| Titre | Obtenir la capacité de trouver un processus exécutable par un contenu |
|---|---|
| ID | RA1406 |
| Description | Make sure you have the ability to find process executed at a particular time in the past by its executable content pattern (i.e. specific string, keyword, binary pattern etc) |
| Auteur | your name/nickname/twitter |
| Creation Date | DD.MM.YYYY |
| Catégorie | Process |
| Étapes | RS0001: Préparation |
| References | <ul><li>https://example.com</li></ul> |
| Requirements | <ul><li>DN_zeek_conn_log</li></ul> |
Workflow
Description of the workflow for single Response Action in markdown format.
Here newlines will be saved.