Rule Info
Name
UAC Bypass Using Event Viewer RecentViews
Author
Nasreddine Bencherchali (Nextron Systems)
Description
Detects the pattern of UAC Bypass using Event Viewer RecentViews
Date
2022-11-22 00:00:00
Modified
None
Id
30fc8de7-d833-40c4-96b6-28319fbc4f6c
Tags
attack.defense_evasion attack.privilege_escalation DEMO
Type
Community Rule
Link to Public Repo