Detection rules › By event

Microsoft-Windows-Security-Auditing Event ID 4688

1966 detection rules reference this event. View event page.

Sigma (755)

Elastic (255)

Splunk (812)

Kusto (89)

YARA-L (55)