UAC Bypass Using Event Viewer RecentViews

Rule Info

Name
UAC Bypass Using Event Viewer RecentViews
Author
Nasreddine Bencherchali (Nextron Systems)
Description
Detects the pattern of UAC Bypass using Event Viewer RecentViews
Date
2022-11-22 00:00:00
Modified
None
Id
30fc8de7-d833-40c4-96b6-28319fbc4f6c
Tags
attack.defense-evasion attack.privilege-escalation
Type
Community Rule

Rule History

Author
Title
Date
Commit
Nasreddine Bencherchali
Merge PR #4950 from @nasbench - Comply With v2 Spec Changes
2024-08-12
Nasreddine Bencherchali
feat: updates and enhancements
2023-02-14
Nasreddine Bencherchali
chore: add nextron authors tag
2023-02-01
Nasreddine Bencherchali
feat: general fixes
2022-11-22