paulmataruso/main
1
0
Fork 0
mirror of https://github.com/socfortress/Wazuh-Rules.git synced 2025-10-30 19:33:32 +00:00
Code Issues Packages Projects Releases Wiki Activity

Create 200400-nmap-scan_rules.xml

Browse Source
This commit is contained in:
SOCFortress
2022-08-08 16:23:48 -05:00
committed by GitHub
parent 2b3ea3b61c
commit a6e306cd05
1 changed files with 9 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
Nmap/200400-nmap-scan_rules.xml Normal file
View File

@@ -0,0 +1,9 @@
<group name="linux,nmap,network_scan">
<rule id="200400" level="3">
<decoded_as>json</decoded_as>
<field name="nmap_host">\.+</field>
<field name="nmap_protocol">\.+</field>
<description>NMAP: Network Scan Host $(nmap_host)</description>
<options>no_full_log</options>
</rule>
</group>