitation-attempt-of-cve-2020-1472-execution-of-zerologon-poc-dcc6a01e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/citrix-ads-exploitation-cve-2020-8193-cve-2020-8195-0d0d9a8a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/blue-mockingbird-registry-92b0b372 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-maze-ransomware-activity-29fd07fc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/greenbug-espionage-group-indicators-3711eee4 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/suspicious-vbscript-un2452-pattern-20c3f09d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/exploitation-of-cve-2021-26814-in-wazuh-b9888738 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/dns-rce-cve-2020-1350-b5281f31 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2020-5902-f5-big-ip-exploitation-attempt-44b53b1c 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/comrat-network-communication-7857f021 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/trickbot-malware-activity-58bf96d9 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/lazarus-group-activity-24c4d154 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/solarwinds-supernova-webshell-access-a2cee20b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/printernightmare-mimikatz-driver-name-ba6b9e43 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/default-credentials-usage-1a395cbc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-emotet-rundll32-execution-54e57ce3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/evilnum-apt-golden-chickens-deployment-via-ocx-files-8acf3cfa 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/leviathan-registry-key-activity-70d43542 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/taidoor-rat-dll-load-d1aa3382 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/windows-spooler-service-suspicious-binary-load-02fb90de 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2021-1675-print-spooler-exploitation-ipc-access-8fe1c584 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2021-21978-exploitation-attempt-77586a7f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/fortinet-cve-2021-22123-exploitation-f425637f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/flowcloud-registry-markers-5118765f 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/gallium-iocs-440a56bf 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/unc2452-process-creation-patterns-9be34ad0 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/winnti-malware-hk-university-campaign-3121461b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2021-1675-print-spooler-exploitation-filename-pattern-2131cfb3 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2021-21972-vsphere-exploitation-179ed852 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/vmware-vcenter-server-file-upload-cve-2021-22005-b014ea07 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pulse-secure-attack-cve-2019-11510-2dbc10d7 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/unc2452-powershell-pattern-b7155193 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/winnti-pipemon-characteristics-73d70463 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-printnightmare-exploitation-attempt-5b2bbc47 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/cve-2021-1675-print-spooler-exploitation-f34d942d 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/oracle-weblogic-exploit-cve-2021-2109-687f6504 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-cve-2021-26084-exploitation-attempt-38825179 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-cve-2021-27905-exploitation-attempt-0bbcd74b 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/antivirus-printernightmare-cve-2021-34527-exploit-detection-6fe1719e 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/possible-cve-2021-1675-print-spooler-exploitation-4e64668a 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/arcadyan-router-exploitations-f0500377 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/pulse-connect-secure-rce-attack-cve-2021-22893-5525edac 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/potential-cve-2021-26857-exploitation-attempt-cd479ccc 2026-06-06 monthly 0.5 https://www.intelfusions.com/rules/serv-u-exploitation-cve-2021-35211-by-dev-0322-75578840 2026-06-06 monthly 0.5