← Library
kqlElastic-2.0from elastic/detection-rules

Windows CryptoAPI Spoofing Vulnerability (CVE-2020-0601 - CurveBall)

Quality
92
FP risk
Forks
0
Views
0
ATT&CK techniques
T1553T1553.002
Rule sourcerules/windows/defense_evasion_cve_2020_0601.toml
event.provider:"Microsoft-Windows-Audit-CVE" and message:"[CVE-2020-0601]" and host.os.type:windows