Techniques
Sample rules
Service Reload or Start - Linux
- source: sigma
- technicques:
- t1543
- t1543.002
Description
Detects the start, reload or restart of a service.
Detection logic
condition: selection
selection:
a0|contains:
- systemctl
- service
a1|contains:
- reload
- start
type: EXECVE