From 5912f8e7fc56da45b1cd86752e6031a2d4b2444b Mon Sep 17 00:00:00 2001
From: dluxtron <106139814+dluxtron@users.noreply.github.com>
Date: Thu, 7 Nov 2024 08:52:00 +1000
Subject: [PATCH] uploading new dataset

---
 .../attack_techniques/T1095/palologs/disable_rdp.yml  | 11 +++++++++++
 .../attack_techniques/T1095/palologs/large_icmp.log   |  3 +++
 2 files changed, 14 insertions(+)
 create mode 100644 datasets/attack_techniques/T1095/palologs/disable_rdp.yml
 create mode 100644 datasets/attack_techniques/T1095/palologs/large_icmp.log

diff --git a/datasets/attack_techniques/T1095/palologs/disable_rdp.yml b/datasets/attack_techniques/T1095/palologs/disable_rdp.yml
new file mode 100644
index 00000000..2486956c
--- /dev/null
+++ b/datasets/attack_techniques/T1095/palologs/disable_rdp.yml
@@ -0,0 +1,11 @@
+author: Dean Luxton
+id: b296a81a-b550-46c2-9a15-3c6157d8bb7a
+date: '2024-11-07'
+description: Generated datasets for large outbound ICMP using Palo Alto Firewall.
+environment: attack_range
+dataset:
+- https://media.githubusercontent.com/media/splunk/attack_data/master/datasets/attack_techniques/T1095/palologs/large_icmp.log
+sourcetypes:
+- 'pan:traffic'
+references:
+- https://research.splunk.com/network/e9c102de-4d43-42a7-b1c8-8062ea297419/
\ No newline at end of file
diff --git a/datasets/attack_techniques/T1095/palologs/large_icmp.log b/datasets/attack_techniques/T1095/palologs/large_icmp.log
new file mode 100644
index 00000000..6bdccb18
--- /dev/null
+++ b/datasets/attack_techniques/T1095/palologs/large_icmp.log
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:79b4c41305fd2cedc9f50656885aafcd85efb2e9d09abe715b774299640f7c18
+size 4523