GitHub

delete_shadowcopy_with_powershell.yml

description: The following analytic detects the use of PowerShell to delete shadow copies via the WMIC PowerShell module. It leverages EventCode 4104 and searches for specific keywords like ...
IEEE

DN-DETR: Accelerate DETR Training by Introducing Query DeNoising

Abstract: We present in this paper a novel denoising training method to speed up DETR (DEtection TRansformer) training and offer a deepened understanding of the slow convergence issue of DETR-like ...
GitHub

regsvr32_silent_and_install_param_dll_loading.yml

description: The following analytic detects the loading of a DLL using the regsvr32 application with the silent parameter and DLLInstall execution. It leverages data from Endpoint Detection and ...