| Titre | Rechercher un processus par contenu de l’exécutable |
|---|---|
| ID | RA2406 |
| Description | Find a process that is being executed at the moment or at a particular time in the past by its executable content (i.e. specific string, keyword, binary pattern etc) |
| Auteur | your name/nickname/twitter |
| Creation Date | DD.MM.YYYY |
| Catégorie | Process |
| Étapes | RS0002: Identification |
| References | <ul><li>https://example.com</li></ul> |
| Requirements | <ul><li>DN_zeek_conn_log</li></ul> |
Workflow
Description of the workflow for single Response Action in markdown format.
Here newlines will be saved.