Skip to content

Commit

Permalink
fix: remove wrong telnet rule
Browse files Browse the repository at this point in the history
  • Loading branch information
banditopazzo authored and vadorovsky committed Jul 3, 2024
1 parent 9f837a3 commit d725099
Showing 1 changed file with 0 additions and 7 deletions.
7 changes: 0 additions & 7 deletions rules/lateral_movement/telnet_network_activity.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -17,13 +17,6 @@
description: Detects the execution of the Telnet utility. Attackers may use Telnet to establish a remote connection to a device or server.
condition: header.image == "/usr/bin/telnet"

- name: Telnet network activity - Accept
type: Accept
category: lateral_movement
severity: medium
description: Detects Telnet network activity. Attackers may use Telnet to establish a remote connection to a device or server.
condition: header.image == "/usr/bin/telnet"

- name: Telnet network activity - Connect
type: Connect
category: lateral_movement
Expand Down

0 comments on commit d725099

Please sign in to comment.