graph G {
    compound="true"
    rankdir="TB"
    bgcolor="white"
    fontname="Tahoma"

    node [
        fixedsize="false"
        fontname="Tahoma"
        color="white"
        fillcolor="deepskyblue2"
        fontcolor="black"
        shape="box"
        style="filled"
        penwidth="1.0"
    ]
    edge [
        fontname="Arial"
        color="#00688b"
        fontcolor="black"
        fontsize="12"
        arrowsize="0.5"
        penwidth="1.0"
    ]




    "[rules/integrations/github/execution_new_github_app_installed.toml]" -- "[rules/integrations/github/defense_evasion_github_protected_branch_settings_changed.toml]" [label=" 4 ", penwidth="4", color="#00688b93"];
    "[rules/integrations/github/persistence_organization_owner_role_granted.toml]" -- "[rules/integrations/github/execution_github_app_deleted.toml]" [label=" 4 ", penwidth="4", color="#00688b93"];
    "[rules/integrations/github/persistence_github_org_owner_added.toml]" -- "[rules/integrations/github/execution_github_high_number_of_cloned_repos_from_pat.toml]" [label=" 4 ", penwidth="4", color="#00688b93"];
    "[rules/integrations/github/persistence_github_org_owner_added.toml]" -- "[rules/integrations/github/impact_github_repository_deleted.toml]" [label=" 4 ", penwidth="4", color="#00688b93"];
    "[rules/integrations/github/persistence_organization_owner_role_granted.toml]" -- "[rules/integrations/github/defense_evasion_github_protected_branch_settings_changed.toml]" [label=" 4 ", penwidth="4", color="#00688b93"];
    "[rules/integrations/github/impact_github_repository_deleted.toml]" -- "[rules/integrations/github/execution_github_high_number_of_cloned_repos_from_pat.toml]" [label=" 4 ", penwidth="4", color="#00688b93"];
    "[rules/linux/persistence_insmod_kernel_module_load.toml]" -- "[rules/linux/persistence_dynamic_linker_backup.toml]" [label=" 4 ", penwidth="4", color="#00688b93"];
    "[rules/integrations/github/execution_github_high_number_of_cloned_repos_from_pat.toml]" -- "[rules/integrations/github/execution_github_app_deleted.toml]" [label=" 4 ", penwidth="4", color="#00688b93"];
    "[rules/linux/persistence_kde_autostart_modification.toml]" -- "[rules/linux/command_and_control_linux_ssh_x11_forwarding.toml]" [label=" 4 ", penwidth="4", color="#00688b93"];
    "[rules/integrations/github/execution_github_high_number_of_cloned_repos_from_pat.toml]" -- "[rules/integrations/github/defense_evasion_github_protected_branch_settings_changed.toml]" [label=" 4 ", penwidth="4", color="#00688b93"];
    "[rules/linux/persistence_kworker_file_creation.toml]" -- "[rules/linux/persistence_kde_autostart_modification.toml]" [label=" 4 ", penwidth="4", color="#00688b93"];
    "[rules/integrations/github/execution_github_app_deleted.toml]" -- "[rules/integrations/github/defense_evasion_github_protected_branch_settings_changed.toml]" [label=" 4 ", penwidth="4", color="#00688b93"];
    "[rules/linux/persistence_kde_autostart_modification.toml]" -- "[rules/linux/command_and_control_linux_suspicious_proxychains_activity.toml]" [label=" 4 ", penwidth="4", color="#00688b93"];
    "[rules/linux/persistence_kworker_file_creation.toml]" -- "[rules/linux/command_and_control_linux_suspicious_proxychains_activity.toml]" [label=" 4 ", penwidth="4", color="#00688b93"];
    "[rules/integrations/github/persistence_github_org_owner_added.toml]" -- "[rules/integrations/github/execution_new_github_app_installed.toml]" [label=" 4 ", penwidth="4", color="#00688b93"];
    "[rules/linux/persistence_kworker_file_creation.toml]" -- "[rules/linux/command_and_control_linux_proxychains_activity.toml]" [label=" 4 ", penwidth="4", color="#00688b93"];
    "[rules/linux/persistence_setuid_setgid_capability_set.toml]" -- "[rules/linux/persistence_linux_user_added_to_privileged_group.toml]" [label=" 4 ", penwidth="4", color="#00688b93"];
    "[rules/linux/command_and_control_linux_suspicious_proxychains_activity.toml]" -- "[rules/linux/command_and_control_linux_ssh_x11_forwarding.toml]" [label=" 4 ", penwidth="4", color="#00688b93"];
    "[rules/integrations/github/impact_github_repository_deleted.toml]" -- "[rules/integrations/github/execution_github_app_deleted.toml]" [label=" 4 ", penwidth="4", color="#00688b93"];
    "[rules/linux/persistence_kworker_file_creation.toml]" -- "[rules/linux/command_and_control_linux_ssh_x11_forwarding.toml]" [label=" 4 ", penwidth="4", color="#00688b93"];
    "[rules/integrations/github/impact_github_repository_deleted.toml]" -- "[rules/integrations/github/defense_evasion_github_protected_branch_settings_changed.toml]" [label=" 4 ", penwidth="4", color="#00688b93"];
    "[rules/integrations/github/persistence_organization_owner_role_granted.toml]" -- "[rules/integrations/github/execution_new_github_app_installed.toml]" [label=" 4 ", penwidth="4", color="#00688b93"];
    "[rules/linux/command_and_control_linux_suspicious_proxychains_activity.toml]" -- "[rules/linux/command_and_control_linux_proxychains_activity.toml]" [label=" 4 ", penwidth="4", color="#00688b93"];
    "[rules/linux/defense_evasion_attempt_to_disable_syslog_service.toml]" -- "[rules/linux/defense_evasion_acl_modification_via_setfacl.toml]" [label=" 4 ", penwidth="4", color="#00688b93"];
    "[rules/integrations/github/persistence_organization_owner_role_granted.toml]" -- "[rules/integrations/github/execution_github_high_number_of_cloned_repos_from_pat.toml]" [label=" 4 ", penwidth="4", color="#00688b93"];
    "[rules/linux/command_and_control_linux_ssh_x11_forwarding.toml]" -- "[rules/linux/command_and_control_linux_proxychains_activity.toml]" [label=" 4 ", penwidth="4", color="#00688b93"];
    "[rules/integrations/okta/persistence_stolen_credentials_used_to_login_to_okta_account_after_mfa_reset.toml]" -- "[rules/integrations/okta/initial_access_first_occurrence_user_session_started_via_proxy.toml]" [label=" 4 ", penwidth="4", color="#00688b93"];
    "[rules/linux/impact_memory_swap_modification.toml]" -- "[rules/linux/exfiltration_potential_data_splitting_for_exfiltration.toml]" [label=" 4 ", penwidth="4", color="#00688b93"];
    "[rules/integrations/github/execution_new_github_app_installed.toml]" -- "[rules/integrations/github/execution_github_high_number_of_cloned_repos_from_pat.toml]" [label=" 4 ", penwidth="4", color="#00688b93"];
    "[rules/integrations/github/persistence_github_org_owner_added.toml]" -- "[rules/integrations/github/defense_evasion_github_protected_branch_settings_changed.toml]" [label=" 4 ", penwidth="4", color="#00688b93"];
    "[rules/integrations/github/persistence_github_org_owner_added.toml]" -- "[rules/integrations/github/execution_github_app_deleted.toml]" [label=" 4 ", penwidth="4", color="#00688b93"];
    "[rules/integrations/github/execution_new_github_app_installed.toml]" -- "[rules/integrations/github/execution_github_app_deleted.toml]" [label=" 4 ", penwidth="4", color="#00688b93"];
    "[rules/integrations/github/persistence_organization_owner_role_granted.toml]" -- "[rules/integrations/github/impact_github_repository_deleted.toml]" [label=" 4 ", penwidth="4", color="#00688b93"];
    "[rules/linux/persistence_kde_autostart_modification.toml]" -- "[rules/linux/command_and_control_linux_proxychains_activity.toml]" [label=" 4 ", penwidth="4", color="#00688b93"];
    "[rules/linux/execution_shell_openssl_client_or_server.toml]" -- "[rules/linux/execution_unix_socket_communication.toml]" [label=" 4 ", penwidth="4", color="#00688b93"];
    "[rules/integrations/github/impact_github_repository_deleted.toml]" -- "[rules/integrations/github/execution_new_github_app_installed.toml]" [label=" 4 ", penwidth="4", color="#00688b93"];
    "[rules/integrations/github/persistence_organization_owner_role_granted.toml]" -- "[rules/integrations/github/persistence_github_org_owner_added.toml]" [label=" 4 ", penwidth="4", color="#00688b93"];
    "[rules/linux/persistence_kde_autostart_modification.toml]" -- "[rules/linux/persistence_etc_file_creation.toml]" [label=" 4 ", penwidth="4", color="#00688b93"];
    "[detection_rules/devtools.py]" -- "[pyproject.toml]" [label=" 4 ", penwidth="4", color="#00688b93"];
    "[rules/integrations/okta/defense_evasion_attempt_to_delete_okta_network_zone.toml]" -- "[rules/integrations/github/persistence_github_org_owner_added.toml]" [label=" 3 ", penwidth="3", color="#00688b82"];
    "[rules/integrations/okta/initial_access_suspicious_activity_reported_by_okta_user.toml]" -- "[rules/integrations/okta/defense_evasion_attempt_to_deactivate_okta_network_zone.toml]" [label=" 3 ", penwidth="3", color="#00688b82"];
    "[rules/integrations/okta/persistence_administrator_role_assigned_to_okta_user.toml]" -- "[rules/integrations/github/persistence_organization_owner_role_granted.toml]" [label=" 3 ", penwidth="3", color="#00688b82"];
    "[rules/integrations/okta/persistence_mfa_deactivation_with_no_reactivation.toml]" -- "[rules/integrations/github/execution_github_app_deleted.toml]" [label=" 3 ", penwidth="3", color="#00688b82"];
    "[rules/integrations/okta/credential_access_okta_potentially_successful_okta_bombing_via_push_notifications.toml]" -- "[rules/integrations/github/execution_new_github_app_installed.toml]" [label=" 3 ", penwidth="3", color="#00688b82"];
    "[rules/integrations/okta/initial_access_suspicious_activity_reported_by_okta_user.toml]" -- "[rules/integrations/okta/credential_access_user_impersonation_access.toml]" [label=" 3 ", penwidth="3", color="#00688b82"];
    "[rules/integrations/okta/persistence_attempt_to_create_okta_api_token.toml]" -- "[rules/integrations/github/execution_github_app_deleted.toml]" [label=" 3 ", penwidth="3", color="#00688b82"];
    "[rules/integrations/okta/okta_threatinsight_threat_suspected_promotion.toml]" -- "[rules/integrations/okta/credential_access_okta_brute_force_or_password_spraying.toml]" [label=" 3 ", penwidth="3", color="#00688b82"];
    "[rules/linux/defense_evasion_hidden_shared_object.toml]" -- "[rules/linux/defense_evasion_dynamic_linker_file_creation.toml]" [label=" 3 ", penwidth="3", color="#00688b82"];
    "[rules/integrations/endpoint/impact_elastic_ransomware_prevented.toml]" -- "[rules/integrations/endpoint/defense_evasion_elastic_memory_threat_prevented.toml]" [label=" 3 ", penwidth="3", color="#00688b82"];
    "[rules/integrations/okta/persistence_attempt_to_create_okta_api_token.toml]" -- "[rules/integrations/okta/initial_access_new_authentication_behavior_detection.toml]" [label=" 3 ", penwidth="3", color="#00688b82"];

}