From 10d2231fecf5eef13a141a22fdc486225f281add Mon Sep 17 00:00:00 2001
From: krdmnbrk <bk.karaduman@gmail.com>
Date: Sun, 12 Jan 2025 10:30:07 +0300
Subject: [PATCH] New features added. Platform column, last updated date, light
 mode and JSON exporter.

---
 .gitignore                                    |     3 +-
 dist/assets/css/buttons.bootstrap5.min.css    |     1 +
 dist/assets/css/dataTables.bootstrap5.css     |   515 -
 dist/assets/css/dataTables.bootstrap5.min.css |     5 +
 dist/assets/images/linux-logo.svg             |     1 +
 dist/assets/images/splunk-logo.png            |   Bin 7964 -> 1404 bytes
 dist/assets/images/windows-logo.svg           |     1 +
 dist/assets/js/buttons.bootstrap5.min.js      |     4 +
 dist/assets/js/dataTables.bootstrap5.min.js   |     4 +
 dist/assets/js/dataTables.buttons.min.js      |     4 +
 dist/assets/js/dataTables.js                  | 13601 ------------
 dist/assets/js/dataTables.min.js              |     4 +
 dist/assets/js/jquery-3.7.1.js                | 10716 ---------
 dist/assets/js/jquery-3.7.1.min.js            |     2 +
 dist/index.html                               | 18148 +++++++++-------
 15 files changed, 10509 insertions(+), 32500 deletions(-)
 create mode 100644 dist/assets/css/buttons.bootstrap5.min.css
 delete mode 100644 dist/assets/css/dataTables.bootstrap5.css
 create mode 100644 dist/assets/css/dataTables.bootstrap5.min.css
 create mode 100644 dist/assets/images/linux-logo.svg
 create mode 100644 dist/assets/images/windows-logo.svg
 create mode 100644 dist/assets/js/buttons.bootstrap5.min.js
 create mode 100644 dist/assets/js/dataTables.bootstrap5.min.js
 create mode 100644 dist/assets/js/dataTables.buttons.min.js
 delete mode 100644 dist/assets/js/dataTables.js
 create mode 100644 dist/assets/js/dataTables.min.js
 delete mode 100644 dist/assets/js/jquery-3.7.1.js
 create mode 100644 dist/assets/js/jquery-3.7.1.min.js

diff --git a/.gitignore b/.gitignore
index a8a6bda..a772775 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1 +1,2 @@
-generator
\ No newline at end of file
+generator
+.vscode
\ No newline at end of file
diff --git a/dist/assets/css/buttons.bootstrap5.min.css b/dist/assets/css/buttons.bootstrap5.min.css
new file mode 100644
index 0000000..6855b97
--- /dev/null
+++ b/dist/assets/css/buttons.bootstrap5.min.css
@@ -0,0 +1 @@
+@keyframes dtb-spinner{100%{transform:rotate(360deg)}}@-o-keyframes dtb-spinner{100%{-o-transform:rotate(360deg);transform:rotate(360deg)}}@-ms-keyframes dtb-spinner{100%{-ms-transform:rotate(360deg);transform:rotate(360deg)}}@-webkit-keyframes dtb-spinner{100%{-webkit-transform:rotate(360deg);transform:rotate(360deg)}}@-moz-keyframes dtb-spinner{100%{-moz-transform:rotate(360deg);transform:rotate(360deg)}}div.dataTables_wrapper{position:relative}div.dt-buttons{position:initial}div.dt-buttons .dt-button{overflow:hidden;text-overflow:ellipsis;white-space:nowrap}div.dt-button-info{position:fixed;top:50%;left:50%;width:400px;margin-top:-100px;margin-left:-200px;background-color:white;border-radius:.75em;box-shadow:3px 4px 10px 1px rgba(0, 0, 0, 0.8);text-align:center;z-index:2003;overflow:hidden}div.dt-button-info h2{padding:2rem 2rem 1rem 2rem;margin:0;font-weight:normal}div.dt-button-info>div{padding:1em 2em 2em 2em}div.dtb-popover-close{position:absolute;top:6px;right:6px;width:22px;height:22px;text-align:center;border-radius:3px;cursor:pointer;z-index:2003}button.dtb-hide-drop{display:none !important}div.dt-button-collection-title{text-align:center;padding:.3em .5em .5em;margin-left:.5em;margin-right:.5em;font-size:.9em;white-space:nowrap;overflow:hidden;text-overflow:ellipsis}div.dt-button-collection-title:empty{display:none}span.dt-button-spacer{display:inline-block;margin:.5em;white-space:nowrap}span.dt-button-spacer.bar{border-left:1px solid rgba(0, 0, 0, 0.3);vertical-align:middle;padding-left:.5em}span.dt-button-spacer.bar:empty{height:1em;width:1px;padding-left:0}div.dt-button-collection .dt-button-active{padding-right:3em}div.dt-button-collection .dt-button-active:after{position:absolute;top:50%;margin-top:-10px;right:1em;display:inline-block;content:"✓";color:inherit}div.dt-button-collection .dt-button-active.dt-button-split{padding-right:0}div.dt-button-collection .dt-button-active.dt-button-split:after{display:none}div.dt-button-collection .dt-button-active.dt-button-split>*:first-child{padding-right:3em}div.dt-button-collection .dt-button-active.dt-button-split>*:first-child:after{position:absolute;top:50%;margin-top:-10px;right:1em;display:inline-block;content:"✓";color:inherit}div.dt-button-collection .dt-button-active-a a{padding-right:3em}div.dt-button-collection .dt-button-active-a a:after{position:absolute;right:1em;display:inline-block;content:"✓";color:inherit}div.dt-button-collection span.dt-button-spacer{width:100%;font-size:.9em;text-align:center;margin:.5em 0}div.dt-button-collection span.dt-button-spacer:empty{height:0;width:100%}div.dt-button-collection span.dt-button-spacer.bar{border-left:none;border-bottom:1px solid rgba(0, 0, 0, 0.1);padding-left:0}@media print{table.dataTable tr>*{box-shadow:none !important}}html.dark div.dt-button-info{background-color:var(--dt-html-background);border:1px solid rgba(255, 255, 255, 0.15)}div.dt-buttons div.btn-group{position:initial}div.dt-buttons div.dropdown-menu{margin-top:4px;width:200px}div.dt-buttons div.dropdown-menu .dt-button{position:relative}div.dt-buttons div.dropdown-menu .dt-button.dropdown-toggle::after{position:absolute;right:12px;top:14px}div.dt-buttons div.dropdown-menu div.dt-button-split{display:flex;flex-direction:row;flex-wrap:wrap;justify-content:flex-start;align-content:flex-start;align-items:stretch}div.dt-buttons div.dropdown-menu div.dt-button-split a:first-child{min-width:auto;flex:1 0 50px;padding-right:0}div.dt-buttons div.dropdown-menu div.dt-button-split button:last-child{min-width:33px;flex:0;background:transparent;border:none;line-height:1rem;color:var(--bs-dropdown-link-color);padding:var(--bs-dropdown-item-padding-y) var(--bs-dropdown-item-padding-x);overflow:visible}div.dt-buttons div.dropdown-menu div.dt-button-split button:last-child:hover{color:var(--bs-dropdown-link-hover-color);background-color:var(--bs-dropdown-link-hover-bg)}div.dt-buttons div.dropdown-menu.fixed{position:fixed;display:block;top:50%;left:50%;margin-left:-75px;border-radius:5px;background-color:white;padding:.5em}div.dt-buttons div.dropdown-menu.fixed.two-column{margin-left:-200px}div.dt-buttons div.dropdown-menu.fixed.three-column{margin-left:-225px}div.dt-buttons div.dropdown-menu.fixed.four-column{margin-left:-300px}div.dt-buttons div.dropdown-menu.fixed.columns{margin-left:-409px}@media screen and (max-width: 1024px){div.dt-buttons div.dropdown-menu.fixed.columns{margin-left:-308px}}@media screen and (max-width: 640px){div.dt-buttons div.dropdown-menu.fixed.columns{margin-left:-203px}}@media screen and (max-width: 460px){div.dt-buttons div.dropdown-menu.fixed.columns{margin-left:-100px}}div.dt-buttons div.dropdown-menu.fixed>:last-child{max-height:100vh;overflow:auto}div.dt-buttons div.dropdown-menu.two-column>:last-child,div.dt-buttons div.dropdown-menu.three-column>:last-child,div.dt-buttons div.dropdown-menu.four-column>:last-child{display:block !important;column-gap:8px}div.dt-buttons div.dropdown-menu.two-column>:last-child>*,div.dt-buttons div.dropdown-menu.three-column>:last-child>*,div.dt-buttons div.dropdown-menu.four-column>:last-child>*{-webkit-column-break-inside:avoid;break-inside:avoid}div.dt-buttons div.dropdown-menu.two-column{width:400px}div.dt-buttons div.dropdown-menu.two-column>:last-child{padding-bottom:1px;column-count:2}div.dt-buttons div.dropdown-menu.three-column{width:450px}div.dt-buttons div.dropdown-menu.three-column>:last-child{padding-bottom:1px;column-count:3}div.dt-buttons div.dropdown-menu.four-column{width:600px}div.dt-buttons div.dropdown-menu.four-column>:last-child{padding-bottom:1px;column-count:4}div.dt-buttons div.dropdown-menu .dt-button{border-radius:0}div.dt-buttons div.dropdown-menu.columns{width:auto}div.dt-buttons div.dropdown-menu.columns>:last-child{display:flex;flex-wrap:wrap;justify-content:flex-start;align-items:center;gap:6px;width:818px;padding-bottom:1px}div.dt-buttons div.dropdown-menu.columns>:last-child .dt-button{min-width:200px;flex:0 1;margin:0}div.dt-buttons div.dropdown-menu.columns.dtb-b3>:last-child,div.dt-buttons div.dropdown-menu.columns.dtb-b2>:last-child,div.dt-buttons div.dropdown-menu.columns.dtb-b1>:last-child{justify-content:space-between}div.dt-buttons div.dropdown-menu.columns.dtb-b3 .dt-button{flex:1 1 32%}div.dt-buttons div.dropdown-menu.columns.dtb-b2 .dt-button{flex:1 1 48%}div.dt-buttons div.dropdown-menu.columns.dtb-b1 .dt-button{flex:1 1 100%}@media screen and (max-width: 1024px){div.dt-buttons div.dropdown-menu.columns>:last-child{width:612px}}@media screen and (max-width: 640px){div.dt-buttons div.dropdown-menu.columns>:last-child{width:406px}div.dt-buttons div.dropdown-menu.columns.dtb-b3 .dt-button{flex:0 1 32%}}@media screen and (max-width: 460px){div.dt-buttons div.dropdown-menu.columns>:last-child{width:200px}}div.dt-buttons span.dt-button-spacer.empty{margin:1px}div.dt-buttons span.dt-button-spacer.bar:empty{height:inherit}div.dt-buttons .btn.processing{color:rgba(0, 0, 0, 0.2)}div.dt-buttons .btn.processing:after{position:absolute;top:50%;left:50%;width:16px;height:16px;margin:-8px 0 0 -8px;box-sizing:border-box;display:block;content:" ";border:2px solid rgb(40, 40, 40);border-radius:50%;border-left-color:transparent;border-right-color:transparent;animation:dtb-spinner 1500ms infinite linear;-o-animation:dtb-spinner 1500ms infinite linear;-ms-animation:dtb-spinner 1500ms infinite linear;-webkit-animation:dtb-spinner 1500ms infinite linear;-moz-animation:dtb-spinner 1500ms infinite linear}div.dt-button-background{position:fixed;top:0;left:0;width:100%;height:100%;z-index:999}@media screen and (max-width: 767px){div.dt-buttons{float:none;width:100%;text-align:center;margin-bottom:.5em}div.dt-buttons a.btn{float:none}}:root[data-bs-theme=dark] div.dropdown-menu.dt-button-collection.fixed{background-color:rgb(33, 37, 41);border:1px solid rgba(255, 255, 255, 0.15);border-radius:8px}
diff --git a/dist/assets/css/dataTables.bootstrap5.css b/dist/assets/css/dataTables.bootstrap5.css
deleted file mode 100644
index 9d6b5ab..0000000
--- a/dist/assets/css/dataTables.bootstrap5.css
+++ /dev/null
@@ -1,515 +0,0 @@
-@charset "UTF-8";
-:root {
-  --dt-row-selected: 13, 110, 253;
-  --dt-row-selected-text: 255, 255, 255;
-  --dt-row-selected-link: 9, 10, 11;
-  --dt-row-stripe: 0, 0, 0;
-  --dt-row-hover: 0, 0, 0;
-  --dt-column-ordering: 0, 0, 0;
-  --dt-html-background: white;
-}
-:root.dark {
-  --dt-html-background: rgb(33, 37, 41);
-}
-
-table.dataTable td.dt-control {
-  text-align: center;
-  cursor: pointer;
-}
-table.dataTable td.dt-control:before {
-  display: inline-block;
-  box-sizing: border-box;
-  content: "";
-  border-top: 5px solid transparent;
-  border-left: 10px solid rgba(0, 0, 0, 0.5);
-  border-bottom: 5px solid transparent;
-  border-right: 0px solid transparent;
-}
-table.dataTable tr.dt-hasChild td.dt-control:before {
-  border-top: 10px solid rgba(0, 0, 0, 0.5);
-  border-left: 5px solid transparent;
-  border-bottom: 0px solid transparent;
-  border-right: 5px solid transparent;
-}
-
-html.dark table.dataTable td.dt-control:before,
-:root[data-bs-theme=dark] table.dataTable td.dt-control:before,
-:root[data-theme=dark] table.dataTable td.dt-control:before {
-  border-left-color: rgba(255, 255, 255, 0.5);
-}
-html.dark table.dataTable tr.dt-hasChild td.dt-control:before,
-:root[data-bs-theme=dark] table.dataTable tr.dt-hasChild td.dt-control:before,
-:root[data-theme=dark] table.dataTable tr.dt-hasChild td.dt-control:before {
-  border-top-color: rgba(255, 255, 255, 0.5);
-  border-left-color: transparent;
-}
-
-div.dt-scroll {
-  width: 100%;
-}
-
-div.dt-scroll-body thead tr,
-div.dt-scroll-body tfoot tr {
-  height: 0;
-}
-div.dt-scroll-body thead tr th, div.dt-scroll-body thead tr td,
-div.dt-scroll-body tfoot tr th,
-div.dt-scroll-body tfoot tr td {
-  height: 0 !important;
-  padding-top: 0px !important;
-  padding-bottom: 0px !important;
-  border-top-width: 0px !important;
-  border-bottom-width: 0px !important;
-}
-div.dt-scroll-body thead tr th div.dt-scroll-sizing, div.dt-scroll-body thead tr td div.dt-scroll-sizing,
-div.dt-scroll-body tfoot tr th div.dt-scroll-sizing,
-div.dt-scroll-body tfoot tr td div.dt-scroll-sizing {
-  height: 0 !important;
-  overflow: hidden !important;
-}
-
-table.dataTable thead > tr > th:active,
-table.dataTable thead > tr > td:active {
-  outline: none;
-}
-table.dataTable thead > tr > th.dt-orderable-asc span.dt-column-order:before, table.dataTable thead > tr > th.dt-ordering-asc span.dt-column-order:before,
-table.dataTable thead > tr > td.dt-orderable-asc span.dt-column-order:before,
-table.dataTable thead > tr > td.dt-ordering-asc span.dt-column-order:before {
-  position: absolute;
-  display: block;
-  bottom: 50%;
-  content: "▲";
-  content: "▲"/"";
-}
-table.dataTable thead > tr > th.dt-orderable-desc span.dt-column-order:after, table.dataTable thead > tr > th.dt-ordering-desc span.dt-column-order:after,
-table.dataTable thead > tr > td.dt-orderable-desc span.dt-column-order:after,
-table.dataTable thead > tr > td.dt-ordering-desc span.dt-column-order:after {
-  position: absolute;
-  display: block;
-  top: 50%;
-  content: "▼";
-  content: "▼"/"";
-}
-table.dataTable thead > tr > th.dt-orderable-asc, table.dataTable thead > tr > th.dt-orderable-desc, table.dataTable thead > tr > th.dt-ordering-asc, table.dataTable thead > tr > th.dt-ordering-desc,
-table.dataTable thead > tr > td.dt-orderable-asc,
-table.dataTable thead > tr > td.dt-orderable-desc,
-table.dataTable thead > tr > td.dt-ordering-asc,
-table.dataTable thead > tr > td.dt-ordering-desc {
-  position: relative;
-  padding-right: 30px;
-}
-table.dataTable thead > tr > th.dt-orderable-asc span.dt-column-order, table.dataTable thead > tr > th.dt-orderable-desc span.dt-column-order, table.dataTable thead > tr > th.dt-ordering-asc span.dt-column-order, table.dataTable thead > tr > th.dt-ordering-desc span.dt-column-order,
-table.dataTable thead > tr > td.dt-orderable-asc span.dt-column-order,
-table.dataTable thead > tr > td.dt-orderable-desc span.dt-column-order,
-table.dataTable thead > tr > td.dt-ordering-asc span.dt-column-order,
-table.dataTable thead > tr > td.dt-ordering-desc span.dt-column-order {
-  position: absolute;
-  right: 12px;
-  top: 0;
-  bottom: 0;
-  width: 12px;
-}
-table.dataTable thead > tr > th.dt-orderable-asc span.dt-column-order:before, table.dataTable thead > tr > th.dt-orderable-asc span.dt-column-order:after, table.dataTable thead > tr > th.dt-orderable-desc span.dt-column-order:before, table.dataTable thead > tr > th.dt-orderable-desc span.dt-column-order:after, table.dataTable thead > tr > th.dt-ordering-asc span.dt-column-order:before, table.dataTable thead > tr > th.dt-ordering-asc span.dt-column-order:after, table.dataTable thead > tr > th.dt-ordering-desc span.dt-column-order:before, table.dataTable thead > tr > th.dt-ordering-desc span.dt-column-order:after,
-table.dataTable thead > tr > td.dt-orderable-asc span.dt-column-order:before,
-table.dataTable thead > tr > td.dt-orderable-asc span.dt-column-order:after,
-table.dataTable thead > tr > td.dt-orderable-desc span.dt-column-order:before,
-table.dataTable thead > tr > td.dt-orderable-desc span.dt-column-order:after,
-table.dataTable thead > tr > td.dt-ordering-asc span.dt-column-order:before,
-table.dataTable thead > tr > td.dt-ordering-asc span.dt-column-order:after,
-table.dataTable thead > tr > td.dt-ordering-desc span.dt-column-order:before,
-table.dataTable thead > tr > td.dt-ordering-desc span.dt-column-order:after {
-  left: 0;
-  opacity: 0.125;
-  line-height: 9px;
-  font-size: 0.8em;
-}
-table.dataTable thead > tr > th.dt-orderable-asc, table.dataTable thead > tr > th.dt-orderable-desc,
-table.dataTable thead > tr > td.dt-orderable-asc,
-table.dataTable thead > tr > td.dt-orderable-desc {
-  cursor: pointer;
-}
-table.dataTable thead > tr > th.dt-orderable-asc:hover, table.dataTable thead > tr > th.dt-orderable-desc:hover,
-table.dataTable thead > tr > td.dt-orderable-asc:hover,
-table.dataTable thead > tr > td.dt-orderable-desc:hover {
-  outline: 2px solid rgba(0, 0, 0, 0.05);
-  outline-offset: -2px;
-}
-table.dataTable thead > tr > th.dt-ordering-asc span.dt-column-order:before, table.dataTable thead > tr > th.dt-ordering-desc span.dt-column-order:after,
-table.dataTable thead > tr > td.dt-ordering-asc span.dt-column-order:before,
-table.dataTable thead > tr > td.dt-ordering-desc span.dt-column-order:after {
-  opacity: 0.6;
-}
-table.dataTable thead > tr > th.sorting_desc_disabled span.dt-column-order:after, table.dataTable thead > tr > th.sorting_asc_disabled span.dt-column-order:before,
-table.dataTable thead > tr > td.sorting_desc_disabled span.dt-column-order:after,
-table.dataTable thead > tr > td.sorting_asc_disabled span.dt-column-order:before {
-  display: none;
-}
-table.dataTable thead > tr > th:active,
-table.dataTable thead > tr > td:active {
-  outline: none;
-}
-
-div.dt-scroll-body > table.dataTable > thead > tr > th,
-div.dt-scroll-body > table.dataTable > thead > tr > td {
-  overflow: hidden;
-}
-
-:root.dark table.dataTable thead > tr > th.dt-orderable-asc:hover, :root.dark table.dataTable thead > tr > th.dt-orderable-desc:hover,
-:root.dark table.dataTable thead > tr > td.dt-orderable-asc:hover,
-:root.dark table.dataTable thead > tr > td.dt-orderable-desc:hover,
-:root[data-bs-theme=dark] table.dataTable thead > tr > th.dt-orderable-asc:hover,
-:root[data-bs-theme=dark] table.dataTable thead > tr > th.dt-orderable-desc:hover,
-:root[data-bs-theme=dark] table.dataTable thead > tr > td.dt-orderable-asc:hover,
-:root[data-bs-theme=dark] table.dataTable thead > tr > td.dt-orderable-desc:hover {
-  outline: 2px solid rgba(255, 255, 255, 0.05);
-}
-
-div.dt-processing {
-  position: absolute;
-  top: 50%;
-  left: 50%;
-  width: 200px;
-  margin-left: -100px;
-  margin-top: -22px;
-  text-align: center;
-  padding: 2px;
-  z-index: 10;
-}
-div.dt-processing > div:last-child {
-  position: relative;
-  width: 80px;
-  height: 15px;
-  margin: 1em auto;
-}
-div.dt-processing > div:last-child > div {
-  position: absolute;
-  top: 0;
-  width: 13px;
-  height: 13px;
-  border-radius: 50%;
-  background: rgb(13, 110, 253);
-  background: rgb(var(--dt-row-selected));
-  animation-timing-function: cubic-bezier(0, 1, 1, 0);
-}
-div.dt-processing > div:last-child > div:nth-child(1) {
-  left: 8px;
-  animation: datatables-loader-1 0.6s infinite;
-}
-div.dt-processing > div:last-child > div:nth-child(2) {
-  left: 8px;
-  animation: datatables-loader-2 0.6s infinite;
-}
-div.dt-processing > div:last-child > div:nth-child(3) {
-  left: 32px;
-  animation: datatables-loader-2 0.6s infinite;
-}
-div.dt-processing > div:last-child > div:nth-child(4) {
-  left: 56px;
-  animation: datatables-loader-3 0.6s infinite;
-}
-
-@keyframes datatables-loader-1 {
-  0% {
-    transform: scale(0);
-  }
-  100% {
-    transform: scale(1);
-  }
-}
-@keyframes datatables-loader-3 {
-  0% {
-    transform: scale(1);
-  }
-  100% {
-    transform: scale(0);
-  }
-}
-@keyframes datatables-loader-2 {
-  0% {
-    transform: translate(0, 0);
-  }
-  100% {
-    transform: translate(24px, 0);
-  }
-}
-table.dataTable.nowrap th, table.dataTable.nowrap td {
-  white-space: nowrap;
-}
-table.dataTable th,
-table.dataTable td {
-  box-sizing: border-box;
-}
-table.dataTable th.dt-left,
-table.dataTable td.dt-left {
-  text-align: left;
-}
-table.dataTable th.dt-center,
-table.dataTable td.dt-center {
-  text-align: center;
-}
-table.dataTable th.dt-right,
-table.dataTable td.dt-right {
-  text-align: right;
-}
-table.dataTable th.dt-justify,
-table.dataTable td.dt-justify {
-  text-align: justify;
-}
-table.dataTable th.dt-nowrap,
-table.dataTable td.dt-nowrap {
-  white-space: nowrap;
-}
-table.dataTable th.dt-empty,
-table.dataTable td.dt-empty {
-  text-align: center;
-  vertical-align: top;
-}
-table.dataTable th.dt-type-numeric, table.dataTable th.dt-type-date,
-table.dataTable td.dt-type-numeric,
-table.dataTable td.dt-type-date {
-  text-align: right;
-}
-table.dataTable thead th,
-table.dataTable thead td,
-table.dataTable tfoot th,
-table.dataTable tfoot td {
-  text-align: left;
-}
-table.dataTable thead th.dt-head-left,
-table.dataTable thead td.dt-head-left,
-table.dataTable tfoot th.dt-head-left,
-table.dataTable tfoot td.dt-head-left {
-  text-align: left;
-}
-table.dataTable thead th.dt-head-center,
-table.dataTable thead td.dt-head-center,
-table.dataTable tfoot th.dt-head-center,
-table.dataTable tfoot td.dt-head-center {
-  text-align: center;
-}
-table.dataTable thead th.dt-head-right,
-table.dataTable thead td.dt-head-right,
-table.dataTable tfoot th.dt-head-right,
-table.dataTable tfoot td.dt-head-right {
-  text-align: right;
-}
-table.dataTable thead th.dt-head-justify,
-table.dataTable thead td.dt-head-justify,
-table.dataTable tfoot th.dt-head-justify,
-table.dataTable tfoot td.dt-head-justify {
-  text-align: justify;
-}
-table.dataTable thead th.dt-head-nowrap,
-table.dataTable thead td.dt-head-nowrap,
-table.dataTable tfoot th.dt-head-nowrap,
-table.dataTable tfoot td.dt-head-nowrap {
-  white-space: nowrap;
-}
-table.dataTable tbody th.dt-body-left,
-table.dataTable tbody td.dt-body-left {
-  text-align: left;
-}
-table.dataTable tbody th.dt-body-center,
-table.dataTable tbody td.dt-body-center {
-  text-align: center;
-}
-table.dataTable tbody th.dt-body-right,
-table.dataTable tbody td.dt-body-right {
-  text-align: right;
-}
-table.dataTable tbody th.dt-body-justify,
-table.dataTable tbody td.dt-body-justify {
-  text-align: justify;
-}
-table.dataTable tbody th.dt-body-nowrap,
-table.dataTable tbody td.dt-body-nowrap {
-  white-space: nowrap;
-}
-
-/*! Bootstrap 5 integration for DataTables
- *
- * ©2020 SpryMedia Ltd, all rights reserved.
- * License: MIT datatables.net/license/mit
- */
-table.table.dataTable {
-  clear: both;
-  margin-bottom: 0;
-  max-width: none;
-  border-spacing: 0;
-}
-table.table.dataTable.table-striped > tbody > tr:nth-of-type(2n+1) > * {
-  box-shadow: none;
-}
-table.table.dataTable > :not(caption) > * > * {
-  background-color: var(--bs-table-bg);
-}
-table.table.dataTable > tbody > tr {
-  background-color: transparent;
-}
-table.table.dataTable > tbody > tr.selected > * {
-  box-shadow: inset 0 0 0 9999px rgb(13, 110, 253);
-  box-shadow: inset 0 0 0 9999px rgb(var(--dt-row-selected));
-  color: rgb(255, 255, 255);
-  color: rgb(var(--dt-row-selected-text));
-}
-table.table.dataTable > tbody > tr.selected a {
-  color: rgb(9, 10, 11);
-  color: rgb(var(--dt-row-selected-link));
-}
-table.table.dataTable.table-striped > tbody > tr:nth-of-type(2n+1) > * {
-  box-shadow: inset 0 0 0 9999px rgba(var(--dt-row-stripe), 0.05);
-}
-table.table.dataTable.table-striped > tbody > tr:nth-of-type(2n+1).selected > * {
-  box-shadow: inset 0 0 0 9999px rgba(13, 110, 253, 0.95);
-  box-shadow: inset 0 0 0 9999px rgba(var(--dt-row-selected), 0.95);
-}
-table.table.dataTable.table-hover > tbody > tr:hover > * {
-  box-shadow: inset 0 0 0 9999px rgba(var(--dt-row-hover), 0.075);
-}
-table.table.dataTable.table-hover > tbody > tr.selected:hover > * {
-  box-shadow: inset 0 0 0 9999px rgba(13, 110, 253, 0.975);
-  box-shadow: inset 0 0 0 9999px rgba(var(--dt-row-selected), 0.975);
-}
-
-div.dt-container div.dt-layout-start > *:not(:last-child) {
-  margin-right: 1em;
-}
-div.dt-container div.dt-layout-end > *:not(:first-child) {
-  margin-left: 1em;
-}
-div.dt-container div.dt-layout-full {
-  width: 100%;
-}
-div.dt-container div.dt-layout-full > *:only-child {
-  margin-left: auto;
-  margin-right: auto;
-}
-div.dt-container div.dt-layout-table > div {
-  display: block !important;
-}
-
-@media screen and (max-width: 767px) {
-  div.dt-container div.dt-layout-start > *:not(:last-child) {
-    margin-right: 0;
-  }
-  div.dt-container div.dt-layout-end > *:not(:first-child) {
-    margin-left: 0;
-  }
-}
-div.dt-container div.dt-length label {
-  font-weight: normal;
-  text-align: left;
-  white-space: nowrap;
-}
-div.dt-container div.dt-length select {
-  width: auto;
-  display: inline-block;
-  margin-right: 0.5em;
-}
-div.dt-container div.dt-search {
-  text-align: right;
-}
-div.dt-container div.dt-search label {
-  font-weight: normal;
-  white-space: nowrap;
-  text-align: left;
-}
-div.dt-container div.dt-search input {
-  margin-left: 0.5em;
-  display: inline-block;
-  width: auto;
-}
-div.dt-container div.dt-paging {
-  margin: 0;
-}
-div.dt-container div.dt-paging ul.pagination {
-  margin: 2px 0;
-  flex-wrap: wrap;
-}
-div.dt-container div.dt-row {
-  position: relative;
-}
-
-div.dt-scroll-head table.dataTable {
-  margin-bottom: 0 !important;
-}
-
-div.dt-scroll-body {
-  border-bottom-color: var(--bs-border-color);
-  border-bottom-width: var(--bs-border-width);
-  border-bottom-style: solid;
-}
-div.dt-scroll-body > table {
-  border-top: none;
-  margin-top: 0 !important;
-  margin-bottom: 0 !important;
-}
-div.dt-scroll-body > table > tbody > tr:first-child {
-  border-top-width: 0;
-}
-div.dt-scroll-body > table > thead > tr {
-  border-width: 0 !important;
-}
-div.dt-scroll-body > table > tbody > tr:last-child > * {
-  border-bottom: none;
-}
-
-div.dt-scroll-foot > .dt-scroll-footInner {
-  box-sizing: content-box;
-}
-div.dt-scroll-foot > .dt-scroll-footInner > table {
-  margin-top: 0 !important;
-  border-top: none;
-}
-div.dt-scroll-foot > .dt-scroll-footInner > table > tfoot > tr:first-child {
-  border-top-width: 0 !important;
-}
-
-@media screen and (max-width: 767px) {
-  div.dt-container div.dt-length,
-  div.dt-container div.dt-search,
-  div.dt-container div.dt-info,
-  div.dt-container div.dt-paging {
-    text-align: center;
-  }
-  div.dt-container .row {
-    --bs-gutter-y: 0.5rem;
-  }
-  div.dt-container div.dt-paging ul.pagination {
-    justify-content: center !important;
-  }
-}
-table.dataTable.table-sm > thead > tr th.dt-orderable-asc, table.dataTable.table-sm > thead > tr th.dt-orderable-desc, table.dataTable.table-sm > thead > tr th.dt-ordering-asc, table.dataTable.table-sm > thead > tr th.dt-ordering-desc,
-table.dataTable.table-sm > thead > tr td.dt-orderable-asc,
-table.dataTable.table-sm > thead > tr td.dt-orderable-desc,
-table.dataTable.table-sm > thead > tr td.dt-ordering-asc,
-table.dataTable.table-sm > thead > tr td.dt-ordering-desc {
-  padding-right: 20px;
-}
-table.dataTable.table-sm > thead > tr th.dt-orderable-asc span.dt-column-order, table.dataTable.table-sm > thead > tr th.dt-orderable-desc span.dt-column-order, table.dataTable.table-sm > thead > tr th.dt-ordering-asc span.dt-column-order, table.dataTable.table-sm > thead > tr th.dt-ordering-desc span.dt-column-order,
-table.dataTable.table-sm > thead > tr td.dt-orderable-asc span.dt-column-order,
-table.dataTable.table-sm > thead > tr td.dt-orderable-desc span.dt-column-order,
-table.dataTable.table-sm > thead > tr td.dt-ordering-asc span.dt-column-order,
-table.dataTable.table-sm > thead > tr td.dt-ordering-desc span.dt-column-order {
-  right: 5px;
-}
-
-div.dt-scroll-head table.table-bordered {
-  border-bottom-width: 0;
-}
-
-div.table-responsive > div.dt-container > div.row {
-  margin: 0;
-}
-div.table-responsive > div.dt-container > div.row > div[class^=col-]:first-child {
-  padding-left: 0;
-}
-div.table-responsive > div.dt-container > div.row > div[class^=col-]:last-child {
-  padding-right: 0;
-}
-
-:root[data-bs-theme=dark] {
-  --dt-row-hover: 255, 255, 255;
-  --dt-row-stripe: 255, 255, 255;
-  --dt-column-ordering: 255, 255, 255;
-}
diff --git a/dist/assets/css/dataTables.bootstrap5.min.css b/dist/assets/css/dataTables.bootstrap5.min.css
new file mode 100644
index 0000000..65c3269
--- /dev/null
+++ b/dist/assets/css/dataTables.bootstrap5.min.css
@@ -0,0 +1,5 @@
+:root{--dt-row-selected: 13, 110, 253;--dt-row-selected-text: 255, 255, 255;--dt-row-selected-link: 9, 10, 11;--dt-row-stripe: 0, 0, 0;--dt-row-hover: 0, 0, 0;--dt-column-ordering: 0, 0, 0;--dt-html-background: white}:root.dark{--dt-html-background: rgb(33, 37, 41)}table.dataTable td.dt-control{text-align:center;cursor:pointer}table.dataTable td.dt-control:before{display:inline-block;box-sizing:border-box;content:"";border-top:5px solid transparent;border-left:10px solid rgba(0, 0, 0, 0.5);border-bottom:5px solid transparent;border-right:0px solid transparent}table.dataTable tr.dt-hasChild td.dt-control:before{border-top:10px solid rgba(0, 0, 0, 0.5);border-left:5px solid transparent;border-bottom:0px solid transparent;border-right:5px solid transparent}table.dataTable tfoot:empty{display:none}html.dark table.dataTable td.dt-control:before,:root[data-bs-theme=dark] table.dataTable td.dt-control:before,:root[data-theme=dark] table.dataTable td.dt-control:before{border-left-color:rgba(255, 255, 255, 0.5)}html.dark table.dataTable tr.dt-hasChild td.dt-control:before,:root[data-bs-theme=dark] table.dataTable tr.dt-hasChild td.dt-control:before,:root[data-theme=dark] table.dataTable tr.dt-hasChild td.dt-control:before{border-top-color:rgba(255, 255, 255, 0.5);border-left-color:transparent}div.dt-scroll{width:100%}div.dt-scroll-body thead tr,div.dt-scroll-body tfoot tr{height:0}div.dt-scroll-body thead tr th,div.dt-scroll-body thead tr td,div.dt-scroll-body tfoot tr th,div.dt-scroll-body tfoot tr td{height:0 !important;padding-top:0px !important;padding-bottom:0px !important;border-top-width:0px !important;border-bottom-width:0px !important}div.dt-scroll-body thead tr th div.dt-scroll-sizing,div.dt-scroll-body thead tr td div.dt-scroll-sizing,div.dt-scroll-body tfoot tr th div.dt-scroll-sizing,div.dt-scroll-body tfoot tr td div.dt-scroll-sizing{height:0 !important;overflow:hidden !important}table.dataTable thead>tr>th:active,table.dataTable thead>tr>td:active{outline:none}table.dataTable thead>tr>th.dt-orderable-asc span.dt-column-order:before,table.dataTable thead>tr>th.dt-ordering-asc span.dt-column-order:before,table.dataTable thead>tr>td.dt-orderable-asc span.dt-column-order:before,table.dataTable thead>tr>td.dt-ordering-asc span.dt-column-order:before{position:absolute;display:block;bottom:50%;content:"▲";content:"▲"/""}table.dataTable thead>tr>th.dt-orderable-desc span.dt-column-order:after,table.dataTable thead>tr>th.dt-ordering-desc span.dt-column-order:after,table.dataTable thead>tr>td.dt-orderable-desc span.dt-column-order:after,table.dataTable thead>tr>td.dt-ordering-desc span.dt-column-order:after{position:absolute;display:block;top:50%;content:"▼";content:"▼"/""}table.dataTable thead>tr>th.dt-orderable-asc,table.dataTable thead>tr>th.dt-orderable-desc,table.dataTable thead>tr>th.dt-ordering-asc,table.dataTable thead>tr>th.dt-ordering-desc,table.dataTable thead>tr>td.dt-orderable-asc,table.dataTable thead>tr>td.dt-orderable-desc,table.dataTable thead>tr>td.dt-ordering-asc,table.dataTable thead>tr>td.dt-ordering-desc{position:relative;padding-right:30px}table.dataTable thead>tr>th.dt-orderable-asc span.dt-column-order,table.dataTable thead>tr>th.dt-orderable-desc span.dt-column-order,table.dataTable thead>tr>th.dt-ordering-asc span.dt-column-order,table.dataTable thead>tr>th.dt-ordering-desc span.dt-column-order,table.dataTable thead>tr>td.dt-orderable-asc span.dt-column-order,table.dataTable thead>tr>td.dt-orderable-desc span.dt-column-order,table.dataTable thead>tr>td.dt-ordering-asc span.dt-column-order,table.dataTable thead>tr>td.dt-ordering-desc span.dt-column-order{position:absolute;right:12px;top:0;bottom:0;width:12px}table.dataTable thead>tr>th.dt-orderable-asc span.dt-column-order:before,table.dataTable thead>tr>th.dt-orderable-asc span.dt-column-order:after,table.dataTable thead>tr>th.dt-orderable-desc span.dt-column-order:before,table.dataTable thead>tr>th.dt-orderable-desc span.dt-column-order:after,table.dataTable thead>tr>th.dt-ordering-asc span.dt-column-order:before,table.dataTable thead>tr>th.dt-ordering-asc span.dt-column-order:after,table.dataTable thead>tr>th.dt-ordering-desc span.dt-column-order:before,table.dataTable thead>tr>th.dt-ordering-desc span.dt-column-order:after,table.dataTable thead>tr>td.dt-orderable-asc span.dt-column-order:before,table.dataTable thead>tr>td.dt-orderable-asc span.dt-column-order:after,table.dataTable thead>tr>td.dt-orderable-desc span.dt-column-order:before,table.dataTable thead>tr>td.dt-orderable-desc span.dt-column-order:after,table.dataTable thead>tr>td.dt-ordering-asc span.dt-column-order:before,table.dataTable thead>tr>td.dt-ordering-asc span.dt-column-order:after,table.dataTable thead>tr>td.dt-ordering-desc span.dt-column-order:before,table.dataTable thead>tr>td.dt-ordering-desc span.dt-column-order:after{left:0;opacity:.125;line-height:9px;font-size:.8em}table.dataTable thead>tr>th.dt-orderable-asc,table.dataTable thead>tr>th.dt-orderable-desc,table.dataTable thead>tr>td.dt-orderable-asc,table.dataTable thead>tr>td.dt-orderable-desc{cursor:pointer}table.dataTable thead>tr>th.dt-orderable-asc:hover,table.dataTable thead>tr>th.dt-orderable-desc:hover,table.dataTable thead>tr>td.dt-orderable-asc:hover,table.dataTable thead>tr>td.dt-orderable-desc:hover{outline:2px solid rgba(0, 0, 0, 0.05);outline-offset:-2px}table.dataTable thead>tr>th.dt-ordering-asc span.dt-column-order:before,table.dataTable thead>tr>th.dt-ordering-desc span.dt-column-order:after,table.dataTable thead>tr>td.dt-ordering-asc span.dt-column-order:before,table.dataTable thead>tr>td.dt-ordering-desc span.dt-column-order:after{opacity:.6}table.dataTable thead>tr>th.sorting_desc_disabled span.dt-column-order:after,table.dataTable thead>tr>th.sorting_asc_disabled span.dt-column-order:before,table.dataTable thead>tr>td.sorting_desc_disabled span.dt-column-order:after,table.dataTable thead>tr>td.sorting_asc_disabled span.dt-column-order:before{display:none}table.dataTable thead>tr>th:active,table.dataTable thead>tr>td:active{outline:none}div.dt-scroll-body>table.dataTable>thead>tr>th,div.dt-scroll-body>table.dataTable>thead>tr>td{overflow:hidden}:root.dark table.dataTable thead>tr>th.dt-orderable-asc:hover,:root.dark table.dataTable thead>tr>th.dt-orderable-desc:hover,:root.dark table.dataTable thead>tr>td.dt-orderable-asc:hover,:root.dark table.dataTable thead>tr>td.dt-orderable-desc:hover,:root[data-bs-theme=dark] table.dataTable thead>tr>th.dt-orderable-asc:hover,:root[data-bs-theme=dark] table.dataTable thead>tr>th.dt-orderable-desc:hover,:root[data-bs-theme=dark] table.dataTable thead>tr>td.dt-orderable-asc:hover,:root[data-bs-theme=dark] table.dataTable thead>tr>td.dt-orderable-desc:hover{outline:2px solid rgba(255, 255, 255, 0.05)}div.dt-processing{position:absolute;top:50%;left:50%;width:200px;margin-left:-100px;margin-top:-22px;text-align:center;padding:2px;z-index:10}div.dt-processing>div:last-child{position:relative;width:80px;height:15px;margin:1em auto}div.dt-processing>div:last-child>div{position:absolute;top:0;width:13px;height:13px;border-radius:50%;background:rgb(13, 110, 253);background:rgb(var(--dt-row-selected));animation-timing-function:cubic-bezier(0, 1, 1, 0)}div.dt-processing>div:last-child>div:nth-child(1){left:8px;animation:datatables-loader-1 .6s infinite}div.dt-processing>div:last-child>div:nth-child(2){left:8px;animation:datatables-loader-2 .6s infinite}div.dt-processing>div:last-child>div:nth-child(3){left:32px;animation:datatables-loader-2 .6s infinite}div.dt-processing>div:last-child>div:nth-child(4){left:56px;animation:datatables-loader-3 .6s infinite}@keyframes datatables-loader-1{0%{transform:scale(0)}100%{transform:scale(1)}}@keyframes datatables-loader-3{0%{transform:scale(1)}100%{transform:scale(0)}}@keyframes datatables-loader-2{0%{transform:translate(0, 0)}100%{transform:translate(24px, 0)}}table.dataTable.nowrap th,table.dataTable.nowrap td{white-space:nowrap}table.dataTable th,table.dataTable td{box-sizing:border-box}table.dataTable th.dt-type-numeric,table.dataTable th.dt-type-date,table.dataTable td.dt-type-numeric,table.dataTable td.dt-type-date{text-align:right}table.dataTable th.dt-left,table.dataTable td.dt-left{text-align:left}table.dataTable th.dt-center,table.dataTable td.dt-center{text-align:center}table.dataTable th.dt-right,table.dataTable td.dt-right{text-align:right}table.dataTable th.dt-justify,table.dataTable td.dt-justify{text-align:justify}table.dataTable th.dt-nowrap,table.dataTable td.dt-nowrap{white-space:nowrap}table.dataTable th.dt-empty,table.dataTable td.dt-empty{text-align:center;vertical-align:top}table.dataTable thead th,table.dataTable thead td,table.dataTable tfoot th,table.dataTable tfoot td{text-align:left}table.dataTable thead th.dt-head-left,table.dataTable thead td.dt-head-left,table.dataTable tfoot th.dt-head-left,table.dataTable tfoot td.dt-head-left{text-align:left}table.dataTable thead th.dt-head-center,table.dataTable thead td.dt-head-center,table.dataTable tfoot th.dt-head-center,table.dataTable tfoot td.dt-head-center{text-align:center}table.dataTable thead th.dt-head-right,table.dataTable thead td.dt-head-right,table.dataTable tfoot th.dt-head-right,table.dataTable tfoot td.dt-head-right{text-align:right}table.dataTable thead th.dt-head-justify,table.dataTable thead td.dt-head-justify,table.dataTable tfoot th.dt-head-justify,table.dataTable tfoot td.dt-head-justify{text-align:justify}table.dataTable thead th.dt-head-nowrap,table.dataTable thead td.dt-head-nowrap,table.dataTable tfoot th.dt-head-nowrap,table.dataTable tfoot td.dt-head-nowrap{white-space:nowrap}table.dataTable tbody th.dt-body-left,table.dataTable tbody td.dt-body-left{text-align:left}table.dataTable tbody th.dt-body-center,table.dataTable tbody td.dt-body-center{text-align:center}table.dataTable tbody th.dt-body-right,table.dataTable tbody td.dt-body-right{text-align:right}table.dataTable tbody th.dt-body-justify,table.dataTable tbody td.dt-body-justify{text-align:justify}table.dataTable tbody th.dt-body-nowrap,table.dataTable tbody td.dt-body-nowrap{white-space:nowrap}/*! Bootstrap 5 integration for DataTables
+ *
+ * ©2020 SpryMedia Ltd, all rights reserved.
+ * License: MIT datatables.net/license/mit
+ */table.table.dataTable{clear:both;margin-bottom:0;max-width:none;border-spacing:0}table.table.dataTable.table-striped>tbody>tr:nth-of-type(2n+1)>*{box-shadow:none}table.table.dataTable>:not(caption)>*>*{background-color:var(--bs-table-bg)}table.table.dataTable>tbody>tr{background-color:transparent}table.table.dataTable>tbody>tr.selected>*{box-shadow:inset 0 0 0 9999px rgb(13, 110, 253);box-shadow:inset 0 0 0 9999px rgb(var(--dt-row-selected));color:rgb(255, 255, 255);color:rgb(var(--dt-row-selected-text))}table.table.dataTable>tbody>tr.selected a{color:rgb(9, 10, 11);color:rgb(var(--dt-row-selected-link))}table.table.dataTable.table-striped>tbody>tr:nth-of-type(2n+1)>*{box-shadow:inset 0 0 0 9999px rgba(var(--dt-row-stripe), 0.05)}table.table.dataTable.table-striped>tbody>tr:nth-of-type(2n+1).selected>*{box-shadow:inset 0 0 0 9999px rgba(13, 110, 253, 0.95);box-shadow:inset 0 0 0 9999px rgba(var(--dt-row-selected), 0.95)}table.table.dataTable.table-hover>tbody>tr:hover>*{box-shadow:inset 0 0 0 9999px rgba(var(--dt-row-hover), 0.075)}table.table.dataTable.table-hover>tbody>tr.selected:hover>*{box-shadow:inset 0 0 0 9999px rgba(13, 110, 253, 0.975);box-shadow:inset 0 0 0 9999px rgba(var(--dt-row-selected), 0.975)}div.dt-container div.dt-layout-start>*:not(:last-child){margin-right:1em}div.dt-container div.dt-layout-end>*:not(:first-child){margin-left:1em}div.dt-container div.dt-layout-full{width:100%}div.dt-container div.dt-layout-full>*:only-child{margin-left:auto;margin-right:auto}div.dt-container div.dt-layout-table>div{display:block !important}@media screen and (max-width: 767px){div.dt-container div.dt-layout-start>*:not(:last-child){margin-right:0}div.dt-container div.dt-layout-end>*:not(:first-child){margin-left:0}}div.dt-container div.dt-length label{font-weight:normal;text-align:left;white-space:nowrap}div.dt-container div.dt-length select{width:auto;display:inline-block;margin-right:.5em}div.dt-container div.dt-search{text-align:right}div.dt-container div.dt-search label{font-weight:normal;white-space:nowrap;text-align:left}div.dt-container div.dt-search input{margin-left:.5em;display:inline-block;width:auto}div.dt-container div.dt-paging{margin:0}div.dt-container div.dt-paging ul.pagination{margin:2px 0;flex-wrap:wrap}div.dt-container div.dt-row{position:relative}div.dt-scroll-head table.dataTable{margin-bottom:0 !important}div.dt-scroll-body{border-bottom-color:var(--bs-border-color);border-bottom-width:var(--bs-border-width);border-bottom-style:solid}div.dt-scroll-body>table{border-top:none;margin-top:0 !important;margin-bottom:0 !important}div.dt-scroll-body>table>tbody>tr:first-child{border-top-width:0}div.dt-scroll-body>table>thead>tr{border-width:0 !important}div.dt-scroll-body>table>tbody>tr:last-child>*{border-bottom:none}div.dt-scroll-foot>.dt-scroll-footInner{box-sizing:content-box}div.dt-scroll-foot>.dt-scroll-footInner>table{margin-top:0 !important;border-top:none}div.dt-scroll-foot>.dt-scroll-footInner>table>tfoot>tr:first-child{border-top-width:0 !important}@media screen and (max-width: 767px){div.dt-container div.dt-length,div.dt-container div.dt-search,div.dt-container div.dt-info,div.dt-container div.dt-paging{text-align:center}div.dt-container .row{--bs-gutter-y: 0.5rem}div.dt-container div.dt-paging ul.pagination{justify-content:center !important}}table.dataTable.table-sm>thead>tr th.dt-orderable-asc,table.dataTable.table-sm>thead>tr th.dt-orderable-desc,table.dataTable.table-sm>thead>tr th.dt-ordering-asc,table.dataTable.table-sm>thead>tr th.dt-ordering-desc,table.dataTable.table-sm>thead>tr td.dt-orderable-asc,table.dataTable.table-sm>thead>tr td.dt-orderable-desc,table.dataTable.table-sm>thead>tr td.dt-ordering-asc,table.dataTable.table-sm>thead>tr td.dt-ordering-desc{padding-right:20px}table.dataTable.table-sm>thead>tr th.dt-orderable-asc span.dt-column-order,table.dataTable.table-sm>thead>tr th.dt-orderable-desc span.dt-column-order,table.dataTable.table-sm>thead>tr th.dt-ordering-asc span.dt-column-order,table.dataTable.table-sm>thead>tr th.dt-ordering-desc span.dt-column-order,table.dataTable.table-sm>thead>tr td.dt-orderable-asc span.dt-column-order,table.dataTable.table-sm>thead>tr td.dt-orderable-desc span.dt-column-order,table.dataTable.table-sm>thead>tr td.dt-ordering-asc span.dt-column-order,table.dataTable.table-sm>thead>tr td.dt-ordering-desc span.dt-column-order{right:5px}div.dt-scroll-head table.table-bordered{border-bottom-width:0}div.table-responsive>div.dt-container>div.row{margin:0}div.table-responsive>div.dt-container>div.row>div[class^=col-]:first-child{padding-left:0}div.table-responsive>div.dt-container>div.row>div[class^=col-]:last-child{padding-right:0}:root[data-bs-theme=dark]{--dt-row-hover: 255, 255, 255;--dt-row-stripe: 255, 255, 255;--dt-column-ordering: 255, 255, 255}
diff --git a/dist/assets/images/linux-logo.svg b/dist/assets/images/linux-logo.svg
new file mode 100644
index 0000000..4145182
--- /dev/null
+++ b/dist/assets/images/linux-logo.svg
@@ -0,0 +1 @@
+<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 2 48 48" xml:space="preserve"><path fill="#ECEFF1" d="m20.1 18.2.1 2.3-1.6 3-2.5 4.9-.5 4.1 1.8 5.8 4.1 2.3h6.2l5.8-4.4 2.6-6.9-6-7.3-1.7-4.1z"/><path fill="#263238" d="M34.3 23.9c-1.6-2.3-2.9-3.7-3.6-6.6-.7-2.9.2-2.1-.4-4.6-.3-1.3-.8-2.2-1.3-2.9-.6-.7-1.3-1.1-1.7-1.2-.9-.5-3-1.3-5.6.1-2.7 1.4-2.4 4.4-1.9 10.5 0 .4-.1.9-.3 1.3-.4.9-1.1 1.7-1.7 2.4-.7 1-1.4 2-1.9 3.1-1.2 2.3-2.3 5.2-2 6.3.5-.1 6.8 9.5 6.8 9.7.4-.1 2.1-.1 3.6-.1 2.1-.1 3.3-.2 5 .2 0-.3-.1-.6-.1-.9 0-.6.1-1.1.2-1.8.1-.5.2-1 .3-1.6-1 .9-2.8 1.9-4.5 2.2-1.5.3-4-.2-5.2-1.7.1 0 .3 0 .4-.1.3-.1.6-.2.7-.4.3-.5.1-1-.1-1.3-.2-.3-1.7-1.4-2.4-2-.7-.6-1.1-.9-1.5-1.3l-.8-.8c-.2-.2-.3-.4-.4-.5-.2-.5-.3-1.1-.2-1.9.1-1.1.5-2 1-3 .2-.4.7-1.2.7-1.2s-1.7 4.2-.8 5.5c0 0 .1-1.3.5-2.6.3-.9.8-2.2 1.4-2.9s2.1-3.3 2.2-4.9c0-.7.1-1.4.1-1.9-.4-.4 6.6-1.4 7-.3.1.4 1.5 4 2.3 5.9.4.9.9 1.7 1.2 2.7.3 1.1.5 2.6.5 4.1 0 .3 0 .8-.1 1.3.2 0 4.1-4.2-.5-7.7 0 0 2.8 1.3 2.9 3.9.1 2.1-.8 3.8-1 4.1.1 0 2.1.9 2.2.9.4 0 1.2-.3 1.2-.3.1-.3.4-1.1.4-1.4.7-2.3-1-6-2.6-8.3z"/><g fill="#ECEFF1"><ellipse cx="21.6" cy="15.3" rx="1.3" ry="2"/><ellipse cx="26.1" cy="15.2" rx="1.7" ry="2.3"/></g><g fill="#212121"><ellipse transform="rotate(-97.204 21.677 15.542)" cx="21.7" cy="15.5" rx="1.2" ry=".7"/><ellipse cx="26" cy="15.6" rx="1" ry="1.3"/></g><g fill="#FFC107"><path d="M39.3 37.6c-.4-.2-1.1-.5-1.7-1.4-.3-.5-.2-1.9-.7-2.5-.3-.4-.7-.2-.8-.2-.9.2-3 1.6-4.4 0-.2-.2-.5-.5-1-.5s-.7.2-.9.6-.2.7-.2 1.7c0 .8 0 1.7-.1 2.4-.2 1.7-.5 2.7-.5 3.7 0 1.1.3 1.8.7 2.1.3.3.8.5 1.9.5 1.1 0 1.8-.4 2.5-1.1.5-.5.9-.7 2.3-1.7 1.1-.7 2.8-1.6 3.1-1.9.2-.2.5-.3.5-.9 0-.5-.4-.7-.7-.8zM19.2 37.9c-1-1.6-1.1-1.9-1.8-2.9-.6-1-1.9-2.9-2.7-2.9-.6 0-.9.3-1.3.7-.4.4-.8 1.3-1.5 1.8-.6.5-2.3.4-2.7 1-.4.6.4 1.5.4 3 0 .6-.5 1-.6 1.4-.1.5-.2.8 0 1.2.4.6.9.8 4.3 1.5 1.8.4 3.5 1.4 4.6 1.5 1.1.1 3 0 3-2.7.1-1.6-.8-2-1.7-3.6zM21.1 19.8c-.6-.4-1.1-.8-1.1-1.4 0-.6.4-.8 1-1.3.1-.1 1.2-1.1 2.3-1.1s2.4.7 2.9.9c.9.2 1.8.4 1.7 1.1-.1 1-.2 1.2-1.2 1.7-.7.2-2 1.3-2.9 1.3-.4 0-1 0-1.4-.1-.3-.1-.8-.6-1.3-1.1z"/></g><g fill="#634703"><path d="M20.9 19c.2.2.5.4.8.5.2.1.5.2.5.2h.9c.5 0 1.2-.2 1.9-.6.7-.3.8-.5 1.3-.7.5-.3 1-.6.8-.7-.2-.1-.4 0-1.1.4-.6.4-1.1.6-1.7.9-.3.1-.7.3-1 .3h-.9c-.3 0-.5-.1-.8-.2-.2-.1-.3-.2-.4-.2-.2-.1-.6-.5-.8-.6 0 0-.2 0-.1.1l.6.6zM23.9 16.8c.1.2.3.2.4.3.1.1.2.1.2.1.1-.1 0-.3-.1-.3 0-.2-.5-.2-.5-.1zM22.3 17c0 .1.2.2.2.1.1-.1.2-.2.3-.2.2-.1.1-.2-.2-.2-.2.1-.2.2-.3.3z"/></g><path fill="#455A64" d="M32 34.7v.3c.2.4.7.5 1.1.5.6 0 1.2-.4 1.5-.8 0-.1.1-.2.2-.3.2-.3.3-.5.4-.6 0 0-.1-.1-.1-.2-.1-.2-.4-.4-.8-.5-.3-.1-.8-.2-1-.2-.9-.1-1.4.2-1.7.5 0 0 .1 0 .1.1.2.2.3.4.3.7.1.2 0 .3 0 .5z"/></svg>
diff --git a/dist/assets/images/splunk-logo.png b/dist/assets/images/splunk-logo.png
index 94f03ceabb9a956f8f3602f7ccc11fd16b0ac817..9489ba8181f3e3d4aa40c788c2e05757232eac18 100644
GIT binary patch
literal 1404
zcmV-?1%vuhNk&F=1pok7MM6+kP&iCz1pojqkHKRAzs9JIBuAd(cl?2*=hg)hP$Nl_
zBt`2FR?Z(Dx=xoANs=T<mi#FVnt2U^Yd6z%{_g;B|9vL~5fvgxMUaY<2_h;S(};wK
z3jCBrOf(9jsn|?Mo`O_}Jq0O<9#YZ4R7i#}!bu=RBPv8kdqjoU2q!_13TcmKI+h`%
z{g;SJAam$W0l_X(3GE^x2&luZIv7&fPS(8wDY};+mG&@!tot8`I@(19sYBC7aO4Tl
z9{2;GJ%SX%sMv^#AZ_vxQR!a)Plkv9K?H`hComz?eMF@_M6}635JXgLf`AI_j}Pnr
zng$BEe_xL0Cj<R$+m1I<(vEH0wr$(CZQHhIR%6?>+jNs+_4my8C0{ame!1_}_dXH*
zcjUH_BXN>uW_Ldj>zqf&;`-0^pX)!@f3E*r|GEBi{pb46_22(Rd3ZFN4A(tP4rGzR
z*ujP1U_xl{z$sYZ6i0kyFs8*Z9|OY0aUU7H#tJeR)AFQ`3^8g28G?ceAwdL(AcJbV
zv$-S)6BGy=1c)Hu7g2yO!hl}H0le=BGN`t{;3q?@cDv*!Lr_p5B#7V;G;j<usCK{X
zCqq$V1sQ^Z494`i6(EB#{lJXW)fEJx8u6Q}h`}|IxBMmq*+|{-hX`yVeQyJC#`Fg>
zG7mHnS4`22tYa<2S@B~Yl#B0lTXCwx?qV6a=R1qSH2fF)3PLpkHwTKrHT37<LZFQY
z<3xZPPbUk2H(t*Wr}-n$jCX$(k)}HK5t#9DadBy?6VQy$%gc$vG~(7&7KCcVZzvRl
zYb0;|U7D7hh-RejtSimn8R`2P3PUt94mKAR9FM__tmCbu88iJknBhCqUJS00d%l|x
zWW#@{w+L(_aBHvtbVGj`9(4f6!|_oDaXg(GRUpT!S<;M|`3B8+x1hK%Q+5uV@nLBx
zVG3w`US3g{mYEA@#I30+OaYDfjWuOK8p+%0N&+=fch{E#YozaQEX66_!x@L03DZi8
zlF*E-6K!Ov-pYe>@tx{O2G!j2J;<QyztWows)1WW<lws89l-|GM-$kf`g9r_RA0?z
zgX-IbrOBZBacLzosD55iKnB&gwKd3~ny{%38B~+E*CRvR`WjS-TU9{C$=7ei#S1N~
z6ulS1xrp##p;gfYaFxn0NrX2GzLgT;&1^2-2YX=^6P{1YS0+5OiU|+L7gIr?78CA{
zDyB@hJFJ*W`vJ<&rrxniTG#V_BtI$KznIE!E+EI}@Y^K?)4I~5n94!4E?Xt7*VSKv
z{1(=^E=7yUvdfQTbtr12L0P_2R!Qp#Wu0tY)JTJ}a_o{e;2MyXb+}nkBW=K~0GJg`
z@K*Z1rbSJ3!CQ@rnrMTzQuj2BEh=p&l(nmFtV$b+<llv+*d+thO5R#MR;A!tasaLP
zb=6{35};K%CRW<SduaZ3uC$4dkgS#EVpQ4$B<qV^QXs9*_8;NPLA9h!Lb5*CV>?Kj
z_8iTU24%gTXO*;R&(IwCB<hf@=T=DwTVM{TBW~79AnVDL7!^0`4U*$DjrJNjh}Qiv
zULy(5`f0ew$bz#5d5p9Y^MS0uZL6deU+@9Qy78ySL?5u_ziyQTT<c;dkC6dt=_jkC
zI2ILiTbEk;IZsL8P&5cBA_Nr?N-VL82<2B;MTGJz<MNaQ4n>2IB0^9Rp|V{>sJt#d
zPeJz`1-pm~co7!#A}S&jZcWTn_&HZ{o)RETQNXcC;7~-UYZnpf?o7>7BGlet6%m4p
z2(|1&U-%+IgS}~a$^eH-&r=RK6$?U(2V|7$!$TQ)bS$p_T>rWLbN%P~&-I_{Ki7Y*
K|6Kq5pB)9jm6%Qd

literal 7964
zcmb7}bx>U0miDm#fyT8VKyV07W5E)FyG!s!8YcvTTd)oeLA%ie4b~7mxOR{Rg1ZL@
z?iTFJduQf;x8~kkGjpoWIcxvcvz}G8_aD1z?<g$|MFKn;JTx>k0%avR9W*oy(4V*j
z7xT||`#|mX&+oCD(rXViG+ySvUUZ+r7hY&+=o4CMdh&{HY7hVBxxc^v=gc4YFZn+!
z|B!!F{$u=i@xO$B&;GmMUsnBr|C0YZlmC(bFWvr^vj4H&|4HyKo3^*N-`(B)@fl9A
zOa8OyneTKobkT0^9${i(px@szEq)7*Jh|X}|AvC}_xa<~t#IsVi?<PhS1Ws7=J+H8
zgtmCQQu$U~E_HJoPxU)`j`<H*mVt_A*J}gY)#6VklpEtkGNY5#{iYU%*ggn`^%)Zx
z9*){;!{|G=t16J1%`d3zzQoS(aCpo+swVPMf5MeX?OH3-m6dm5&I%YFvn)*)@-+3y
z84)Xd)`}9wx~~L~siC1gQB;<b(es(x%fdG#SEPLZMs#vf|9vzVEB2}jM?v14G`zF>
zNQ{Fc>I-Au3g){>{bQE^R_y7;tC=qXc+dSG_6&yjht<6Gz0W&x0JBZ(TR+9r^q2j2
z%lzNy8xnLx6XO_sjtKhtH4h+pH5iFm#%iErs!PaAEr6ni06<V+cPtpmZw>ov82e8I
z08;pGn*SO`{=MqI2)}jDfBO7?0u!+MoAW=CzxDkOThs#|C`VN~W|zmh!FA8okOg$@
z<p^x*g1@C(s~KYrNr?WHCMLbx+QA<D2qMYOPq$!yNii6!7<sw%J^k##yJAta{`B_l
zhDWz#G%PL#I+)5FuO`{fJf1c^a+|T^{4Mwa+5A;@J<d1SNF3w}S9?;S#O9)MOR3bG
zI=B5qLps}^=XUy9ayIjT)5<x<26@^8dQfwe>^k?Du2;)F_%g8Fy7_wgEN-;PzB%<(
z_%tHHMa=z>`)=XQ^2_P3pbbWTM2lE*j@zz6J)z6Ou(Z=aeQsmR`rK0FSDttv5lw=|
zbEcVJv0V>cW}&d3Js&b+o1C=;^PP!Mt~+K0rCPfmZ~Q|~{JdRXMzB{NIvl2X&bw{g
zUFB7#_r&6VaMf@=9)wOF(&l%%mm0po70MR-Eg4)T36rdGuzR_*ue{mDTCP+JIOl%W
zXkVOtz14B1%Z?h(gB|1E;%`R{P4{+7#U)nV+R{#V564`CU)QUjk~hF@wGqLW8~6dZ
zc&VqKNMHY$C_OGO>4MEa9IWQfQr2(|?WP5Hyl|yfAvr!`6_8zV)grhr<RjBY`BYs}
z&V>{K+TTl3HCNT+Ijopax`tFQysy2VVW~@gy_UPYAAr$grU40ea%?=1`cAK4ca7Ae
zBibIMwdrVfBjl_z`XT(vf4~mV8@--@S8}|9djZNdYLp%Xc#m~%21#Q_yTaWjQa>j4
zmGr9#i%eV<qT>j`N@&wW7I&<Rh~WF_L0M?*PFp@6`g0oa&lB}mLXx6+0O4N#^_TeW
z4RZn2XAKFHd{bxx+#+syHELY+4pcY%L2@jF+kHXwmiJrxCU{U83cCXvHCC;MK|kqJ
zd!x#LB0Xt64H<Qa2o;^(jtDQ~u(J}VJ4|g|&ZRN?346~bR^o;gGDI&J`^TBbhcYro
z&S;Qs$Q5|tF&~x{MSE2VEj&)Us~F$hPn)t|Ex3$7H5q2Qa{6B3Y@l_vs?>aYD9H{w
z?`v-~GMwBVRwIcbZd^>!%_^347N5fVWV2c3VkG+(jBxh-ax8ghFW%#TOC%zeqO0DE
za&dh&?V`zJte0=Nw4M6aH|Uus<civ-Dqmql1K(+@;71Px8L<@ih^^*bw4WAbS1eD}
zeY_pVn||Pc$KrQCw&FtUdG`Z7e%;f=^g2YDI+G55LqdqNu<^-T=vLwES>!fu{$4Ei
zC!{U3EU@E^K%Gx%lQ6GKBA88fsw=DJXA^RROC->S+F(=u<s;A@`DItKs6f-k(yeCZ
zLT2Hh8bJ`g=E{*JK*Gg1ISB?#2987|R3D12)JjU(!dLN*xG&t}x#MV<=*Vqfc0hG~
zAz$EcY3JoJCaLI?f<F4y)WSnFFRdCiIXt&D62o99;_c~c#daAZ*8$tFon@*e(8sY_
zCT+y^6*Msq-%lP;ZmMk{3e-&S`<KWDQ%zO-pgEfGqFVTKynMQ^i6mwt66h6c0_z?4
zQQum^M0-w|;GJiVc1N#9zaqoTs-<|e_coK02--vlH66?Aj=g=769Bf9gNT-iLC^p{
zEJr019<`*}$Dd>5V`yayfZ&>@x?sNcDd2s#m||B%9X@WjxMoEVa#(oUQ$I=*)Kc2y
z^1Y#E>o;XC6BJzDVNL<+=kaZY;H_pH6cyFn&8~2KKo%L^9dO%1sLjofq|&2XrD;Ac
zWn!@OfT11s4RW^l&0buh9=9l)os3Qa9V}tq+tczM-~x&McyV>BuZ5<tXrbsbwFp&d
zp=Hs9H6n$i=d89pI5A6^g>YG;)#XrT!yqwE-6_y3T@d7;a1vIMJ>O>q4%z&$g8Bi0
zc1%;~*qF0T_#<T?g1VO~Boo9lO!y#x1>3cU(nVl9PE>td-b$k$qEijhB3=36Xd!Ot
zmNH?OD2BgC>EgvC6`_X%C|Q<`OwHl4#{aV3bNmcP4`}ZP!2rpo1BuvhSnCB_gfYQ~
zgrO*#B3CF4pN8<bkItF^?G}44QnvH+=cZFS>Mx>tD4T8&pSHO1&bU+~B3-)pd!W|x
zRDLN&c~|GNYq4am-YUnSwO3Au2qdy!u_9a1Li-#k-c2X{!V%OR==1tS9g6AwDv<=U
zRo$Q-Vx?Z*1bwLzjcN@KZW!BGg&3YnKK`WxG{AH>yw6f<IHyy4*8auFMXUUGU57eX
zC{SAdVmX`h-F_XTN-C#M)eH@+L!d+=BWWc(qklb?bvd+nMwpaYmZXvM{9GamgFd8M
zIkFdUIZIU?=QtAb8zL_ORm4O3vhrJlbxq7Rjo68bOikC0<PZBm5pm=dHjMa9D6u00
zNBhe<Et^L8d9iPOiXgZ2KFw&nF#QwUQp@#v<&v_+m7NzUz<4#`z68%Bz_}5LgLBp(
z1A?L>He&z7U8hi>58|@c-OBmG&XNc61eWAnG+PVC%Hoh<FXIyYfLjprQ{GWX!?lz5
zwQcx*DaJw!g&no)qsb73X^*)L9w6c7y4G(LzvQO!a;12cEBb~m?T6?n5EkP6(d4HT
z&(M6`=B1g+JcSoiN2y-2S~$>Uv{Bx?NfiGrwL9))gd+P!W|WA=hE)4c_-fx5!Utlb
zX0y524<}}Afbvd2$Z`B9#DWD6O<#dicvBi!uSJw{;)&9?k9OClN-Ex^8FhS<;r!O?
zQJ&yCu_Ls?N>XZiBbjqR!T_R7n(F-3M$UX&0ohP2eiTvC5I-9p+K{zQOZoFtovbN+
zZ4Uv8)X%t2l78>jUVOYKhH%7(f8ctHk<o8*Fz8!4ae0PeV$e3Go0ILl$L$u64azZ`
z;=PXdQ7#TdiK?q_St^x(#?djihbDn!zj{@;e$oap=TSsOx^GBv5DEGAf9-*jRQ6@@
z6Sb!ab|3l3fCwPC0nGB7ka81_P#VE0inPx`c!df%nT;~byLn|c(6!&1+AC3_zt!gI
znMJ1xhX9%#pQpi+M(m5KHE!Z;Agp>7wc4w*X#eLKR2Hs|=B9~SbR#*zh$3V}*d3{%
z)}BORCX@c3nH8u`+)Ow$h?PU&@wz~$+jyR#gKkY){E#29x$*55uP(QHd4vzQNlf1U
zGPC(|y;X|29Y86WJcL1OVK!|dUIP1UlpH(!2J5GUKc%!e5OpLYMeWKKqVXI=h400i
z2Yb81K+yRpEMot>cae<(zco;{{HP};oTlV^Q$ZNg?dT(=&@)I6y=JWdmI67&TKxz~
zdjTALbs34%=vHhnHijf(!3IU715PMmaq<t&;h#1Wa&LM$t>n!>4|*AYmPEfW&2Ymw
zCTLPZWuc@q3#YlzUuYpZaCVb*D0YL(w(!nS$zprIa@y|CCPXH4L(R*QcBIO@?LX0<
zK;Z5;=KYi_SH&vsmTqG$W=uQsz8C!wh`ix)2TL6zfueug)r(sN4$R@v(bkovAMj;a
zEE@t$zcq)VqPkUY-_pE2u0C(T_ALLXo!?lIrR|_@CnSUi!SG*Kfedr#%sbZyDucr6
zK-ykS{9M{`Yv~pap!JjL5j@8$=O<|a&FZ%X!&mQe*Qye-XfVE~-ZYXoD6|D@3F=nZ
zCgA7V%$jq97b&zbPwh!whYb+%X*thT491=%g~X*NRXw3%>Luz)dH7L*fPOtOW)!Ap
z!6pw;crxe@0>Tj#PW##wV(THN78k>JWl=0K>yz093@edD7@=YyHcKV|ABi>qhnO${
zU7MPL122#Eql{VZ?lZg{fOrnwboT75*w)00X8lyG@&4Ay$&kkEnoSgunwq$oer}s*
z*+J`a6OM$?>30z-c+fCTo7w_=7IQ2yl1rdQhNjP&<I*xH#W{HZ(?U04U+w9t>P3<C
zY5|n%nPnX%AmjMv<oYp0p?DWuC;Uk!?PYM^+`G`bq1c<9M7x%kLa6T)`vCY9p24j6
zqVUUlP3myn@!%4QA|&ZV?S__hQbz`N=I2W%xEP=-R$VuG37C|CTFT_Yga}PvDT%8+
z9_6Pt02jH6%%pKNz8D;%?5}t1cXKRV_FAt;lGbnP-hRT<WFPYsr$~m;#KNhfJ$R<I
zLf~*td<deM&@8g{Cj}0q#qJSgW@{%uB0oRlZUvs<HZJb!RF2SAq$Wu3ta5HT@_s@C
z1FDZc(%`$`!B<w{#DwH<@Q<S#6AMGePTzH=Cpb$8!jD*UP~VpWw$H|F`Vsn9x8bvJ
zTX_g9b$pdzs@b*!P&rN5DCl9&g)$-*e4`oyP#%<{Z}TEot{VLnaL|1(XW)U_ET$^M
z#q`;)cm@(pRKKRP1>0S4@t>Yg?WuvwhH+Hb@Uql5Yn<&hO9ZyUu%C0mb9{c>Qj#jW
zO<KM)bN=oRhG?X88cUSL8N7mY;JWKZ?Ws*o38C%?^^{D6WS;!kOHs~0#uz}a3Pl66
z9qS1!I3^j9LLg!u5f2^^Zu`sExx9=*dH3b3`e4D_WT1KTS)wtil+=9n<tq(>zF3Xq
zp#fBR=q$B}lm+%pM<E26r?2gH15B!#odOO#Wz0dbTSE;?crFGc!N>*jr^%80HS}7L
zqR*s|&2&E05pH)GOJlm&f~ggSmxB7y4T)m@DSY+E0z<k?_hvC2m{iZ2tu!YrUf}c?
zA9SlbN#`b6nVoXw7OU04a!F^V+W~0b=i1j9l8fVgGWY=-y!o-3f~8EBAJoux1=<$s
zXyz9J6~1$jQ<&OQ9U6ta2Oc1v%(9xiaHu^AiRQ(k)$)`ebBYLD(Sw)QsiIKW+re0q
zP@^fq$7!+DUK^KL)G<x`-KxJJv$x^RT_SM@UQ3)^s6;<?Gfz4cYKRYIW0iv0^ys>?
zBAYc7Iu9FH^^*BBEdXyvtLca|JUsQn8Vmrq$UiqP29k(hYzZl9<4=aLz2xnz)@lE)
zx`GoEJ2FZ_+t(EeCow1~)?UMNItwt83Hw@S{PlUuGa|_5n4R@zPCHycX+^Aj%-8#d
zY9WvQ^C0$}u}Jw0lyI7?n)L@aC%>-Y=PdkD%%T8?+6@l@%x8huQ9w*>ysA^y&iXck
zHBU_mZn5!k_nyoXTA&y+JXh!gB3(|`Sbz#c<9bXqxkhyumHK6QUoFuL!|%X%)Z5;~
zj`j3Bfm)zm!>Nb`PHyv!WT?CPm!(D>ZCbJDr!0JQ+d=ob)8P?{H+bG*%@AoT=-nml
zgsQlD)`Ey?cN7W5H+}(1smUcy0<pxl!7sYqPIzh!w{XIZxy8qk8ucg9zVo@ybyz^y
z+nQH7K<o>#mY8$i7Aa|h%GLWIf|A><9=ROPld6KVV~gxpVQG|s8lk+`AS!)TZ`$F`
z?2ji#ir3WKxDNZ?e5@sre;mBHT#C7?*xvLnKu<?x;YXy7)?QNnD?vKXJX+dh;$__I
zX~3v2siNT2l5##Tzw-QW__oyMFe>oT!%6TE;N}we<FJO};3cCiTcZ!KM!>mg_S~fS
zY^5vfdfO2zdD~%;JE`Xu?q8-7v;Xw9oQk)FuT9Y-8@7`Uvk@CKk$3l2P#A=2OxMFC
z6iP<+N<X%zT*y=ASO{W;-6x0<r$JRihX=AA&Cuu-A5d<5*RTWq{;dSFg+P3F7)2+R
zvkrpHJTWHX(mfldJjC&^!Y~|R?$64C&52UsY4#y4&`;1IY<8P3cR3`;X$1kncVfqV
zD4Z+tkwsVLo-dOF?|~Ol^l}1DEi)<)wQWlnus%2&<j60V%1V$Rq^yL!+B-^c9MKgk
zBmS|klRZvM9^$tGM5<?pnlb59dSNf7tqkWoP_E*{unfx{CR)3O#~rK1&M*h!uouLu
zj_^}BZB!-Qqhx&?$6gF^Mx)faQ2`qRsC~KTR~_4<SCNtSrf1R;Z)t1hj>AyMti>ZW
zfb#U_d(=BS+SuI@?xu!rmd(dkj4!}`ljHt`Wm9+E8@!EVgeC#Y0^K7nG;#$$34PDP
zo(p_U^S`a-42LyQQS=fs4-YwDu?msC-XJsG+9|wYaY__ndHHQR-<6$-tz;Zi;M+G$
zTk(K_SlrqUBKt)LzBK5F%2%fZmYg?}vrJJWN(CL~eU`cSAZP8vHup7?wUvn!|CWzT
zph#FjjC6!@JlMTP+6G%!&hn5hu#^{b*cr9TZ1jy~IibYQz1-f)M|Y{?(T*$XC;5m<
z;;a;ICS26KZWnG6n$i-$MK|&ETliwz3;1>dldglI(h!jb)r`WQW2Crk{inzjkt-(d
zoHY^A;{aSySu&RPE{KA}K7XGI3JVDy+5N~Zv;34c4yISj04MoC9_IHzldWg`MbK)E
zXqr_766B6rM8cqq7A~@w_4MAyAs$?aQS=)S#yqreAxOsx8i;;chEP7h7|%H80W}7N
zN9)NM|Nd-ZWlfqass}05QX4B_JW65B=IvXbgKL_lGMGUMUPf`LGMo<smRsI0cB@F%
z#&P4{p<<P3rigK>y(Tt*8>Ar6xgf0vL@k0ktmVZIs7gdt!*mDn&!oW|b2c)tY_v6*
z74ZHjsQ&3qwo~7z@0p>q5$4b9r$HU@FW{^5pHBNiZx&!N?G}OjoQ!Or6#(s8RCFz2
z$~-g$R>XUy!QXlatLM2Jf4+?bydMpmQqPtbs0jtM4?~L4+^7^HYlU@gQ?zphnS~OG
z8}1aNo)#$Q95~2_Q~Kh`ty#6N8FTjaYQOtk4wSBYhF0oV{n=a_44uzMvvPP<P(!bb
z)uz|;t>KnYg-P3I&=ve176J7`5XvLJqgFJi-JHD-vg+SwDRM^6mZ$&@w>hZn@-GcO
zk&%QJFg;F#G2Ch7;2)Pzh{}M4L2~zG@_M_$Q50|6yyh&KaG*P9%CU;4pnl~d#``Bu
zibU5Jq9ErVgqG}-OP#KYS^hEmE5ZkdhRX^4e(^MuZ0pxV%(OFsoQ+CrmAt-w&l%|2
zUWQ&zV9DCl(z=EeR*+{&R`jS5gJxeX?Q1Lg^}9gwd^Zn3kKsPix$xBxQUX&q6QSx*
zN7axmCl4#*%jJuzFe(-oI75Srcu#@`5flJgY`CSKc9ct(b{}Ka<ZC$ezuYu6G=<$A
zd+<Qai8e)zXNUE?tqFM!;h#%#h8wTCR@-t35%P&8txsSw@$RIpr1H0xV7qsg1}X>N
z_FYCqtAI>DrNow)yv(W%7Jiky8&6H|<){h%b+$O|0QZt+k31|dNOX|NXI8lPDq;e;
zhlql8n0D8@*?AKxr)}plTT}F1QB|C1i-DS*LHr#6_M&sHgdQw9Mn3e#ns0G|YwT9p
z{x7<i6w2$^7va}u`qJWyx`sDad7PbBx$51NIv#f840xitdT?;e594R!BmFLp!-u;Y
zc6L5KJW+++ozI#dp(0nMjrN}-^j1@Bh_#0^Jc5DWo>x;&aysI-c~(X_p*)p(?HxwR
z%tYU41UMJYXh-hR_TNMh7}zRgO><<j`K~P2yDT~wIyW)zJT!%MeGepD?6?Ou6-q+H
z1kT@d%gZt0PdWR=vxP$!$G^jve_#sgPF^ayQvEci(l{ZZ){~*n5(Mq7s%pU#LQ&AW
z)S$|IIV;bqd-}K*Y`@XY*ry6J)Fa!0<CYrLu1+-mG(66hTXYVyxS%i!g@IYNw`Tnj
z-x>hI2HC*vQ34J@2^s_-l@Y||VE(>XKbsJJxgQLbz&{6p8S8#s3j^#+n_FO>-kZx{
z;rl?AoD-q<G%hZfHx}8ziwEYMpmEY0#bbM*VE59UsGr~Iob)FrK@{#~5}9sR?cB{H
zxHO56L|UMdOpVg7S1?1JTBHs`D`q5C0y`v!{s@gAJ=JC;<It0_YFAp$G=oMwLZI8O
z@H`mVkf=R*i?mJ8v$S;b*Q*`H0x^=(esmBQSLiEZo>V&Yw}e(^?`#BBt)o{#d_GmE
z!NG?KFGJ|2(kbt>zWDdSMjPWCqNzl=Y&V0$xQVn)>JmKTawM{s<w@^=-GElDCUO5I
zW_4(kwB`<~Dn}fskC|G>_FO%*=rt0xz;V<g=gppb#{;+m1vI$)%JlhKGX}|FC<)RI
z%aS(|tE!bU{UIwj#B>2*h-!>~`hx0qiW_0N69p6*7Uku7KQQDpO-&S$$_LuJPoq0&
z?dn4DnMJUShi6AgJ1=#Wr&v2KX=)ida<@GektQfmQ}RThh@VUGwu?P{KagOInyC<l
z7%3iPPMCdJg-v<GAc=|Y5CuJ6r&*G<;0cX)XE8!VHEvmmCvO}nDR4}J1n^MPoG~WC
z_>Z7Ch0hp*aW+)@>P8!j)_WtZ{n_3~^yT$8fVY)P7~K;UYHz1YT24zmjBOI@2b~=f
zzFmesH1*HJr(h2*hq30F*lS`zF5}Jb{E5}66sBba=MZFc<?(TK(qD)K6O9c?X5~Zz
z-qK`OJq{HoFLyS`N?r~7nR||ye5cIUs?;1mbcpkNETVaNG0@$NH{GHy_2!@gaZ-FM
z+SUl7S}XebWfFIooaH#v@A*nBtJIDkpB**O!s)zC?D4`(k^mFc=3x-(eha3-P?OJK
z#pNkUfghdU&>qc0QM7?sHc<RsHFsW6zU)^1RDfcCqMf>Qu<eI0n{yaRu5@j$aI0s`
zQv}X*WY2t_VBMq2F=-EeW0Ixbamf;21<5IWFZs-ciLl?AY(;2ur%_=cj62FyIgpl2
z0aG{K^7ie0&)&O9Jp3|kc$l{HV96dte9+Izwo)qPc)IzJES%$KaX|(j&}>i0p%Qy^
zmYv~UrB01*NoMoiVsHg~p|REur$kfizHsoXf;T{cGnjmp5fM{;6^E2~p!fMM-G}pB
zOei{f>y=33(eIz#Z&JSSe!$M6s!ug5`1P~>VCyz4ceZ7IVKdmK{gpR>>(ncHl@qZr
z-{N<hn7PZ~UAkV7JJ^=PE=uH${8~Arc}>ZykUMQ)PFz@IhpSTW{wAy3zFK6j=^@sP
zNy<Cla>igk)s{9wbKbh*LB)@yJSt_k?z~K4Jk^emh~20E9BJkGeD_=FL3%+7ZZSIC
z92RIgSK}x=$SdWp0Eyhg$#oR8uL>*p5z@<-@JhERvBi|U)1f$@dz?l1)SjHoyx_K@
z+^LfO_`;a5MoP#xsEGOvRxMdjcl0x~udfZVupZw>36_p}sKn&SckU<6x@GkLI#%Ii
z-XcN{=WN_<FycHgxM6ny(d^K&(Ekd=FjoNYL1@Ehe+6j&KJ_2!|1A5P`0rJJrLtl{
z-lib>ryFUjfU9ZWO;8s4=i!ziwP75fnFSjl8}pTtjco@t8rqg<)<(bW+f~Dle{Md}
Nl;t(#5U(sl{~xzyGA#fA

diff --git a/dist/assets/images/windows-logo.svg b/dist/assets/images/windows-logo.svg
new file mode 100644
index 0000000..b2f6ab9
--- /dev/null
+++ b/dist/assets/images/windows-logo.svg
@@ -0,0 +1 @@
+<svg xmlns="http://www.w3.org/2000/svg" width="240" height="240" viewBox="0 0 48 48"><linearGradient id="a" x1="9.703" x2="16.585" y1="26.119" y2="37.59" gradientUnits="userSpaceOnUse"><stop offset="0" stop-color="#1784d8"/><stop offset="1" stop-color="#0864c5"/></linearGradient><path fill="url(#a)" d="M20 25.026 5.011 25l.001 11.002a2 2 0 0 0 1.726 1.981L20 39.818V25.026z"/><linearGradient id="b" x1="24.604" x2="44.545" y1="27.13" y2="40.895" gradientUnits="userSpaceOnUse"><stop offset="0" stop-color="#31abec"/><stop offset="1" stop-color="#1582d5"/></linearGradient><path fill="url(#b)" d="M22 25.03v15.065l18.722 2.59a2 2 0 0 0 2.274-1.981L43 25.066l-21-.036z"/><linearGradient id="c" x1="8.142" x2="25.788" y1="11.699" y2="27.581" gradientUnits="userSpaceOnUse"><stop offset="0" stop-color="#31abec"/><stop offset="1" stop-color="#1582d5"/></linearGradient><path fill="url(#c)" d="m20 8.256-13.278 1.88a2 2 0 0 0-1.72 1.982L5.014 23H20V8.256z"/><linearGradient id="d" x1="25.913" x2="56.031" y1="10.147" y2="30.618" gradientUnits="userSpaceOnUse"><stop offset="0" stop-color="#54daff"/><stop offset="1" stop-color="#25a2e5"/></linearGradient><path fill="url(#d)" d="M22 7.973V23h20.995V7.303a2 2 0 0 0-2.28-1.98L22 7.973z"/></svg>
diff --git a/dist/assets/js/buttons.bootstrap5.min.js b/dist/assets/js/buttons.bootstrap5.min.js
new file mode 100644
index 0000000..35a26c3
--- /dev/null
+++ b/dist/assets/js/buttons.bootstrap5.min.js
@@ -0,0 +1,4 @@
+/*! Bootstrap integration for DataTables' Buttons
+ * © SpryMedia Ltd - datatables.net/license
+ */
+!function(e){var o,a;"function"==typeof define&&define.amd?define(["jquery","datatables.net-bs5","datatables.net-buttons"],function(t){return e(t,window,document)}):"object"==typeof exports?(o=require("jquery"),a=function(t,n){n.fn.dataTable||require("datatables.net-bs5")(t,n),n.fn.dataTable.Buttons||require("datatables.net-buttons")(t,n)},"undefined"==typeof window?module.exports=function(t,n){return t=t||window,n=n||o(t),a(t,n),e(n,0,t.document)}:(a(window,o),module.exports=e(o,window,window.document))):e(jQuery,window,document)}(function(e,t,n){"use strict";var o=e.fn.dataTable;return e.extend(!0,o.Buttons.defaults,{dom:{container:{className:"dt-buttons btn-group flex-wrap"},button:{className:"btn btn-secondary",active:"active",dropHtml:"",dropClass:"dropdown-toggle"},collection:{container:{tag:"div",className:"dropdown-menu dt-button-collection"},closeButton:!1,button:{tag:"a",className:"dt-button dropdown-item",active:"dt-button-active",disabled:"disabled",spacer:{className:"dropdown-divider",tag:"hr"}}},split:{action:{tag:"a",className:"btn btn-secondary dt-button-split-drop-button",closeButton:!1},dropdown:{tag:"button",className:"btn btn-secondary dt-button-split-drop dropdown-toggle-split",closeButton:!1,align:"split-left",splitAlignClass:"dt-button-split-left"},wrapper:{tag:"div",className:"dt-button-split btn-group",closeButton:!1}}},buttonCreated:function(t,n){return t.buttons?e('<div class="btn-group"/>').append(n):n}}),o.ext.buttons.collection.rightAlignClassName="dropdown-menu-right",o});
\ No newline at end of file
diff --git a/dist/assets/js/dataTables.bootstrap5.min.js b/dist/assets/js/dataTables.bootstrap5.min.js
new file mode 100644
index 0000000..5f94c43
--- /dev/null
+++ b/dist/assets/js/dataTables.bootstrap5.min.js
@@ -0,0 +1,4 @@
+/*! DataTables Bootstrap 5 integration
+ * © SpryMedia Ltd - datatables.net/license
+ */
+!function(n){var o,r;"function"==typeof define&&define.amd?define(["jquery","datatables.net"],function(t){return n(t,window,document)}):"object"==typeof exports?(o=require("jquery"),r=function(t,e){e.fn.dataTable||require("datatables.net")(t,e)},"undefined"==typeof window?module.exports=function(t,e){return t=t||window,e=e||o(t),r(t,e),n(e,0,t.document)}:(r(window,o),module.exports=n(o,window,window.document))):n(jQuery,window,document)}(function(d,t,e){"use strict";var n=d.fn.dataTable;return d.extend(!0,n.defaults,{renderer:"bootstrap"}),d.extend(!0,n.ext.classes,{container:"dt-container dt-bootstrap5",search:{input:"form-control form-control-sm"},length:{select:"form-select form-select-sm"},processing:{container:"dt-processing card"},layout:{row:"row mt-2 justify-content-between",cell:"d-md-flex justify-content-between align-items-center",tableCell:"col-12",start:"dt-layout-start col-md-auto me-auto",end:"dt-layout-end col-md-auto ms-auto",full:"dt-layout-full col-md"}}),n.ext.renderer.pagingButton.bootstrap=function(t,e,n,o,r){var a=["dt-paging-button","page-item"],o=(o&&a.push("active"),r&&a.push("disabled"),d("<li>").addClass(a.join(" ")));return{display:o,clicker:d("<button>",{class:"page-link",role:"link",type:"button"}).html(n).appendTo(o)}},n.ext.renderer.pagingContainer.bootstrap=function(t,e){return d("<ul/>").addClass("pagination").append(e)},n});
\ No newline at end of file
diff --git a/dist/assets/js/dataTables.buttons.min.js b/dist/assets/js/dataTables.buttons.min.js
new file mode 100644
index 0000000..adceeae
--- /dev/null
+++ b/dist/assets/js/dataTables.buttons.min.js
@@ -0,0 +1,4 @@
+/*! Buttons for DataTables 3.2.0
+ * © SpryMedia Ltd - datatables.net/license
+ */
+!function(e){var o,i;"function"==typeof define&&define.amd?define(["jquery","datatables.net"],function(t){return e(t,window,document)}):"object"==typeof exports?(o=require("jquery"),i=function(t,n){n.fn.dataTable||require("datatables.net")(t,n)},"undefined"==typeof window?module.exports=function(t,n){return t=t||window,n=n||o(t),i(t,n),e(n,t,t.document)}:(i(window,o),module.exports=e(o,window,window.document))):e(jQuery,window,document)}(function(x,m,v){"use strict";var e=x.fn.dataTable,o=0,C=0,_=e.ext.buttons,i=null;function y(t,n,e){x.fn.animate?t.stop().fadeIn(n,e):(t.css("display","block"),e&&e.call(t))}function w(t,n,e){x.fn.animate?t.stop().fadeOut(n,e):(t.css("display","none"),e&&e.call(t))}function A(n,t){if(!e.versionCheck("2"))throw"Warning: Buttons requires DataTables 2 or newer";if(!(this instanceof A))return function(t){return new A(t,n).container()};!0===(t=void 0===t?{}:t)&&(t={}),Array.isArray(t)&&(t={buttons:t}),this.c=x.extend(!0,{},A.defaults,t),t.buttons&&(this.c.buttons=t.buttons),this.s={dt:new e.Api(n),buttons:[],listenKeys:"",namespace:"dtb"+o++},this.dom={container:x("<"+this.c.dom.container.tag+"/>").addClass(this.c.dom.container.className)},this._constructor()}x.extend(A.prototype,{action:function(t,n){t=this._nodeToButton(t);return void 0===n?t.conf.action:(t.conf.action=n,this)},active:function(t,n){var t=this._nodeToButton(t),e=this.c.dom.button.active,o=x(t.node);return t.inCollection&&this.c.dom.collection.button&&void 0!==this.c.dom.collection.button.active&&(e=this.c.dom.collection.button.active),void 0===n?o.hasClass(e):(o.toggleClass(e,void 0===n||n),this)},add:function(t,n,e){var o=this.s.buttons;if("string"==typeof n){for(var i=n.split("-"),s=this.s,r=0,a=i.length-1;r<a;r++)s=s.buttons[+i[r]];o=s.buttons,n=+i[i.length-1]}return this._expandButton(o,t,void 0!==t?t.split:void 0,(void 0===t||void 0===t.split||0===t.split.length)&&void 0!==s,!1,n),void 0!==e&&!0!==e||this._draw(),this},collectionRebuild:function(t,n){var e=this._nodeToButton(t);if(void 0!==n){for(var o=e.buttons.length-1;0<=o;o--)this.remove(e.buttons[o].node);for(e.conf.prefixButtons&&n.unshift.apply(n,e.conf.prefixButtons),e.conf.postfixButtons&&n.push.apply(n,e.conf.postfixButtons),o=0;o<n.length;o++){var i=n[o];this._expandButton(e.buttons,i,void 0!==i&&void 0!==i.config&&void 0!==i.config.split,!0,void 0!==i.parentConf&&void 0!==i.parentConf.split,null,i.parentConf)}}this._draw(e.collection,e.buttons)},container:function(){return this.dom.container},disable:function(t){t=this._nodeToButton(t);return(t.isSplit?x(t.node.childNodes[0]):x(t.node)).addClass(this.c.dom.button.disabled).prop("disabled",!0),t.disabled=!0,this._checkSplitEnable(),this},destroy:function(){x("body").off("keyup."+this.s.namespace);for(var t=this.s.buttons.slice(),n=0,e=t.length;n<e;n++)this.remove(t[n].node);this.dom.container.remove();var o=this.s.dt.settings()[0];for(n=0,e=o.length;n<e;n++)if(o.inst===this){o.splice(n,1);break}return this},enable:function(t,n){return!1===n?this.disable(t):(((n=this._nodeToButton(t)).isSplit?x(n.node.childNodes[0]):x(n.node)).removeClass(this.c.dom.button.disabled).prop("disabled",!1),n.disabled=!1,this._checkSplitEnable(),this)},index:function(t,n,e){n||(n="",e=this.s.buttons);for(var o=0,i=e.length;o<i;o++){var s=e[o].buttons;if(e[o].node===t)return n+o;if(s&&s.length){s=this.index(t,o+"-",s);if(null!==s)return s}}return null},name:function(){return this.c.name},node:function(t){return t?(t=this._nodeToButton(t),x(t.node)):this.dom.container},processing:function(t,n){var e=this.s.dt,o=this._nodeToButton(t);return void 0===n?x(o.node).hasClass("processing"):(x(o.node).toggleClass("processing",n),x(e.table().node()).triggerHandler("buttons-processing.dt",[n,e.button(t),e,x(t),o.conf]),this)},remove:function(t){var n=this._nodeToButton(t),e=this._nodeToHost(t),o=this.s.dt;if(n.buttons.length)for(var i=n.buttons.length-1;0<=i;i--)this.remove(n.buttons[i].node);n.conf.destroying=!0,n.conf.destroy&&n.conf.destroy.call(o.button(t),o,x(t),n.conf),this._removeKey(n.conf),x(n.node).remove();o=x.inArray(n,e);return e.splice(o,1),this},text:function(t,n){function e(t){return"function"==typeof t?t(i,s,o.conf):t}var o=this._nodeToButton(t),t=o.textNode,i=this.s.dt,s=x(o.node);return void 0===n?e(o.conf.text):(o.conf.text=n,t.html(e(n)),this)},_constructor:function(){var e=this,t=this.s.dt,o=t.settings()[0],n=this.c.buttons;o._buttons||(o._buttons=[]),o._buttons.push({inst:this,name:this.c.name});for(var i=0,s=n.length;i<s;i++)this.add(n[i]);t.on("destroy",function(t,n){n===o&&e.destroy()}),x("body").on("keyup."+this.s.namespace,function(t){var n;v.activeElement&&v.activeElement!==v.body||(n=String.fromCharCode(t.keyCode).toLowerCase(),-1!==e.s.listenKeys.toLowerCase().indexOf(n)&&e._keypress(n,t))})},_addKey:function(t){t.key&&(this.s.listenKeys+=(x.isPlainObject(t.key)?t.key:t).key)},_draw:function(t,n){t||(t=this.dom.container,n=this.s.buttons),t.children().detach();for(var e=0,o=n.length;e<o;e++)t.append(n[e].inserter),t.append(" "),n[e].buttons&&n[e].buttons.length&&this._draw(n[e].collection,n[e].buttons)},_expandButton:function(t,n,e,o,i,s,r){for(var a,l=this.s.dt,c=this.c.dom.collection,u=Array.isArray(n)?n:[n],d=0,f=(u=void 0===n?Array.isArray(e)?e:[e]:u).length;d<f;d++){var p=this._resolveExtends(u[d]);if(p)if(a=!(!p.config||!p.config.split),Array.isArray(p))this._expandButton(t,p,void 0!==h&&void 0!==h.conf?h.conf.split:void 0,o,void 0!==r&&void 0!==r.split,s,r);else{var h=this._buildButton(p,o,void 0!==p.split||void 0!==p.config&&void 0!==p.config.split,i);if(h){if(null!=s?(t.splice(s,0,h),s++):t.push(h),h.conf.dropIcon&&!h.conf.split&&x(h.node).addClass(this.c.dom.button.dropClass).append(this.c.dom.button.dropHtml),h.conf.buttons&&(h.collection=x("<"+c.container.content.tag+"/>"),h.conf._collection=h.collection,this._expandButton(h.buttons,h.conf.buttons,h.conf.split,!a,a,s,h.conf)),h.conf.split){h.collection=x("<"+c.container.tag+"/>"),h.conf._collection=h.collection;for(var b=0;b<h.conf.split.length;b++){var g=h.conf.split[b];"object"==typeof g&&(g.parent=r,void 0===g.collectionLayout&&(g.collectionLayout=h.conf.collectionLayout),void 0===g.dropup&&(g.dropup=h.conf.dropup),void 0===g.fade)&&(g.fade=h.conf.fade)}this._expandButton(h.buttons,h.conf.buttons,h.conf.split,!a,a,s,h.conf)}h.conf.parent=r,p.init&&p.init.call(l.button(h.node),l,x(h.node),p)}}}},_buildButton:function(n,t,e,o){function i(t){return"function"==typeof t?t(f,c,n):t}var s,r,a,l,c,u=this,d=this.c.dom,f=this.s.dt,p=x.extend(!0,{},d.button);if(t&&e&&d.collection.split?x.extend(!0,p,d.collection.split.action):o||t?x.extend(!0,p,d.collection.button):e&&x.extend(!0,p,d.split.button),n.spacer)return d=x("<"+p.spacer.tag+"/>").addClass("dt-button-spacer "+n.style+" "+p.spacer.className).html(i(n.text)),{conf:n,node:d,inserter:d,buttons:[],inCollection:t,isSplit:e,collection:null,textNode:d};if(n.available&&!n.available(f,n)&&!n.html)return!1;n.html?c=x(n.html):(r=function(t,n,e,o,i){o.action.call(n.button(e),t,n,e,o,i),x(n.table().node()).triggerHandler("buttons-action.dt",[n.button(e),n,e,o])},a=function(t,n,e,o){o.async?(u.processing(e[0],!0),setTimeout(function(){r(t,n,e,o,function(){u.processing(e[0],!1)})},o.async)):r(t,n,e,o,function(){})},d=n.tag||p.tag,l=void 0===n.clickBlurs||n.clickBlurs,c=x("<"+d+"/>").addClass(p.className).attr("tabindex",this.s.dt.settings()[0].iTabIndex).attr("aria-controls",this.s.dt.table().node().id).on("click.dtb",function(t){t.preventDefault(),!c.hasClass(p.disabled)&&n.action&&a(t,f,c,n),l&&c.trigger("blur")}).on("keypress.dtb",function(t){13===t.keyCode&&(t.preventDefault(),!c.hasClass(p.disabled))&&n.action&&a(t,f,c,n)}),"a"===d.toLowerCase()&&c.attr("href","#"),"button"===d.toLowerCase()&&c.attr("type","button"),s=p.liner.tag?(d=x("<"+p.liner.tag+"/>").html(i(n.text)).addClass(p.liner.className),"a"===p.liner.tag.toLowerCase()&&d.attr("href","#"),c.append(d),d):(c.html(i(n.text)),c),!1===n.enabled&&c.addClass(p.disabled),n.className&&c.addClass(n.className),n.titleAttr&&c.attr("title",i(n.titleAttr)),n.attr&&c.attr(n.attr),n.namespace||(n.namespace=".dt-button-"+C++),void 0!==n.config&&n.config.split&&(n.split=n.config.split));var h,b,g,m,v,y,d=this.c.dom.buttonContainer,d=d&&d.tag?x("<"+d.tag+"/>").addClass(d.className).append(c):c;return this._addKey(n),this.c.buttonCreated&&(d=this.c.buttonCreated(n,d)),e&&(b=(h=t?x.extend(!0,this.c.dom.split,this.c.dom.collection.split):this.c.dom.split).wrapper,g=x("<"+b.tag+"/>").addClass(b.className).append(c),m=x.extend(n,{autoClose:!0,align:h.dropdown.align,attr:{"aria-haspopup":"dialog","aria-expanded":!1},className:h.dropdown.className,closeButton:!1,splitAlignClass:h.dropdown.splitAlignClass,text:h.dropdown.text}),this._addKey(m),v=function(t,n,e,o){_.split.action.call(n.button(g),t,n,e,o),x(n.table().node()).triggerHandler("buttons-action.dt",[n.button(e),n,e,o]),e.attr("aria-expanded",!0)},y=x('<button class="'+h.dropdown.className+' dt-button"></button>').html(this.c.dom.button.dropHtml).addClass(this.c.dom.button.dropClass).on("click.dtb",function(t){t.preventDefault(),t.stopPropagation(),y.hasClass(p.disabled)||v(t,f,y,m),l&&y.trigger("blur")}).on("keypress.dtb",function(t){13===t.keyCode&&(t.preventDefault(),y.hasClass(p.disabled)||v(t,f,y,m))}),0===n.split.length&&y.addClass("dtb-hide-drop"),g.append(y).attr(m.attr)),{conf:n,node:(e?g:c).get(0),inserter:e?g:d,buttons:[],inCollection:t,isSplit:e,inSplit:o,collection:null,textNode:s}},_checkSplitEnable:function(t){t=t||this.s.buttons;for(var n=0;n<t.length;n++){var e,o=t[n];o.isSplit?(e=o.node.childNodes[1],(this._checkAnyEnabled(o.buttons)?x(e).removeClass(this.c.dom.button.disabled):x(e).addClass(this.c.dom.button.disabled)).prop("disabled",!1)):o.isCollection&&this._checkSplitEnable(o.buttons)}},_checkAnyEnabled:function(t){for(var n=0;n<t.length;n++)if(!t[n].disabled)return!0;return!1},_nodeToButton:function(t,n){for(var e=0,o=(n=n||this.s.buttons).length;e<o;e++){if(n[e].node===t||x(n[e].node).children().eq(0).get(0)===t)return n[e];if(n[e].buttons.length){var i=this._nodeToButton(t,n[e].buttons);if(i)return i}}},_nodeToHost:function(t,n){for(var e=0,o=(n=n||this.s.buttons).length;e<o;e++){if(n[e].node===t)return n;if(n[e].buttons.length){var i=this._nodeToHost(t,n[e].buttons);if(i)return i}}},_keypress:function(s,r){var a;r._buttonsHandled||(a=function(t){for(var n,e,o=0,i=t.length;o<i;o++)n=t[o].conf,e=t[o].node,!n.key||n.key!==s&&(!x.isPlainObject(n.key)||n.key.key!==s||n.key.shiftKey&&!r.shiftKey||n.key.altKey&&!r.altKey||n.key.ctrlKey&&!r.ctrlKey||n.key.metaKey&&!r.metaKey)||(r._buttonsHandled=!0,x(e).click()),t[o].buttons.length&&a(t[o].buttons)})(this.s.buttons)},_removeKey:function(t){var n;t.key&&(t=(x.isPlainObject(t.key)?t.key:t).key,n=this.s.listenKeys.split(""),t=x.inArray(t,n),n.splice(t,1),this.s.listenKeys=n.join(""))},_resolveExtends:function(e){function t(t){for(var n=0;!x.isPlainObject(t)&&!Array.isArray(t);){if(void 0===t)return;if("function"==typeof t){if(!(t=t.call(i,s,e)))return!1}else if("string"==typeof t){if(!_[t])return{html:t};t=_[t]}if(30<++n)throw"Buttons: Too many iterations"}return Array.isArray(t)?t:x.extend({},t)}var n,o,i=this,s=this.s.dt;for(e=t(e);e&&e.extend;){if(!_[e.extend])throw"Cannot extend unknown button type: "+e.extend;var r=t(_[e.extend]);if(Array.isArray(r))return r;if(!r)return!1;var a=r.className;void 0!==e.config&&void 0!==r.config&&(e.config=x.extend({},r.config,e.config)),e=x.extend({},r,e),a&&e.className!==a&&(e.className=a+" "+e.className),e.extend=r.extend}var l=e.postfixButtons;if(l)for(e.buttons||(e.buttons=[]),n=0,o=l.length;n<o;n++)e.buttons.push(l[n]);var c=e.prefixButtons;if(c)for(e.buttons||(e.buttons=[]),n=0,o=c.length;n<o;n++)e.buttons.splice(n,0,c[n]);return e},_popover:function(o,t,n){function i(){p=!0,w(x(b),h.fade,function(){x(this).detach()}),x(d.buttons('[aria-haspopup="dialog"][aria-expanded="true"]').nodes()).attr("aria-expanded","false"),x("div.dt-button-background").off("click.dtb-collection"),A.background(!1,h.backgroundClassName,h.fade,g),x(m).off("resize.resize.dtb-collection"),x("body").off(".dtb-collection"),d.off("buttons-action.b-internal"),d.off("destroy"),x("body").trigger("buttons-popover-hide.dt")}var e,s,r,a,l,c,u,d=t,f=this.c,p=!1,h=x.extend({align:"button-left",autoClose:!1,background:!0,backgroundClassName:"dt-button-background",closeButton:!0,containerClassName:f.dom.collection.container.className,contentClassName:f.dom.collection.container.content.className,collectionLayout:"",collectionTitle:"",dropup:!1,fade:400,popoverTitle:"",rightAlignClassName:"dt-button-right",tag:f.dom.collection.container.tag},n),b=h.tag+"."+h.containerClassName.replace(/ /g,"."),f=t.node(),g=h.collectionLayout.includes("fixed")?x("body"):t.node();!1===o?i():((n=x(d.buttons('[aria-haspopup="dialog"][aria-expanded="true"]').nodes())).length&&(g.closest(b).length&&(g=n.eq(0)),i()),h.sort&&((n=x("button",o).map(function(t,n){return{text:x(n).text(),el:n}}).toArray()).sort(function(t,n){return t.text.localeCompare(n.text)}),x(o).append(n.map(function(t){return t.el}))),n=x(".dt-button",o).length,a="",3===n?a="dtb-b3":2===n?a="dtb-b2":1===n&&(a="dtb-b1"),e=x("<"+h.tag+"/>").addClass(h.containerClassName).addClass(h.collectionLayout).addClass(h.splitAlignClass).addClass(a).css("display","none").attr({"aria-modal":!0,role:"dialog"}),o=x(o).addClass(h.contentClassName).attr("role","menu").appendTo(e),f.attr("aria-expanded","true"),g.parents("body")[0]!==v.body&&(g=v.body.lastChild),h.popoverTitle?e.prepend('<div class="dt-button-collection-title">'+h.popoverTitle+"</div>"):h.collectionTitle&&e.prepend('<div class="dt-button-collection-title">'+h.collectionTitle+"</div>"),h.closeButton&&e.prepend('<div class="dtb-popover-close">&times;</div>').addClass("dtb-collection-closeable"),y(e.insertAfter(g),h.fade),n=x(t.table().container()),a=e.css("position"),"container"!==h.span&&"dt-container"!==h.align||(g=g.parent(),e.css("width",n.width())),"absolute"===a?(f=x(g[0].offsetParent),t=g.position(),n=g.offset(),a=f.offset(),s=f.position(),r=m.getComputedStyle(f[0]),a.height=f.outerHeight(),a.width=f.width()+parseFloat(r.paddingLeft),a.right=a.left+a.width,a.bottom=a.top+a.height,a=t.top+g.outerHeight(),l=t.left,e.css({top:a,left:l}),r=m.getComputedStyle(e[0]),(c=e.offset()).height=e.outerHeight(),c.width=e.outerWidth(),c.right=c.left+c.width,c.bottom=c.top+c.height,c.marginTop=parseFloat(r.marginTop),c.marginBottom=parseFloat(r.marginBottom),h.dropup&&(a=t.top-c.height-c.marginTop-c.marginBottom),"button-right"!==h.align&&!e.hasClass(h.rightAlignClassName)||(l=t.left-c.width+g.outerWidth()),"dt-container"!==h.align&&"container"!==h.align||l<t.left&&(l=-t.left),s.left+l+c.width>x(m).width()&&(l=x(m).width()-c.width-s.left),n.left+l<0&&(l=-n.left),s.top+a+c.height>x(m).height()+x(m).scrollTop()&&(a=t.top-c.height-c.marginTop-c.marginBottom),f.offset().top+a<x(m).scrollTop()&&(a=t.top+g.outerHeight()),e.css({top:a,left:l})):((u=function(){var t=x(m).height()/2,n=e.height()/2;e.css("marginTop",-1*(n=t<n?t:n))})(),x(m).on("resize.dtb-collection",function(){u()})),h.background&&A.background(!0,h.backgroundClassName,h.fade,h.backgroundHost||g),x("div.dt-button-background").on("click.dtb-collection",function(){}),h.autoClose&&setTimeout(function(){d.on("buttons-action.b-internal",function(t,n,e,o){o[0]!==g[0]&&i()})},0),x(e).trigger("buttons-popover.dt"),d.on("destroy",i),setTimeout(function(){p=!1,x("body").on("click.dtb-collection",function(t){var n,e;!p&&(n=x.fn.addBack?"addBack":"andSelf",e=x(t.target).parent()[0],!x(t.target).parents()[n]().filter(o).length&&!x(e).hasClass("dt-buttons")||x(t.target).hasClass("dt-button-background"))&&i()}).on("keyup.dtb-collection",function(t){27===t.keyCode&&i()}).on("keydown.dtb-collection",function(t){var n=x("a, button",o),e=v.activeElement;9===t.keyCode&&(-1===n.index(e)?(n.first().focus(),t.preventDefault()):t.shiftKey?e===n[0]&&(n.last().focus(),t.preventDefault()):e===n.last()[0]&&(n.first().focus(),t.preventDefault()))})},0))}}),A.background=function(t,n,e,o){void 0===e&&(e=400),o=o||v.body,t?y(x("<div/>").addClass(n).css("display","none").insertAfter(o),e):w(x("div."+n),e,function(){x(this).removeClass(n).remove()})},A.instanceSelector=function(t,s){var r,a,l;return null==t?x.map(s,function(t){return t.inst}):(r=[],a=x.map(s,function(t){return t.name}),(l=function(t){var n;if(Array.isArray(t))for(var e=0,o=t.length;e<o;e++)l(t[e]);else if("string"==typeof t)-1!==t.indexOf(",")?l(t.split(",")):-1!==(n=x.inArray(t.trim(),a))&&r.push(s[n].inst);else if("number"==typeof t)r.push(s[t].inst);else if("object"==typeof t&&t.nodeName)for(var i=0;i<s.length;i++)s[i].inst.dom.container[0]===t&&r.push(s[i].inst);else"object"==typeof t&&r.push(t)})(t),r)},A.buttonSelector=function(t,n){for(var c=[],u=function(t,n,e){for(var o,i,s=0,r=n.length;s<r;s++)(o=n[s])&&(t.push({node:o.node,name:o.conf.name,idx:i=void 0!==e?e+s:s+""}),o.buttons)&&u(t,o.buttons,i+"-")},d=function(t,n){var e=[],o=(u(e,n.s.buttons),x.map(e,function(t){return t.node}));if(Array.isArray(t)||t instanceof x)for(s=0,r=t.length;s<r;s++)d(t[s],n);else if(null==t||"*"===t)for(s=0,r=e.length;s<r;s++)c.push({inst:n,node:e[s].node});else if("number"==typeof t)n.s.buttons[t]&&c.push({inst:n,node:n.s.buttons[t].node});else if("string"==typeof t)if(-1!==t.indexOf(","))for(var i=t.split(","),s=0,r=i.length;s<r;s++)d(i[s].trim(),n);else if(t.match(/^\d+(\-\d+)*$/)){var a=x.map(e,function(t){return t.idx});c.push({inst:n,node:e[x.inArray(t,a)].node})}else if(-1!==t.indexOf(":name")){var l=t.replace(":name","");for(s=0,r=e.length;s<r;s++)e[s].name===l&&c.push({inst:n,node:e[s].node})}else x(o).filter(t).each(function(){c.push({inst:n,node:this})});else"object"==typeof t&&t.nodeName&&-1!==(a=x.inArray(t,o))&&c.push({inst:n,node:o[a]})},e=0,o=t.length;e<o;e++){var i=t[e];d(n,i)}return c},A.stripData=function(t,n){return"string"==typeof t&&(t=A.stripHtmlScript(t),t=A.stripHtmlComments(t),n&&!n.stripHtml||(t=e.util.stripHtml(t)),n&&!n.trim||(t=t.trim()),n&&!n.stripNewlines||(t=t.replace(/\n/g," ")),n&&!n.decodeEntities||(t=i?i(t):(c.innerHTML=t,c.value)),!n||n.escapeExcelFormula)&&t.match(/^[=+\-@\t\r]/)&&(console.log("matching and updateing"),t="'"+t),t},A.entityDecoder=function(t){i=t},A.stripHtmlComments=function(t){for(var n;(t=(n=t).replace(/(<!--.*?--!?>)|(<!--[\S\s]+?--!?>)|(<!--[\S\s]*?$)/g,""))!==n;);return t},A.stripHtmlScript=function(t){for(var n;(t=(n=t).replace(/<script\b[^<]*(?:(?!<\/script[^>]*>)<[^<]*)*<\/script[^>]*>/gi,""))!==n;);return t},A.defaults={buttons:["copy","excel","csv","pdf","print"],name:"main",tabIndex:0,dom:{container:{tag:"div",className:"dt-buttons"},collection:{container:{className:"dt-button-collection",content:{className:"",tag:"div"},tag:"div"}},button:{tag:"button",className:"dt-button",active:"dt-button-active",disabled:"disabled",spacer:{className:"dt-button-spacer",tag:"span"},liner:{tag:"span",className:""},dropClass:"",dropHtml:'<span class="dt-button-down-arrow">&#x25BC;</span>'},split:{action:{className:"dt-button-split-drop-button dt-button",tag:"button"},dropdown:{align:"split-right",className:"dt-button-split-drop",splitAlignClass:"dt-button-split-left",tag:"button"},wrapper:{className:"dt-button-split",tag:"div"}}}},x.extend(_,{collection:{text:function(t){return t.i18n("buttons.collection","Collection")},className:"buttons-collection",closeButton:!(A.version="3.2.0"),dropIcon:!0,init:function(t,n){n.attr("aria-expanded",!1)},action:function(t,n,e,o){o._collection.parents("body").length?this.popover(!1,o):this.popover(o._collection,o),"keypress"===t.type&&x("a, button",o._collection).eq(0).focus()},attr:{"aria-haspopup":"dialog"}},split:{text:function(t){return t.i18n("buttons.split","Split")},className:"buttons-split",closeButton:!1,init:function(t,n){return n.attr("aria-expanded",!1)},action:function(t,n,e,o){this.popover(o._collection,o)},attr:{"aria-haspopup":"dialog"}},copy:function(){if(_.copyHtml5)return"copyHtml5"},csv:function(t,n){if(_.csvHtml5&&_.csvHtml5.available(t,n))return"csvHtml5"},excel:function(t,n){if(_.excelHtml5&&_.excelHtml5.available(t,n))return"excelHtml5"},pdf:function(t,n){if(_.pdfHtml5&&_.pdfHtml5.available(t,n))return"pdfHtml5"},pageLength:function(t){var n=t.settings()[0].aLengthMenu,e=[],o=[];if(Array.isArray(n[0]))e=n[0],o=n[1];else for(var i=0;i<n.length;i++){var s=n[i];x.isPlainObject(s)?(e.push(s.value),o.push(s.label)):(e.push(s),o.push(s))}return{extend:"collection",text:function(t){return t.i18n("buttons.pageLength",{"-1":"Show all rows",_:"Show %d rows"},t.page.len())},className:"buttons-page-length",autoClose:!0,buttons:x.map(e,function(s,t){return{text:o[t],className:"button-page-length",action:function(t,n){n.page.len(s).draw()},init:function(t,n,e){function o(){i.active(t.page.len()===s)}var i=this;t.on("length.dt"+e.namespace,o),o()},destroy:function(t,n,e){t.off("length.dt"+e.namespace)}}}),init:function(t,n,e){var o=this;t.on("length.dt"+e.namespace,function(){o.text(e.text)})},destroy:function(t,n,e){t.off("length.dt"+e.namespace)}}},spacer:{style:"empty",spacer:!0,text:function(t){return t.i18n("buttons.spacer","")}}}),e.Api.register("buttons()",function(n,e){void 0===e&&(e=n,n=void 0),this.selector.buttonGroup=n;var t=this.iterator(!0,"table",function(t){if(t._buttons)return A.buttonSelector(A.instanceSelector(n,t._buttons),e)},!0);return t._groupSelector=n,t}),e.Api.register("button()",function(t,n){t=this.buttons(t,n);return 1<t.length&&t.splice(1,t.length),t}),e.Api.registerPlural("buttons().active()","button().active()",function(n){return void 0===n?this.map(function(t){return t.inst.active(t.node)}):this.each(function(t){t.inst.active(t.node,n)})}),e.Api.registerPlural("buttons().action()","button().action()",function(n){return void 0===n?this.map(function(t){return t.inst.action(t.node)}):this.each(function(t){t.inst.action(t.node,n)})}),e.Api.registerPlural("buttons().collectionRebuild()","button().collectionRebuild()",function(e){return this.each(function(t){for(var n=0;n<e.length;n++)"object"==typeof e[n]&&(e[n].parentConf=t);t.inst.collectionRebuild(t.node,e)})}),e.Api.register(["buttons().enable()","button().enable()"],function(n){return this.each(function(t){t.inst.enable(t.node,n)})}),e.Api.register(["buttons().disable()","button().disable()"],function(){return this.each(function(t){t.inst.disable(t.node)})}),e.Api.register("button().index()",function(){var n=null;return this.each(function(t){t=t.inst.index(t.node);null!==t&&(n=t)}),n}),e.Api.registerPlural("buttons().nodes()","button().node()",function(){var n=x();return x(this.each(function(t){n=n.add(t.inst.node(t.node))})),n}),e.Api.registerPlural("buttons().processing()","button().processing()",function(n){return void 0===n?this.map(function(t){return t.inst.processing(t.node)}):this.each(function(t){t.inst.processing(t.node,n)})}),e.Api.registerPlural("buttons().text()","button().text()",function(n){return void 0===n?this.map(function(t){return t.inst.text(t.node)}):this.each(function(t){t.inst.text(t.node,n)})}),e.Api.registerPlural("buttons().trigger()","button().trigger()",function(){return this.each(function(t){t.inst.node(t.node).trigger("click")})}),e.Api.register("button().popover()",function(n,e){return this.map(function(t){return t.inst._popover(n,this.button(this[0].node),e)})}),e.Api.register("buttons().containers()",function(){var i=x(),s=this._groupSelector;return this.iterator(!0,"table",function(t){if(t._buttons)for(var n=A.instanceSelector(s,t._buttons),e=0,o=n.length;e<o;e++)i=i.add(n[e].container())}),i}),e.Api.register("buttons().container()",function(){return this.containers().eq(0)}),e.Api.register("button().add()",function(t,n,e){var o=this.context;return o.length&&(o=A.instanceSelector(this._groupSelector,o[0]._buttons)).length&&o[0].add(n,t,e),this.button(this._groupSelector,t)}),e.Api.register("buttons().destroy()",function(){return this.pluck("inst").unique().each(function(t){t.destroy()}),this}),e.Api.registerPlural("buttons().remove()","buttons().remove()",function(){return this.each(function(t){t.inst.remove(t.node)}),this}),e.Api.register("buttons.info()",function(t,n,e){var o=this;return!1===t?(this.off("destroy.btn-info"),w(x("#datatables_buttons_info"),400,function(){x(this).remove()}),clearTimeout(s),s=null):(s&&clearTimeout(s),x("#datatables_buttons_info").length&&x("#datatables_buttons_info").remove(),t=t?"<h2>"+t+"</h2>":"",y(x('<div id="datatables_buttons_info" class="dt-button-info"/>').html(t).append(x("<div/>")["string"==typeof n?"html":"append"](n)).css("display","none").appendTo("body")),void 0!==e&&0!==e&&(s=setTimeout(function(){o.buttons.info(!1)},e)),this.on("destroy.btn-info",function(){o.buttons.info(!1)})),this}),e.Api.register("buttons.exportData()",function(t){if(this.context.length)return u(new e.Api(this.context[0]),t)}),e.Api.register("buttons.exportInfo()",function(t){return{filename:n(t=t||{},this),title:a(t,this),messageTop:l(this,t,t.message||t.messageTop,"top"),messageBottom:l(this,t,t.messageBottom,"bottom")}});var s,n=function(t,n){var e;return null==(e="function"==typeof(e="*"===t.filename&&"*"!==t.title&&void 0!==t.title&&null!==t.title&&""!==t.title?t.title:t.filename)?e(t,n):e)?null:(e=(e=-1!==e.indexOf("*")?e.replace(/\*/g,x("head > title").text()).trim():e).replace(/[^a-zA-Z0-9_\u00A1-\uFFFF\.,\-_ !\(\)]/g,""))+(r(t.extension,t,n)||"")},r=function(t,n,e){return null==t?null:"function"==typeof t?t(n,e):t},a=function(t,n){t=r(t.title,t,n);return null===t?null:-1!==t.indexOf("*")?t.replace(/\*/g,x("head > title").text()||"Exported data"):t},l=function(t,n,e,o){e=r(e,n,t);return null===e?null:(n=x("caption",t.table().container()).eq(0),"*"===e?n.css("caption-side")!==o?null:n.length?n.text():"":e)},c=x("<textarea/>")[0],u=function(i,t){for(var s=x.extend(!0,{},{rows:null,columns:"",modifier:{search:"applied",order:"applied"},orthogonal:"display",stripHtml:!0,stripNewlines:!0,decodeEntities:!0,escapeExcelFormula:!1,trim:!0,format:{header:function(t){return A.stripData(t,s)},footer:function(t){return A.stripData(t,s)},body:function(t){return A.stripData(t,s)}},customizeData:null,customizeZip:null},t),t=i.columns(s.columns).indexes().map(function(t){var n=i.column(t);return s.format.header(n.title(),t,n.header())}).toArray(),n=i.table().footer()?i.columns(s.columns).indexes().map(function(t){var n,e=i.column(t).footer(),o="";return e&&(o=((n=x(".dt-column-title",e)).length?n:x(e)).html()),s.format.footer(o,t,e)}).toArray():null,e=x.extend({},s.modifier),o=(i.select&&"function"==typeof i.select.info&&void 0===e.selected&&i.rows(s.rows,x.extend({selected:!0},e)).any()&&x.extend(e,{selected:!0}),i.rows(s.rows,e).indexes().toArray()),o=i.cells(o,s.columns,{order:e.order}),r=o.render(s.orthogonal).toArray(),a=o.nodes().toArray(),l=o.indexes().toArray(),c=i.columns(s.columns).count(),u=[],d=0,f=0,p=0<c?r.length/c:0;f<p;f++){for(var h=[c],b=0;b<c;b++)h[b]=s.format.body(r[d],l[d].row,l[d].column,a[d]),d++;u[f]=h}e={header:t,headerStructure:g(s.format.header,i.table().header.structure(s.columns)),footer:n,footerStructure:g(s.format.footer,i.table().footer.structure(s.columns)),body:u};return s.customizeData&&s.customizeData(e),e};function g(t,n){for(var e=0;e<n.length;e++)for(var o=0;o<n[e].length;o++){var i=n[e][o];i&&(i.title=t(i.title,o,i.cell))}return n}function t(t,n){t=new e.Api(t),n=n||t.init().buttons||e.defaults.buttons;return new A(t,n).container()}return x.fn.dataTable.Buttons=A,x.fn.DataTable.Buttons=A,x(v).on("init.dt plugin-init.dt",function(t,n){"dt"===t.namespace&&(t=n.oInit.buttons||e.defaults.buttons)&&!n._buttons&&new A(n,t).container()}),e.ext.feature.push({fnInit:t,cFeature:"B"}),e.feature&&e.feature.register("buttons",t),e});
\ No newline at end of file
diff --git a/dist/assets/js/dataTables.js b/dist/assets/js/dataTables.js
deleted file mode 100644
index 849fc94..0000000
--- a/dist/assets/js/dataTables.js
+++ /dev/null
@@ -1,13601 +0,0 @@
-/*! DataTables 2.1.8
- * © SpryMedia Ltd - datatables.net/license
- */
-
-/**
- * @summary     DataTables
- * @description Paginate, search and order HTML tables
- * @version     2.1.8
- * @author      SpryMedia Ltd
- * @contact     www.datatables.net
- * @copyright   SpryMedia Ltd.
- *
- * This source file is free software, available under the following license:
- *   MIT license - https://datatables.net/license
- *
- * This source file is distributed in the hope that it will be useful, but
- * WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
- * or FITNESS FOR A PARTICULAR PURPOSE. See the license files for details.
- *
- * For details please refer to: https://www.datatables.net
- */
-
-(function( factory ) {
-	"use strict";
-
-	if ( typeof define === 'function' && define.amd ) {
-		// AMD
-		define( ['jquery'], function ( $ ) {
-			return factory( $, window, document );
-		} );
-	}
-	else if ( typeof exports === 'object' ) {
-		// CommonJS
-		// jQuery's factory checks for a global window - if it isn't present then it
-		// returns a factory function that expects the window object
-		var jq = require('jquery');
-
-		if (typeof window === 'undefined') {
-			module.exports = function (root, $) {
-				if ( ! root ) {
-					// CommonJS environments without a window global must pass a
-					// root. This will give an error otherwise
-					root = window;
-				}
-
-				if ( ! $ ) {
-					$ = jq( root );
-				}
-
-				return factory( $, root, root.document );
-			};
-		}
-		else {
-			module.exports = factory( jq, window, window.document );
-		}
-	}
-	else {
-		// Browser
-		window.DataTable = factory( jQuery, window, document );
-	}
-}(function( $, window, document ) {
-	"use strict";
-
-	
-	var DataTable = function ( selector, options )
-	{
-		// Check if called with a window or jQuery object for DOM less applications
-		// This is for backwards compatibility
-		if (DataTable.factory(selector, options)) {
-			return DataTable;
-		}
-	
-		// When creating with `new`, create a new DataTable, returning the API instance
-		if (this instanceof DataTable) {
-			return $(selector).DataTable(options);
-		}
-		else {
-			// Argument switching
-			options = selector;
-		}
-	
-		var _that = this;
-		var emptyInit = options === undefined;
-		var len = this.length;
-	
-		if ( emptyInit ) {
-			options = {};
-		}
-	
-		// Method to get DT API instance from jQuery object
-		this.api = function ()
-		{
-			return new _Api( this );
-		};
-	
-		this.each(function() {
-			// For each initialisation we want to give it a clean initialisation
-			// object that can be bashed around
-			var o = {};
-			var oInit = len > 1 ? // optimisation for single table case
-				_fnExtend( o, options, true ) :
-				options;
-	
-			
-			var i=0, iLen;
-			var sId = this.getAttribute( 'id' );
-			var defaults = DataTable.defaults;
-			var $this = $(this);
-			
-			
-			/* Sanity check */
-			if ( this.nodeName.toLowerCase() != 'table' )
-			{
-				_fnLog( null, 0, 'Non-table node initialisation ('+this.nodeName+')', 2 );
-				return;
-			}
-			
-			$(this).trigger( 'options.dt', oInit );
-			
-			/* Backwards compatibility for the defaults */
-			_fnCompatOpts( defaults );
-			_fnCompatCols( defaults.column );
-			
-			/* Convert the camel-case defaults to Hungarian */
-			_fnCamelToHungarian( defaults, defaults, true );
-			_fnCamelToHungarian( defaults.column, defaults.column, true );
-			
-			/* Setting up the initialisation object */
-			_fnCamelToHungarian( defaults, $.extend( oInit, $this.data() ), true );
-			
-			
-			
-			/* Check to see if we are re-initialising a table */
-			var allSettings = DataTable.settings;
-			for ( i=0, iLen=allSettings.length ; i<iLen ; i++ )
-			{
-				var s = allSettings[i];
-			
-				/* Base check on table node */
-				if (
-					s.nTable == this ||
-					(s.nTHead && s.nTHead.parentNode == this) ||
-					(s.nTFoot && s.nTFoot.parentNode == this)
-				) {
-					var bRetrieve = oInit.bRetrieve !== undefined ? oInit.bRetrieve : defaults.bRetrieve;
-					var bDestroy = oInit.bDestroy !== undefined ? oInit.bDestroy : defaults.bDestroy;
-			
-					if ( emptyInit || bRetrieve )
-					{
-						return s.oInstance;
-					}
-					else if ( bDestroy )
-					{
-						new DataTable.Api(s).destroy();
-						break;
-					}
-					else
-					{
-						_fnLog( s, 0, 'Cannot reinitialise DataTable', 3 );
-						return;
-					}
-				}
-			
-				/* If the element we are initialising has the same ID as a table which was previously
-				 * initialised, but the table nodes don't match (from before) then we destroy the old
-				 * instance by simply deleting it. This is under the assumption that the table has been
-				 * destroyed by other methods. Anyone using non-id selectors will need to do this manually
-				 */
-				if ( s.sTableId == this.id )
-				{
-					allSettings.splice( i, 1 );
-					break;
-				}
-			}
-			
-			/* Ensure the table has an ID - required for accessibility */
-			if ( sId === null || sId === "" )
-			{
-				sId = "DataTables_Table_"+(DataTable.ext._unique++);
-				this.id = sId;
-			}
-			
-			/* Create the settings object for this table and set some of the default parameters */
-			var oSettings = $.extend( true, {}, DataTable.models.oSettings, {
-				"sDestroyWidth": $this[0].style.width,
-				"sInstance":     sId,
-				"sTableId":      sId,
-				colgroup: $('<colgroup>').prependTo(this),
-				fastData: function (row, column, type) {
-					return _fnGetCellData(oSettings, row, column, type);
-				}
-			} );
-			oSettings.nTable = this;
-			oSettings.oInit  = oInit;
-			
-			allSettings.push( oSettings );
-			
-			// Make a single API instance available for internal handling
-			oSettings.api = new _Api( oSettings );
-			
-			// Need to add the instance after the instance after the settings object has been added
-			// to the settings array, so we can self reference the table instance if more than one
-			oSettings.oInstance = (_that.length===1) ? _that : $this.dataTable();
-			
-			// Backwards compatibility, before we apply all the defaults
-			_fnCompatOpts( oInit );
-			
-			// If the length menu is given, but the init display length is not, use the length menu
-			if ( oInit.aLengthMenu && ! oInit.iDisplayLength )
-			{
-				oInit.iDisplayLength = Array.isArray(oInit.aLengthMenu[0])
-					? oInit.aLengthMenu[0][0]
-					: $.isPlainObject( oInit.aLengthMenu[0] )
-						? oInit.aLengthMenu[0].value
-						: oInit.aLengthMenu[0];
-			}
-			
-			// Apply the defaults and init options to make a single init object will all
-			// options defined from defaults and instance options.
-			oInit = _fnExtend( $.extend( true, {}, defaults ), oInit );
-			
-			
-			// Map the initialisation options onto the settings object
-			_fnMap( oSettings.oFeatures, oInit, [
-				"bPaginate",
-				"bLengthChange",
-				"bFilter",
-				"bSort",
-				"bSortMulti",
-				"bInfo",
-				"bProcessing",
-				"bAutoWidth",
-				"bSortClasses",
-				"bServerSide",
-				"bDeferRender"
-			] );
-			_fnMap( oSettings, oInit, [
-				"ajax",
-				"fnFormatNumber",
-				"sServerMethod",
-				"aaSorting",
-				"aaSortingFixed",
-				"aLengthMenu",
-				"sPaginationType",
-				"iStateDuration",
-				"bSortCellsTop",
-				"iTabIndex",
-				"sDom",
-				"fnStateLoadCallback",
-				"fnStateSaveCallback",
-				"renderer",
-				"searchDelay",
-				"rowId",
-				"caption",
-				"layout",
-				"orderDescReverse",
-				"typeDetect",
-				[ "iCookieDuration", "iStateDuration" ], // backwards compat
-				[ "oSearch", "oPreviousSearch" ],
-				[ "aoSearchCols", "aoPreSearchCols" ],
-				[ "iDisplayLength", "_iDisplayLength" ]
-			] );
-			_fnMap( oSettings.oScroll, oInit, [
-				[ "sScrollX", "sX" ],
-				[ "sScrollXInner", "sXInner" ],
-				[ "sScrollY", "sY" ],
-				[ "bScrollCollapse", "bCollapse" ]
-			] );
-			_fnMap( oSettings.oLanguage, oInit, "fnInfoCallback" );
-			
-			/* Callback functions which are array driven */
-			_fnCallbackReg( oSettings, 'aoDrawCallback',       oInit.fnDrawCallback );
-			_fnCallbackReg( oSettings, 'aoStateSaveParams',    oInit.fnStateSaveParams );
-			_fnCallbackReg( oSettings, 'aoStateLoadParams',    oInit.fnStateLoadParams );
-			_fnCallbackReg( oSettings, 'aoStateLoaded',        oInit.fnStateLoaded );
-			_fnCallbackReg( oSettings, 'aoRowCallback',        oInit.fnRowCallback );
-			_fnCallbackReg( oSettings, 'aoRowCreatedCallback', oInit.fnCreatedRow );
-			_fnCallbackReg( oSettings, 'aoHeaderCallback',     oInit.fnHeaderCallback );
-			_fnCallbackReg( oSettings, 'aoFooterCallback',     oInit.fnFooterCallback );
-			_fnCallbackReg( oSettings, 'aoInitComplete',       oInit.fnInitComplete );
-			_fnCallbackReg( oSettings, 'aoPreDrawCallback',    oInit.fnPreDrawCallback );
-			
-			oSettings.rowIdFn = _fnGetObjectDataFn( oInit.rowId );
-			
-			/* Browser support detection */
-			_fnBrowserDetect( oSettings );
-			
-			var oClasses = oSettings.oClasses;
-			
-			$.extend( oClasses, DataTable.ext.classes, oInit.oClasses );
-			$this.addClass( oClasses.table );
-			
-			if (! oSettings.oFeatures.bPaginate) {
-				oInit.iDisplayStart = 0;
-			}
-			
-			if ( oSettings.iInitDisplayStart === undefined )
-			{
-				/* Display start point, taking into account the save saving */
-				oSettings.iInitDisplayStart = oInit.iDisplayStart;
-				oSettings._iDisplayStart = oInit.iDisplayStart;
-			}
-			
-			var defer = oInit.iDeferLoading;
-			if ( defer !== null )
-			{
-				oSettings.deferLoading = true;
-			
-				var tmp = Array.isArray(defer);
-				oSettings._iRecordsDisplay = tmp ? defer[0] : defer;
-				oSettings._iRecordsTotal = tmp ? defer[1] : defer;
-			}
-			
-			/*
-			 * Columns
-			 * See if we should load columns automatically or use defined ones
-			 */
-			var columnsInit = [];
-			var thead = this.getElementsByTagName('thead');
-			var initHeaderLayout = _fnDetectHeader( oSettings, thead[0] );
-			
-			// If we don't have a columns array, then generate one with nulls
-			if ( oInit.aoColumns ) {
-				columnsInit = oInit.aoColumns;
-			}
-			else if ( initHeaderLayout.length ) {
-				for ( i=0, iLen=initHeaderLayout[0].length ; i<iLen ; i++ ) {
-					columnsInit.push( null );
-				}
-			}
-			
-			// Add the columns
-			for ( i=0, iLen=columnsInit.length ; i<iLen ; i++ ) {
-				_fnAddColumn( oSettings );
-			}
-			
-			// Apply the column definitions
-			_fnApplyColumnDefs( oSettings, oInit.aoColumnDefs, columnsInit, initHeaderLayout, function (iCol, oDef) {
-				_fnColumnOptions( oSettings, iCol, oDef );
-			} );
-			
-			/* HTML5 attribute detection - build an mData object automatically if the
-			 * attributes are found
-			 */
-			var rowOne = $this.children('tbody').find('tr').eq(0);
-			
-			if ( rowOne.length ) {
-				var a = function ( cell, name ) {
-					return cell.getAttribute( 'data-'+name ) !== null ? name : null;
-				};
-			
-				$( rowOne[0] ).children('th, td').each( function (i, cell) {
-					var col = oSettings.aoColumns[i];
-			
-					if (! col) {
-						_fnLog( oSettings, 0, 'Incorrect column count', 18 );
-					}
-			
-					if ( col.mData === i ) {
-						var sort = a( cell, 'sort' ) || a( cell, 'order' );
-						var filter = a( cell, 'filter' ) || a( cell, 'search' );
-			
-						if ( sort !== null || filter !== null ) {
-							col.mData = {
-								_:      i+'.display',
-								sort:   sort !== null   ? i+'.@data-'+sort   : undefined,
-								type:   sort !== null   ? i+'.@data-'+sort   : undefined,
-								filter: filter !== null ? i+'.@data-'+filter : undefined
-							};
-							col._isArrayHost = true;
-			
-							_fnColumnOptions( oSettings, i );
-						}
-					}
-				} );
-			}
-			
-			// Must be done after everything which can be overridden by the state saving!
-			_fnCallbackReg( oSettings, 'aoDrawCallback', _fnSaveState );
-			
-			var features = oSettings.oFeatures;
-			if ( oInit.bStateSave )
-			{
-				features.bStateSave = true;
-			}
-			
-			// If aaSorting is not defined, then we use the first indicator in asSorting
-			// in case that has been altered, so the default sort reflects that option
-			if ( oInit.aaSorting === undefined ) {
-				var sorting = oSettings.aaSorting;
-				for ( i=0, iLen=sorting.length ; i<iLen ; i++ ) {
-					sorting[i][1] = oSettings.aoColumns[ i ].asSorting[0];
-				}
-			}
-			
-			// Do a first pass on the sorting classes (allows any size changes to be taken into
-			// account, and also will apply sorting disabled classes if disabled
-			_fnSortingClasses( oSettings );
-			
-			_fnCallbackReg( oSettings, 'aoDrawCallback', function () {
-				if ( oSettings.bSorted || _fnDataSource( oSettings ) === 'ssp' || features.bDeferRender ) {
-					_fnSortingClasses( oSettings );
-				}
-			} );
-			
-			
-			/*
-			 * Table HTML init
-			 * Cache the header, body and footer as required, creating them if needed
-			 */
-			var caption = $this.children('caption');
-			
-			if ( oSettings.caption ) {
-				if ( caption.length === 0 ) {
-					caption = $('<caption/>').appendTo( $this );
-				}
-			
-				caption.html( oSettings.caption );
-			}
-			
-			// Store the caption side, so we can remove the element from the document
-			// when creating the element
-			if (caption.length) {
-				caption[0]._captionSide = caption.css('caption-side');
-				oSettings.captionNode = caption[0];
-			}
-			
-			if ( thead.length === 0 ) {
-				thead = $('<thead/>').appendTo($this);
-			}
-			oSettings.nTHead = thead[0];
-			$('tr', thead).addClass(oClasses.thead.row);
-			
-			var tbody = $this.children('tbody');
-			if ( tbody.length === 0 ) {
-				tbody = $('<tbody/>').insertAfter(thead);
-			}
-			oSettings.nTBody = tbody[0];
-			
-			var tfoot = $this.children('tfoot');
-			if ( tfoot.length === 0 ) {
-				// If we are a scrolling table, and no footer has been given, then we need to create
-				// a tfoot element for the caption element to be appended to
-				tfoot = $('<tfoot/>').appendTo($this);
-			}
-			oSettings.nTFoot = tfoot[0];
-			$('tr', tfoot).addClass(oClasses.tfoot.row);
-			
-			// Copy the data index array
-			oSettings.aiDisplay = oSettings.aiDisplayMaster.slice();
-			
-			// Initialisation complete - table can be drawn
-			oSettings.bInitialised = true;
-			
-			// Language definitions
-			var oLanguage = oSettings.oLanguage;
-			$.extend( true, oLanguage, oInit.oLanguage );
-			
-			if ( oLanguage.sUrl ) {
-				// Get the language definitions from a file
-				$.ajax( {
-					dataType: 'json',
-					url: oLanguage.sUrl,
-					success: function ( json ) {
-						_fnCamelToHungarian( defaults.oLanguage, json );
-						$.extend( true, oLanguage, json, oSettings.oInit.oLanguage );
-			
-						_fnCallbackFire( oSettings, null, 'i18n', [oSettings], true);
-						_fnInitialise( oSettings );
-					},
-					error: function () {
-						// Error occurred loading language file
-						_fnLog( oSettings, 0, 'i18n file loading error', 21 );
-			
-						// Continue on as best we can
-						_fnInitialise( oSettings );
-					}
-				} );
-			}
-			else {
-				_fnCallbackFire( oSettings, null, 'i18n', [oSettings], true);
-				_fnInitialise( oSettings );
-			}
-		} );
-		_that = null;
-		return this;
-	};
-	
-	
-	
-	/**
-	 * DataTables extensions
-	 * 
-	 * This namespace acts as a collection area for plug-ins that can be used to
-	 * extend DataTables capabilities. Indeed many of the build in methods
-	 * use this method to provide their own capabilities (sorting methods for
-	 * example).
-	 *
-	 * Note that this namespace is aliased to `jQuery.fn.dataTableExt` for legacy
-	 * reasons
-	 *
-	 *  @namespace
-	 */
-	DataTable.ext = _ext = {
-		/**
-		 * Buttons. For use with the Buttons extension for DataTables. This is
-		 * defined here so other extensions can define buttons regardless of load
-		 * order. It is _not_ used by DataTables core.
-		 *
-		 *  @type object
-		 *  @default {}
-		 */
-		buttons: {},
-	
-	
-		/**
-		 * Element class names
-		 *
-		 *  @type object
-		 *  @default {}
-		 */
-		classes: {},
-	
-	
-		/**
-		 * DataTables build type (expanded by the download builder)
-		 *
-		 *  @type string
-		 */
-		builder: "-source-",
-	
-	
-		/**
-		 * Error reporting.
-		 * 
-		 * How should DataTables report an error. Can take the value 'alert',
-		 * 'throw', 'none' or a function.
-		 *
-		 *  @type string|function
-		 *  @default alert
-		 */
-		errMode: "alert",
-	
-	
-		/**
-		 * Legacy so v1 plug-ins don't throw js errors on load
-		 */
-		feature: [],
-	
-		/**
-		 * Feature plug-ins.
-		 * 
-		 * This is an object of callbacks which provide the features for DataTables
-		 * to be initialised via the `layout` option.
-		 */
-		features: {},
-	
-	
-		/**
-		 * Row searching.
-		 * 
-		 * This method of searching is complimentary to the default type based
-		 * searching, and a lot more comprehensive as it allows you complete control
-		 * over the searching logic. Each element in this array is a function
-		 * (parameters described below) that is called for every row in the table,
-		 * and your logic decides if it should be included in the searching data set
-		 * or not.
-		 *
-		 * Searching functions have the following input parameters:
-		 *
-		 * 1. `{object}` DataTables settings object: see
-		 *    {@link DataTable.models.oSettings}
-		 * 2. `{array|object}` Data for the row to be processed (same as the
-		 *    original format that was passed in as the data source, or an array
-		 *    from a DOM data source
-		 * 3. `{int}` Row index ({@link DataTable.models.oSettings.aoData}), which
-		 *    can be useful to retrieve the `TR` element if you need DOM interaction.
-		 *
-		 * And the following return is expected:
-		 *
-		 * * {boolean} Include the row in the searched result set (true) or not
-		 *   (false)
-		 *
-		 * Note that as with the main search ability in DataTables, technically this
-		 * is "filtering", since it is subtractive. However, for consistency in
-		 * naming we call it searching here.
-		 *
-		 *  @type array
-		 *  @default []
-		 *
-		 *  @example
-		 *    // The following example shows custom search being applied to the
-		 *    // fourth column (i.e. the data[3] index) based on two input values
-		 *    // from the end-user, matching the data in a certain range.
-		 *    $.fn.dataTable.ext.search.push(
-		 *      function( settings, data, dataIndex ) {
-		 *        var min = document.getElementById('min').value * 1;
-		 *        var max = document.getElementById('max').value * 1;
-		 *        var version = data[3] == "-" ? 0 : data[3]*1;
-		 *
-		 *        if ( min == "" && max == "" ) {
-		 *          return true;
-		 *        }
-		 *        else if ( min == "" && version < max ) {
-		 *          return true;
-		 *        }
-		 *        else if ( min < version && "" == max ) {
-		 *          return true;
-		 *        }
-		 *        else if ( min < version && version < max ) {
-		 *          return true;
-		 *        }
-		 *        return false;
-		 *      }
-		 *    );
-		 */
-		search: [],
-	
-	
-		/**
-		 * Selector extensions
-		 *
-		 * The `selector` option can be used to extend the options available for the
-		 * selector modifier options (`selector-modifier` object data type) that
-		 * each of the three built in selector types offer (row, column and cell +
-		 * their plural counterparts). For example the Select extension uses this
-		 * mechanism to provide an option to select only rows, columns and cells
-		 * that have been marked as selected by the end user (`{selected: true}`),
-		 * which can be used in conjunction with the existing built in selector
-		 * options.
-		 *
-		 * Each property is an array to which functions can be pushed. The functions
-		 * take three attributes:
-		 *
-		 * * Settings object for the host table
-		 * * Options object (`selector-modifier` object type)
-		 * * Array of selected item indexes
-		 *
-		 * The return is an array of the resulting item indexes after the custom
-		 * selector has been applied.
-		 *
-		 *  @type object
-		 */
-		selector: {
-			cell: [],
-			column: [],
-			row: []
-		},
-	
-	
-		/**
-		 * Legacy configuration options. Enable and disable legacy options that
-		 * are available in DataTables.
-		 *
-		 *  @type object
-		 */
-		legacy: {
-			/**
-			 * Enable / disable DataTables 1.9 compatible server-side processing
-			 * requests
-			 *
-			 *  @type boolean
-			 *  @default null
-			 */
-			ajax: null
-		},
-	
-	
-		/**
-		 * Pagination plug-in methods.
-		 * 
-		 * Each entry in this object is a function and defines which buttons should
-		 * be shown by the pagination rendering method that is used for the table:
-		 * {@link DataTable.ext.renderer.pageButton}. The renderer addresses how the
-		 * buttons are displayed in the document, while the functions here tell it
-		 * what buttons to display. This is done by returning an array of button
-		 * descriptions (what each button will do).
-		 *
-		 * Pagination types (the four built in options and any additional plug-in
-		 * options defined here) can be used through the `paginationType`
-		 * initialisation parameter.
-		 *
-		 * The functions defined take two parameters:
-		 *
-		 * 1. `{int} page` The current page index
-		 * 2. `{int} pages` The number of pages in the table
-		 *
-		 * Each function is expected to return an array where each element of the
-		 * array can be one of:
-		 *
-		 * * `first` - Jump to first page when activated
-		 * * `last` - Jump to last page when activated
-		 * * `previous` - Show previous page when activated
-		 * * `next` - Show next page when activated
-		 * * `{int}` - Show page of the index given
-		 * * `{array}` - A nested array containing the above elements to add a
-		 *   containing 'DIV' element (might be useful for styling).
-		 *
-		 * Note that DataTables v1.9- used this object slightly differently whereby
-		 * an object with two functions would be defined for each plug-in. That
-		 * ability is still supported by DataTables 1.10+ to provide backwards
-		 * compatibility, but this option of use is now decremented and no longer
-		 * documented in DataTables 1.10+.
-		 *
-		 *  @type object
-		 *  @default {}
-		 *
-		 *  @example
-		 *    // Show previous, next and current page buttons only
-		 *    $.fn.dataTableExt.oPagination.current = function ( page, pages ) {
-		 *      return [ 'previous', page, 'next' ];
-		 *    };
-		 */
-		pager: {},
-	
-	
-		renderer: {
-			pageButton: {},
-			header: {}
-		},
-	
-	
-		/**
-		 * Ordering plug-ins - custom data source
-		 * 
-		 * The extension options for ordering of data available here is complimentary
-		 * to the default type based ordering that DataTables typically uses. It
-		 * allows much greater control over the the data that is being used to
-		 * order a column, but is necessarily therefore more complex.
-		 * 
-		 * This type of ordering is useful if you want to do ordering based on data
-		 * live from the DOM (for example the contents of an 'input' element) rather
-		 * than just the static string that DataTables knows of.
-		 * 
-		 * The way these plug-ins work is that you create an array of the values you
-		 * wish to be ordering for the column in question and then return that
-		 * array. The data in the array much be in the index order of the rows in
-		 * the table (not the currently ordering order!). Which order data gathering
-		 * function is run here depends on the `dt-init columns.orderDataType`
-		 * parameter that is used for the column (if any).
-		 *
-		 * The functions defined take two parameters:
-		 *
-		 * 1. `{object}` DataTables settings object: see
-		 *    {@link DataTable.models.oSettings}
-		 * 2. `{int}` Target column index
-		 *
-		 * Each function is expected to return an array:
-		 *
-		 * * `{array}` Data for the column to be ordering upon
-		 *
-		 *  @type array
-		 *
-		 *  @example
-		 *    // Ordering using `input` node values
-		 *    $.fn.dataTable.ext.order['dom-text'] = function  ( settings, col )
-		 *    {
-		 *      return this.api().column( col, {order:'index'} ).nodes().map( function ( td, i ) {
-		 *        return $('input', td).val();
-		 *      } );
-		 *    }
-		 */
-		order: {},
-	
-	
-		/**
-		 * Type based plug-ins.
-		 *
-		 * Each column in DataTables has a type assigned to it, either by automatic
-		 * detection or by direct assignment using the `type` option for the column.
-		 * The type of a column will effect how it is ordering and search (plug-ins
-		 * can also make use of the column type if required).
-		 *
-		 * @namespace
-		 */
-		type: {
-			/**
-			 * Automatic column class assignment
-			 */
-			className: {},
-	
-			/**
-			 * Type detection functions.
-			 *
-			 * The functions defined in this object are used to automatically detect
-			 * a column's type, making initialisation of DataTables super easy, even
-			 * when complex data is in the table.
-			 *
-			 * The functions defined take two parameters:
-			 *
-		     *  1. `{*}` Data from the column cell to be analysed
-		     *  2. `{settings}` DataTables settings object. This can be used to
-		     *     perform context specific type detection - for example detection
-		     *     based on language settings such as using a comma for a decimal
-		     *     place. Generally speaking the options from the settings will not
-		     *     be required
-			 *
-			 * Each function is expected to return:
-			 *
-			 * * `{string|null}` Data type detected, or null if unknown (and thus
-			 *   pass it on to the other type detection functions.
-			 *
-			 *  @type array
-			 *
-			 *  @example
-			 *    // Currency type detection plug-in:
-			 *    $.fn.dataTable.ext.type.detect.push(
-			 *      function ( data, settings ) {
-			 *        // Check the numeric part
-			 *        if ( ! data.substring(1).match(/[0-9]/) ) {
-			 *          return null;
-			 *        }
-			 *
-			 *        // Check prefixed by currency
-			 *        if ( data.charAt(0) == '$' || data.charAt(0) == '&pound;' ) {
-			 *          return 'currency';
-			 *        }
-			 *        return null;
-			 *      }
-			 *    );
-			 */
-			detect: [],
-	
-			/**
-			 * Automatic renderer assignment
-			 */
-			render: {},
-	
-	
-			/**
-			 * Type based search formatting.
-			 *
-			 * The type based searching functions can be used to pre-format the
-			 * data to be search on. For example, it can be used to strip HTML
-			 * tags or to de-format telephone numbers for numeric only searching.
-			 *
-			 * Note that is a search is not defined for a column of a given type,
-			 * no search formatting will be performed.
-			 * 
-			 * Pre-processing of searching data plug-ins - When you assign the sType
-			 * for a column (or have it automatically detected for you by DataTables
-			 * or a type detection plug-in), you will typically be using this for
-			 * custom sorting, but it can also be used to provide custom searching
-			 * by allowing you to pre-processing the data and returning the data in
-			 * the format that should be searched upon. This is done by adding
-			 * functions this object with a parameter name which matches the sType
-			 * for that target column. This is the corollary of <i>afnSortData</i>
-			 * for searching data.
-			 *
-			 * The functions defined take a single parameter:
-			 *
-		     *  1. `{*}` Data from the column cell to be prepared for searching
-			 *
-			 * Each function is expected to return:
-			 *
-			 * * `{string|null}` Formatted string that will be used for the searching.
-			 *
-			 *  @type object
-			 *  @default {}
-			 *
-			 *  @example
-			 *    $.fn.dataTable.ext.type.search['title-numeric'] = function ( d ) {
-			 *      return d.replace(/\n/g," ").replace( /<.*?>/g, "" );
-			 *    }
-			 */
-			search: {},
-	
-	
-			/**
-			 * Type based ordering.
-			 *
-			 * The column type tells DataTables what ordering to apply to the table
-			 * when a column is sorted upon. The order for each type that is defined,
-			 * is defined by the functions available in this object.
-			 *
-			 * Each ordering option can be described by three properties added to
-			 * this object:
-			 *
-			 * * `{type}-pre` - Pre-formatting function
-			 * * `{type}-asc` - Ascending order function
-			 * * `{type}-desc` - Descending order function
-			 *
-			 * All three can be used together, only `{type}-pre` or only
-			 * `{type}-asc` and `{type}-desc` together. It is generally recommended
-			 * that only `{type}-pre` is used, as this provides the optimal
-			 * implementation in terms of speed, although the others are provided
-			 * for compatibility with existing Javascript sort functions.
-			 *
-			 * `{type}-pre`: Functions defined take a single parameter:
-			 *
-		     *  1. `{*}` Data from the column cell to be prepared for ordering
-			 *
-			 * And return:
-			 *
-			 * * `{*}` Data to be sorted upon
-			 *
-			 * `{type}-asc` and `{type}-desc`: Functions are typical Javascript sort
-			 * functions, taking two parameters:
-			 *
-		     *  1. `{*}` Data to compare to the second parameter
-		     *  2. `{*}` Data to compare to the first parameter
-			 *
-			 * And returning:
-			 *
-			 * * `{*}` Ordering match: <0 if first parameter should be sorted lower
-			 *   than the second parameter, ===0 if the two parameters are equal and
-			 *   >0 if the first parameter should be sorted height than the second
-			 *   parameter.
-			 * 
-			 *  @type object
-			 *  @default {}
-			 *
-			 *  @example
-			 *    // Numeric ordering of formatted numbers with a pre-formatter
-			 *    $.extend( $.fn.dataTable.ext.type.order, {
-			 *      "string-pre": function(x) {
-			 *        a = (a === "-" || a === "") ? 0 : a.replace( /[^\d\-\.]/g, "" );
-			 *        return parseFloat( a );
-			 *      }
-			 *    } );
-			 *
-			 *  @example
-			 *    // Case-sensitive string ordering, with no pre-formatting method
-			 *    $.extend( $.fn.dataTable.ext.order, {
-			 *      "string-case-asc": function(x,y) {
-			 *        return ((x < y) ? -1 : ((x > y) ? 1 : 0));
-			 *      },
-			 *      "string-case-desc": function(x,y) {
-			 *        return ((x < y) ? 1 : ((x > y) ? -1 : 0));
-			 *      }
-			 *    } );
-			 */
-			order: {}
-		},
-	
-		/**
-		 * Unique DataTables instance counter
-		 *
-		 * @type int
-		 * @private
-		 */
-		_unique: 0,
-	
-	
-		//
-		// Depreciated
-		// The following properties are retained for backwards compatibility only.
-		// The should not be used in new projects and will be removed in a future
-		// version
-		//
-	
-		/**
-		 * Version check function.
-		 *  @type function
-		 *  @depreciated Since 1.10
-		 */
-		fnVersionCheck: DataTable.fnVersionCheck,
-	
-	
-		/**
-		 * Index for what 'this' index API functions should use
-		 *  @type int
-		 *  @deprecated Since v1.10
-		 */
-		iApiIndex: 0,
-	
-	
-		/**
-		 * Software version
-		 *  @type string
-		 *  @deprecated Since v1.10
-		 */
-		sVersion: DataTable.version
-	};
-	
-	
-	//
-	// Backwards compatibility. Alias to pre 1.10 Hungarian notation counter parts
-	//
-	$.extend( _ext, {
-		afnFiltering: _ext.search,
-		aTypes:       _ext.type.detect,
-		ofnSearch:    _ext.type.search,
-		oSort:        _ext.type.order,
-		afnSortData:  _ext.order,
-		aoFeatures:   _ext.feature,
-		oStdClasses:  _ext.classes,
-		oPagination:  _ext.pager
-	} );
-	
-	
-	$.extend( DataTable.ext.classes, {
-		container: 'dt-container',
-		empty: {
-			row: 'dt-empty'
-		},
-		info: {
-			container: 'dt-info'
-		},
-		layout: {
-			row: 'dt-layout-row',
-			cell: 'dt-layout-cell',
-			tableRow: 'dt-layout-table',
-			tableCell: '',
-			start: 'dt-layout-start',
-			end: 'dt-layout-end',
-			full: 'dt-layout-full'
-		},
-		length: {
-			container: 'dt-length',
-			select: 'dt-input'
-		},
-		order: {
-			canAsc: 'dt-orderable-asc',
-			canDesc: 'dt-orderable-desc',
-			isAsc: 'dt-ordering-asc',
-			isDesc: 'dt-ordering-desc',
-			none: 'dt-orderable-none',
-			position: 'sorting_'
-		},
-		processing: {
-			container: 'dt-processing'
-		},
-		scrolling: {
-			body: 'dt-scroll-body',
-			container: 'dt-scroll',
-			footer: {
-				self: 'dt-scroll-foot',
-				inner: 'dt-scroll-footInner'
-			},
-			header: {
-				self: 'dt-scroll-head',
-				inner: 'dt-scroll-headInner'
-			}
-		},
-		search: {
-			container: 'dt-search',
-			input: 'dt-input'
-		},
-		table: 'dataTable',	
-		tbody: {
-			cell: '',
-			row: ''
-		},
-		thead: {
-			cell: '',
-			row: ''
-		},
-		tfoot: {
-			cell: '',
-			row: ''
-		},
-		paging: {
-			active: 'current',
-			button: 'dt-paging-button',
-			container: 'dt-paging',
-			disabled: 'disabled',
-			nav: ''
-		}
-	} );
-	
-	
-	/*
-	 * It is useful to have variables which are scoped locally so only the
-	 * DataTables functions can access them and they don't leak into global space.
-	 * At the same time these functions are often useful over multiple files in the
-	 * core and API, so we list, or at least document, all variables which are used
-	 * by DataTables as private variables here. This also ensures that there is no
-	 * clashing of variable names and that they can easily referenced for reuse.
-	 */
-	
-	
-	// Defined else where
-	//  _selector_run
-	//  _selector_opts
-	//  _selector_row_indexes
-	
-	var _ext; // DataTable.ext
-	var _Api; // DataTable.Api
-	var _api_register; // DataTable.Api.register
-	var _api_registerPlural; // DataTable.Api.registerPlural
-	
-	var _re_dic = {};
-	var _re_new_lines = /[\r\n\u2028]/g;
-	var _re_html = /<([^>]*>)/g;
-	var _max_str_len = Math.pow(2, 28);
-	
-	// This is not strict ISO8601 - Date.parse() is quite lax, although
-	// implementations differ between browsers.
-	var _re_date = /^\d{2,4}[./-]\d{1,2}[./-]\d{1,2}([T ]{1}\d{1,2}[:.]\d{2}([.:]\d{2})?)?$/;
-	
-	// Escape regular expression special characters
-	var _re_escape_regex = new RegExp( '(\\' + [ '/', '.', '*', '+', '?', '|', '(', ')', '[', ']', '{', '}', '\\', '$', '^', '-' ].join('|\\') + ')', 'g' );
-	
-	// https://en.wikipedia.org/wiki/Foreign_exchange_market
-	// - \u20BD - Russian ruble.
-	// - \u20a9 - South Korean Won
-	// - \u20BA - Turkish Lira
-	// - \u20B9 - Indian Rupee
-	// - R - Brazil (R$) and South Africa
-	// - fr - Swiss Franc
-	// - kr - Swedish krona, Norwegian krone and Danish krone
-	// - \u2009 is thin space and \u202F is narrow no-break space, both used in many
-	// - Ƀ - Bitcoin
-	// - Ξ - Ethereum
-	//   standards as thousands separators.
-	var _re_formatted_numeric = /['\u00A0,$£€¥%\u2009\u202F\u20BD\u20a9\u20BArfkɃΞ]/gi;
-	
-	
-	var _empty = function ( d ) {
-		return !d || d === true || d === '-' ? true : false;
-	};
-	
-	
-	var _intVal = function ( s ) {
-		var integer = parseInt( s, 10 );
-		return !isNaN(integer) && isFinite(s) ? integer : null;
-	};
-	
-	// Convert from a formatted number with characters other than `.` as the
-	// decimal place, to a Javascript number
-	var _numToDecimal = function ( num, decimalPoint ) {
-		// Cache created regular expressions for speed as this function is called often
-		if ( ! _re_dic[ decimalPoint ] ) {
-			_re_dic[ decimalPoint ] = new RegExp( _fnEscapeRegex( decimalPoint ), 'g' );
-		}
-		return typeof num === 'string' && decimalPoint !== '.' ?
-			num.replace( /\./g, '' ).replace( _re_dic[ decimalPoint ], '.' ) :
-			num;
-	};
-	
-	
-	var _isNumber = function ( d, decimalPoint, formatted, allowEmpty ) {
-		var type = typeof d;
-		var strType = type === 'string';
-	
-		if ( type === 'number' || type === 'bigint') {
-			return true;
-		}
-	
-		// If empty return immediately so there must be a number if it is a
-		// formatted string (this stops the string "k", or "kr", etc being detected
-		// as a formatted number for currency
-		if ( allowEmpty && _empty( d ) ) {
-			return true;
-		}
-	
-		if ( decimalPoint && strType ) {
-			d = _numToDecimal( d, decimalPoint );
-		}
-	
-		if ( formatted && strType ) {
-			d = d.replace( _re_formatted_numeric, '' );
-		}
-	
-		return !isNaN( parseFloat(d) ) && isFinite( d );
-	};
-	
-	
-	// A string without HTML in it can be considered to be HTML still
-	var _isHtml = function ( d ) {
-		return _empty( d ) || typeof d === 'string';
-	};
-	
-	// Is a string a number surrounded by HTML?
-	var _htmlNumeric = function ( d, decimalPoint, formatted, allowEmpty ) {
-		if ( allowEmpty && _empty( d ) ) {
-			return true;
-		}
-	
-		// input and select strings mean that this isn't just a number
-		if (typeof d === 'string' && d.match(/<(input|select)/i)) {
-			return null;
-		}
-	
-		var html = _isHtml( d );
-		return ! html ?
-			null :
-			_isNumber( _stripHtml( d ), decimalPoint, formatted, allowEmpty ) ?
-				true :
-				null;
-	};
-	
-	
-	var _pluck = function ( a, prop, prop2 ) {
-		var out = [];
-		var i=0, ien=a.length;
-	
-		// Could have the test in the loop for slightly smaller code, but speed
-		// is essential here
-		if ( prop2 !== undefined ) {
-			for ( ; i<ien ; i++ ) {
-				if ( a[i] && a[i][ prop ] ) {
-					out.push( a[i][ prop ][ prop2 ] );
-				}
-			}
-		}
-		else {
-			for ( ; i<ien ; i++ ) {
-				if ( a[i] ) {
-					out.push( a[i][ prop ] );
-				}
-			}
-		}
-	
-		return out;
-	};
-	
-	
-	// Basically the same as _pluck, but rather than looping over `a` we use `order`
-	// as the indexes to pick from `a`
-	var _pluck_order = function ( a, order, prop, prop2 )
-	{
-		var out = [];
-		var i=0, ien=order.length;
-	
-		// Could have the test in the loop for slightly smaller code, but speed
-		// is essential here
-		if ( prop2 !== undefined ) {
-			for ( ; i<ien ; i++ ) {
-				if ( a[ order[i] ] && a[ order[i] ][ prop ] ) {
-					out.push( a[ order[i] ][ prop ][ prop2 ] );
-				}
-			}
-		}
-		else {
-			for ( ; i<ien ; i++ ) {
-				if ( a[ order[i] ] ) {
-					out.push( a[ order[i] ][ prop ] );
-				}
-			}
-		}
-	
-		return out;
-	};
-	
-	
-	var _range = function ( len, start )
-	{
-		var out = [];
-		var end;
-	
-		if ( start === undefined ) {
-			start = 0;
-			end = len;
-		}
-		else {
-			end = start;
-			start = len;
-		}
-	
-		for ( var i=start ; i<end ; i++ ) {
-			out.push( i );
-		}
-	
-		return out;
-	};
-	
-	
-	var _removeEmpty = function ( a )
-	{
-		var out = [];
-	
-		for ( var i=0, ien=a.length ; i<ien ; i++ ) {
-			if ( a[i] ) { // careful - will remove all falsy values!
-				out.push( a[i] );
-			}
-		}
-	
-		return out;
-	};
-	
-	// Replaceable function in api.util
-	var _stripHtml = function (input) {
-		if (! input || typeof input !== 'string') {
-			return input;
-		}
-	
-		// Irrelevant check to workaround CodeQL's false positive on the regex
-		if (input.length > _max_str_len) {
-			throw new Error('Exceeded max str len');
-		}
-	
-		var previous;
-	
-		input = input.replace(_re_html, ''); // Complete tags
-	
-		// Safety for incomplete script tag - use do / while to ensure that
-		// we get all instances
-		do {
-			previous = input;
-			input = input.replace(/<script/i, '');
-		} while (input !== previous);
-	
-		return previous;
-	};
-	
-	// Replaceable function in api.util
-	var _escapeHtml = function ( d ) {
-		if (Array.isArray(d)) {
-			d = d.join(',');
-		}
-	
-		return typeof d === 'string' ?
-			d
-				.replace(/&/g, '&amp;')
-				.replace(/</g, '&lt;')
-				.replace(/>/g, '&gt;')
-				.replace(/"/g, '&quot;') :
-			d;
-	};
-	
-	// Remove diacritics from a string by decomposing it and then removing
-	// non-ascii characters
-	var _normalize = function (str, both) {
-		if (typeof str !== 'string') {
-			return str;
-		}
-	
-		// It is faster to just run `normalize` than it is to check if
-		// we need to with a regex! (Check as it isn't available in old
-		// Safari)
-		var res = str.normalize
-			? str.normalize("NFD")
-			: str;
-	
-		// Equally, here we check if a regex is needed or not
-		return res.length !== str.length
-			? (both === true ? str + ' ' : '' ) + res.replace(/[\u0300-\u036f]/g, "")
-			: res;
-	}
-	
-	/**
-	 * Determine if all values in the array are unique. This means we can short
-	 * cut the _unique method at the cost of a single loop. A sorted array is used
-	 * to easily check the values.
-	 *
-	 * @param  {array} src Source array
-	 * @return {boolean} true if all unique, false otherwise
-	 * @ignore
-	 */
-	var _areAllUnique = function ( src ) {
-		if ( src.length < 2 ) {
-			return true;
-		}
-	
-		var sorted = src.slice().sort();
-		var last = sorted[0];
-	
-		for ( var i=1, ien=sorted.length ; i<ien ; i++ ) {
-			if ( sorted[i] === last ) {
-				return false;
-			}
-	
-			last = sorted[i];
-		}
-	
-		return true;
-	};
-	
-	
-	/**
-	 * Find the unique elements in a source array.
-	 *
-	 * @param  {array} src Source array
-	 * @return {array} Array of unique items
-	 * @ignore
-	 */
-	var _unique = function ( src )
-	{
-		if (Array.from && Set) {
-			return Array.from(new Set(src));
-		}
-	
-		if ( _areAllUnique( src ) ) {
-			return src.slice();
-		}
-	
-		// A faster unique method is to use object keys to identify used values,
-		// but this doesn't work with arrays or objects, which we must also
-		// consider. See jsperf.app/compare-array-unique-versions/4 for more
-		// information.
-		var
-			out = [],
-			val,
-			i, ien=src.length,
-			j, k=0;
-	
-		again: for ( i=0 ; i<ien ; i++ ) {
-			val = src[i];
-	
-			for ( j=0 ; j<k ; j++ ) {
-				if ( out[j] === val ) {
-					continue again;
-				}
-			}
-	
-			out.push( val );
-			k++;
-		}
-	
-		return out;
-	};
-	
-	// Surprisingly this is faster than [].concat.apply
-	// https://jsperf.com/flatten-an-array-loop-vs-reduce/2
-	var _flatten = function (out, val) {
-		if (Array.isArray(val)) {
-			for (var i=0 ; i<val.length ; i++) {
-				_flatten(out, val[i]);
-			}
-		}
-		else {
-			out.push(val);
-		}
-	
-		return out;
-	}
-	
-	// Similar to jQuery's addClass, but use classList.add
-	function _addClass(el, name) {
-		if (name) {
-			name.split(' ').forEach(function (n) {
-				if (n) {
-					// `add` does deduplication, so no need to check `contains`
-					el.classList.add(n);
-				}
-			});
-		}
-	}
-	
-	/**
-	 * DataTables utility methods
-	 * 
-	 * This namespace provides helper methods that DataTables uses internally to
-	 * create a DataTable, but which are not exclusively used only for DataTables.
-	 * These methods can be used by extension authors to save the duplication of
-	 * code.
-	 *
-	 *  @namespace
-	 */
-	DataTable.util = {
-		/**
-		 * Return a string with diacritic characters decomposed
-		 * @param {*} mixed Function or string to normalize
-		 * @param {*} both Return original string and the normalized string
-		 * @returns String or undefined
-		 */
-		diacritics: function (mixed, both) {
-			var type = typeof mixed;
-	
-			if (type !== 'function') {
-				return _normalize(mixed, both);
-			}
-			_normalize = mixed;
-		},
-	
-		/**
-		 * Debounce a function
-		 *
-		 * @param {function} fn Function to be called
-		 * @param {integer} freq Call frequency in mS
-		 * @return {function} Wrapped function
-		 */
-		debounce: function ( fn, timeout ) {
-			var timer;
-	
-			return function () {
-				var that = this;
-				var args = arguments;
-	
-				clearTimeout(timer);
-	
-				timer = setTimeout( function () {
-					fn.apply(that, args);
-				}, timeout || 250 );
-			};
-		},
-	
-		/**
-		 * Throttle the calls to a function. Arguments and context are maintained
-		 * for the throttled function.
-		 *
-		 * @param {function} fn Function to be called
-		 * @param {integer} freq Call frequency in mS
-		 * @return {function} Wrapped function
-		 */
-		throttle: function ( fn, freq ) {
-			var
-				frequency = freq !== undefined ? freq : 200,
-				last,
-				timer;
-	
-			return function () {
-				var
-					that = this,
-					now  = +new Date(),
-					args = arguments;
-	
-				if ( last && now < last + frequency ) {
-					clearTimeout( timer );
-	
-					timer = setTimeout( function () {
-						last = undefined;
-						fn.apply( that, args );
-					}, frequency );
-				}
-				else {
-					last = now;
-					fn.apply( that, args );
-				}
-			};
-		},
-	
-		/**
-		 * Escape a string such that it can be used in a regular expression
-		 *
-		 *  @param {string} val string to escape
-		 *  @returns {string} escaped string
-		 */
-		escapeRegex: function ( val ) {
-			return val.replace( _re_escape_regex, '\\$1' );
-		},
-	
-		/**
-		 * Create a function that will write to a nested object or array
-		 * @param {*} source JSON notation string
-		 * @returns Write function
-		 */
-		set: function ( source ) {
-			if ( $.isPlainObject( source ) ) {
-				/* Unlike get, only the underscore (global) option is used for for
-				 * setting data since we don't know the type here. This is why an object
-				 * option is not documented for `mData` (which is read/write), but it is
-				 * for `mRender` which is read only.
-				 */
-				return DataTable.util.set( source._ );
-			}
-			else if ( source === null ) {
-				// Nothing to do when the data source is null
-				return function () {};
-			}
-			else if ( typeof source === 'function' ) {
-				return function (data, val, meta) {
-					source( data, 'set', val, meta );
-				};
-			}
-			else if (
-				typeof source === 'string' && (source.indexOf('.') !== -1 ||
-				source.indexOf('[') !== -1 || source.indexOf('(') !== -1)
-			) {
-				// Like the get, we need to get data from a nested object
-				var setData = function (data, val, src) {
-					var a = _fnSplitObjNotation( src ), b;
-					var aLast = a[a.length-1];
-					var arrayNotation, funcNotation, o, innerSrc;
-		
-					for ( var i=0, iLen=a.length-1 ; i<iLen ; i++ ) {
-						// Protect against prototype pollution
-						if (a[i] === '__proto__' || a[i] === 'constructor') {
-							throw new Error('Cannot set prototype values');
-						}
-		
-						// Check if we are dealing with an array notation request
-						arrayNotation = a[i].match(__reArray);
-						funcNotation = a[i].match(__reFn);
-		
-						if ( arrayNotation ) {
-							a[i] = a[i].replace(__reArray, '');
-							data[ a[i] ] = [];
-		
-							// Get the remainder of the nested object to set so we can recurse
-							b = a.slice();
-							b.splice( 0, i+1 );
-							innerSrc = b.join('.');
-		
-							// Traverse each entry in the array setting the properties requested
-							if ( Array.isArray( val ) ) {
-								for ( var j=0, jLen=val.length ; j<jLen ; j++ ) {
-									o = {};
-									setData( o, val[j], innerSrc );
-									data[ a[i] ].push( o );
-								}
-							}
-							else {
-								// We've been asked to save data to an array, but it
-								// isn't array data to be saved. Best that can be done
-								// is to just save the value.
-								data[ a[i] ] = val;
-							}
-		
-							// The inner call to setData has already traversed through the remainder
-							// of the source and has set the data, thus we can exit here
-							return;
-						}
-						else if ( funcNotation ) {
-							// Function call
-							a[i] = a[i].replace(__reFn, '');
-							data = data[ a[i] ]( val );
-						}
-		
-						// If the nested object doesn't currently exist - since we are
-						// trying to set the value - create it
-						if ( data[ a[i] ] === null || data[ a[i] ] === undefined ) {
-							data[ a[i] ] = {};
-						}
-						data = data[ a[i] ];
-					}
-		
-					// Last item in the input - i.e, the actual set
-					if ( aLast.match(__reFn ) ) {
-						// Function call
-						data = data[ aLast.replace(__reFn, '') ]( val );
-					}
-					else {
-						// If array notation is used, we just want to strip it and use the property name
-						// and assign the value. If it isn't used, then we get the result we want anyway
-						data[ aLast.replace(__reArray, '') ] = val;
-					}
-				};
-		
-				return function (data, val) { // meta is also passed in, but not used
-					return setData( data, val, source );
-				};
-			}
-			else {
-				// Array or flat object mapping
-				return function (data, val) { // meta is also passed in, but not used
-					data[source] = val;
-				};
-			}
-		},
-	
-		/**
-		 * Create a function that will read nested objects from arrays, based on JSON notation
-		 * @param {*} source JSON notation string
-		 * @returns Value read
-		 */
-		get: function ( source ) {
-			if ( $.isPlainObject( source ) ) {
-				// Build an object of get functions, and wrap them in a single call
-				var o = {};
-				$.each( source, function (key, val) {
-					if ( val ) {
-						o[key] = DataTable.util.get( val );
-					}
-				} );
-		
-				return function (data, type, row, meta) {
-					var t = o[type] || o._;
-					return t !== undefined ?
-						t(data, type, row, meta) :
-						data;
-				};
-			}
-			else if ( source === null ) {
-				// Give an empty string for rendering / sorting etc
-				return function (data) { // type, row and meta also passed, but not used
-					return data;
-				};
-			}
-			else if ( typeof source === 'function' ) {
-				return function (data, type, row, meta) {
-					return source( data, type, row, meta );
-				};
-			}
-			else if (
-				typeof source === 'string' && (source.indexOf('.') !== -1 ||
-				source.indexOf('[') !== -1 || source.indexOf('(') !== -1)
-			) {
-				/* If there is a . in the source string then the data source is in a
-				 * nested object so we loop over the data for each level to get the next
-				 * level down. On each loop we test for undefined, and if found immediately
-				 * return. This allows entire objects to be missing and sDefaultContent to
-				 * be used if defined, rather than throwing an error
-				 */
-				var fetchData = function (data, type, src) {
-					var arrayNotation, funcNotation, out, innerSrc;
-		
-					if ( src !== "" ) {
-						var a = _fnSplitObjNotation( src );
-		
-						for ( var i=0, iLen=a.length ; i<iLen ; i++ ) {
-							// Check if we are dealing with special notation
-							arrayNotation = a[i].match(__reArray);
-							funcNotation = a[i].match(__reFn);
-		
-							if ( arrayNotation ) {
-								// Array notation
-								a[i] = a[i].replace(__reArray, '');
-		
-								// Condition allows simply [] to be passed in
-								if ( a[i] !== "" ) {
-									data = data[ a[i] ];
-								}
-								out = [];
-		
-								// Get the remainder of the nested object to get
-								a.splice( 0, i+1 );
-								innerSrc = a.join('.');
-		
-								// Traverse each entry in the array getting the properties requested
-								if ( Array.isArray( data ) ) {
-									for ( var j=0, jLen=data.length ; j<jLen ; j++ ) {
-										out.push( fetchData( data[j], type, innerSrc ) );
-									}
-								}
-		
-								// If a string is given in between the array notation indicators, that
-								// is used to join the strings together, otherwise an array is returned
-								var join = arrayNotation[0].substring(1, arrayNotation[0].length-1);
-								data = (join==="") ? out : out.join(join);
-		
-								// The inner call to fetchData has already traversed through the remainder
-								// of the source requested, so we exit from the loop
-								break;
-							}
-							else if ( funcNotation ) {
-								// Function call
-								a[i] = a[i].replace(__reFn, '');
-								data = data[ a[i] ]();
-								continue;
-							}
-		
-							if (data === null || data[ a[i] ] === null) {
-								return null;
-							}
-							else if ( data === undefined || data[ a[i] ] === undefined ) {
-								return undefined;
-							}
-	
-							data = data[ a[i] ];
-						}
-					}
-		
-					return data;
-				};
-		
-				return function (data, type) { // row and meta also passed, but not used
-					return fetchData( data, type, source );
-				};
-			}
-			else {
-				// Array or flat object mapping
-				return function (data) { // row and meta also passed, but not used
-					return data[source];
-				};
-			}
-		},
-	
-		stripHtml: function (mixed) {
-			var type = typeof mixed;
-	
-			if (type === 'function') {
-				_stripHtml = mixed;
-				return;
-			}
-			else if (type === 'string') {
-				return _stripHtml(mixed);
-			}
-			return mixed;
-		},
-	
-		escapeHtml: function (mixed) {
-			var type = typeof mixed;
-	
-			if (type === 'function') {
-				_escapeHtml = mixed;
-				return;
-			}
-			else if (type === 'string' || Array.isArray(mixed)) {
-				return _escapeHtml(mixed);
-			}
-			return mixed;
-		},
-	
-		unique: _unique
-	};
-	
-	
-	
-	/**
-	 * Create a mapping object that allows camel case parameters to be looked up
-	 * for their Hungarian counterparts. The mapping is stored in a private
-	 * parameter called `_hungarianMap` which can be accessed on the source object.
-	 *  @param {object} o
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnHungarianMap ( o )
-	{
-		var
-			hungarian = 'a aa ai ao as b fn i m o s ',
-			match,
-			newKey,
-			map = {};
-	
-		$.each( o, function (key) {
-			match = key.match(/^([^A-Z]+?)([A-Z])/);
-	
-			if ( match && hungarian.indexOf(match[1]+' ') !== -1 )
-			{
-				newKey = key.replace( match[0], match[2].toLowerCase() );
-				map[ newKey ] = key;
-	
-				if ( match[1] === 'o' )
-				{
-					_fnHungarianMap( o[key] );
-				}
-			}
-		} );
-	
-		o._hungarianMap = map;
-	}
-	
-	
-	/**
-	 * Convert from camel case parameters to Hungarian, based on a Hungarian map
-	 * created by _fnHungarianMap.
-	 *  @param {object} src The model object which holds all parameters that can be
-	 *    mapped.
-	 *  @param {object} user The object to convert from camel case to Hungarian.
-	 *  @param {boolean} force When set to `true`, properties which already have a
-	 *    Hungarian value in the `user` object will be overwritten. Otherwise they
-	 *    won't be.
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnCamelToHungarian ( src, user, force )
-	{
-		if ( ! src._hungarianMap ) {
-			_fnHungarianMap( src );
-		}
-	
-		var hungarianKey;
-	
-		$.each( user, function (key) {
-			hungarianKey = src._hungarianMap[ key ];
-	
-			if ( hungarianKey !== undefined && (force || user[hungarianKey] === undefined) )
-			{
-				// For objects, we need to buzz down into the object to copy parameters
-				if ( hungarianKey.charAt(0) === 'o' )
-				{
-					// Copy the camelCase options over to the hungarian
-					if ( ! user[ hungarianKey ] ) {
-						user[ hungarianKey ] = {};
-					}
-					$.extend( true, user[hungarianKey], user[key] );
-	
-					_fnCamelToHungarian( src[hungarianKey], user[hungarianKey], force );
-				}
-				else {
-					user[hungarianKey] = user[ key ];
-				}
-			}
-		} );
-	}
-	
-	/**
-	 * Map one parameter onto another
-	 *  @param {object} o Object to map
-	 *  @param {*} knew The new parameter name
-	 *  @param {*} old The old parameter name
-	 */
-	var _fnCompatMap = function ( o, knew, old ) {
-		if ( o[ knew ] !== undefined ) {
-			o[ old ] = o[ knew ];
-		}
-	};
-	
-	
-	/**
-	 * Provide backwards compatibility for the main DT options. Note that the new
-	 * options are mapped onto the old parameters, so this is an external interface
-	 * change only.
-	 *  @param {object} init Object to map
-	 */
-	function _fnCompatOpts ( init )
-	{
-		_fnCompatMap( init, 'ordering',      'bSort' );
-		_fnCompatMap( init, 'orderMulti',    'bSortMulti' );
-		_fnCompatMap( init, 'orderClasses',  'bSortClasses' );
-		_fnCompatMap( init, 'orderCellsTop', 'bSortCellsTop' );
-		_fnCompatMap( init, 'order',         'aaSorting' );
-		_fnCompatMap( init, 'orderFixed',    'aaSortingFixed' );
-		_fnCompatMap( init, 'paging',        'bPaginate' );
-		_fnCompatMap( init, 'pagingType',    'sPaginationType' );
-		_fnCompatMap( init, 'pageLength',    'iDisplayLength' );
-		_fnCompatMap( init, 'searching',     'bFilter' );
-	
-		// Boolean initialisation of x-scrolling
-		if ( typeof init.sScrollX === 'boolean' ) {
-			init.sScrollX = init.sScrollX ? '100%' : '';
-		}
-		if ( typeof init.scrollX === 'boolean' ) {
-			init.scrollX = init.scrollX ? '100%' : '';
-		}
-	
-		// Column search objects are in an array, so it needs to be converted
-		// element by element
-		var searchCols = init.aoSearchCols;
-	
-		if ( searchCols ) {
-			for ( var i=0, ien=searchCols.length ; i<ien ; i++ ) {
-				if ( searchCols[i] ) {
-					_fnCamelToHungarian( DataTable.models.oSearch, searchCols[i] );
-				}
-			}
-		}
-	
-		// Enable search delay if server-side processing is enabled
-		if (init.serverSide && ! init.searchDelay) {
-			init.searchDelay = 400;
-		}
-	}
-	
-	
-	/**
-	 * Provide backwards compatibility for column options. Note that the new options
-	 * are mapped onto the old parameters, so this is an external interface change
-	 * only.
-	 *  @param {object} init Object to map
-	 */
-	function _fnCompatCols ( init )
-	{
-		_fnCompatMap( init, 'orderable',     'bSortable' );
-		_fnCompatMap( init, 'orderData',     'aDataSort' );
-		_fnCompatMap( init, 'orderSequence', 'asSorting' );
-		_fnCompatMap( init, 'orderDataType', 'sortDataType' );
-	
-		// orderData can be given as an integer
-		var dataSort = init.aDataSort;
-		if ( typeof dataSort === 'number' && ! Array.isArray( dataSort ) ) {
-			init.aDataSort = [ dataSort ];
-		}
-	}
-	
-	
-	/**
-	 * Browser feature detection for capabilities, quirks
-	 *  @param {object} settings dataTables settings object
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnBrowserDetect( settings )
-	{
-		// We don't need to do this every time DataTables is constructed, the values
-		// calculated are specific to the browser and OS configuration which we
-		// don't expect to change between initialisations
-		if ( ! DataTable.__browser ) {
-			var browser = {};
-			DataTable.__browser = browser;
-	
-			// Scrolling feature / quirks detection
-			var n = $('<div/>')
-				.css( {
-					position: 'fixed',
-					top: 0,
-					left: -1 * window.pageXOffset, // allow for scrolling
-					height: 1,
-					width: 1,
-					overflow: 'hidden'
-				} )
-				.append(
-					$('<div/>')
-						.css( {
-							position: 'absolute',
-							top: 1,
-							left: 1,
-							width: 100,
-							overflow: 'scroll'
-						} )
-						.append(
-							$('<div/>')
-								.css( {
-									width: '100%',
-									height: 10
-								} )
-						)
-				)
-				.appendTo( 'body' );
-	
-			var outer = n.children();
-			var inner = outer.children();
-	
-			// Get scrollbar width
-			browser.barWidth = outer[0].offsetWidth - outer[0].clientWidth;
-	
-			// In rtl text layout, some browsers (most, but not all) will place the
-			// scrollbar on the left, rather than the right.
-			browser.bScrollbarLeft = Math.round( inner.offset().left ) !== 1;
-	
-			n.remove();
-		}
-	
-		$.extend( settings.oBrowser, DataTable.__browser );
-		settings.oScroll.iBarWidth = DataTable.__browser.barWidth;
-	}
-	
-	/**
-	 * Add a column to the list used for the table with default values
-	 *  @param {object} oSettings dataTables settings object
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnAddColumn( oSettings )
-	{
-		// Add column to aoColumns array
-		var oDefaults = DataTable.defaults.column;
-		var iCol = oSettings.aoColumns.length;
-		var oCol = $.extend( {}, DataTable.models.oColumn, oDefaults, {
-			"aDataSort": oDefaults.aDataSort ? oDefaults.aDataSort : [iCol],
-			"mData": oDefaults.mData ? oDefaults.mData : iCol,
-			idx: iCol,
-			searchFixed: {},
-			colEl: $('<col>').attr('data-dt-column', iCol)
-		} );
-		oSettings.aoColumns.push( oCol );
-	
-		// Add search object for column specific search. Note that the `searchCols[ iCol ]`
-		// passed into extend can be undefined. This allows the user to give a default
-		// with only some of the parameters defined, and also not give a default
-		var searchCols = oSettings.aoPreSearchCols;
-		searchCols[ iCol ] = $.extend( {}, DataTable.models.oSearch, searchCols[ iCol ] );
-	}
-	
-	
-	/**
-	 * Apply options for a column
-	 *  @param {object} oSettings dataTables settings object
-	 *  @param {int} iCol column index to consider
-	 *  @param {object} oOptions object with sType, bVisible and bSearchable etc
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnColumnOptions( oSettings, iCol, oOptions )
-	{
-		var oCol = oSettings.aoColumns[ iCol ];
-	
-		/* User specified column options */
-		if ( oOptions !== undefined && oOptions !== null )
-		{
-			// Backwards compatibility
-			_fnCompatCols( oOptions );
-	
-			// Map camel case parameters to their Hungarian counterparts
-			_fnCamelToHungarian( DataTable.defaults.column, oOptions, true );
-	
-			/* Backwards compatibility for mDataProp */
-			if ( oOptions.mDataProp !== undefined && !oOptions.mData )
-			{
-				oOptions.mData = oOptions.mDataProp;
-			}
-	
-			if ( oOptions.sType )
-			{
-				oCol._sManualType = oOptions.sType;
-			}
-		
-			// `class` is a reserved word in Javascript, so we need to provide
-			// the ability to use a valid name for the camel case input
-			if ( oOptions.className && ! oOptions.sClass )
-			{
-				oOptions.sClass = oOptions.className;
-			}
-	
-			var origClass = oCol.sClass;
-	
-			$.extend( oCol, oOptions );
-			_fnMap( oCol, oOptions, "sWidth", "sWidthOrig" );
-	
-			// Merge class from previously defined classes with this one, rather than just
-			// overwriting it in the extend above
-			if (origClass !== oCol.sClass) {
-				oCol.sClass = origClass + ' ' + oCol.sClass;
-			}
-	
-			/* iDataSort to be applied (backwards compatibility), but aDataSort will take
-			 * priority if defined
-			 */
-			if ( oOptions.iDataSort !== undefined )
-			{
-				oCol.aDataSort = [ oOptions.iDataSort ];
-			}
-			_fnMap( oCol, oOptions, "aDataSort" );
-		}
-	
-		/* Cache the data get and set functions for speed */
-		var mDataSrc = oCol.mData;
-		var mData = _fnGetObjectDataFn( mDataSrc );
-	
-		// The `render` option can be given as an array to access the helper rendering methods.
-		// The first element is the rendering method to use, the rest are the parameters to pass
-		if ( oCol.mRender && Array.isArray( oCol.mRender ) ) {
-			var copy = oCol.mRender.slice();
-			var name = copy.shift();
-	
-			oCol.mRender = DataTable.render[name].apply(window, copy);
-		}
-	
-		oCol._render = oCol.mRender ? _fnGetObjectDataFn( oCol.mRender ) : null;
-	
-		var attrTest = function( src ) {
-			return typeof src === 'string' && src.indexOf('@') !== -1;
-		};
-		oCol._bAttrSrc = $.isPlainObject( mDataSrc ) && (
-			attrTest(mDataSrc.sort) || attrTest(mDataSrc.type) || attrTest(mDataSrc.filter)
-		);
-		oCol._setter = null;
-	
-		oCol.fnGetData = function (rowData, type, meta) {
-			var innerData = mData( rowData, type, undefined, meta );
-	
-			return oCol._render && type ?
-				oCol._render( innerData, type, rowData, meta ) :
-				innerData;
-		};
-		oCol.fnSetData = function ( rowData, val, meta ) {
-			return _fnSetObjectDataFn( mDataSrc )( rowData, val, meta );
-		};
-	
-		// Indicate if DataTables should read DOM data as an object or array
-		// Used in _fnGetRowElements
-		if ( typeof mDataSrc !== 'number' && ! oCol._isArrayHost ) {
-			oSettings._rowReadObject = true;
-		}
-	
-		/* Feature sorting overrides column specific when off */
-		if ( !oSettings.oFeatures.bSort )
-		{
-			oCol.bSortable = false;
-		}
-	}
-	
-	
-	/**
-	 * Adjust the table column widths for new data. Note: you would probably want to
-	 * do a redraw after calling this function!
-	 *  @param {object} settings dataTables settings object
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnAdjustColumnSizing ( settings )
-	{
-		_fnCalculateColumnWidths( settings );
-		_fnColumnSizes( settings );
-	
-		var scroll = settings.oScroll;
-		if ( scroll.sY !== '' || scroll.sX !== '') {
-			_fnScrollDraw( settings );
-		}
-	
-		_fnCallbackFire( settings, null, 'column-sizing', [settings] );
-	}
-	
-	/**
-	 * Apply column sizes
-	 *
-	 * @param {*} settings DataTables settings object
-	 */
-	function _fnColumnSizes ( settings )
-	{
-		var cols = settings.aoColumns;
-	
-		for (var i=0 ; i<cols.length ; i++) {
-			var width = _fnColumnsSumWidth(settings, [i], false, false);
-	
-			cols[i].colEl.css('width', width);
-		}
-	}
-	
-	
-	/**
-	 * Convert the index of a visible column to the index in the data array (take account
-	 * of hidden columns)
-	 *  @param {object} oSettings dataTables settings object
-	 *  @param {int} iMatch Visible column index to lookup
-	 *  @returns {int} i the data index
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnVisibleToColumnIndex( oSettings, iMatch )
-	{
-		var aiVis = _fnGetColumns( oSettings, 'bVisible' );
-	
-		return typeof aiVis[iMatch] === 'number' ?
-			aiVis[iMatch] :
-			null;
-	}
-	
-	
-	/**
-	 * Convert the index of an index in the data array and convert it to the visible
-	 *   column index (take account of hidden columns)
-	 *  @param {int} iMatch Column index to lookup
-	 *  @param {object} oSettings dataTables settings object
-	 *  @returns {int} i the data index
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnColumnIndexToVisible( oSettings, iMatch )
-	{
-		var aiVis = _fnGetColumns( oSettings, 'bVisible' );
-		var iPos = aiVis.indexOf(iMatch);
-	
-		return iPos !== -1 ? iPos : null;
-	}
-	
-	
-	/**
-	 * Get the number of visible columns
-	 *  @param {object} oSettings dataTables settings object
-	 *  @returns {int} i the number of visible columns
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnVisbleColumns( settings )
-	{
-		var layout = settings.aoHeader;
-		var columns = settings.aoColumns;
-		var vis = 0;
-	
-		if ( layout.length ) {
-			for ( var i=0, ien=layout[0].length ; i<ien ; i++ ) {
-				if ( columns[i].bVisible && $(layout[0][i].cell).css('display') !== 'none' ) {
-					vis++;
-				}
-			}
-		}
-	
-		return vis;
-	}
-	
-	
-	/**
-	 * Get an array of column indexes that match a given property
-	 *  @param {object} oSettings dataTables settings object
-	 *  @param {string} sParam Parameter in aoColumns to look for - typically
-	 *    bVisible or bSearchable
-	 *  @returns {array} Array of indexes with matched properties
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnGetColumns( oSettings, sParam )
-	{
-		var a = [];
-	
-		oSettings.aoColumns.map( function(val, i) {
-			if ( val[sParam] ) {
-				a.push( i );
-			}
-		} );
-	
-		return a;
-	}
-	
-	/**
-	 * Allow the result from a type detection function to be `true` while
-	 * translating that into a string. Old type detection functions will
-	 * return the type name if it passes. An obect store would be better,
-	 * but not backwards compatible.
-	 *
-	 * @param {*} typeDetect Object or function for type detection
-	 * @param {*} res Result from the type detection function
-	 * @returns Type name or false
-	 */
-	function _typeResult (typeDetect, res) {
-		return res === true
-			? typeDetect._name
-			: res;
-	}
-	
-	/**
-	 * Calculate the 'type' of a column
-	 *  @param {object} settings dataTables settings object
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnColumnTypes ( settings )
-	{
-		var columns = settings.aoColumns;
-		var data = settings.aoData;
-		var types = DataTable.ext.type.detect;
-		var i, ien, j, jen, k, ken;
-		var col, detectedType, cache;
-	
-		// For each column, spin over the data type detection functions, seeing if one matches
-		for ( i=0, ien=columns.length ; i<ien ; i++ ) {
-			col = columns[i];
-			cache = [];
-	
-			if ( ! col.sType && col._sManualType ) {
-				col.sType = col._sManualType;
-			}
-			else if ( ! col.sType ) {
-				// With SSP type detection can be unreliable and error prone, so we provide a way
-				// to turn it off.
-				if (! settings.typeDetect) {
-					return;
-				}
-	
-				for ( j=0, jen=types.length ; j<jen ; j++ ) {
-					var typeDetect = types[j];
-	
-					// There can be either one, or three type detection functions
-					var oneOf = typeDetect.oneOf;
-					var allOf = typeDetect.allOf || typeDetect;
-					var init = typeDetect.init;
-					var one = false;
-	
-					detectedType = null;
-	
-					// Fast detect based on column assignment
-					if (init) {
-						detectedType = _typeResult(typeDetect, init(settings, col, i));
-	
-						if (detectedType) {
-							col.sType = detectedType;
-							break;
-						}
-					}
-	
-					for ( k=0, ken=data.length ; k<ken ; k++ ) {
-						if (! data[k]) {
-							continue;
-						}
-	
-						// Use a cache array so we only need to get the type data
-						// from the formatter once (when using multiple detectors)
-						if ( cache[k] === undefined ) {
-							cache[k] = _fnGetCellData( settings, k, i, 'type' );
-						}
-	
-						// Only one data point in the column needs to match this function
-						if (oneOf && ! one) {
-							one = _typeResult(typeDetect, oneOf( cache[k], settings ));
-						}
-	
-						// All data points need to match this function
-						detectedType = _typeResult(typeDetect, allOf( cache[k], settings ));
-	
-						// If null, then this type can't apply to this column, so
-						// rather than testing all cells, break out. There is an
-						// exception for the last type which is `html`. We need to
-						// scan all rows since it is possible to mix string and HTML
-						// types
-						if ( ! detectedType && j !== types.length-3 ) {
-							break;
-						}
-	
-						// Only a single match is needed for html type since it is
-						// bottom of the pile and very similar to string - but it
-						// must not be empty
-						if ( detectedType === 'html' && ! _empty(cache[k]) ) {
-							break;
-						}
-					}
-	
-					// Type is valid for all data points in the column - use this
-					// type
-					if ( (oneOf && one && detectedType) || (!oneOf && detectedType) ) {
-						col.sType = detectedType;
-						break;
-					}
-				}
-	
-				// Fall back - if no type was detected, always use string
-				if ( ! col.sType ) {
-					col.sType = 'string';
-				}
-			}
-	
-			// Set class names for header / footer for auto type classes
-			var autoClass = _ext.type.className[col.sType];
-	
-			if (autoClass) {
-				_columnAutoClass(settings.aoHeader, i, autoClass);
-				_columnAutoClass(settings.aoFooter, i, autoClass);
-			}
-	
-			var renderer = _ext.type.render[col.sType];
-	
-			// This can only happen once! There is no way to remove
-			// a renderer. After the first time the renderer has
-			// already been set so createTr will run the renderer itself.
-			if (renderer && ! col._render) {
-				col._render = DataTable.util.get(renderer);
-	
-				_columnAutoRender(settings, i);
-			}
-		}
-	}
-	
-	/**
-	 * Apply an auto detected renderer to data which doesn't yet have
-	 * a renderer
-	 */
-	function _columnAutoRender(settings, colIdx) {
-		var data = settings.aoData;
-	
-		for (var i=0 ; i<data.length ; i++) {
-			if (data[i].nTr) {
-				// We have to update the display here since there is no
-				// invalidation check for the data
-				var display = _fnGetCellData( settings, i, colIdx, 'display' );
-	
-				data[i].displayData[colIdx] = display;
-				_fnWriteCell(data[i].anCells[colIdx], display);
-	
-				// No need to update sort / filter data since it has
-				// been invalidated and will be re-read with the
-				// renderer now applied
-			}
-		}
-	}
-	
-	/**
-	 * Apply a class name to a column's header cells
-	 */
-	function _columnAutoClass(container, colIdx, className) {
-		container.forEach(function (row) {
-			if (row[colIdx] && row[colIdx].unique) {
-				_addClass(row[colIdx].cell, className);
-			}
-		});
-	}
-	
-	/**
-	 * Take the column definitions and static columns arrays and calculate how
-	 * they relate to column indexes. The callback function will then apply the
-	 * definition found for a column to a suitable configuration object.
-	 *  @param {object} oSettings dataTables settings object
-	 *  @param {array} aoColDefs The aoColumnDefs array that is to be applied
-	 *  @param {array} aoCols The aoColumns array that defines columns individually
-	 *  @param {array} headerLayout Layout for header as it was loaded
-	 *  @param {function} fn Callback function - takes two parameters, the calculated
-	 *    column index and the definition for that column.
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnApplyColumnDefs( oSettings, aoColDefs, aoCols, headerLayout, fn )
-	{
-		var i, iLen, j, jLen, k, kLen, def;
-		var columns = oSettings.aoColumns;
-	
-		if ( aoCols ) {
-			for ( i=0, iLen=aoCols.length ; i<iLen ; i++ ) {
-				if (aoCols[i] && aoCols[i].name) {
-					columns[i].sName = aoCols[i].name;
-				}
-			}
-		}
-	
-		// Column definitions with aTargets
-		if ( aoColDefs )
-		{
-			/* Loop over the definitions array - loop in reverse so first instance has priority */
-			for ( i=aoColDefs.length-1 ; i>=0 ; i-- )
-			{
-				def = aoColDefs[i];
-	
-				/* Each definition can target multiple columns, as it is an array */
-				var aTargets = def.target !== undefined
-					? def.target
-					: def.targets !== undefined
-						? def.targets
-						: def.aTargets;
-	
-				if ( ! Array.isArray( aTargets ) )
-				{
-					aTargets = [ aTargets ];
-				}
-	
-				for ( j=0, jLen=aTargets.length ; j<jLen ; j++ )
-				{
-					var target = aTargets[j];
-	
-					if ( typeof target === 'number' && target >= 0 )
-					{
-						/* Add columns that we don't yet know about */
-						while( columns.length <= target )
-						{
-							_fnAddColumn( oSettings );
-						}
-	
-						/* Integer, basic index */
-						fn( target, def );
-					}
-					else if ( typeof target === 'number' && target < 0 )
-					{
-						/* Negative integer, right to left column counting */
-						fn( columns.length+target, def );
-					}
-					else if ( typeof target === 'string' )
-					{
-						for ( k=0, kLen=columns.length ; k<kLen ; k++ ) {
-							if (target === '_all') {
-								// Apply to all columns
-								fn( k, def );
-							}
-							else if (target.indexOf(':name') !== -1) {
-								// Column selector
-								if (columns[k].sName === target.replace(':name', '')) {
-									fn( k, def );
-								}
-							}
-							else {
-								// Cell selector
-								headerLayout.forEach(function (row) {
-									if (row[k]) {
-										var cell = $(row[k].cell);
-	
-										// Legacy support. Note that it means that we don't support
-										// an element name selector only, since they are treated as
-										// class names for 1.x compat.
-										if (target.match(/^[a-z][\w-]*$/i)) {
-											target = '.' + target;
-										}
-	
-										if (cell.is( target )) {
-											fn( k, def );
-										}
-									}
-								});
-							}
-						}
-					}
-				}
-			}
-		}
-	
-		// Statically defined columns array
-		if ( aoCols ) {
-			for ( i=0, iLen=aoCols.length ; i<iLen ; i++ ) {
-				fn( i, aoCols[i] );
-			}
-		}
-	}
-	
-	
-	/**
-	 * Get the width for a given set of columns
-	 *
-	 * @param {*} settings DataTables settings object
-	 * @param {*} targets Columns - comma separated string or array of numbers
-	 * @param {*} original Use the original width (true) or calculated (false)
-	 * @param {*} incVisible Include visible columns (true) or not (false)
-	 * @returns Combined CSS value
-	 */
-	function _fnColumnsSumWidth( settings, targets, original, incVisible ) {
-		if ( ! Array.isArray( targets ) ) {
-			targets = _fnColumnsFromHeader( targets );
-		}
-	
-		var sum = 0;
-		var unit;
-		var columns = settings.aoColumns;
-		
-		for ( var i=0, ien=targets.length ; i<ien ; i++ ) {
-			var column = columns[ targets[i] ];
-			var definedWidth = original ?
-				column.sWidthOrig :
-				column.sWidth;
-	
-			if ( ! incVisible && column.bVisible === false ) {
-				continue;
-			}
-	
-			if ( definedWidth === null || definedWidth === undefined ) {
-				return null; // can't determine a defined width - browser defined
-			}
-			else if ( typeof definedWidth === 'number' ) {
-				unit = 'px';
-				sum += definedWidth;
-			}
-			else {
-				var matched = definedWidth.match(/([\d\.]+)([^\d]*)/);
-	
-				if ( matched ) {
-					sum += matched[1] * 1;
-					unit = matched.length === 3 ?
-						matched[2] :
-						'px';
-				}
-			}
-		}
-	
-		return sum + unit;
-	}
-	
-	function _fnColumnsFromHeader( cell )
-	{
-		var attr = $(cell).closest('[data-dt-column]').attr('data-dt-column');
-	
-		if ( ! attr ) {
-			return [];
-		}
-	
-		return attr.split(',').map( function (val) {
-			return val * 1;
-		} );
-	}
-	/**
-	 * Add a data array to the table, creating DOM node etc. This is the parallel to
-	 * _fnGatherData, but for adding rows from a Javascript source, rather than a
-	 * DOM source.
-	 *  @param {object} settings dataTables settings object
-	 *  @param {array} data data array to be added
-	 *  @param {node} [tr] TR element to add to the table - optional. If not given,
-	 *    DataTables will create a row automatically
-	 *  @param {array} [tds] Array of TD|TH elements for the row - must be given
-	 *    if nTr is.
-	 *  @returns {int} >=0 if successful (index of new aoData entry), -1 if failed
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnAddData ( settings, dataIn, tr, tds )
-	{
-		/* Create the object for storing information about this new row */
-		var rowIdx = settings.aoData.length;
-		var rowModel = $.extend( true, {}, DataTable.models.oRow, {
-			src: tr ? 'dom' : 'data',
-			idx: rowIdx
-		} );
-	
-		rowModel._aData = dataIn;
-		settings.aoData.push( rowModel );
-	
-		var columns = settings.aoColumns;
-	
-		for ( var i=0, iLen=columns.length ; i<iLen ; i++ )
-		{
-			// Invalidate the column types as the new data needs to be revalidated
-			columns[i].sType = null;
-		}
-	
-		/* Add to the display array */
-		settings.aiDisplayMaster.push( rowIdx );
-	
-		var id = settings.rowIdFn( dataIn );
-		if ( id !== undefined ) {
-			settings.aIds[ id ] = rowModel;
-		}
-	
-		/* Create the DOM information, or register it if already present */
-		if ( tr || ! settings.oFeatures.bDeferRender )
-		{
-			_fnCreateTr( settings, rowIdx, tr, tds );
-		}
-	
-		return rowIdx;
-	}
-	
-	
-	/**
-	 * Add one or more TR elements to the table. Generally we'd expect to
-	 * use this for reading data from a DOM sourced table, but it could be
-	 * used for an TR element. Note that if a TR is given, it is used (i.e.
-	 * it is not cloned).
-	 *  @param {object} settings dataTables settings object
-	 *  @param {array|node|jQuery} trs The TR element(s) to add to the table
-	 *  @returns {array} Array of indexes for the added rows
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnAddTr( settings, trs )
-	{
-		var row;
-	
-		// Allow an individual node to be passed in
-		if ( ! (trs instanceof $) ) {
-			trs = $(trs);
-		}
-	
-		return trs.map( function (i, el) {
-			row = _fnGetRowElements( settings, el );
-			return _fnAddData( settings, row.data, el, row.cells );
-		} );
-	}
-	
-	
-	/**
-	 * Get the data for a given cell from the internal cache, taking into account data mapping
-	 *  @param {object} settings dataTables settings object
-	 *  @param {int} rowIdx aoData row id
-	 *  @param {int} colIdx Column index
-	 *  @param {string} type data get type ('display', 'type' 'filter|search' 'sort|order')
-	 *  @returns {*} Cell data
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnGetCellData( settings, rowIdx, colIdx, type )
-	{
-		if (type === 'search') {
-			type = 'filter';
-		}
-		else if (type === 'order') {
-			type = 'sort';
-		}
-	
-		var row = settings.aoData[rowIdx];
-	
-		if (! row) {
-			return undefined;
-		}
-	
-		var draw           = settings.iDraw;
-		var col            = settings.aoColumns[colIdx];
-		var rowData        = row._aData;
-		var defaultContent = col.sDefaultContent;
-		var cellData       = col.fnGetData( rowData, type, {
-			settings: settings,
-			row:      rowIdx,
-			col:      colIdx
-		} );
-	
-		// Allow for a node being returned for non-display types
-		if (type !== 'display' && cellData && typeof cellData === 'object' && cellData.nodeName) {
-			cellData = cellData.innerHTML;
-		}
-	
-		if ( cellData === undefined ) {
-			if ( settings.iDrawError != draw && defaultContent === null ) {
-				_fnLog( settings, 0, "Requested unknown parameter "+
-					(typeof col.mData=='function' ? '{function}' : "'"+col.mData+"'")+
-					" for row "+rowIdx+", column "+colIdx, 4 );
-				settings.iDrawError = draw;
-			}
-			return defaultContent;
-		}
-	
-		// When the data source is null and a specific data type is requested (i.e.
-		// not the original data), we can use default column data
-		if ( (cellData === rowData || cellData === null) && defaultContent !== null && type !== undefined ) {
-			cellData = defaultContent;
-		}
-		else if ( typeof cellData === 'function' ) {
-			// If the data source is a function, then we run it and use the return,
-			// executing in the scope of the data object (for instances)
-			return cellData.call( rowData );
-		}
-	
-		if ( cellData === null && type === 'display' ) {
-			return '';
-		}
-	
-		if ( type === 'filter' ) {
-			var fomatters = DataTable.ext.type.search;
-	
-			if ( fomatters[ col.sType ] ) {
-				cellData = fomatters[ col.sType ]( cellData );
-			}
-		}
-	
-		return cellData;
-	}
-	
-	
-	/**
-	 * Set the value for a specific cell, into the internal data cache
-	 *  @param {object} settings dataTables settings object
-	 *  @param {int} rowIdx aoData row id
-	 *  @param {int} colIdx Column index
-	 *  @param {*} val Value to set
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnSetCellData( settings, rowIdx, colIdx, val )
-	{
-		var col     = settings.aoColumns[colIdx];
-		var rowData = settings.aoData[rowIdx]._aData;
-	
-		col.fnSetData( rowData, val, {
-			settings: settings,
-			row:      rowIdx,
-			col:      colIdx
-		}  );
-	}
-	
-	/**
-	 * Write a value to a cell
-	 * @param {*} td Cell
-	 * @param {*} val Value
-	 */
-	function _fnWriteCell(td, val)
-	{
-		if (val && typeof val === 'object' && val.nodeName) {
-			$(td)
-				.empty()
-				.append(val);
-		}
-		else {
-			td.innerHTML = val;
-		}
-	}
-	
-	
-	// Private variable that is used to match action syntax in the data property object
-	var __reArray = /\[.*?\]$/;
-	var __reFn = /\(\)$/;
-	
-	/**
-	 * Split string on periods, taking into account escaped periods
-	 * @param  {string} str String to split
-	 * @return {array} Split string
-	 */
-	function _fnSplitObjNotation( str )
-	{
-		var parts = str.match(/(\\.|[^.])+/g) || [''];
-	
-		return parts.map( function ( s ) {
-			return s.replace(/\\\./g, '.');
-		} );
-	}
-	
-	
-	/**
-	 * Return a function that can be used to get data from a source object, taking
-	 * into account the ability to use nested objects as a source
-	 *  @param {string|int|function} mSource The data source for the object
-	 *  @returns {function} Data get function
-	 *  @memberof DataTable#oApi
-	 */
-	var _fnGetObjectDataFn = DataTable.util.get;
-	
-	
-	/**
-	 * Return a function that can be used to set data from a source object, taking
-	 * into account the ability to use nested objects as a source
-	 *  @param {string|int|function} mSource The data source for the object
-	 *  @returns {function} Data set function
-	 *  @memberof DataTable#oApi
-	 */
-	var _fnSetObjectDataFn = DataTable.util.set;
-	
-	
-	/**
-	 * Return an array with the full table data
-	 *  @param {object} oSettings dataTables settings object
-	 *  @returns array {array} aData Master data array
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnGetDataMaster ( settings )
-	{
-		return _pluck( settings.aoData, '_aData' );
-	}
-	
-	
-	/**
-	 * Nuke the table
-	 *  @param {object} oSettings dataTables settings object
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnClearTable( settings )
-	{
-		settings.aoData.length = 0;
-		settings.aiDisplayMaster.length = 0;
-		settings.aiDisplay.length = 0;
-		settings.aIds = {};
-	}
-	
-	
-	/**
-	 * Mark cached data as invalid such that a re-read of the data will occur when
-	 * the cached data is next requested. Also update from the data source object.
-	 *
-	 * @param {object} settings DataTables settings object
-	 * @param {int}    rowIdx   Row index to invalidate
-	 * @param {string} [src]    Source to invalidate from: undefined, 'auto', 'dom'
-	 *     or 'data'
-	 * @param {int}    [colIdx] Column index to invalidate. If undefined the whole
-	 *     row will be invalidated
-	 * @memberof DataTable#oApi
-	 *
-	 * @todo For the modularisation of v1.11 this will need to become a callback, so
-	 *   the sort and filter methods can subscribe to it. That will required
-	 *   initialisation options for sorting, which is why it is not already baked in
-	 */
-	function _fnInvalidate( settings, rowIdx, src, colIdx )
-	{
-		var row = settings.aoData[ rowIdx ];
-		var i, ien;
-	
-		// Remove the cached data for the row
-		row._aSortData = null;
-		row._aFilterData = null;
-		row.displayData = null;
-	
-		// Are we reading last data from DOM or the data object?
-		if ( src === 'dom' || ((! src || src === 'auto') && row.src === 'dom') ) {
-			// Read the data from the DOM
-			row._aData = _fnGetRowElements(
-					settings, row, colIdx, colIdx === undefined ? undefined : row._aData
-				)
-				.data;
-		}
-		else {
-			// Reading from data object, update the DOM
-			var cells = row.anCells;
-			var display = _fnGetRowDisplay(settings, rowIdx);
-	
-			if ( cells ) {
-				if ( colIdx !== undefined ) {
-					_fnWriteCell(cells[colIdx], display[colIdx]);
-				}
-				else {
-					for ( i=0, ien=cells.length ; i<ien ; i++ ) {
-						_fnWriteCell(cells[i], display[i]);
-					}
-				}
-			}
-		}
-	
-		// Column specific invalidation
-		var cols = settings.aoColumns;
-		if ( colIdx !== undefined ) {
-			// Type - the data might have changed
-			cols[ colIdx ].sType = null;
-	
-			// Max length string. Its a fairly cheep recalculation, so not worth
-			// something more complicated
-			cols[ colIdx ].maxLenString = null;
-		}
-		else {
-			for ( i=0, ien=cols.length ; i<ien ; i++ ) {
-				cols[i].sType = null;
-				cols[i].maxLenString = null;
-			}
-	
-			// Update DataTables special `DT_*` attributes for the row
-			_fnRowAttributes( settings, row );
-		}
-	}
-	
-	
-	/**
-	 * Build a data source object from an HTML row, reading the contents of the
-	 * cells that are in the row.
-	 *
-	 * @param {object} settings DataTables settings object
-	 * @param {node|object} TR element from which to read data or existing row
-	 *   object from which to re-read the data from the cells
-	 * @param {int} [colIdx] Optional column index
-	 * @param {array|object} [d] Data source object. If `colIdx` is given then this
-	 *   parameter should also be given and will be used to write the data into.
-	 *   Only the column in question will be written
-	 * @returns {object} Object with two parameters: `data` the data read, in
-	 *   document order, and `cells` and array of nodes (they can be useful to the
-	 *   caller, so rather than needing a second traversal to get them, just return
-	 *   them from here).
-	 * @memberof DataTable#oApi
-	 */
-	function _fnGetRowElements( settings, row, colIdx, d )
-	{
-		var
-			tds = [],
-			td = row.firstChild,
-			name, col, i=0, contents,
-			columns = settings.aoColumns,
-			objectRead = settings._rowReadObject;
-	
-		// Allow the data object to be passed in, or construct
-		d = d !== undefined ?
-			d :
-			objectRead ?
-				{} :
-				[];
-	
-		var attr = function ( str, td  ) {
-			if ( typeof str === 'string' ) {
-				var idx = str.indexOf('@');
-	
-				if ( idx !== -1 ) {
-					var attr = str.substring( idx+1 );
-					var setter = _fnSetObjectDataFn( str );
-					setter( d, td.getAttribute( attr ) );
-				}
-			}
-		};
-	
-		// Read data from a cell and store into the data object
-		var cellProcess = function ( cell ) {
-			if ( colIdx === undefined || colIdx === i ) {
-				col = columns[i];
-				contents = (cell.innerHTML).trim();
-	
-				if ( col && col._bAttrSrc ) {
-					var setter = _fnSetObjectDataFn( col.mData._ );
-					setter( d, contents );
-	
-					attr( col.mData.sort, cell );
-					attr( col.mData.type, cell );
-					attr( col.mData.filter, cell );
-				}
-				else {
-					// Depending on the `data` option for the columns the data can
-					// be read to either an object or an array.
-					if ( objectRead ) {
-						if ( ! col._setter ) {
-							// Cache the setter function
-							col._setter = _fnSetObjectDataFn( col.mData );
-						}
-						col._setter( d, contents );
-					}
-					else {
-						d[i] = contents;
-					}
-				}
-			}
-	
-			i++;
-		};
-	
-		if ( td ) {
-			// `tr` element was passed in
-			while ( td ) {
-				name = td.nodeName.toUpperCase();
-	
-				if ( name == "TD" || name == "TH" ) {
-					cellProcess( td );
-					tds.push( td );
-				}
-	
-				td = td.nextSibling;
-			}
-		}
-		else {
-			// Existing row object passed in
-			tds = row.anCells;
-	
-			for ( var j=0, jen=tds.length ; j<jen ; j++ ) {
-				cellProcess( tds[j] );
-			}
-		}
-	
-		// Read the ID from the DOM if present
-		var rowNode = row.firstChild ? row : row.nTr;
-	
-		if ( rowNode ) {
-			var id = rowNode.getAttribute( 'id' );
-	
-			if ( id ) {
-				_fnSetObjectDataFn( settings.rowId )( d, id );
-			}
-		}
-	
-		return {
-			data: d,
-			cells: tds
-		};
-	}
-	
-	/**
-	 * Render and cache a row's display data for the columns, if required
-	 * @returns 
-	 */
-	function _fnGetRowDisplay (settings, rowIdx) {
-		var rowModal = settings.aoData[rowIdx];
-		var columns = settings.aoColumns;
-	
-		if (! rowModal.displayData) {
-			// Need to render and cache
-			rowModal.displayData = [];
-		
-			for ( var colIdx=0, len=columns.length ; colIdx<len ; colIdx++ ) {
-				rowModal.displayData.push(
-					_fnGetCellData( settings, rowIdx, colIdx, 'display' )
-				);
-			}
-		}
-	
-		return rowModal.displayData;
-	}
-	
-	/**
-	 * Create a new TR element (and it's TD children) for a row
-	 *  @param {object} oSettings dataTables settings object
-	 *  @param {int} iRow Row to consider
-	 *  @param {node} [nTrIn] TR element to add to the table - optional. If not given,
-	 *    DataTables will create a row automatically
-	 *  @param {array} [anTds] Array of TD|TH elements for the row - must be given
-	 *    if nTr is.
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnCreateTr ( oSettings, iRow, nTrIn, anTds )
-	{
-		var
-			row = oSettings.aoData[iRow],
-			rowData = row._aData,
-			cells = [],
-			nTr, nTd, oCol,
-			i, iLen, create,
-			trClass = oSettings.oClasses.tbody.row;
-	
-		if ( row.nTr === null )
-		{
-			nTr = nTrIn || document.createElement('tr');
-	
-			row.nTr = nTr;
-			row.anCells = cells;
-	
-			_addClass(nTr, trClass);
-	
-			/* Use a private property on the node to allow reserve mapping from the node
-			 * to the aoData array for fast look up
-			 */
-			nTr._DT_RowIndex = iRow;
-	
-			/* Special parameters can be given by the data source to be used on the row */
-			_fnRowAttributes( oSettings, row );
-	
-			/* Process each column */
-			for ( i=0, iLen=oSettings.aoColumns.length ; i<iLen ; i++ )
-			{
-				oCol = oSettings.aoColumns[i];
-				create = nTrIn && anTds[i] ? false : true;
-	
-				nTd = create ? document.createElement( oCol.sCellType ) : anTds[i];
-	
-				if (! nTd) {
-					_fnLog( oSettings, 0, 'Incorrect column count', 18 );
-				}
-	
-				nTd._DT_CellIndex = {
-					row: iRow,
-					column: i
-				};
-				
-				cells.push( nTd );
-				
-				var display = _fnGetRowDisplay(oSettings, iRow);
-	
-				// Need to create the HTML if new, or if a rendering function is defined
-				if (
-					create ||
-					(
-						(oCol.mRender || oCol.mData !== i) &&
-						(!$.isPlainObject(oCol.mData) || oCol.mData._ !== i+'.display')
-					)
-				) {
-					_fnWriteCell(nTd, display[i]);
-				}
-	
-				// column class
-				_addClass(nTd, oCol.sClass);
-	
-				// Visibility - add or remove as required
-				if ( oCol.bVisible && create )
-				{
-					nTr.appendChild( nTd );
-				}
-				else if ( ! oCol.bVisible && ! create )
-				{
-					nTd.parentNode.removeChild( nTd );
-				}
-	
-				if ( oCol.fnCreatedCell )
-				{
-					oCol.fnCreatedCell.call( oSettings.oInstance,
-						nTd, _fnGetCellData( oSettings, iRow, i ), rowData, iRow, i
-					);
-				}
-			}
-	
-			_fnCallbackFire( oSettings, 'aoRowCreatedCallback', 'row-created', [nTr, rowData, iRow, cells] );
-		}
-		else {
-			_addClass(row.nTr, trClass);
-		}
-	}
-	
-	
-	/**
-	 * Add attributes to a row based on the special `DT_*` parameters in a data
-	 * source object.
-	 *  @param {object} settings DataTables settings object
-	 *  @param {object} DataTables row object for the row to be modified
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnRowAttributes( settings, row )
-	{
-		var tr = row.nTr;
-		var data = row._aData;
-	
-		if ( tr ) {
-			var id = settings.rowIdFn( data );
-	
-			if ( id ) {
-				tr.id = id;
-			}
-	
-			if ( data.DT_RowClass ) {
-				// Remove any classes added by DT_RowClass before
-				var a = data.DT_RowClass.split(' ');
-				row.__rowc = row.__rowc ?
-					_unique( row.__rowc.concat( a ) ) :
-					a;
-	
-				$(tr)
-					.removeClass( row.__rowc.join(' ') )
-					.addClass( data.DT_RowClass );
-			}
-	
-			if ( data.DT_RowAttr ) {
-				$(tr).attr( data.DT_RowAttr );
-			}
-	
-			if ( data.DT_RowData ) {
-				$(tr).data( data.DT_RowData );
-			}
-		}
-	}
-	
-	
-	/**
-	 * Create the HTML header for the table
-	 *  @param {object} oSettings dataTables settings object
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnBuildHead( settings, side )
-	{
-		var classes = settings.oClasses;
-		var columns = settings.aoColumns;
-		var i, ien, row;
-		var target = side === 'header'
-			? settings.nTHead
-			: settings.nTFoot;
-		var titleProp = side === 'header' ? 'sTitle' : side;
-	
-		// Footer might be defined
-		if (! target) {
-			return;
-		}
-	
-		// If no cells yet and we have content for them, then create
-		if (side === 'header' || _pluck(settings.aoColumns, titleProp).join('')) {
-			row = $('tr', target);
-	
-			// Add a row if needed
-			if (! row.length) {
-				row = $('<tr/>').appendTo(target)
-			}
-	
-			// Add the number of cells needed to make up to the number of columns
-			if (row.length === 1) {
-				var cells = $('td, th', row);
-	
-				for ( i=cells.length, ien=columns.length ; i<ien ; i++ ) {
-					$('<th/>')
-						.html( columns[i][titleProp] || '' )
-						.appendTo( row );
-				}
-			}
-		}
-	
-		var detected = _fnDetectHeader( settings, target, true );
-	
-		if (side === 'header') {
-			settings.aoHeader = detected;
-		}
-		else {
-			settings.aoFooter = detected;
-		}
-	
-		// Every cell needs to be passed through the renderer
-		$(target).children('tr').children('th, td')
-			.each( function () {
-				_fnRenderer( settings, side )(
-					settings, $(this), classes
-				);
-			} );
-	}
-	
-	/**
-	 * Build a layout structure for a header or footer
-	 *
-	 * @param {*} settings DataTables settings
-	 * @param {*} source Source layout array
-	 * @param {*} incColumns What columns should be included
-	 * @returns Layout array
-	 */
-	function _fnHeaderLayout( settings, source, incColumns )
-	{
-		var row, column, cell;
-		var local = [];
-		var structure = [];
-		var columns = settings.aoColumns;
-		var columnCount = columns.length;
-		var rowspan, colspan;
-	
-		if ( ! source ) {
-			return;
-		}
-	
-		// Default is to work on only visible columns
-		if ( ! incColumns ) {
-			incColumns = _range(columnCount)
-				.filter(function (idx) {
-					return columns[idx].bVisible;
-				});
-		}
-	
-		// Make a copy of the master layout array, but with only the columns we want
-		for ( row=0 ; row<source.length ; row++ ) {
-			// Remove any columns we haven't selected
-			local[row] = source[row].slice().filter(function (cell, i) {
-				return incColumns.includes(i);
-			});
-	
-			// Prep the structure array - it needs an element for each row
-			structure.push( [] );
-		}
-	
-		for ( row=0 ; row<local.length ; row++ ) {
-			for ( column=0 ; column<local[row].length ; column++ ) {
-				rowspan = 1;
-				colspan = 1;
-	
-				// Check to see if there is already a cell (row/colspan) covering our target
-				// insert point. If there is, then there is nothing to do.
-				if ( structure[row][column] === undefined ) {
-					cell = local[row][column].cell;
-	
-					// Expand for rowspan
-					while (
-						local[row+rowspan] !== undefined &&
-						local[row][column].cell == local[row+rowspan][column].cell
-					) {
-						structure[row+rowspan][column] = null;
-						rowspan++;
-					}
-	
-					// And for colspan
-					while (
-						local[row][column+colspan] !== undefined &&
-						local[row][column].cell == local[row][column+colspan].cell
-					) {
-						// Which also needs to go over rows
-						for ( var k=0 ; k<rowspan ; k++ ) {
-							structure[row+k][column+colspan] = null;
-						}
-	
-						colspan++;
-					}
-	
-					var titleSpan = $('span.dt-column-title', cell);
-	
-					structure[row][column] = {
-						cell: cell,
-						colspan: colspan,
-						rowspan: rowspan,
-						title: titleSpan.length
-							? titleSpan.html()
-							: $(cell).html()
-					};
-				}
-			}
-		}
-	
-		return structure;
-	}
-	
-	
-	/**
-	 * Draw the header (or footer) element based on the column visibility states.
-	 *
-	 *  @param object oSettings dataTables settings object
-	 *  @param array aoSource Layout array from _fnDetectHeader
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnDrawHead( settings, source )
-	{
-		var layout = _fnHeaderLayout(settings, source);
-		var tr, n;
-	
-		for ( var row=0 ; row<source.length ; row++ ) {
-			tr = source[row].row;
-	
-			// All cells are going to be replaced, so empty out the row
-			// Can't use $().empty() as that kills event handlers
-			if (tr) {
-				while( (n = tr.firstChild) ) {
-					tr.removeChild( n );
-				}
-			}
-	
-			for ( var column=0 ; column<layout[row].length ; column++ ) {
-				var point = layout[row][column];
-	
-				if (point) {
-					$(point.cell)
-						.appendTo(tr)
-						.attr('rowspan', point.rowspan)
-						.attr('colspan', point.colspan);
-				}
-			}
-		}
-	}
-	
-	
-	/**
-	 * Insert the required TR nodes into the table for display
-	 *  @param {object} oSettings dataTables settings object
-	 *  @param ajaxComplete true after ajax call to complete rendering
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnDraw( oSettings, ajaxComplete )
-	{
-		// Allow for state saving and a custom start position
-		_fnStart( oSettings );
-	
-		/* Provide a pre-callback function which can be used to cancel the draw is false is returned */
-		var aPreDraw = _fnCallbackFire( oSettings, 'aoPreDrawCallback', 'preDraw', [oSettings] );
-		if ( aPreDraw.indexOf(false) !== -1 )
-		{
-			_fnProcessingDisplay( oSettings, false );
-			return;
-		}
-	
-		var anRows = [];
-		var iRowCount = 0;
-		var bServerSide = _fnDataSource( oSettings ) == 'ssp';
-		var aiDisplay = oSettings.aiDisplay;
-		var iDisplayStart = oSettings._iDisplayStart;
-		var iDisplayEnd = oSettings.fnDisplayEnd();
-		var columns = oSettings.aoColumns;
-		var body = $(oSettings.nTBody);
-	
-		oSettings.bDrawing = true;
-	
-		/* Server-side processing draw intercept */
-		if ( oSettings.deferLoading )
-		{
-			oSettings.deferLoading = false;
-			oSettings.iDraw++;
-			_fnProcessingDisplay( oSettings, false );
-		}
-		else if ( !bServerSide )
-		{
-			oSettings.iDraw++;
-		}
-		else if ( !oSettings.bDestroying && !ajaxComplete)
-		{
-			// Show loading message for server-side processing
-			if (oSettings.iDraw === 0) {
-				body.empty().append(_emptyRow(oSettings));
-			}
-	
-			_fnAjaxUpdate( oSettings );
-			return;
-		}
-	
-		if ( aiDisplay.length !== 0 )
-		{
-			var iStart = bServerSide ? 0 : iDisplayStart;
-			var iEnd = bServerSide ? oSettings.aoData.length : iDisplayEnd;
-	
-			for ( var j=iStart ; j<iEnd ; j++ )
-			{
-				var iDataIndex = aiDisplay[j];
-				var aoData = oSettings.aoData[ iDataIndex ];
-				if ( aoData.nTr === null )
-				{
-					_fnCreateTr( oSettings, iDataIndex );
-				}
-	
-				var nRow = aoData.nTr;
-	
-				// Add various classes as needed
-				for (var i=0 ; i<columns.length ; i++) {
-					var col = columns[i];
-					var td = aoData.anCells[i];
-	
-					_addClass(td, _ext.type.className[col.sType]); // auto class
-					_addClass(td, oSettings.oClasses.tbody.cell); // all cells
-				}
-	
-				// Row callback functions - might want to manipulate the row
-				// iRowCount and j are not currently documented. Are they at all
-				// useful?
-				_fnCallbackFire( oSettings, 'aoRowCallback', null,
-					[nRow, aoData._aData, iRowCount, j, iDataIndex] );
-	
-				anRows.push( nRow );
-				iRowCount++;
-			}
-		}
-		else
-		{
-			anRows[ 0 ] = _emptyRow(oSettings);
-		}
-	
-		/* Header and footer callbacks */
-		_fnCallbackFire( oSettings, 'aoHeaderCallback', 'header', [ $(oSettings.nTHead).children('tr')[0],
-			_fnGetDataMaster( oSettings ), iDisplayStart, iDisplayEnd, aiDisplay ] );
-	
-		_fnCallbackFire( oSettings, 'aoFooterCallback', 'footer', [ $(oSettings.nTFoot).children('tr')[0],
-			_fnGetDataMaster( oSettings ), iDisplayStart, iDisplayEnd, aiDisplay ] );
-	
-		// replaceChildren is faster, but only became widespread in 2020,
-		// so a fall back in jQuery is provided for older browsers.
-		if (body[0].replaceChildren) {
-			body[0].replaceChildren.apply(body[0], anRows);
-		}
-		else {
-			body.children().detach();
-			body.append( $(anRows) );
-		}
-	
-		// Empty table needs a specific class
-		$(oSettings.nTableWrapper).toggleClass('dt-empty-footer', $('tr', oSettings.nTFoot).length === 0);
-	
-		/* Call all required callback functions for the end of a draw */
-		_fnCallbackFire( oSettings, 'aoDrawCallback', 'draw', [oSettings], true );
-	
-		/* Draw is complete, sorting and filtering must be as well */
-		oSettings.bSorted = false;
-		oSettings.bFiltered = false;
-		oSettings.bDrawing = false;
-	}
-	
-	
-	/**
-	 * Redraw the table - taking account of the various features which are enabled
-	 *  @param {object} oSettings dataTables settings object
-	 *  @param {boolean} [holdPosition] Keep the current paging position. By default
-	 *    the paging is reset to the first page
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnReDraw( settings, holdPosition, recompute )
-	{
-		var
-			features = settings.oFeatures,
-			sort     = features.bSort,
-			filter   = features.bFilter;
-	
-		if (recompute === undefined || recompute === true) {
-			// Resolve any column types that are unknown due to addition or invalidation
-			_fnColumnTypes( settings );
-	
-			if ( sort ) {
-				_fnSort( settings );
-			}
-	
-			if ( filter ) {
-				_fnFilterComplete( settings, settings.oPreviousSearch );
-			}
-			else {
-				// No filtering, so we want to just use the display master
-				settings.aiDisplay = settings.aiDisplayMaster.slice();
-			}
-		}
-	
-		if ( holdPosition !== true ) {
-			settings._iDisplayStart = 0;
-		}
-	
-		// Let any modules know about the draw hold position state (used by
-		// scrolling internally)
-		settings._drawHold = holdPosition;
-	
-		_fnDraw( settings );
-	
-		settings._drawHold = false;
-	}
-	
-	
-	/*
-	 * Table is empty - create a row with an empty message in it
-	 */
-	function _emptyRow ( settings ) {
-		var oLang = settings.oLanguage;
-		var zero = oLang.sZeroRecords;
-		var dataSrc = _fnDataSource( settings );
-	
-		if (
-			(settings.iDraw < 1 && dataSrc === 'ssp') ||
-			(settings.iDraw <= 1 && dataSrc === 'ajax')
-		) {
-			zero = oLang.sLoadingRecords;
-		}
-		else if ( oLang.sEmptyTable && settings.fnRecordsTotal() === 0 )
-		{
-			zero = oLang.sEmptyTable;
-		}
-	
-		return $( '<tr/>' )
-			.append( $('<td />', {
-				'colSpan': _fnVisbleColumns( settings ),
-				'class':   settings.oClasses.empty.row
-			} ).html( zero ) )[0];
-	}
-	
-	
-	/**
-	 * Expand the layout items into an object for the rendering function
-	 */
-	function _layoutItems (row, align, items) {
-		if ( Array.isArray(items)) {
-			for (var i=0 ; i<items.length ; i++) {
-				_layoutItems(row, align, items[i]);
-			}
-	
-			return;
-		}
-	
-		var rowCell = row[align];
-	
-		// If it is an object, then there can be multiple features contained in it
-		if ( $.isPlainObject( items ) ) {
-			// A feature plugin cannot be named "features" due to this check
-			if (items.features) {
-				if (items.rowId) {
-					row.id = items.rowId;
-				}
-				if (items.rowClass) {
-					row.className = items.rowClass;
-				}
-	
-				rowCell.id = items.id;
-				rowCell.className = items.className;
-	
-				_layoutItems(row, align, items.features);
-			}
-			else {
-				Object.keys(items).map(function (key) {
-					rowCell.contents.push( {
-						feature: key,
-						opts: items[key]
-					});
-				});
-			}
-		}
-		else {
-			rowCell.contents.push(items);
-		}
-	}
-	
-	/**
-	 * Find, or create a layout row
-	 */
-	function _layoutGetRow(rows, rowNum, align) {
-		var row;
-	
-		// Find existing rows
-		for (var i=0; i<rows.length; i++) {
-			row = rows[i];
-	
-			if (row.rowNum === rowNum) {
-				// full is on its own, but start and end share a row
-				if (
-					(align === 'full' && row.full) ||
-					((align === 'start' || align === 'end') && (row.start || row.end))
-				) {
-					if (! row[align]) {
-						row[align] = {
-							contents: []
-						};
-					}
-	
-					return row;
-				}
-			}
-		}
-	
-		// If we get this far, then there was no match, create a new row
-		row = {
-			rowNum: rowNum	
-		};
-	
-		row[align] = {
-			contents: []
-		};
-	
-		rows.push(row);
-	
-		return row;
-	}
-	
-	/**
-	 * Convert a `layout` object given by a user to the object structure needed
-	 * for the renderer. This is done twice, once for above and once for below
-	 * the table. Ordering must also be considered.
-	 *
-	 * @param {*} settings DataTables settings object
-	 * @param {*} layout Layout object to convert
-	 * @param {string} side `top` or `bottom`
-	 * @returns Converted array structure - one item for each row.
-	 */
-	function _layoutArray ( settings, layout, side ) {
-		var rows = [];
-		
-		// Split out into an array
-		$.each( layout, function ( pos, items ) {
-			if (items === null) {
-				return;
-			}
-	
-			var parts = pos.match(/^([a-z]+)([0-9]*)([A-Za-z]*)$/);
-			var rowNum = parts[2]
-				? parts[2] * 1
-				: 0;
-			var align = parts[3]
-				? parts[3].toLowerCase()
-				: 'full';
-	
-			// Filter out the side we aren't interested in
-			if (parts[1] !== side) {
-				return;
-			}
-	
-			// Get or create the row we should attach to
-			var row = _layoutGetRow(rows, rowNum, align);
-	
-			_layoutItems(row, align, items);
-		});
-	
-		// Order by item identifier
-		rows.sort( function ( a, b ) {
-			var order1 = a.rowNum;
-			var order2 = b.rowNum;
-	
-			// If both in the same row, then the row with `full` comes first
-			if (order1 === order2) {
-				var ret = a.full && ! b.full ? -1 : 1;
-	
-				return side === 'bottom'
-					? ret * -1
-					: ret;
-			}
-	
-			return order2 - order1;
-		} );
-	
-		// Invert for below the table
-		if ( side === 'bottom' ) {
-			rows.reverse();
-		}
-	
-		for (var row = 0; row<rows.length; row++) {
-			delete rows[row].rowNum;
-	
-			_layoutResolve(settings, rows[row]);
-		}
-	
-		return rows;
-	}
-	
-	
-	/**
-	 * Convert the contents of a row's layout object to nodes that can be inserted
-	 * into the document by a renderer. Execute functions, look up plug-ins, etc.
-	 *
-	 * @param {*} settings DataTables settings object
-	 * @param {*} row Layout object for this row
-	 */
-	function _layoutResolve( settings, row ) {
-		var getFeature = function (feature, opts) {
-			if ( ! _ext.features[ feature ] ) {
-				_fnLog( settings, 0, 'Unknown feature: '+ feature );
-			}
-	
-			return _ext.features[ feature ].apply( this, [settings, opts] );
-		};
-	
-		var resolve = function ( item ) {
-			if (! row[ item ]) {
-				return;
-			}
-	
-			var line = row[ item ].contents;
-	
-			for ( var i=0, ien=line.length ; i<ien ; i++ ) {
-				if ( ! line[i] ) {
-					continue;
-				}
-				else if ( typeof line[i] === 'string' ) {
-					line[i] = getFeature( line[i], null );
-				}
-				else if ( $.isPlainObject(line[i]) ) {
-					// If it's an object, it just has feature and opts properties from
-					// the transform in _layoutArray
-					line[i] = getFeature(line[i].feature, line[i].opts);
-				}
-				else if ( typeof line[i].node === 'function' ) {
-					line[i] = line[i].node( settings );
-				}
-				else if ( typeof line[i] === 'function' ) {
-					var inst = line[i]( settings );
-	
-					line[i] = typeof inst.node === 'function' ?
-						inst.node() :
-						inst;
-				}
-			}
-		};
-	
-		resolve('start');
-		resolve('end');
-		resolve('full');
-	}
-	
-	
-	/**
-	 * Add the options to the page HTML for the table
-	 *  @param {object} settings DataTables settings object
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnAddOptionsHtml ( settings )
-	{
-		var classes = settings.oClasses;
-		var table = $(settings.nTable);
-	
-		// Wrapper div around everything DataTables controls
-		var insert = $('<div/>')
-			.attr({
-				id:      settings.sTableId+'_wrapper',
-				'class': classes.container
-			})
-			.insertBefore(table);
-	
-		settings.nTableWrapper = insert[0];
-	
-		if (settings.sDom) {
-			// Legacy
-			_fnLayoutDom(settings, settings.sDom, insert);
-		}
-		else {
-			var top = _layoutArray( settings, settings.layout, 'top' );
-			var bottom = _layoutArray( settings, settings.layout, 'bottom' );
-			var renderer = _fnRenderer( settings, 'layout' );
-		
-			// Everything above - the renderer will actually insert the contents into the document
-			top.forEach(function (item) {
-				renderer( settings, insert, item );
-			});
-	
-			// The table - always the center of attention
-			renderer( settings, insert, {
-				full: {
-					table: true,
-					contents: [ _fnFeatureHtmlTable(settings) ]
-				}
-			} );
-	
-			// Everything below
-			bottom.forEach(function (item) {
-				renderer( settings, insert, item );
-			});
-		}
-	
-		// Processing floats on top, so it isn't an inserted feature
-		_processingHtml( settings );
-	}
-	
-	/**
-	 * Draw the table with the legacy DOM property
-	 * @param {*} settings DT settings object
-	 * @param {*} dom DOM string
-	 * @param {*} insert Insert point
-	 */
-	function _fnLayoutDom( settings, dom, insert )
-	{
-		var parts = dom.match(/(".*?")|('.*?')|./g);
-		var featureNode, option, newNode, next, attr;
-	
-		for ( var i=0 ; i<parts.length ; i++ ) {
-			featureNode = null;
-			option = parts[i];
-	
-			if ( option == '<' ) {
-				// New container div
-				newNode = $('<div/>');
-	
-				// Check to see if we should append an id and/or a class name to the container
-				next = parts[i+1];
-	
-				if ( next[0] == "'" || next[0] == '"' ) {
-					attr = next.replace(/['"]/g, '');
-	
-					var id = '', className;
-	
-					/* The attribute can be in the format of "#id.class", "#id" or "class" This logic
-					 * breaks the string into parts and applies them as needed
-					 */
-					if ( attr.indexOf('.') != -1 ) {
-						var split = attr.split('.');
-	
-						id = split[0];
-						className = split[1];
-					}
-					else if ( attr[0] == "#" ) {
-						id = attr;
-					}
-					else {
-						className = attr;
-					}
-	
-					newNode
-						.attr('id', id.substring(1))
-						.addClass(className);
-	
-					i++; // Move along the position array
-				}
-	
-				insert.append( newNode );
-				insert = newNode;
-			}
-			else if ( option == '>' ) {
-				// End container div
-				insert = insert.parent();
-			}
-			else if ( option == 't' ) {
-				// Table
-				featureNode = _fnFeatureHtmlTable( settings );
-			}
-			else
-			{
-				DataTable.ext.feature.forEach(function(feature) {
-					if ( option == feature.cFeature ) {
-						featureNode = feature.fnInit( settings );
-					}
-				});
-			}
-	
-			// Add to the display
-			if ( featureNode ) {
-				insert.append( featureNode );
-			}
-		}
-	}
-	
-	
-	/**
-	 * Use the DOM source to create up an array of header cells. The idea here is to
-	 * create a layout grid (array) of rows x columns, which contains a reference
-	 * to the cell that that point in the grid (regardless of col/rowspan), such that
-	 * any column / row could be removed and the new grid constructed
-	 *  @param {node} thead The header/footer element for the table
-	 *  @returns {array} Calculated layout array
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnDetectHeader ( settings, thead, write )
-	{
-		var columns = settings.aoColumns;
-		var rows = $(thead).children('tr');
-		var row, cell;
-		var i, k, l, iLen, shifted, column, colspan, rowspan;
-		var isHeader = thead && thead.nodeName.toLowerCase() === 'thead';
-		var layout = [];
-		var unique;
-		var shift = function ( a, i, j ) {
-			var k = a[i];
-			while ( k[j] ) {
-				j++;
-			}
-			return j;
-		};
-	
-		// We know how many rows there are in the layout - so prep it
-		for ( i=0, iLen=rows.length ; i<iLen ; i++ ) {
-			layout.push( [] );
-		}
-	
-		for ( i=0, iLen=rows.length ; i<iLen ; i++ ) {
-			row = rows[i];
-			column = 0;
-	
-			// For every cell in the row..
-			cell = row.firstChild;
-			while ( cell ) {
-				if (
-					cell.nodeName.toUpperCase() == 'TD' ||
-					cell.nodeName.toUpperCase() == 'TH'
-				) {
-					var cols = [];
-	
-					// Get the col and rowspan attributes from the DOM and sanitise them
-					colspan = cell.getAttribute('colspan') * 1;
-					rowspan = cell.getAttribute('rowspan') * 1;
-					colspan = (!colspan || colspan===0 || colspan===1) ? 1 : colspan;
-					rowspan = (!rowspan || rowspan===0 || rowspan===1) ? 1 : rowspan;
-	
-					// There might be colspan cells already in this row, so shift our target
-					// accordingly
-					shifted = shift( layout, i, column );
-	
-					// Cache calculation for unique columns
-					unique = colspan === 1 ?
-						true :
-						false;
-					
-					// Perform header setup
-					if ( write ) {
-						if (unique) {
-							// Allow column options to be set from HTML attributes
-							_fnColumnOptions( settings, shifted, $(cell).data() );
-							
-							// Get the width for the column. This can be defined from the
-							// width attribute, style attribute or `columns.width` option
-							var columnDef = columns[shifted];
-							var width = cell.getAttribute('width') || null;
-							var t = cell.style.width.match(/width:\s*(\d+[pxem%]+)/);
-							if ( t ) {
-								width = t[1];
-							}
-	
-							columnDef.sWidthOrig = columnDef.sWidth || width;
-	
-							if (isHeader) {
-								// Column title handling - can be user set, or read from the DOM
-								// This happens before the render, so the original is still in place
-								if ( columnDef.sTitle !== null && ! columnDef.autoTitle ) {
-									cell.innerHTML = columnDef.sTitle;
-								}
-	
-								if (! columnDef.sTitle && unique) {
-									columnDef.sTitle = _stripHtml(cell.innerHTML);
-									columnDef.autoTitle = true;
-								}
-							}
-							else {
-								// Footer specific operations
-								if (columnDef.footer) {
-									cell.innerHTML = columnDef.footer;
-								}
-							}
-	
-							// Fall back to the aria-label attribute on the table header if no ariaTitle is
-							// provided.
-							if (! columnDef.ariaTitle) {
-								columnDef.ariaTitle = $(cell).attr("aria-label") || columnDef.sTitle;
-							}
-	
-							// Column specific class names
-							if ( columnDef.className ) {
-								$(cell).addClass( columnDef.className );
-							}
-						}
-	
-						// Wrap the column title so we can write to it in future
-						if ( $('span.dt-column-title', cell).length === 0) {
-							$('<span>')
-								.addClass('dt-column-title')
-								.append(cell.childNodes)
-								.appendTo(cell);
-						}
-	
-						if ( isHeader && $('span.dt-column-order', cell).length === 0) {
-							$('<span>')
-								.addClass('dt-column-order')
-								.appendTo(cell);
-						}
-					}
-	
-					// If there is col / rowspan, copy the information into the layout grid
-					for ( l=0 ; l<colspan ; l++ ) {
-						for ( k=0 ; k<rowspan ; k++ ) {
-							layout[i+k][shifted+l] = {
-								cell: cell,
-								unique: unique
-							};
-	
-							layout[i+k].row = row;
-						}
-	
-						cols.push( shifted+l );
-					}
-	
-					// Assign an attribute so spanning cells can still be identified
-					// as belonging to a column
-					cell.setAttribute('data-dt-column', _unique(cols).join(','));
-				}
-	
-				cell = cell.nextSibling;
-			}
-		}
-	
-		return layout;
-	}
-	
-	/**
-	 * Set the start position for draw
-	 *  @param {object} oSettings dataTables settings object
-	 */
-	function _fnStart( oSettings )
-	{
-		var bServerSide = _fnDataSource( oSettings ) == 'ssp';
-		var iInitDisplayStart = oSettings.iInitDisplayStart;
-	
-		// Check and see if we have an initial draw position from state saving
-		if ( iInitDisplayStart !== undefined && iInitDisplayStart !== -1 )
-		{
-			oSettings._iDisplayStart = bServerSide ?
-				iInitDisplayStart :
-				iInitDisplayStart >= oSettings.fnRecordsDisplay() ?
-					0 :
-					iInitDisplayStart;
-	
-			oSettings.iInitDisplayStart = -1;
-		}
-	}
-	
-	/**
-	 * Create an Ajax call based on the table's settings, taking into account that
-	 * parameters can have multiple forms, and backwards compatibility.
-	 *
-	 * @param {object} oSettings dataTables settings object
-	 * @param {array} data Data to send to the server, required by
-	 *     DataTables - may be augmented by developer callbacks
-	 * @param {function} fn Callback function to run when data is obtained
-	 */
-	function _fnBuildAjax( oSettings, data, fn )
-	{
-		var ajaxData;
-		var ajax = oSettings.ajax;
-		var instance = oSettings.oInstance;
-		var callback = function ( json ) {
-			var status = oSettings.jqXHR
-				? oSettings.jqXHR.status
-				: null;
-	
-			if ( json === null || (typeof status === 'number' && status == 204 ) ) {
-				json = {};
-				_fnAjaxDataSrc( oSettings, json, [] );
-			}
-	
-			var error = json.error || json.sError;
-			if ( error ) {
-				_fnLog( oSettings, 0, error );
-			}
-	
-			// Microsoft often wrap JSON as a string in another JSON object
-			// Let's handle that automatically
-			if (json.d && typeof json.d === 'string') {
-				try {
-					json = JSON.parse(json.d);
-				}
-				catch (e) {
-					// noop
-				}
-			}
-	
-			oSettings.json = json;
-	
-			_fnCallbackFire( oSettings, null, 'xhr', [oSettings, json, oSettings.jqXHR], true );
-			fn( json );
-		};
-	
-		if ( $.isPlainObject( ajax ) && ajax.data )
-		{
-			ajaxData = ajax.data;
-	
-			var newData = typeof ajaxData === 'function' ?
-				ajaxData( data, oSettings ) :  // fn can manipulate data or return
-				ajaxData;                      // an object object or array to merge
-	
-			// If the function returned something, use that alone
-			data = typeof ajaxData === 'function' && newData ?
-				newData :
-				$.extend( true, data, newData );
-	
-			// Remove the data property as we've resolved it already and don't want
-			// jQuery to do it again (it is restored at the end of the function)
-			delete ajax.data;
-		}
-	
-		var baseAjax = {
-			"url": typeof ajax === 'string' ?
-				ajax :
-				'',
-			"data": data,
-			"success": callback,
-			"dataType": "json",
-			"cache": false,
-			"type": oSettings.sServerMethod,
-			"error": function (xhr, error) {
-				var ret = _fnCallbackFire( oSettings, null, 'xhr', [oSettings, null, oSettings.jqXHR], true );
-	
-				if ( ret.indexOf(true) === -1 ) {
-					if ( error == "parsererror" ) {
-						_fnLog( oSettings, 0, 'Invalid JSON response', 1 );
-					}
-					else if ( xhr.readyState === 4 ) {
-						_fnLog( oSettings, 0, 'Ajax error', 7 );
-					}
-				}
-	
-				_fnProcessingDisplay( oSettings, false );
-			}
-		};
-	
-		// If `ajax` option is an object, extend and override our default base
-		if ( $.isPlainObject( ajax ) ) {
-			$.extend( baseAjax, ajax )
-		}
-	
-		// Store the data submitted for the API
-		oSettings.oAjaxData = data;
-	
-		// Allow plug-ins and external processes to modify the data
-		_fnCallbackFire( oSettings, null, 'preXhr', [oSettings, data, baseAjax], true );
-	
-		if ( typeof ajax === 'function' )
-		{
-			// Is a function - let the caller define what needs to be done
-			oSettings.jqXHR = ajax.call( instance, data, callback, oSettings );
-		}
-		else if (ajax.url === '') {
-			// No url, so don't load any data. Just apply an empty data array
-			// to the object for the callback.
-			var empty = {};
-	
-			DataTable.util.set(ajax.dataSrc)(empty, []);
-			callback(empty);
-		}
-		else {
-			// Object to extend the base settings
-			oSettings.jqXHR = $.ajax( baseAjax );
-		}
-	
-		// Restore for next time around
-		if ( ajaxData ) {
-			ajax.data = ajaxData;
-		}
-	}
-	
-	
-	/**
-	 * Update the table using an Ajax call
-	 *  @param {object} settings dataTables settings object
-	 *  @returns {boolean} Block the table drawing or not
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnAjaxUpdate( settings )
-	{
-		settings.iDraw++;
-		_fnProcessingDisplay( settings, true );
-	
-		_fnBuildAjax(
-			settings,
-			_fnAjaxParameters( settings ),
-			function(json) {
-				_fnAjaxUpdateDraw( settings, json );
-			}
-		);
-	}
-	
-	
-	/**
-	 * Build up the parameters in an object needed for a server-side processing
-	 * request.
-	 *  @param {object} oSettings dataTables settings object
-	 *  @returns {bool} block the table drawing or not
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnAjaxParameters( settings )
-	{
-		var
-			columns = settings.aoColumns,
-			features = settings.oFeatures,
-			preSearch = settings.oPreviousSearch,
-			preColSearch = settings.aoPreSearchCols,
-			colData = function ( idx, prop ) {
-				return typeof columns[idx][prop] === 'function' ?
-					'function' :
-					columns[idx][prop];
-			};
-	
-		return {
-			draw: settings.iDraw,
-			columns: columns.map( function ( column, i ) {
-				return {
-					data: colData(i, 'mData'),
-					name: column.sName,
-					searchable: column.bSearchable,
-					orderable: column.bSortable,
-					search: {
-						value: preColSearch[i].search,
-						regex: preColSearch[i].regex,
-						fixed: Object.keys(column.searchFixed).map( function(name) {
-							return {
-								name: name,
-								term: column.searchFixed[name].toString()
-							}
-						})
-					}
-				};
-			} ),
-			order: _fnSortFlatten( settings ).map( function ( val ) {
-				return {
-					column: val.col,
-					dir: val.dir,
-					name: colData(val.col, 'sName')
-				};
-			} ),
-			start: settings._iDisplayStart,
-			length: features.bPaginate ?
-				settings._iDisplayLength :
-				-1,
-			search: {
-				value: preSearch.search,
-				regex: preSearch.regex,
-				fixed: Object.keys(settings.searchFixed).map( function(name) {
-					return {
-						name: name,
-						term: settings.searchFixed[name].toString()
-					}
-				})
-			}
-		};
-	}
-	
-	
-	/**
-	 * Data the data from the server (nuking the old) and redraw the table
-	 *  @param {object} oSettings dataTables settings object
-	 *  @param {object} json json data return from the server.
-	 *  @param {string} json.sEcho Tracking flag for DataTables to match requests
-	 *  @param {int} json.iTotalRecords Number of records in the data set, not accounting for filtering
-	 *  @param {int} json.iTotalDisplayRecords Number of records in the data set, accounting for filtering
-	 *  @param {array} json.aaData The data to display on this page
-	 *  @param {string} [json.sColumns] Column ordering (sName, comma separated)
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnAjaxUpdateDraw ( settings, json )
-	{
-		var data = _fnAjaxDataSrc(settings, json);
-		var draw = _fnAjaxDataSrcParam(settings, 'draw', json);
-		var recordsTotal = _fnAjaxDataSrcParam(settings, 'recordsTotal', json);
-		var recordsFiltered = _fnAjaxDataSrcParam(settings, 'recordsFiltered', json);
-	
-		if ( draw !== undefined ) {
-			// Protect against out of sequence returns
-			if ( draw*1 < settings.iDraw ) {
-				return;
-			}
-			settings.iDraw = draw * 1;
-		}
-	
-		// No data in returned object, so rather than an array, we show an empty table
-		if ( ! data ) {
-			data = [];
-		}
-	
-		_fnClearTable( settings );
-		settings._iRecordsTotal   = parseInt(recordsTotal, 10);
-		settings._iRecordsDisplay = parseInt(recordsFiltered, 10);
-	
-		for ( var i=0, ien=data.length ; i<ien ; i++ ) {
-			_fnAddData( settings, data[i] );
-		}
-		settings.aiDisplay = settings.aiDisplayMaster.slice();
-	
-		_fnColumnTypes(settings);
-		_fnDraw( settings, true );
-		_fnInitComplete( settings );
-		_fnProcessingDisplay( settings, false );
-	}
-	
-	
-	/**
-	 * Get the data from the JSON data source to use for drawing a table. Using
-	 * `_fnGetObjectDataFn` allows the data to be sourced from a property of the
-	 * source object, or from a processing function.
-	 *  @param {object} settings dataTables settings object
-	 *  @param  {object} json Data source object / array from the server
-	 *  @return {array} Array of data to use
-	 */
-	function _fnAjaxDataSrc ( settings, json, write )
-	{
-		var dataProp = 'data';
-	
-		if ($.isPlainObject( settings.ajax ) && settings.ajax.dataSrc !== undefined) {
-			// Could in inside a `dataSrc` object, or not!
-			var dataSrc = settings.ajax.dataSrc;
-	
-			// string, function and object are valid types
-			if (typeof dataSrc === 'string' || typeof dataSrc === 'function') {
-				dataProp = dataSrc;
-			}
-			else if (dataSrc.data !== undefined) {
-				dataProp = dataSrc.data;
-			}
-		}
-	
-		if ( ! write ) {
-			if ( dataProp === 'data' ) {
-				// If the default, then we still want to support the old style, and safely ignore
-				// it if possible
-				return json.aaData || json[dataProp];
-			}
-	
-			return dataProp !== "" ?
-				_fnGetObjectDataFn( dataProp )( json ) :
-				json;
-		}
-		
-		// set
-		_fnSetObjectDataFn( dataProp )( json, write );
-	}
-	
-	/**
-	 * Very similar to _fnAjaxDataSrc, but for the other SSP properties
-	 * @param {*} settings DataTables settings object
-	 * @param {*} param Target parameter
-	 * @param {*} json JSON data
-	 * @returns Resolved value
-	 */
-	function _fnAjaxDataSrcParam (settings, param, json) {
-		var dataSrc = $.isPlainObject( settings.ajax )
-			? settings.ajax.dataSrc
-			: null;
-	
-		if (dataSrc && dataSrc[param]) {
-			// Get from custom location
-			return _fnGetObjectDataFn( dataSrc[param] )( json );
-		}
-	
-		// else - Default behaviour
-		var old = '';
-	
-		// Legacy support
-		if (param === 'draw') {
-			old = 'sEcho';
-		}
-		else if (param === 'recordsTotal') {
-			old = 'iTotalRecords';
-		}
-		else if (param === 'recordsFiltered') {
-			old = 'iTotalDisplayRecords';
-		}
-	
-		return json[old] !== undefined
-			? json[old]
-			: json[param];
-	}
-	
-	
-	/**
-	 * Filter the table using both the global filter and column based filtering
-	 *  @param {object} settings dataTables settings object
-	 *  @param {object} input search information
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnFilterComplete ( settings, input )
-	{
-		var columnsSearch = settings.aoPreSearchCols;
-	
-		// In server-side processing all filtering is done by the server, so no point hanging around here
-		if ( _fnDataSource( settings ) != 'ssp' )
-		{
-			// Check if any of the rows were invalidated
-			_fnFilterData( settings );
-	
-			// Start from the full data set
-			settings.aiDisplay = settings.aiDisplayMaster.slice();
-	
-			// Global filter first
-			_fnFilter( settings.aiDisplay, settings, input.search, input );
-	
-			$.each(settings.searchFixed, function (name, term) {
-				_fnFilter(settings.aiDisplay, settings, term, {});
-			});
-	
-			// Then individual column filters
-			for ( var i=0 ; i<columnsSearch.length ; i++ )
-			{
-				var col = columnsSearch[i];
-	
-				_fnFilter(
-					settings.aiDisplay,
-					settings,
-					col.search,
-					col,
-					i
-				);
-	
-				$.each(settings.aoColumns[i].searchFixed, function (name, term) {
-					_fnFilter(settings.aiDisplay, settings, term, {}, i);
-				});
-			}
-	
-			// And finally global filtering
-			_fnFilterCustom( settings );
-		}
-	
-		// Tell the draw function we have been filtering
-		settings.bFiltered = true;
-	
-		_fnCallbackFire( settings, null, 'search', [settings] );
-	}
-	
-	
-	/**
-	 * Apply custom filtering functions
-	 * 
-	 * This is legacy now that we have named functions, but it is widely used
-	 * from 1.x, so it is not yet deprecated.
-	 *  @param {object} oSettings dataTables settings object
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnFilterCustom( settings )
-	{
-		var filters = DataTable.ext.search;
-		var displayRows = settings.aiDisplay;
-		var row, rowIdx;
-	
-		for ( var i=0, ien=filters.length ; i<ien ; i++ ) {
-			var rows = [];
-	
-			// Loop over each row and see if it should be included
-			for ( var j=0, jen=displayRows.length ; j<jen ; j++ ) {
-				rowIdx = displayRows[ j ];
-				row = settings.aoData[ rowIdx ];
-	
-				if ( filters[i]( settings, row._aFilterData, rowIdx, row._aData, j ) ) {
-					rows.push( rowIdx );
-				}
-			}
-	
-			// So the array reference doesn't break set the results into the
-			// existing array
-			displayRows.length = 0;
-			displayRows.push.apply(displayRows, rows);
-		}
-	}
-	
-	
-	/**
-	 * Filter the data table based on user input and draw the table
-	 */
-	function _fnFilter( searchRows, settings, input, options, column )
-	{
-		if ( input === '' ) {
-			return;
-		}
-	
-		var i = 0;
-		var matched = [];
-	
-		// Search term can be a function, regex or string - if a string we apply our
-		// smart filtering regex (assuming the options require that)
-		var searchFunc = typeof input === 'function' ? input : null;
-		var rpSearch = input instanceof RegExp
-			? input
-			: searchFunc
-				? null
-				: _fnFilterCreateSearch( input, options );
-	
-		// Then for each row, does the test pass. If not, lop the row from the array
-		for (i=0 ; i<searchRows.length ; i++) {
-			var row = settings.aoData[ searchRows[i] ];
-			var data = column === undefined
-				? row._sFilterRow
-				: row._aFilterData[ column ];
-	
-			if ( (searchFunc && searchFunc(data, row._aData, searchRows[i], column)) || (rpSearch && rpSearch.test(data)) ) {
-				matched.push(searchRows[i]);
-			}
-		}
-	
-		// Mutate the searchRows array
-		searchRows.length = matched.length;
-	
-		for (i=0 ; i<matched.length ; i++) {
-			searchRows[i] = matched[i];
-		}
-	}
-	
-	
-	/**
-	 * Build a regular expression object suitable for searching a table
-	 *  @param {string} sSearch string to search for
-	 *  @param {bool} bRegex treat as a regular expression or not
-	 *  @param {bool} bSmart perform smart filtering or not
-	 *  @param {bool} bCaseInsensitive Do case insensitive matching or not
-	 *  @returns {RegExp} constructed object
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnFilterCreateSearch( search, inOpts )
-	{
-		var not = [];
-		var options = $.extend({}, {
-			boundary: false,
-			caseInsensitive: true,
-			exact: false,
-			regex: false,
-			smart: true
-		}, inOpts);
-	
-		if (typeof search !== 'string') {
-			search = search.toString();
-		}
-	
-		// Remove diacritics if normalize is set up to do so
-		search = _normalize(search);
-	
-		if (options.exact) {
-			return new RegExp(
-				'^'+_fnEscapeRegex(search)+'$',
-				options.caseInsensitive ? 'i' : ''
-			);
-		}
-	
-		search = options.regex ?
-			search :
-			_fnEscapeRegex( search );
-		
-		if ( options.smart ) {
-			/* For smart filtering we want to allow the search to work regardless of
-			 * word order. We also want double quoted text to be preserved, so word
-			 * order is important - a la google. And a negative look around for
-			 * finding rows which don't contain a given string.
-			 * 
-			 * So this is the sort of thing we want to generate:
-			 * 
-			 * ^(?=.*?\bone\b)(?=.*?\btwo three\b)(?=.*?\bfour\b).*$
-			 */
-			var parts = search.match( /!?["\u201C][^"\u201D]+["\u201D]|[^ ]+/g ) || [''];
-			var a = parts.map( function ( word ) {
-				var negative = false;
-				var m;
-	
-				// Determine if it is a "does not include"
-				if ( word.charAt(0) === '!' ) {
-					negative = true;
-					word = word.substring(1);
-				}
-	
-				// Strip the quotes from around matched phrases
-				if ( word.charAt(0) === '"' ) {
-					m = word.match( /^"(.*)"$/ );
-					word = m ? m[1] : word;
-				}
-				else if ( word.charAt(0) === '\u201C' ) {
-					// Smart quote match (iPhone users)
-					m = word.match( /^\u201C(.*)\u201D$/ );
-					word = m ? m[1] : word;
-				}
-	
-				// For our "not" case, we need to modify the string that is
-				// allowed to match at the end of the expression.
-				if (negative) {
-					if (word.length > 1) {
-						not.push('(?!'+word+')');
-					}
-	
-					word = '';
-				}
-	
-				return word.replace(/"/g, '');
-			} );
-	
-			var match = not.length
-				? not.join('')
-				: '';
-	
-			var boundary = options.boundary
-				? '\\b'
-				: '';
-	
-			search = '^(?=.*?'+boundary+a.join( ')(?=.*?'+boundary )+')('+match+'.)*$';
-		}
-	
-		return new RegExp( search, options.caseInsensitive ? 'i' : '' );
-	}
-	
-	
-	/**
-	 * Escape a string such that it can be used in a regular expression
-	 *  @param {string} sVal string to escape
-	 *  @returns {string} escaped string
-	 *  @memberof DataTable#oApi
-	 */
-	var _fnEscapeRegex = DataTable.util.escapeRegex;
-	
-	var __filter_div = $('<div>')[0];
-	var __filter_div_textContent = __filter_div.textContent !== undefined;
-	
-	// Update the filtering data for each row if needed (by invalidation or first run)
-	function _fnFilterData ( settings )
-	{
-		var columns = settings.aoColumns;
-		var data = settings.aoData;
-		var column;
-		var j, jen, filterData, cellData, row;
-		var wasInvalidated = false;
-	
-		for ( var rowIdx=0 ; rowIdx<data.length ; rowIdx++ ) {
-			if (! data[rowIdx]) {
-				continue;
-			}
-	
-			row = data[rowIdx];
-	
-			if ( ! row._aFilterData ) {
-				filterData = [];
-	
-				for ( j=0, jen=columns.length ; j<jen ; j++ ) {
-					column = columns[j];
-	
-					if ( column.bSearchable ) {
-						cellData = _fnGetCellData( settings, rowIdx, j, 'filter' );
-	
-						// Search in DataTables is string based
-						if ( cellData === null ) {
-							cellData = '';
-						}
-	
-						if ( typeof cellData !== 'string' && cellData.toString ) {
-							cellData = cellData.toString();
-						}
-					}
-					else {
-						cellData = '';
-					}
-	
-					// If it looks like there is an HTML entity in the string,
-					// attempt to decode it so sorting works as expected. Note that
-					// we could use a single line of jQuery to do this, but the DOM
-					// method used here is much faster https://jsperf.com/html-decode
-					if ( cellData.indexOf && cellData.indexOf('&') !== -1 ) {
-						__filter_div.innerHTML = cellData;
-						cellData = __filter_div_textContent ?
-							__filter_div.textContent :
-							__filter_div.innerText;
-					}
-	
-					if ( cellData.replace ) {
-						cellData = cellData.replace(/[\r\n\u2028]/g, '');
-					}
-	
-					filterData.push( cellData );
-				}
-	
-				row._aFilterData = filterData;
-				row._sFilterRow = filterData.join('  ');
-				wasInvalidated = true;
-			}
-		}
-	
-		return wasInvalidated;
-	}
-	
-	
-	/**
-	 * Draw the table for the first time, adding all required features
-	 *  @param {object} settings dataTables settings object
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnInitialise ( settings )
-	{
-		var i;
-		var init = settings.oInit;
-		var deferLoading = settings.deferLoading;
-		var dataSrc = _fnDataSource( settings );
-	
-		// Ensure that the table data is fully initialised
-		if ( ! settings.bInitialised ) {
-			setTimeout( function(){ _fnInitialise( settings ); }, 200 );
-			return;
-		}
-	
-		// Build the header / footer for the table
-		_fnBuildHead( settings, 'header' );
-		_fnBuildHead( settings, 'footer' );
-	
-		// Load the table's state (if needed) and then render around it and draw
-		_fnLoadState( settings, init, function () {
-			// Then draw the header / footer
-			_fnDrawHead( settings, settings.aoHeader );
-			_fnDrawHead( settings, settings.aoFooter );
-	
-			// Cache the paging start point, as the first redraw will reset it
-			var iAjaxStart = settings.iInitDisplayStart
-	
-			// Local data load
-			// Check if there is data passing into the constructor
-			if ( init.aaData ) {
-				for ( i=0 ; i<init.aaData.length ; i++ ) {
-					_fnAddData( settings, init.aaData[ i ] );
-				}
-			}
-			else if ( deferLoading || dataSrc == 'dom' ) {
-				// Grab the data from the page
-				_fnAddTr( settings, $(settings.nTBody).children('tr') );
-			}
-	
-			// Filter not yet applied - copy the display master
-			settings.aiDisplay = settings.aiDisplayMaster.slice();
-	
-			// Enable features
-			_fnAddOptionsHtml( settings );
-			_fnSortInit( settings );
-	
-			_colGroup( settings );
-	
-			/* Okay to show that something is going on now */
-			_fnProcessingDisplay( settings, true );
-	
-			_fnCallbackFire( settings, null, 'preInit', [settings], true );
-	
-			// If there is default sorting required - let's do it. The sort function
-			// will do the drawing for us. Otherwise we draw the table regardless of the
-			// Ajax source - this allows the table to look initialised for Ajax sourcing
-			// data (show 'loading' message possibly)
-			_fnReDraw( settings );
-	
-			// Server-side processing init complete is done by _fnAjaxUpdateDraw
-			if ( dataSrc != 'ssp' || deferLoading ) {
-				// if there is an ajax source load the data
-				if ( dataSrc == 'ajax' ) {
-					_fnBuildAjax( settings, {}, function(json) {
-						var aData = _fnAjaxDataSrc( settings, json );
-	
-						// Got the data - add it to the table
-						for ( i=0 ; i<aData.length ; i++ ) {
-							_fnAddData( settings, aData[i] );
-						}
-	
-						// Reset the init display for cookie saving. We've already done
-						// a filter, and therefore cleared it before. So we need to make
-						// it appear 'fresh'
-						settings.iInitDisplayStart = iAjaxStart;
-	
-						_fnReDraw( settings );
-						_fnProcessingDisplay( settings, false );
-						_fnInitComplete( settings );
-					}, settings );
-				}
-				else {
-					_fnInitComplete( settings );
-					_fnProcessingDisplay( settings, false );
-				}
-			}
-		} );
-	}
-	
-	
-	/**
-	 * Draw the table for the first time, adding all required features
-	 *  @param {object} settings dataTables settings object
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnInitComplete ( settings )
-	{
-		if (settings._bInitComplete) {
-			return;
-		}
-	
-		var args = [settings, settings.json];
-	
-		settings._bInitComplete = true;
-	
-		// Table is fully set up and we have data, so calculate the
-		// column widths
-		_fnAdjustColumnSizing( settings );
-	
-		_fnCallbackFire( settings, null, 'plugin-init', args, true );
-		_fnCallbackFire( settings, 'aoInitComplete', 'init', args, true );
-	}
-	
-	function _fnLengthChange ( settings, val )
-	{
-		var len = parseInt( val, 10 );
-		settings._iDisplayLength = len;
-	
-		_fnLengthOverflow( settings );
-	
-		// Fire length change event
-		_fnCallbackFire( settings, null, 'length', [settings, len] );
-	}
-	
-	/**
-	 * Alter the display settings to change the page
-	 *  @param {object} settings DataTables settings object
-	 *  @param {string|int} action Paging action to take: "first", "previous",
-	 *    "next" or "last" or page number to jump to (integer)
-	 *  @param [bool] redraw Automatically draw the update or not
-	 *  @returns {bool} true page has changed, false - no change
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnPageChange ( settings, action, redraw )
-	{
-		var
-			start     = settings._iDisplayStart,
-			len       = settings._iDisplayLength,
-			records   = settings.fnRecordsDisplay();
-	
-		if ( records === 0 || len === -1 )
-		{
-			start = 0;
-		}
-		else if ( typeof action === "number" )
-		{
-			start = action * len;
-	
-			if ( start > records )
-			{
-				start = 0;
-			}
-		}
-		else if ( action == "first" )
-		{
-			start = 0;
-		}
-		else if ( action == "previous" )
-		{
-			start = len >= 0 ?
-				start - len :
-				0;
-	
-			if ( start < 0 )
-			{
-				start = 0;
-			}
-		}
-		else if ( action == "next" )
-		{
-			if ( start + len < records )
-			{
-				start += len;
-			}
-		}
-		else if ( action == "last" )
-		{
-			start = Math.floor( (records-1) / len) * len;
-		}
-		else if ( action === 'ellipsis' )
-		{
-			return;
-		}
-		else
-		{
-			_fnLog( settings, 0, "Unknown paging action: "+action, 5 );
-		}
-	
-		var changed = settings._iDisplayStart !== start;
-		settings._iDisplayStart = start;
-	
-		_fnCallbackFire( settings, null, changed ? 'page' : 'page-nc', [settings] );
-	
-		if ( changed && redraw ) {
-			_fnDraw( settings );
-		}
-	
-		return changed;
-	}
-	
-	
-	/**
-	 * Generate the node required for the processing node
-	 *  @param {object} settings DataTables settings object
-	 */
-	function _processingHtml ( settings )
-	{
-		var table = settings.nTable;
-		var scrolling = settings.oScroll.sX !== '' || settings.oScroll.sY !== '';
-	
-		if ( settings.oFeatures.bProcessing ) {
-			var n = $('<div/>', {
-					'id': settings.sTableId + '_processing',
-					'class': settings.oClasses.processing.container,
-					'role': 'status'
-				} )
-				.html( settings.oLanguage.sProcessing )
-				.append('<div><div></div><div></div><div></div><div></div></div>');
-	
-			// Different positioning depending on if scrolling is enabled or not
-			if (scrolling) {
-				n.prependTo( $('div.dt-scroll', settings.nTableWrapper) );
-			}
-			else {
-				n.insertBefore( table );
-			}
-	
-			$(table).on( 'processing.dt.DT', function (e, s, show) {
-				n.css( 'display', show ? 'block' : 'none' );
-			} );
-		}
-	}
-	
-	
-	/**
-	 * Display or hide the processing indicator
-	 *  @param {object} settings DataTables settings object
-	 *  @param {bool} show Show the processing indicator (true) or not (false)
-	 */
-	function _fnProcessingDisplay ( settings, show )
-	{
-		// Ignore cases when we are still redrawing
-		if (settings.bDrawing && show === false) {
-			return;
-		}
-	
-		_fnCallbackFire( settings, null, 'processing', [settings, show] );
-	}
-	
-	/**
-	 * Show the processing element if an action takes longer than a given time
-	 *
-	 * @param {*} settings DataTables settings object
-	 * @param {*} enable Do (true) or not (false) async processing (local feature enablement)
-	 * @param {*} run Function to run
-	 */
-	function _fnProcessingRun( settings, enable, run ) {
-		if (! enable) {
-			// Immediate execution, synchronous
-			run();
-		}
-		else {
-			_fnProcessingDisplay(settings, true);
-			
-			// Allow the processing display to show if needed
-			setTimeout(function () {
-				run();
-	
-				_fnProcessingDisplay(settings, false);
-			}, 0);
-		}
-	}
-	/**
-	 * Add any control elements for the table - specifically scrolling
-	 *  @param {object} settings dataTables settings object
-	 *  @returns {node} Node to add to the DOM
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnFeatureHtmlTable ( settings )
-	{
-		var table = $(settings.nTable);
-	
-		// Scrolling from here on in
-		var scroll = settings.oScroll;
-	
-		if ( scroll.sX === '' && scroll.sY === '' ) {
-			return settings.nTable;
-		}
-	
-		var scrollX = scroll.sX;
-		var scrollY = scroll.sY;
-		var classes = settings.oClasses.scrolling;
-		var caption = settings.captionNode;
-		var captionSide = caption ? caption._captionSide : null;
-		var headerClone = $( table[0].cloneNode(false) );
-		var footerClone = $( table[0].cloneNode(false) );
-		var footer = table.children('tfoot');
-		var _div = '<div/>';
-		var size = function ( s ) {
-			return !s ? null : _fnStringToCss( s );
-		};
-	
-		if ( ! footer.length ) {
-			footer = null;
-		}
-	
-		/*
-		 * The HTML structure that we want to generate in this function is:
-		 *  div - scroller
-		 *    div - scroll head
-		 *      div - scroll head inner
-		 *        table - scroll head table
-		 *          thead - thead
-		 *    div - scroll body
-		 *      table - table (master table)
-		 *        thead - thead clone for sizing
-		 *        tbody - tbody
-		 *    div - scroll foot
-		 *      div - scroll foot inner
-		 *        table - scroll foot table
-		 *          tfoot - tfoot
-		 */
-		var scroller = $( _div, { 'class': classes.container } )
-			.append(
-				$(_div, { 'class': classes.header.self } )
-					.css( {
-						overflow: 'hidden',
-						position: 'relative',
-						border: 0,
-						width: scrollX ? size(scrollX) : '100%'
-					} )
-					.append(
-						$(_div, { 'class': classes.header.inner } )
-							.css( {
-								'box-sizing': 'content-box',
-								width: scroll.sXInner || '100%'
-							} )
-							.append(
-								headerClone
-									.removeAttr('id')
-									.css( 'margin-left', 0 )
-									.append( captionSide === 'top' ? caption : null )
-									.append(
-										table.children('thead')
-									)
-							)
-					)
-			)
-			.append(
-				$(_div, { 'class': classes.body } )
-					.css( {
-						position: 'relative',
-						overflow: 'auto',
-						width: size( scrollX )
-					} )
-					.append( table )
-			);
-	
-		if ( footer ) {
-			scroller.append(
-				$(_div, { 'class': classes.footer.self } )
-					.css( {
-						overflow: 'hidden',
-						border: 0,
-						width: scrollX ? size(scrollX) : '100%'
-					} )
-					.append(
-						$(_div, { 'class': classes.footer.inner } )
-							.append(
-								footerClone
-									.removeAttr('id')
-									.css( 'margin-left', 0 )
-									.append( captionSide === 'bottom' ? caption : null )
-									.append(
-										table.children('tfoot')
-									)
-							)
-					)
-			);
-		}
-	
-		var children = scroller.children();
-		var scrollHead = children[0];
-		var scrollBody = children[1];
-		var scrollFoot = footer ? children[2] : null;
-	
-		// When the body is scrolled, then we also want to scroll the headers
-		$(scrollBody).on( 'scroll.DT', function () {
-			var scrollLeft = this.scrollLeft;
-	
-			scrollHead.scrollLeft = scrollLeft;
-	
-			if ( footer ) {
-				scrollFoot.scrollLeft = scrollLeft;
-			}
-		} );
-	
-		// When focus is put on the header cells, we might need to scroll the body
-		$('th, td', scrollHead).on('focus', function () {
-			var scrollLeft = scrollHead.scrollLeft;
-	
-			scrollBody.scrollLeft = scrollLeft;
-	
-			if ( footer ) {
-				scrollBody.scrollLeft = scrollLeft;
-			}
-		});
-	
-		$(scrollBody).css('max-height', scrollY);
-		if (! scroll.bCollapse) {
-			$(scrollBody).css('height', scrollY);
-		}
-	
-		settings.nScrollHead = scrollHead;
-		settings.nScrollBody = scrollBody;
-		settings.nScrollFoot = scrollFoot;
-	
-		// On redraw - align columns
-		settings.aoDrawCallback.push(_fnScrollDraw);
-	
-		return scroller[0];
-	}
-	
-	
-	
-	/**
-	 * Update the header, footer and body tables for resizing - i.e. column
-	 * alignment.
-	 *
-	 * Welcome to the most horrible function DataTables. The process that this
-	 * function follows is basically:
-	 *   1. Re-create the table inside the scrolling div
-	 *   2. Correct colgroup > col values if needed
-	 *   3. Copy colgroup > col over to header and footer
-	 *   4. Clean up
-	 *
-	 *  @param {object} settings dataTables settings object
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnScrollDraw ( settings )
-	{
-		// Given that this is such a monster function, a lot of variables are use
-		// to try and keep the minimised size as small as possible
-		var
-			scroll         = settings.oScroll,
-			barWidth       = scroll.iBarWidth,
-			divHeader      = $(settings.nScrollHead),
-			divHeaderInner = divHeader.children('div'),
-			divHeaderTable = divHeaderInner.children('table'),
-			divBodyEl      = settings.nScrollBody,
-			divBody        = $(divBodyEl),
-			divFooter      = $(settings.nScrollFoot),
-			divFooterInner = divFooter.children('div'),
-			divFooterTable = divFooterInner.children('table'),
-			header         = $(settings.nTHead),
-			table          = $(settings.nTable),
-			footer         = settings.nTFoot && $('th, td', settings.nTFoot).length ? $(settings.nTFoot) : null,
-			browser        = settings.oBrowser,
-			headerCopy, footerCopy;
-	
-		// If the scrollbar visibility has changed from the last draw, we need to
-		// adjust the column sizes as the table width will have changed to account
-		// for the scrollbar
-		var scrollBarVis = divBodyEl.scrollHeight > divBodyEl.clientHeight;
-		
-		if ( settings.scrollBarVis !== scrollBarVis && settings.scrollBarVis !== undefined ) {
-			settings.scrollBarVis = scrollBarVis;
-			_fnAdjustColumnSizing( settings );
-			return; // adjust column sizing will call this function again
-		}
-		else {
-			settings.scrollBarVis = scrollBarVis;
-		}
-	
-		// 1. Re-create the table inside the scrolling div
-		// Remove the old minimised thead and tfoot elements in the inner table
-		table.children('thead, tfoot').remove();
-	
-		// Clone the current header and footer elements and then place it into the inner table
-		headerCopy = header.clone().prependTo( table );
-		headerCopy.find('th, td').removeAttr('tabindex');
-		headerCopy.find('[id]').removeAttr('id');
-	
-		if ( footer ) {
-			footerCopy = footer.clone().prependTo( table );
-			footerCopy.find('[id]').removeAttr('id');
-		}
-	
-		// 2. Correct colgroup > col values if needed
-		// It is possible that the cell sizes are smaller than the content, so we need to
-		// correct colgroup>col for such cases. This can happen if the auto width detection
-		// uses a cell which has a longer string, but isn't the widest! For example 
-		// "Chief Executive Officer (CEO)" is the longest string in the demo, but
-		// "Systems Administrator" is actually the widest string since it doesn't collapse.
-		// Note the use of translating into a column index to get the `col` element. This
-		// is because of Responsive which might remove `col` elements, knocking the alignment
-		// of the indexes out.
-		if (settings.aiDisplay.length) {
-			// Get the column sizes from the first row in the table. This should really be a
-			// [].find, but it wasn't supported in Chrome until Sept 2015, and DT has 10 year
-			// browser support
-			var firstTr = null;
-	
-			for (i=settings._iDisplayStart ; i<settings.aiDisplay.length ; i++) {
-				var idx = settings.aiDisplay[i];
-				var tr = settings.aoData[idx].nTr;
-	
-				if (tr) {
-					firstTr = tr;
-					break;
-				}
-			}
-	
-			if (firstTr) {
-				var colSizes = $(firstTr).children('th, td').map(function (vis) {
-					return {
-						idx: _fnVisibleToColumnIndex(settings, vis),
-						width: $(this).outerWidth()
-					}
-				});
-	
-				// Check against what the colgroup > col is set to and correct if needed
-				for (var i=0 ; i<colSizes.length ; i++) {
-					var colEl = settings.aoColumns[ colSizes[i].idx ].colEl[0];
-					var colWidth = colEl.style.width.replace('px', '');
-	
-					if (colWidth !== colSizes[i].width) {
-						colEl.style.width = colSizes[i].width + 'px';
-					}
-				}
-			}
-		}
-	
-		// 3. Copy the colgroup over to the header and footer
-		divHeaderTable
-			.find('colgroup')
-			.remove();
-	
-		divHeaderTable.append(settings.colgroup.clone());
-	
-		if ( footer ) {
-			divFooterTable
-				.find('colgroup')
-				.remove();
-	
-			divFooterTable.append(settings.colgroup.clone());
-		}
-	
-		// "Hide" the header and footer that we used for the sizing. We need to keep
-		// the content of the cell so that the width applied to the header and body
-		// both match, but we want to hide it completely.
-		$('th, td', headerCopy).each(function () {
-			$(this.childNodes).wrapAll('<div class="dt-scroll-sizing">');
-		});
-	
-		if ( footer ) {
-			$('th, td', footerCopy).each(function () {
-				$(this.childNodes).wrapAll('<div class="dt-scroll-sizing">');
-			});
-		}
-	
-		// 4. Clean up
-		// Figure out if there are scrollbar present - if so then we need a the header and footer to
-		// provide a bit more space to allow "overflow" scrolling (i.e. past the scrollbar)
-		var isScrolling = Math.floor(table.height()) > divBodyEl.clientHeight || divBody.css('overflow-y') == "scroll";
-		var paddingSide = 'padding' + (browser.bScrollbarLeft ? 'Left' : 'Right' );
-	
-		// Set the width's of the header and footer tables
-		var outerWidth = table.outerWidth();
-	
-		divHeaderTable.css('width', _fnStringToCss( outerWidth ));
-		divHeaderInner
-			.css('width', _fnStringToCss( outerWidth ))
-			.css(paddingSide, isScrolling ? barWidth+"px" : "0px");
-	
-		if ( footer ) {
-			divFooterTable.css('width', _fnStringToCss( outerWidth ));
-			divFooterInner
-				.css('width', _fnStringToCss( outerWidth ))
-				.css(paddingSide, isScrolling ? barWidth+"px" : "0px");
-		}
-	
-		// Correct DOM ordering for colgroup - comes before the thead
-		table.children('colgroup').prependTo(table);
-	
-		// Adjust the position of the header in case we loose the y-scrollbar
-		divBody.trigger('scroll');
-	
-		// If sorting or filtering has occurred, jump the scrolling back to the top
-		// only if we aren't holding the position
-		if ( (settings.bSorted || settings.bFiltered) && ! settings._drawHold ) {
-			divBodyEl.scrollTop = 0;
-		}
-	}
-	
-	/**
-	 * Calculate the width of columns for the table
-	 *  @param {object} settings dataTables settings object
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnCalculateColumnWidths ( settings )
-	{
-		// Not interested in doing column width calculation if auto-width is disabled
-		if (! settings.oFeatures.bAutoWidth) {
-			return;
-		}
-	
-		var
-			table = settings.nTable,
-			columns = settings.aoColumns,
-			scroll = settings.oScroll,
-			scrollY = scroll.sY,
-			scrollX = scroll.sX,
-			scrollXInner = scroll.sXInner,
-			visibleColumns = _fnGetColumns( settings, 'bVisible' ),
-			tableWidthAttr = table.getAttribute('width'), // from DOM element
-			tableContainer = table.parentNode,
-			i, column, columnIdx;
-			
-		var styleWidth = table.style.width;
-	
-		// If there is no width applied as a CSS style or as an attribute, we assume that
-		// the width is intended to be 100%, which is usually is in CSS, but it is very
-		// difficult to correctly parse the rules to get the final result.
-		if ( ! styleWidth && ! tableWidthAttr) {
-			table.style.width = '100%';
-			styleWidth = '100%';
-		}
-	
-		if ( styleWidth && styleWidth.indexOf('%') !== -1 ) {
-			tableWidthAttr = styleWidth;
-		}
-	
-		// Let plug-ins know that we are doing a recalc, in case they have changed any of the
-		// visible columns their own way (e.g. Responsive uses display:none).
-		_fnCallbackFire(
-			settings,
-			null,
-			'column-calc',
-			{visible: visibleColumns},
-			false
-		);
-	
-		// Construct a single row, worst case, table with the widest
-		// node in the data, assign any user defined widths, then insert it into
-		// the DOM and allow the browser to do all the hard work of calculating
-		// table widths
-		var tmpTable = $(table.cloneNode())
-			.css( 'visibility', 'hidden' )
-			.removeAttr( 'id' );
-	
-		// Clean up the table body
-		tmpTable.append('<tbody>')
-		var tr = $('<tr/>').appendTo( tmpTable.find('tbody') );
-	
-		// Clone the table header and footer - we can't use the header / footer
-		// from the cloned table, since if scrolling is active, the table's
-		// real header and footer are contained in different table tags
-		tmpTable
-			.append( $(settings.nTHead).clone() )
-			.append( $(settings.nTFoot).clone() );
-	
-		// Remove any assigned widths from the footer (from scrolling)
-		tmpTable.find('tfoot th, tfoot td').css('width', '');
-	
-		// Apply custom sizing to the cloned header
-		tmpTable.find('thead th, thead td').each( function () {
-			// Get the `width` from the header layout
-			var width = _fnColumnsSumWidth( settings, this, true, false );
-	
-			if ( width ) {
-				this.style.width = width;
-	
-				// For scrollX we need to force the column width otherwise the
-				// browser will collapse it. If this width is smaller than the
-				// width the column requires, then it will have no effect
-				if ( scrollX ) {
-					$( this ).append( $('<div/>').css( {
-						width: width,
-						margin: 0,
-						padding: 0,
-						border: 0,
-						height: 1
-					} ) );
-				}
-			}
-			else {
-				this.style.width = '';
-			}
-		} );
-	
-		// Find the widest piece of data for each column and put it into the table
-		for ( i=0 ; i<visibleColumns.length ; i++ ) {
-			columnIdx = visibleColumns[i];
-			column = columns[ columnIdx ];
-	
-			var longest = _fnGetMaxLenString(settings, columnIdx);
-			var autoClass = _ext.type.className[column.sType];
-			var text = longest + column.sContentPadding;
-			var insert = longest.indexOf('<') === -1
-				? document.createTextNode(text)
-				: text
-			
-			$('<td/>')
-				.addClass(autoClass)
-				.addClass(column.sClass)
-				.append(insert)
-				.appendTo(tr);
-		}
-	
-		// Tidy the temporary table - remove name attributes so there aren't
-		// duplicated in the dom (radio elements for example)
-		$('[name]', tmpTable).removeAttr('name');
-	
-		// Table has been built, attach to the document so we can work with it.
-		// A holding element is used, positioned at the top of the container
-		// with minimal height, so it has no effect on if the container scrolls
-		// or not. Otherwise it might trigger scrolling when it actually isn't
-		// needed
-		var holder = $('<div/>').css( scrollX || scrollY ?
-				{
-					position: 'absolute',
-					top: 0,
-					left: 0,
-					height: 1,
-					right: 0,
-					overflow: 'hidden'
-				} :
-				{}
-			)
-			.append( tmpTable )
-			.appendTo( tableContainer );
-	
-		// When scrolling (X or Y) we want to set the width of the table as 
-		// appropriate. However, when not scrolling leave the table width as it
-		// is. This results in slightly different, but I think correct behaviour
-		if ( scrollX && scrollXInner ) {
-			tmpTable.width( scrollXInner );
-		}
-		else if ( scrollX ) {
-			tmpTable.css( 'width', 'auto' );
-			tmpTable.removeAttr('width');
-	
-			// If there is no width attribute or style, then allow the table to
-			// collapse
-			if ( tmpTable.width() < tableContainer.clientWidth && tableWidthAttr ) {
-				tmpTable.width( tableContainer.clientWidth );
-			}
-		}
-		else if ( scrollY ) {
-			tmpTable.width( tableContainer.clientWidth );
-		}
-		else if ( tableWidthAttr ) {
-			tmpTable.width( tableWidthAttr );
-		}
-	
-		// Get the width of each column in the constructed table
-		var total = 0;
-		var bodyCells = tmpTable.find('tbody tr').eq(0).children();
-	
-		for ( i=0 ; i<visibleColumns.length ; i++ ) {
-			// Use getBounding for sub-pixel accuracy, which we then want to round up!
-			var bounding = bodyCells[i].getBoundingClientRect().width;
-	
-			// Total is tracked to remove any sub-pixel errors as the outerWidth
-			// of the table might not equal the total given here
-			total += bounding;
-	
-			// Width for each column to use
-			columns[ visibleColumns[i] ].sWidth = _fnStringToCss( bounding );
-		}
-	
-		table.style.width = _fnStringToCss( total );
-	
-		// Finished with the table - ditch it
-		holder.remove();
-	
-		// If there is a width attr, we want to attach an event listener which
-		// allows the table sizing to automatically adjust when the window is
-		// resized. Use the width attr rather than CSS, since we can't know if the
-		// CSS is a relative value or absolute - DOM read is always px.
-		if ( tableWidthAttr ) {
-			table.style.width = _fnStringToCss( tableWidthAttr );
-		}
-	
-		if ( (tableWidthAttr || scrollX) && ! settings._reszEvt ) {
-			var bindResize = function () {
-				$(window).on('resize.DT-'+settings.sInstance, DataTable.util.throttle( function () {
-					if (! settings.bDestroying) {
-						_fnAdjustColumnSizing( settings );
-					}
-				} ) );
-			};
-	
-			bindResize();
-	
-			settings._reszEvt = true;
-		}
-	}
-	
-	
-	/**
-	 * Get the maximum strlen for each data column
-	 *  @param {object} settings dataTables settings object
-	 *  @param {int} colIdx column of interest
-	 *  @returns {string} string of the max length
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnGetMaxLenString( settings, colIdx )
-	{
-		var column = settings.aoColumns[colIdx];
-	
-		if (! column.maxLenString) {
-			var s, max='', maxLen = -1;
-		
-			for ( var i=0, ien=settings.aiDisplayMaster.length ; i<ien ; i++ ) {
-				var rowIdx = settings.aiDisplayMaster[i];
-				var data = _fnGetRowDisplay(settings, rowIdx)[colIdx];
-	
-				var cellString = data && typeof data === 'object' && data.nodeType
-					? data.innerHTML
-					: data+'';
-	
-				// Remove id / name attributes from elements so they
-				// don't interfere with existing elements
-				cellString = cellString
-					.replace(/id=".*?"/g, '')
-					.replace(/name=".*?"/g, '');
-	
-				s = _stripHtml(cellString)
-					.replace( /&nbsp;/g, ' ' );
-		
-				if ( s.length > maxLen ) {
-					// We want the HTML in the string, but the length that
-					// is important is the stripped string
-					max = cellString;
-					maxLen = s.length;
-				}
-			}
-	
-			column.maxLenString = max;
-		}
-	
-		return column.maxLenString;
-	}
-	
-	
-	/**
-	 * Append a CSS unit (only if required) to a string
-	 *  @param {string} value to css-ify
-	 *  @returns {string} value with css unit
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnStringToCss( s )
-	{
-		if ( s === null ) {
-			return '0px';
-		}
-	
-		if ( typeof s == 'number' ) {
-			return s < 0 ?
-				'0px' :
-				s+'px';
-		}
-	
-		// Check it has a unit character already
-		return s.match(/\d$/) ?
-			s+'px' :
-			s;
-	}
-	
-	/**
-	 * Re-insert the `col` elements for current visibility
-	 *
-	 * @param {*} settings DT settings
-	 */
-	function _colGroup( settings ) {
-		var cols = settings.aoColumns;
-	
-		settings.colgroup.empty();
-	
-		for (i=0 ; i<cols.length ; i++) {
-			if (cols[i].bVisible) {
-				settings.colgroup.append(cols[i].colEl);
-			}
-		}
-	}
-	
-	
-	function _fnSortInit( settings ) {
-		var target = settings.nTHead;
-		var headerRows = target.querySelectorAll('tr');
-		var legacyTop = settings.bSortCellsTop;
-		var notSelector = ':not([data-dt-order="disable"]):not([data-dt-order="icon-only"])';
-		
-		// Legacy support for `orderCellsTop`
-		if (legacyTop === true) {
-			target = headerRows[0];
-		}
-		else if (legacyTop === false) {
-			target = headerRows[ headerRows.length - 1 ];
-		}
-	
-		_fnSortAttachListener(
-			settings,
-			target,
-			target === settings.nTHead
-				? 'tr'+notSelector+' th'+notSelector+', tr'+notSelector+' td'+notSelector
-				: 'th'+notSelector+', td'+notSelector
-		);
-	
-		// Need to resolve the user input array into our internal structure
-		var order = [];
-		_fnSortResolve( settings, order, settings.aaSorting );
-	
-		settings.aaSorting = order;
-	}
-	
-	
-	function _fnSortAttachListener(settings, node, selector, column, callback) {
-		_fnBindAction( node, selector, function (e) {
-			var run = false;
-			var columns = column === undefined
-				? _fnColumnsFromHeader( e.target )
-				: [column];
-	
-			if ( columns.length ) {
-				for ( var i=0, ien=columns.length ; i<ien ; i++ ) {
-					var ret = _fnSortAdd( settings, columns[i], i, e.shiftKey );
-	
-					if (ret !== false) {
-						run = true;
-					}					
-	
-					// If the first entry is no sort, then subsequent
-					// sort columns are ignored
-					if (settings.aaSorting.length === 1 && settings.aaSorting[0][1] === '') {
-						break;
-					}
-				}
-	
-				if (run) {
-					_fnProcessingRun(settings, true, function () {
-						_fnSort( settings );
-						_fnSortDisplay( settings, settings.aiDisplay );
-	
-						_fnReDraw( settings, false, false );
-	
-						if (callback) {
-							callback();
-						}
-					});
-				}
-			}
-		} );
-	}
-	
-	/**
-	 * Sort the display array to match the master's order
-	 * @param {*} settings
-	 */
-	function _fnSortDisplay(settings, display) {
-		if (display.length < 2) {
-			return;
-		}
-	
-		var master = settings.aiDisplayMaster;
-		var masterMap = {};
-		var map = {};
-		var i;
-	
-		// Rather than needing an `indexOf` on master array, we can create a map
-		for (i=0 ; i<master.length ; i++) {
-			masterMap[master[i]] = i;
-		}
-	
-		// And then cache what would be the indexOf fom the display
-		for (i=0 ; i<display.length ; i++) {
-			map[display[i]] = masterMap[display[i]];
-		}
-	
-		display.sort(function(a, b){
-			// Short version of this function is simply `master.indexOf(a) - master.indexOf(b);`
-			return map[a] - map[b];
-		});
-	}
-	
-	
-	function _fnSortResolve (settings, nestedSort, sort) {
-		var push = function ( a ) {
-			if ($.isPlainObject(a)) {
-				if (a.idx !== undefined) {
-					// Index based ordering
-					nestedSort.push([a.idx, a.dir]);
-				}
-				else if (a.name) {
-					// Name based ordering
-					var cols = _pluck( settings.aoColumns, 'sName');
-					var idx = cols.indexOf(a.name);
-	
-					if (idx !== -1) {
-						nestedSort.push([idx, a.dir]);
-					}
-				}
-			}
-			else {
-				// Plain column index and direction pair
-				nestedSort.push(a);
-			}
-		};
-	
-		if ( $.isPlainObject(sort) ) {
-			// Object
-			push(sort);
-		}
-		else if ( sort.length && typeof sort[0] === 'number' ) {
-			// 1D array
-			push(sort);
-		}
-		else if ( sort.length ) {
-			// 2D array
-			for (var z=0; z<sort.length; z++) {
-				push(sort[z]); // Object or array
-			}
-		}
-	}
-	
-	
-	function _fnSortFlatten ( settings )
-	{
-		var
-			i, k, kLen,
-			aSort = [],
-			extSort = DataTable.ext.type.order,
-			aoColumns = settings.aoColumns,
-			aDataSort, iCol, sType, srcCol,
-			fixed = settings.aaSortingFixed,
-			fixedObj = $.isPlainObject( fixed ),
-			nestedSort = [];
-		
-		if ( ! settings.oFeatures.bSort ) {
-			return aSort;
-		}
-	
-		// Build the sort array, with pre-fix and post-fix options if they have been
-		// specified
-		if ( Array.isArray( fixed ) ) {
-			_fnSortResolve( settings, nestedSort, fixed );
-		}
-	
-		if ( fixedObj && fixed.pre ) {
-			_fnSortResolve( settings, nestedSort, fixed.pre );
-		}
-	
-		_fnSortResolve( settings, nestedSort, settings.aaSorting );
-	
-		if (fixedObj && fixed.post ) {
-			_fnSortResolve( settings, nestedSort, fixed.post );
-		}
-	
-		for ( i=0 ; i<nestedSort.length ; i++ )
-		{
-			srcCol = nestedSort[i][0];
-	
-			if ( aoColumns[ srcCol ] ) {
-				aDataSort = aoColumns[ srcCol ].aDataSort;
-	
-				for ( k=0, kLen=aDataSort.length ; k<kLen ; k++ )
-				{
-					iCol = aDataSort[k];
-					sType = aoColumns[ iCol ].sType || 'string';
-	
-					if ( nestedSort[i]._idx === undefined ) {
-						nestedSort[i]._idx = aoColumns[iCol].asSorting.indexOf(nestedSort[i][1]);
-					}
-	
-					if ( nestedSort[i][1] ) {
-						aSort.push( {
-							src:       srcCol,
-							col:       iCol,
-							dir:       nestedSort[i][1],
-							index:     nestedSort[i]._idx,
-							type:      sType,
-							formatter: extSort[ sType+"-pre" ],
-							sorter:    extSort[ sType+"-"+nestedSort[i][1] ]
-						} );
-					}
-				}
-			}
-		}
-	
-		return aSort;
-	}
-	
-	/**
-	 * Change the order of the table
-	 *  @param {object} oSettings dataTables settings object
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnSort ( oSettings, col, dir )
-	{
-		var
-			i, ien, iLen,
-			aiOrig = [],
-			extSort = DataTable.ext.type.order,
-			aoData = oSettings.aoData,
-			sortCol,
-			displayMaster = oSettings.aiDisplayMaster,
-			aSort;
-	
-		// Allow a specific column to be sorted, which will _not_ alter the display
-		// master
-		if (col !== undefined) {
-			var srcCol = oSettings.aoColumns[col];
-			aSort = [{
-				src:       col,
-				col:       col,
-				dir:       dir,
-				index:     0,
-				type:      srcCol.sType,
-				formatter: extSort[ srcCol.sType+"-pre" ],
-				sorter:    extSort[ srcCol.sType+"-"+dir ]
-			}];
-			displayMaster = displayMaster.slice();
-		}
-		else {
-			aSort = _fnSortFlatten( oSettings );
-		}
-	
-		for ( i=0, ien=aSort.length ; i<ien ; i++ ) {
-			sortCol = aSort[i];
-	
-			// Load the data needed for the sort, for each cell
-			_fnSortData( oSettings, sortCol.col );
-		}
-	
-		/* No sorting required if server-side or no sorting array */
-		if ( _fnDataSource( oSettings ) != 'ssp' && aSort.length !== 0 )
-		{
-			// Reset the initial positions on each pass so we get a stable sort
-			for ( i=0, iLen=displayMaster.length ; i<iLen ; i++ ) {
-				aiOrig[ i ] = i;
-			}
-	
-			// If the first sort is desc, then reverse the array to preserve original
-			// order, just in reverse
-			if (aSort.length && aSort[0].dir === 'desc' && oSettings.orderDescReverse) {
-				aiOrig.reverse();
-			}
-	
-			/* Do the sort - here we want multi-column sorting based on a given data source (column)
-			 * and sorting function (from oSort) in a certain direction. It's reasonably complex to
-			 * follow on it's own, but this is what we want (example two column sorting):
-			 *  fnLocalSorting = function(a,b){
-			 *    var test;
-			 *    test = oSort['string-asc']('data11', 'data12');
-			 *      if (test !== 0)
-			 *        return test;
-			 *    test = oSort['numeric-desc']('data21', 'data22');
-			 *    if (test !== 0)
-			 *      return test;
-			 *    return oSort['numeric-asc']( aiOrig[a], aiOrig[b] );
-			 *  }
-			 * Basically we have a test for each sorting column, if the data in that column is equal,
-			 * test the next column. If all columns match, then we use a numeric sort on the row
-			 * positions in the original data array to provide a stable sort.
-			 */
-			displayMaster.sort( function ( a, b ) {
-				var
-					x, y, k, test, sort,
-					len=aSort.length,
-					dataA = aoData[a]._aSortData,
-					dataB = aoData[b]._aSortData;
-	
-				for ( k=0 ; k<len ; k++ ) {
-					sort = aSort[k];
-	
-					// Data, which may have already been through a `-pre` function
-					x = dataA[ sort.col ];
-					y = dataB[ sort.col ];
-	
-					if (sort.sorter) {
-						// If there is a custom sorter (`-asc` or `-desc`) for this
-						// data type, use it
-						test = sort.sorter(x, y);
-	
-						if ( test !== 0 ) {
-							return test;
-						}
-					}
-					else {
-						// Otherwise, use generic sorting
-						test = x<y ? -1 : x>y ? 1 : 0;
-	
-						if ( test !== 0 ) {
-							return sort.dir === 'asc' ? test : -test;
-						}
-					}
-				}
-	
-				x = aiOrig[a];
-				y = aiOrig[b];
-	
-				return x<y ? -1 : x>y ? 1 : 0;
-			} );
-		}
-		else if ( aSort.length === 0 ) {
-			// Apply index order
-			displayMaster.sort(function (x, y) {
-				return x<y ? -1 : x>y ? 1 : 0;
-			});
-		}
-	
-		if (col === undefined) {
-			// Tell the draw function that we have sorted the data
-			oSettings.bSorted = true;
-			oSettings.sortDetails = aSort;
-	
-			_fnCallbackFire( oSettings, null, 'order', [oSettings, aSort] );
-		}
-	
-		return displayMaster;
-	}
-	
-	
-	/**
-	 * Function to run on user sort request
-	 *  @param {object} settings dataTables settings object
-	 *  @param {node} attachTo node to attach the handler to
-	 *  @param {int} colIdx column sorting index
-	 *  @param {int} addIndex Counter
-	 *  @param {boolean} [shift=false] Shift click add
-	 *  @param {function} [callback] callback function
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnSortAdd ( settings, colIdx, addIndex, shift )
-	{
-		var col = settings.aoColumns[ colIdx ];
-		var sorting = settings.aaSorting;
-		var asSorting = col.asSorting;
-		var nextSortIdx;
-		var next = function ( a, overflow ) {
-			var idx = a._idx;
-			if ( idx === undefined ) {
-				idx = asSorting.indexOf(a[1]);
-			}
-	
-			return idx+1 < asSorting.length ?
-				idx+1 :
-				overflow ?
-					null :
-					0;
-		};
-	
-		if ( ! col.bSortable ) {
-			return false;
-		}
-	
-		// Convert to 2D array if needed
-		if ( typeof sorting[0] === 'number' ) {
-			sorting = settings.aaSorting = [ sorting ];
-		}
-	
-		// If appending the sort then we are multi-column sorting
-		if ( (shift || addIndex) && settings.oFeatures.bSortMulti ) {
-			// Are we already doing some kind of sort on this column?
-			var sortIdx = _pluck(sorting, '0').indexOf(colIdx);
-	
-			if ( sortIdx !== -1 ) {
-				// Yes, modify the sort
-				nextSortIdx = next( sorting[sortIdx], true );
-	
-				if ( nextSortIdx === null && sorting.length === 1 ) {
-					nextSortIdx = 0; // can't remove sorting completely
-				}
-	
-				if ( nextSortIdx === null ) {
-					sorting.splice( sortIdx, 1 );
-				}
-				else {
-					sorting[sortIdx][1] = asSorting[ nextSortIdx ];
-					sorting[sortIdx]._idx = nextSortIdx;
-				}
-			}
-			else if (shift) {
-				// No sort on this column yet, being added by shift click
-				// add it as itself
-				sorting.push( [ colIdx, asSorting[0], 0 ] );
-				sorting[sorting.length-1]._idx = 0;
-			}
-			else {
-				// No sort on this column yet, being added from a colspan
-				// so add with same direction as first column
-				sorting.push( [ colIdx, sorting[0][1], 0 ] );
-				sorting[sorting.length-1]._idx = 0;
-			}
-		}
-		else if ( sorting.length && sorting[0][0] == colIdx ) {
-			// Single column - already sorting on this column, modify the sort
-			nextSortIdx = next( sorting[0] );
-	
-			sorting.length = 1;
-			sorting[0][1] = asSorting[ nextSortIdx ];
-			sorting[0]._idx = nextSortIdx;
-		}
-		else {
-			// Single column - sort only on this column
-			sorting.length = 0;
-			sorting.push( [ colIdx, asSorting[0] ] );
-			sorting[0]._idx = 0;
-		}
-	}
-	
-	
-	/**
-	 * Set the sorting classes on table's body, Note: it is safe to call this function
-	 * when bSort and bSortClasses are false
-	 *  @param {object} oSettings dataTables settings object
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnSortingClasses( settings )
-	{
-		var oldSort = settings.aLastSort;
-		var sortClass = settings.oClasses.order.position;
-		var sort = _fnSortFlatten( settings );
-		var features = settings.oFeatures;
-		var i, ien, colIdx;
-	
-		if ( features.bSort && features.bSortClasses ) {
-			// Remove old sorting classes
-			for ( i=0, ien=oldSort.length ; i<ien ; i++ ) {
-				colIdx = oldSort[i].src;
-	
-				// Remove column sorting
-				$( _pluck( settings.aoData, 'anCells', colIdx ) )
-					.removeClass( sortClass + (i<2 ? i+1 : 3) );
-			}
-	
-			// Add new column sorting
-			for ( i=0, ien=sort.length ; i<ien ; i++ ) {
-				colIdx = sort[i].src;
-	
-				$( _pluck( settings.aoData, 'anCells', colIdx ) )
-					.addClass( sortClass + (i<2 ? i+1 : 3) );
-			}
-		}
-	
-		settings.aLastSort = sort;
-	}
-	
-	
-	// Get the data to sort a column, be it from cache, fresh (populating the
-	// cache), or from a sort formatter
-	function _fnSortData( settings, colIdx )
-	{
-		// Custom sorting function - provided by the sort data type
-		var column = settings.aoColumns[ colIdx ];
-		var customSort = DataTable.ext.order[ column.sSortDataType ];
-		var customData;
-	
-		if ( customSort ) {
-			customData = customSort.call( settings.oInstance, settings, colIdx,
-				_fnColumnIndexToVisible( settings, colIdx )
-			);
-		}
-	
-		// Use / populate cache
-		var row, cellData;
-		var formatter = DataTable.ext.type.order[ column.sType+"-pre" ];
-		var data = settings.aoData;
-	
-		for ( var rowIdx=0 ; rowIdx<data.length ; rowIdx++ ) {
-			// Sparse array
-			if (! data[rowIdx]) {
-				continue;
-			}
-	
-			row = data[rowIdx];
-	
-			if ( ! row._aSortData ) {
-				row._aSortData = [];
-			}
-	
-			if ( ! row._aSortData[colIdx] || customSort ) {
-				cellData = customSort ?
-					customData[rowIdx] : // If there was a custom sort function, use data from there
-					_fnGetCellData( settings, rowIdx, colIdx, 'sort' );
-	
-				row._aSortData[ colIdx ] = formatter ?
-					formatter( cellData, settings ) :
-					cellData;
-			}
-		}
-	}
-	
-	
-	/**
-	 * State information for a table
-	 *
-	 * @param {*} settings
-	 * @returns State object
-	 */
-	function _fnSaveState ( settings )
-	{
-		if (settings._bLoadingState) {
-			return;
-		}
-	
-		/* Store the interesting variables */
-		var state = {
-			time:    +new Date(),
-			start:   settings._iDisplayStart,
-			length:  settings._iDisplayLength,
-			order:   $.extend( true, [], settings.aaSorting ),
-			search:  $.extend({}, settings.oPreviousSearch),
-			columns: settings.aoColumns.map( function ( col, i ) {
-				return {
-					visible: col.bVisible,
-					search: $.extend({}, settings.aoPreSearchCols[i])
-				};
-			} )
-		};
-	
-		settings.oSavedState = state;
-		_fnCallbackFire( settings, "aoStateSaveParams", 'stateSaveParams', [settings, state] );
-		
-		if ( settings.oFeatures.bStateSave && !settings.bDestroying )
-		{
-			settings.fnStateSaveCallback.call( settings.oInstance, settings, state );
-		}	
-	}
-	
-	
-	/**
-	 * Attempt to load a saved table state
-	 *  @param {object} oSettings dataTables settings object
-	 *  @param {object} oInit DataTables init object so we can override settings
-	 *  @param {function} callback Callback to execute when the state has been loaded
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnLoadState ( settings, init, callback )
-	{
-		if ( ! settings.oFeatures.bStateSave ) {
-			callback();
-			return;
-		}
-	
-		var loaded = function(state) {
-			_fnImplementState(settings, state, callback);
-		}
-	
-		var state = settings.fnStateLoadCallback.call( settings.oInstance, settings, loaded );
-	
-		if ( state !== undefined ) {
-			_fnImplementState( settings, state, callback );
-		}
-		// otherwise, wait for the loaded callback to be executed
-	
-		return true;
-	}
-	
-	function _fnImplementState ( settings, s, callback) {
-		var i, ien;
-		var columns = settings.aoColumns;
-		settings._bLoadingState = true;
-	
-		// When StateRestore was introduced the state could now be implemented at any time
-		// Not just initialisation. To do this an api instance is required in some places
-		var api = settings._bInitComplete ? new DataTable.Api(settings) : null;
-	
-		if ( ! s || ! s.time ) {
-			settings._bLoadingState = false;
-			callback();
-			return;
-		}
-	
-		// Reject old data
-		var duration = settings.iStateDuration;
-		if ( duration > 0 && s.time < +new Date() - (duration*1000) ) {
-			settings._bLoadingState = false;
-			callback();
-			return;
-		}
-	
-		// Allow custom and plug-in manipulation functions to alter the saved data set and
-		// cancelling of loading by returning false
-		var abStateLoad = _fnCallbackFire( settings, 'aoStateLoadParams', 'stateLoadParams', [settings, s] );
-		if ( abStateLoad.indexOf(false) !== -1 ) {
-			settings._bLoadingState = false;
-			callback();
-			return;
-		}
-	
-		// Number of columns have changed - all bets are off, no restore of settings
-		if ( s.columns && columns.length !== s.columns.length ) {
-			settings._bLoadingState = false;
-			callback();
-			return;
-		}
-	
-		// Store the saved state so it might be accessed at any time
-		settings.oLoadedState = $.extend( true, {}, s );
-	
-		// This is needed for ColReorder, which has to happen first to allow all
-		// the stored indexes to be usable. It is not publicly documented.
-		_fnCallbackFire( settings, null, 'stateLoadInit', [settings, s], true );
-	
-		// Page Length
-		if ( s.length !== undefined ) {
-			// If already initialised just set the value directly so that the select element is also updated
-			if (api) {
-				api.page.len(s.length)
-			}
-			else {
-				settings._iDisplayLength   = s.length;
-			}
-		}
-	
-		// Restore key features
-		if ( s.start !== undefined ) {
-			if(api === null) {
-				settings._iDisplayStart    = s.start;
-				settings.iInitDisplayStart = s.start;
-			}
-			else {
-				_fnPageChange(settings, s.start/settings._iDisplayLength);
-			}
-		}
-	
-		// Order
-		if ( s.order !== undefined ) {
-			settings.aaSorting = [];
-			$.each( s.order, function ( i, col ) {
-				settings.aaSorting.push( col[0] >= columns.length ?
-					[ 0, col[1] ] :
-					col
-				);
-			} );
-		}
-	
-		// Search
-		if ( s.search !== undefined ) {
-			$.extend( settings.oPreviousSearch, s.search );
-		}
-	
-		// Columns
-		if ( s.columns ) {
-			for ( i=0, ien=s.columns.length ; i<ien ; i++ ) {
-				var col = s.columns[i];
-	
-				// Visibility
-				if ( col.visible !== undefined ) {
-					// If the api is defined, the table has been initialised so we need to use it rather than internal settings
-					if (api) {
-						// Don't redraw the columns on every iteration of this loop, we will do this at the end instead
-						api.column(i).visible(col.visible, false);
-					}
-					else {
-						columns[i].bVisible = col.visible;
-					}
-				}
-	
-				// Search
-				if ( col.search !== undefined ) {
-					$.extend( settings.aoPreSearchCols[i], col.search );
-				}
-			}
-			
-			// If the api is defined then we need to adjust the columns once the visibility has been changed
-			if (api) {
-				api.columns.adjust();
-			}
-		}
-	
-		settings._bLoadingState = false;
-		_fnCallbackFire( settings, 'aoStateLoaded', 'stateLoaded', [settings, s] );
-		callback();
-	}
-	
-	/**
-	 * Log an error message
-	 *  @param {object} settings dataTables settings object
-	 *  @param {int} level log error messages, or display them to the user
-	 *  @param {string} msg error message
-	 *  @param {int} tn Technical note id to get more information about the error.
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnLog( settings, level, msg, tn )
-	{
-		msg = 'DataTables warning: '+
-			(settings ? 'table id='+settings.sTableId+' - ' : '')+msg;
-	
-		if ( tn ) {
-			msg += '. For more information about this error, please see '+
-			'https://datatables.net/tn/'+tn;
-		}
-	
-		if ( ! level  ) {
-			// Backwards compatibility pre 1.10
-			var ext = DataTable.ext;
-			var type = ext.sErrMode || ext.errMode;
-	
-			if ( settings ) {
-				_fnCallbackFire( settings, null, 'dt-error', [ settings, tn, msg ], true );
-			}
-	
-			if ( type == 'alert' ) {
-				alert( msg );
-			}
-			else if ( type == 'throw' ) {
-				throw new Error(msg);
-			}
-			else if ( typeof type == 'function' ) {
-				type( settings, tn, msg );
-			}
-		}
-		else if ( window.console && console.log ) {
-			console.log( msg );
-		}
-	}
-	
-	
-	/**
-	 * See if a property is defined on one object, if so assign it to the other object
-	 *  @param {object} ret target object
-	 *  @param {object} src source object
-	 *  @param {string} name property
-	 *  @param {string} [mappedName] name to map too - optional, name used if not given
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnMap( ret, src, name, mappedName )
-	{
-		if ( Array.isArray( name ) ) {
-			$.each( name, function (i, val) {
-				if ( Array.isArray( val ) ) {
-					_fnMap( ret, src, val[0], val[1] );
-				}
-				else {
-					_fnMap( ret, src, val );
-				}
-			} );
-	
-			return;
-		}
-	
-		if ( mappedName === undefined ) {
-			mappedName = name;
-		}
-	
-		if ( src[name] !== undefined ) {
-			ret[mappedName] = src[name];
-		}
-	}
-	
-	
-	/**
-	 * Extend objects - very similar to jQuery.extend, but deep copy objects, and
-	 * shallow copy arrays. The reason we need to do this, is that we don't want to
-	 * deep copy array init values (such as aaSorting) since the dev wouldn't be
-	 * able to override them, but we do want to deep copy arrays.
-	 *  @param {object} out Object to extend
-	 *  @param {object} extender Object from which the properties will be applied to
-	 *      out
-	 *  @param {boolean} breakRefs If true, then arrays will be sliced to take an
-	 *      independent copy with the exception of the `data` or `aaData` parameters
-	 *      if they are present. This is so you can pass in a collection to
-	 *      DataTables and have that used as your data source without breaking the
-	 *      references
-	 *  @returns {object} out Reference, just for convenience - out === the return.
-	 *  @memberof DataTable#oApi
-	 *  @todo This doesn't take account of arrays inside the deep copied objects.
-	 */
-	function _fnExtend( out, extender, breakRefs )
-	{
-		var val;
-	
-		for ( var prop in extender ) {
-			if ( Object.prototype.hasOwnProperty.call(extender, prop) ) {
-				val = extender[prop];
-	
-				if ( $.isPlainObject( val ) ) {
-					if ( ! $.isPlainObject( out[prop] ) ) {
-						out[prop] = {};
-					}
-					$.extend( true, out[prop], val );
-				}
-				else if ( breakRefs && prop !== 'data' && prop !== 'aaData' && Array.isArray(val) ) {
-					out[prop] = val.slice();
-				}
-				else {
-					out[prop] = val;
-				}
-			}
-		}
-	
-		return out;
-	}
-	
-	
-	/**
-	 * Bind an event handers to allow a click or return key to activate the callback.
-	 * This is good for accessibility since a return on the keyboard will have the
-	 * same effect as a click, if the element has focus.
-	 *  @param {element} n Element to bind the action to
-	 *  @param {object|string} selector Selector (for delegated events) or data object
-	 *   to pass to the triggered function
-	 *  @param {function} fn Callback function for when the event is triggered
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnBindAction( n, selector, fn )
-	{
-		$(n)
-			.on( 'click.DT', selector, function (e) {
-				fn(e);
-			} )
-			.on( 'keypress.DT', selector, function (e){
-				if ( e.which === 13 ) {
-					e.preventDefault();
-					fn(e);
-				}
-			} )
-			.on( 'selectstart.DT', selector, function () {
-				// Don't want a double click resulting in text selection
-				return false;
-			} );
-	}
-	
-	
-	/**
-	 * Register a callback function. Easily allows a callback function to be added to
-	 * an array store of callback functions that can then all be called together.
-	 *  @param {object} settings dataTables settings object
-	 *  @param {string} store Name of the array storage for the callbacks in oSettings
-	 *  @param {function} fn Function to be called back
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnCallbackReg( settings, store, fn )
-	{
-		if ( fn ) {
-			settings[store].push(fn);
-		}
-	}
-	
-	
-	/**
-	 * Fire callback functions and trigger events. Note that the loop over the
-	 * callback array store is done backwards! Further note that you do not want to
-	 * fire off triggers in time sensitive applications (for example cell creation)
-	 * as its slow.
-	 *  @param {object} settings dataTables settings object
-	 *  @param {string} callbackArr Name of the array storage for the callbacks in
-	 *      oSettings
-	 *  @param {string} eventName Name of the jQuery custom event to trigger. If
-	 *      null no trigger is fired
-	 *  @param {array} args Array of arguments to pass to the callback function /
-	 *      trigger
-	 *  @param {boolean} [bubbles] True if the event should bubble
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnCallbackFire( settings, callbackArr, eventName, args, bubbles )
-	{
-		var ret = [];
-	
-		if ( callbackArr ) {
-			ret = settings[callbackArr].slice().reverse().map( function (val) {
-				return val.apply( settings.oInstance, args );
-			} );
-		}
-	
-		if ( eventName !== null) {
-			var e = $.Event( eventName+'.dt' );
-			var table = $(settings.nTable);
-			
-			// Expose the DataTables API on the event object for easy access
-			e.dt = settings.api;
-	
-			table[bubbles ?  'trigger' : 'triggerHandler']( e, args );
-	
-			// If not yet attached to the document, trigger the event
-			// on the body directly to sort of simulate the bubble
-			if (bubbles && table.parents('body').length === 0) {
-				$('body').trigger( e, args );
-			}
-	
-			ret.push( e.result );
-		}
-	
-		return ret;
-	}
-	
-	
-	function _fnLengthOverflow ( settings )
-	{
-		var
-			start = settings._iDisplayStart,
-			end = settings.fnDisplayEnd(),
-			len = settings._iDisplayLength;
-	
-		/* If we have space to show extra rows (backing up from the end point - then do so */
-		if ( start >= end )
-		{
-			start = end - len;
-		}
-	
-		// Keep the start record on the current page
-		start -= (start % len);
-	
-		if ( len === -1 || start < 0 )
-		{
-			start = 0;
-		}
-	
-		settings._iDisplayStart = start;
-	}
-	
-	
-	function _fnRenderer( settings, type )
-	{
-		var renderer = settings.renderer;
-		var host = DataTable.ext.renderer[type];
-	
-		if ( $.isPlainObject( renderer ) && renderer[type] ) {
-			// Specific renderer for this type. If available use it, otherwise use
-			// the default.
-			return host[renderer[type]] || host._;
-		}
-		else if ( typeof renderer === 'string' ) {
-			// Common renderer - if there is one available for this type use it,
-			// otherwise use the default
-			return host[renderer] || host._;
-		}
-	
-		// Use the default
-		return host._;
-	}
-	
-	
-	/**
-	 * Detect the data source being used for the table. Used to simplify the code
-	 * a little (ajax) and to make it compress a little smaller.
-	 *
-	 *  @param {object} settings dataTables settings object
-	 *  @returns {string} Data source
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnDataSource ( settings )
-	{
-		if ( settings.oFeatures.bServerSide ) {
-			return 'ssp';
-		}
-		else if ( settings.ajax ) {
-			return 'ajax';
-		}
-		return 'dom';
-	}
-	
-	/**
-	 * Common replacement for language strings
-	 *
-	 * @param {*} settings DT settings object
-	 * @param {*} str String with values to replace
-	 * @param {*} entries Plural number for _ENTRIES_ - can be undefined
-	 * @returns String
-	 */
-	function _fnMacros ( settings, str, entries )
-	{
-		// When infinite scrolling, we are always starting at 1. _iDisplayStart is
-		// used only internally
-		var
-			formatter  = settings.fnFormatNumber,
-			start      = settings._iDisplayStart+1,
-			len        = settings._iDisplayLength,
-			vis        = settings.fnRecordsDisplay(),
-			max        = settings.fnRecordsTotal(),
-			all        = len === -1;
-	
-		return str.
-			replace(/_START_/g, formatter.call( settings, start ) ).
-			replace(/_END_/g,   formatter.call( settings, settings.fnDisplayEnd() ) ).
-			replace(/_MAX_/g,   formatter.call( settings, max ) ).
-			replace(/_TOTAL_/g, formatter.call( settings, vis ) ).
-			replace(/_PAGE_/g,  formatter.call( settings, all ? 1 : Math.ceil( start / len ) ) ).
-			replace(/_PAGES_/g, formatter.call( settings, all ? 1 : Math.ceil( vis / len ) ) ).
-			replace(/_ENTRIES_/g, settings.api.i18n('entries', '', entries) ).
-			replace(/_ENTRIES-MAX_/g, settings.api.i18n('entries', '', max) ).
-			replace(/_ENTRIES-TOTAL_/g, settings.api.i18n('entries', '', vis) );
-	}
-	
-	
-	
-	/**
-	 * Computed structure of the DataTables API, defined by the options passed to
-	 * `DataTable.Api.register()` when building the API.
-	 *
-	 * The structure is built in order to speed creation and extension of the Api
-	 * objects since the extensions are effectively pre-parsed.
-	 *
-	 * The array is an array of objects with the following structure, where this
-	 * base array represents the Api prototype base:
-	 *
-	 *     [
-	 *       {
-	 *         name:      'data'                -- string   - Property name
-	 *         val:       function () {},       -- function - Api method (or undefined if just an object
-	 *         methodExt: [ ... ],              -- array    - Array of Api object definitions to extend the method result
-	 *         propExt:   [ ... ]               -- array    - Array of Api object definitions to extend the property
-	 *       },
-	 *       {
-	 *         name:     'row'
-	 *         val:       {},
-	 *         methodExt: [ ... ],
-	 *         propExt:   [
-	 *           {
-	 *             name:      'data'
-	 *             val:       function () {},
-	 *             methodExt: [ ... ],
-	 *             propExt:   [ ... ]
-	 *           },
-	 *           ...
-	 *         ]
-	 *       }
-	 *     ]
-	 *
-	 * @type {Array}
-	 * @ignore
-	 */
-	var __apiStruct = [];
-	
-	
-	/**
-	 * `Array.prototype` reference.
-	 *
-	 * @type object
-	 * @ignore
-	 */
-	var __arrayProto = Array.prototype;
-	
-	
-	/**
-	 * Abstraction for `context` parameter of the `Api` constructor to allow it to
-	 * take several different forms for ease of use.
-	 *
-	 * Each of the input parameter types will be converted to a DataTables settings
-	 * object where possible.
-	 *
-	 * @param  {string|node|jQuery|object} mixed DataTable identifier. Can be one
-	 *   of:
-	 *
-	 *   * `string` - jQuery selector. Any DataTables' matching the given selector
-	 *     with be found and used.
-	 *   * `node` - `TABLE` node which has already been formed into a DataTable.
-	 *   * `jQuery` - A jQuery object of `TABLE` nodes.
-	 *   * `object` - DataTables settings object
-	 *   * `DataTables.Api` - API instance
-	 * @return {array|null} Matching DataTables settings objects. `null` or
-	 *   `undefined` is returned if no matching DataTable is found.
-	 * @ignore
-	 */
-	var _toSettings = function ( mixed )
-	{
-		var idx, jq;
-		var settings = DataTable.settings;
-		var tables = _pluck(settings, 'nTable');
-	
-		if ( ! mixed ) {
-			return [];
-		}
-		else if ( mixed.nTable && mixed.oFeatures ) {
-			// DataTables settings object
-			return [ mixed ];
-		}
-		else if ( mixed.nodeName && mixed.nodeName.toLowerCase() === 'table' ) {
-			// Table node
-			idx = tables.indexOf(mixed);
-			return idx !== -1 ? [ settings[idx] ] : null;
-		}
-		else if ( mixed && typeof mixed.settings === 'function' ) {
-			return mixed.settings().toArray();
-		}
-		else if ( typeof mixed === 'string' ) {
-			// jQuery selector
-			jq = $(mixed).get();
-		}
-		else if ( mixed instanceof $ ) {
-			// jQuery object (also DataTables instance)
-			jq = mixed.get();
-		}
-	
-		if ( jq ) {
-			return settings.filter(function (v, idx) {
-				return jq.includes(tables[idx]);
-			});
-		}
-	};
-	
-	
-	/**
-	 * DataTables API class - used to control and interface with  one or more
-	 * DataTables enhanced tables.
-	 *
-	 * The API class is heavily based on jQuery, presenting a chainable interface
-	 * that you can use to interact with tables. Each instance of the API class has
-	 * a "context" - i.e. the tables that it will operate on. This could be a single
-	 * table, all tables on a page or a sub-set thereof.
-	 *
-	 * Additionally the API is designed to allow you to easily work with the data in
-	 * the tables, retrieving and manipulating it as required. This is done by
-	 * presenting the API class as an array like interface. The contents of the
-	 * array depend upon the actions requested by each method (for example
-	 * `rows().nodes()` will return an array of nodes, while `rows().data()` will
-	 * return an array of objects or arrays depending upon your table's
-	 * configuration). The API object has a number of array like methods (`push`,
-	 * `pop`, `reverse` etc) as well as additional helper methods (`each`, `pluck`,
-	 * `unique` etc) to assist your working with the data held in a table.
-	 *
-	 * Most methods (those which return an Api instance) are chainable, which means
-	 * the return from a method call also has all of the methods available that the
-	 * top level object had. For example, these two calls are equivalent:
-	 *
-	 *     // Not chained
-	 *     api.row.add( {...} );
-	 *     api.draw();
-	 *
-	 *     // Chained
-	 *     api.row.add( {...} ).draw();
-	 *
-	 * @class DataTable.Api
-	 * @param {array|object|string|jQuery} context DataTable identifier. This is
-	 *   used to define which DataTables enhanced tables this API will operate on.
-	 *   Can be one of:
-	 *
-	 *   * `string` - jQuery selector. Any DataTables' matching the given selector
-	 *     with be found and used.
-	 *   * `node` - `TABLE` node which has already been formed into a DataTable.
-	 *   * `jQuery` - A jQuery object of `TABLE` nodes.
-	 *   * `object` - DataTables settings object
-	 * @param {array} [data] Data to initialise the Api instance with.
-	 *
-	 * @example
-	 *   // Direct initialisation during DataTables construction
-	 *   var api = $('#example').DataTable();
-	 *
-	 * @example
-	 *   // Initialisation using a DataTables jQuery object
-	 *   var api = $('#example').dataTable().api();
-	 *
-	 * @example
-	 *   // Initialisation as a constructor
-	 *   var api = new DataTable.Api( 'table.dataTable' );
-	 */
-	_Api = function ( context, data )
-	{
-		if ( ! (this instanceof _Api) ) {
-			return new _Api( context, data );
-		}
-	
-		var i;
-		var settings = [];
-		var ctxSettings = function ( o ) {
-			var a = _toSettings( o );
-			if ( a ) {
-				settings.push.apply( settings, a );
-			}
-		};
-	
-		if ( Array.isArray( context ) ) {
-			for ( i=0 ; i<context.length ; i++ ) {
-				ctxSettings( context[i] );
-			}
-		}
-		else {
-			ctxSettings( context );
-		}
-	
-		// Remove duplicates
-		this.context = settings.length > 1
-			? _unique( settings )
-			: settings;
-	
-		// Initial data
-		if ( data ) {
-			// Chrome can throw a max stack error if apply is called with
-			// too large an array, but apply is faster.
-			if (data.length < 10000) {
-				this.push.apply(this, data);
-			}
-			else {
-				for (i=0 ; i<data.length ; i++) {
-					this.push(data[i]);
-				}
-			}
-		}
-	
-		// selector
-		this.selector = {
-			rows: null,
-			cols: null,
-			opts: null
-		};
-	
-		_Api.extend( this, this, __apiStruct );
-	};
-	
-	DataTable.Api = _Api;
-	
-	// Don't destroy the existing prototype, just extend it. Required for jQuery 2's
-	// isPlainObject.
-	$.extend( _Api.prototype, {
-		any: function ()
-		{
-			return this.count() !== 0;
-		},
-	
-		context: [], // array of table settings objects
-	
-		count: function ()
-		{
-			return this.flatten().length;
-		},
-	
-		each: function ( fn )
-		{
-			for ( var i=0, ien=this.length ; i<ien; i++ ) {
-				fn.call( this, this[i], i, this );
-			}
-	
-			return this;
-		},
-	
-		eq: function ( idx )
-		{
-			var ctx = this.context;
-	
-			return ctx.length > idx ?
-				new _Api( ctx[idx], this[idx] ) :
-				null;
-		},
-	
-		filter: function ( fn )
-		{
-			var a = __arrayProto.filter.call( this, fn, this );
-	
-			return new _Api( this.context, a );
-		},
-	
-		flatten: function ()
-		{
-			var a = [];
-	
-			return new _Api( this.context, a.concat.apply( a, this.toArray() ) );
-		},
-	
-		get: function ( idx )
-		{
-			return this[ idx ];
-		},
-	
-		join:    __arrayProto.join,
-	
-		includes: function ( find ) {
-			return this.indexOf( find ) === -1 ? false : true;
-		},
-	
-		indexOf: __arrayProto.indexOf,
-	
-		iterator: function ( flatten, type, fn, alwaysNew ) {
-			var
-				a = [], ret,
-				i, ien, j, jen,
-				context = this.context,
-				rows, items, item,
-				selector = this.selector;
-	
-			// Argument shifting
-			if ( typeof flatten === 'string' ) {
-				alwaysNew = fn;
-				fn = type;
-				type = flatten;
-				flatten = false;
-			}
-	
-			for ( i=0, ien=context.length ; i<ien ; i++ ) {
-				var apiInst = new _Api( context[i] );
-	
-				if ( type === 'table' ) {
-					ret = fn.call( apiInst, context[i], i );
-	
-					if ( ret !== undefined ) {
-						a.push( ret );
-					}
-				}
-				else if ( type === 'columns' || type === 'rows' ) {
-					// this has same length as context - one entry for each table
-					ret = fn.call( apiInst, context[i], this[i], i );
-	
-					if ( ret !== undefined ) {
-						a.push( ret );
-					}
-				}
-				else if ( type === 'every' || type === 'column' || type === 'column-rows' || type === 'row' || type === 'cell' ) {
-					// columns and rows share the same structure.
-					// 'this' is an array of column indexes for each context
-					items = this[i];
-	
-					if ( type === 'column-rows' ) {
-						rows = _selector_row_indexes( context[i], selector.opts );
-					}
-	
-					for ( j=0, jen=items.length ; j<jen ; j++ ) {
-						item = items[j];
-	
-						if ( type === 'cell' ) {
-							ret = fn.call( apiInst, context[i], item.row, item.column, i, j );
-						}
-						else {
-							ret = fn.call( apiInst, context[i], item, i, j, rows );
-						}
-	
-						if ( ret !== undefined ) {
-							a.push( ret );
-						}
-					}
-				}
-			}
-	
-			if ( a.length || alwaysNew ) {
-				var api = new _Api( context, flatten ? a.concat.apply( [], a ) : a );
-				var apiSelector = api.selector;
-				apiSelector.rows = selector.rows;
-				apiSelector.cols = selector.cols;
-				apiSelector.opts = selector.opts;
-				return api;
-			}
-			return this;
-		},
-	
-		lastIndexOf: __arrayProto.lastIndexOf,
-	
-		length:  0,
-	
-		map: function ( fn )
-		{
-			var a = __arrayProto.map.call( this, fn, this );
-	
-			return new _Api( this.context, a );
-		},
-	
-		pluck: function ( prop )
-		{
-			var fn = DataTable.util.get(prop);
-	
-			return this.map( function ( el ) {
-				return fn(el);
-			} );
-		},
-	
-		pop:     __arrayProto.pop,
-	
-		push:    __arrayProto.push,
-	
-		reduce: __arrayProto.reduce,
-	
-		reduceRight: __arrayProto.reduceRight,
-	
-		reverse: __arrayProto.reverse,
-	
-		// Object with rows, columns and opts
-		selector: null,
-	
-		shift:   __arrayProto.shift,
-	
-		slice: function () {
-			return new _Api( this.context, this );
-		},
-	
-		sort:    __arrayProto.sort,
-	
-		splice:  __arrayProto.splice,
-	
-		toArray: function ()
-		{
-			return __arrayProto.slice.call( this );
-		},
-	
-		to$: function ()
-		{
-			return $( this );
-		},
-	
-		toJQuery: function ()
-		{
-			return $( this );
-		},
-	
-		unique: function ()
-		{
-			return new _Api( this.context, _unique(this.toArray()) );
-		},
-	
-		unshift: __arrayProto.unshift
-	} );
-	
-	
-	function _api_scope( scope, fn, struc ) {
-		return function () {
-			var ret = fn.apply( scope || this, arguments );
-	
-			// Method extension
-			_Api.extend( ret, ret, struc.methodExt );
-			return ret;
-		};
-	}
-	
-	function _api_find( src, name ) {
-		for ( var i=0, ien=src.length ; i<ien ; i++ ) {
-			if ( src[i].name === name ) {
-				return src[i];
-			}
-		}
-		return null;
-	}
-	
-	window.__apiStruct = __apiStruct;
-	
-	_Api.extend = function ( scope, obj, ext )
-	{
-		// Only extend API instances and static properties of the API
-		if ( ! ext.length || ! obj || ( ! (obj instanceof _Api) && ! obj.__dt_wrapper ) ) {
-			return;
-		}
-	
-		var
-			i, ien,
-			struct;
-	
-		for ( i=0, ien=ext.length ; i<ien ; i++ ) {
-			struct = ext[i];
-	
-			if (struct.name === '__proto__') {
-				continue;
-			}
-	
-			// Value
-			obj[ struct.name ] = struct.type === 'function' ?
-				_api_scope( scope, struct.val, struct ) :
-				struct.type === 'object' ?
-					{} :
-					struct.val;
-	
-			obj[ struct.name ].__dt_wrapper = true;
-	
-			// Property extension
-			_Api.extend( scope, obj[ struct.name ], struct.propExt );
-		}
-	};
-	
-	//     [
-	//       {
-	//         name:      'data'                -- string   - Property name
-	//         val:       function () {},       -- function - Api method (or undefined if just an object
-	//         methodExt: [ ... ],              -- array    - Array of Api object definitions to extend the method result
-	//         propExt:   [ ... ]               -- array    - Array of Api object definitions to extend the property
-	//       },
-	//       {
-	//         name:     'row'
-	//         val:       {},
-	//         methodExt: [ ... ],
-	//         propExt:   [
-	//           {
-	//             name:      'data'
-	//             val:       function () {},
-	//             methodExt: [ ... ],
-	//             propExt:   [ ... ]
-	//           },
-	//           ...
-	//         ]
-	//       }
-	//     ]
-	
-	
-	_Api.register = _api_register = function ( name, val )
-	{
-		if ( Array.isArray( name ) ) {
-			for ( var j=0, jen=name.length ; j<jen ; j++ ) {
-				_Api.register( name[j], val );
-			}
-			return;
-		}
-	
-		var
-			i, ien,
-			heir = name.split('.'),
-			struct = __apiStruct,
-			key, method;
-	
-		for ( i=0, ien=heir.length ; i<ien ; i++ ) {
-			method = heir[i].indexOf('()') !== -1;
-			key = method ?
-				heir[i].replace('()', '') :
-				heir[i];
-	
-			var src = _api_find( struct, key );
-			if ( ! src ) {
-				src = {
-					name:      key,
-					val:       {},
-					methodExt: [],
-					propExt:   [],
-					type:      'object'
-				};
-				struct.push( src );
-			}
-	
-			if ( i === ien-1 ) {
-				src.val = val;
-				src.type = typeof val === 'function' ?
-					'function' :
-					$.isPlainObject( val ) ?
-						'object' :
-						'other';
-			}
-			else {
-				struct = method ?
-					src.methodExt :
-					src.propExt;
-			}
-		}
-	};
-	
-	_Api.registerPlural = _api_registerPlural = function ( pluralName, singularName, val ) {
-		_Api.register( pluralName, val );
-	
-		_Api.register( singularName, function () {
-			var ret = val.apply( this, arguments );
-	
-			if ( ret === this ) {
-				// Returned item is the API instance that was passed in, return it
-				return this;
-			}
-			else if ( ret instanceof _Api ) {
-				// New API instance returned, want the value from the first item
-				// in the returned array for the singular result.
-				return ret.length ?
-					Array.isArray( ret[0] ) ?
-						new _Api( ret.context, ret[0] ) : // Array results are 'enhanced'
-						ret[0] :
-					undefined;
-			}
-	
-			// Non-API return - just fire it back
-			return ret;
-		} );
-	};
-	
-	
-	/**
-	 * Selector for HTML tables. Apply the given selector to the give array of
-	 * DataTables settings objects.
-	 *
-	 * @param {string|integer} [selector] jQuery selector string or integer
-	 * @param  {array} Array of DataTables settings objects to be filtered
-	 * @return {array}
-	 * @ignore
-	 */
-	var __table_selector = function ( selector, a )
-	{
-		if ( Array.isArray(selector) ) {
-			var result = [];
-	
-			selector.forEach(function (sel) {
-				var inner = __table_selector(sel, a);
-	
-				result.push.apply(result, inner);
-			});
-	
-			return result.filter( function (item) {
-				return item;
-			});
-		}
-	
-		// Integer is used to pick out a table by index
-		if ( typeof selector === 'number' ) {
-			return [ a[ selector ] ];
-		}
-	
-		// Perform a jQuery selector on the table nodes
-		var nodes = a.map( function (el) {
-			return el.nTable;
-		} );
-	
-		return $(nodes)
-			.filter( selector )
-			.map( function () {
-				// Need to translate back from the table node to the settings
-				var idx = nodes.indexOf(this);
-				return a[ idx ];
-			} )
-			.toArray();
-	};
-	
-	
-	
-	/**
-	 * Context selector for the API's context (i.e. the tables the API instance
-	 * refers to.
-	 *
-	 * @name    DataTable.Api#tables
-	 * @param {string|integer} [selector] Selector to pick which tables the iterator
-	 *   should operate on. If not given, all tables in the current context are
-	 *   used. This can be given as a jQuery selector (for example `':gt(0)'`) to
-	 *   select multiple tables or as an integer to select a single table.
-	 * @returns {DataTable.Api} Returns a new API instance if a selector is given.
-	 */
-	_api_register( 'tables()', function ( selector ) {
-		// A new instance is created if there was a selector specified
-		return selector !== undefined && selector !== null ?
-			new _Api( __table_selector( selector, this.context ) ) :
-			this;
-	} );
-	
-	
-	_api_register( 'table()', function ( selector ) {
-		var tables = this.tables( selector );
-		var ctx = tables.context;
-	
-		// Truncate to the first matched table
-		return ctx.length ?
-			new _Api( ctx[0] ) :
-			tables;
-	} );
-	
-	// Common methods, combined to reduce size
-	[
-		['nodes', 'node', 'nTable'],
-		['body', 'body', 'nTBody'],
-		['header', 'header', 'nTHead'],
-		['footer', 'footer', 'nTFoot'],
-	].forEach(function (item) {
-		_api_registerPlural(
-			'tables().' + item[0] + '()',
-			'table().' + item[1] + '()' ,
-			function () {
-				return this.iterator( 'table', function ( ctx ) {
-					return ctx[item[2]];
-				}, 1 );
-			}
-		);
-	});
-	
-	// Structure methods
-	[
-		['header', 'aoHeader'],
-		['footer', 'aoFooter'],
-	].forEach(function (item) {
-		_api_register( 'table().' + item[0] + '.structure()' , function (selector) {
-			var indexes = this.columns(selector).indexes().flatten();
-			var ctx = this.context[0];
-			
-			return _fnHeaderLayout(ctx, ctx[item[1]], indexes);
-		} );
-	})
-	
-	
-	_api_registerPlural( 'tables().containers()', 'table().container()' , function () {
-		return this.iterator( 'table', function ( ctx ) {
-			return ctx.nTableWrapper;
-		}, 1 );
-	} );
-	
-	_api_register( 'tables().every()', function ( fn ) {
-		var that = this;
-	
-		return this.iterator('table', function (s, i) {
-			fn.call(that.table(i), i);
-		});
-	});
-	
-	_api_register( 'caption()', function ( value, side ) {
-		var context = this.context;
-	
-		// Getter - return existing node's content
-		if ( value === undefined ) {
-			var caption = context[0].captionNode;
-	
-			return caption && context.length ?
-				caption.innerHTML : 
-				null;
-		}
-	
-		return this.iterator( 'table', function ( ctx ) {
-			var table = $(ctx.nTable);
-			var caption = $(ctx.captionNode);
-			var container = $(ctx.nTableWrapper);
-	
-			// Create the node if it doesn't exist yet
-			if ( ! caption.length ) {
-				caption = $('<caption/>').html( value );
-				ctx.captionNode = caption[0];
-	
-				// If side isn't set, we need to insert into the document to let the
-				// CSS decide so we can read it back, otherwise there is no way to
-				// know if the CSS would put it top or bottom for scrolling
-				if (! side) {
-					table.prepend(caption);
-	
-					side = caption.css('caption-side');
-				}
-			}
-	
-			caption.html( value );
-	
-			if ( side ) {
-				caption.css( 'caption-side', side );
-				caption[0]._captionSide = side;
-			}
-	
-			if (container.find('div.dataTables_scroll').length) {
-				var selector = (side === 'top' ? 'Head' : 'Foot');
-	
-				container.find('div.dataTables_scroll'+ selector +' table').prepend(caption);
-			}
-			else {
-				table.prepend(caption);
-			}
-		}, 1 );
-	} );
-	
-	_api_register( 'caption.node()', function () {
-		var ctx = this.context;
-	
-		return ctx.length ? ctx[0].captionNode : null;
-	} );
-	
-	
-	/**
-	 * Redraw the tables in the current context.
-	 */
-	_api_register( 'draw()', function ( paging ) {
-		return this.iterator( 'table', function ( settings ) {
-			if ( paging === 'page' ) {
-				_fnDraw( settings );
-			}
-			else {
-				if ( typeof paging === 'string' ) {
-					paging = paging === 'full-hold' ?
-						false :
-						true;
-				}
-	
-				_fnReDraw( settings, paging===false );
-			}
-		} );
-	} );
-	
-	
-	
-	/**
-	 * Get the current page index.
-	 *
-	 * @return {integer} Current page index (zero based)
-	 *//**
-	 * Set the current page.
-	 *
-	 * Note that if you attempt to show a page which does not exist, DataTables will
-	 * not throw an error, but rather reset the paging.
-	 *
-	 * @param {integer|string} action The paging action to take. This can be one of:
-	 *  * `integer` - The page index to jump to
-	 *  * `string` - An action to take:
-	 *    * `first` - Jump to first page.
-	 *    * `next` - Jump to the next page
-	 *    * `previous` - Jump to previous page
-	 *    * `last` - Jump to the last page.
-	 * @returns {DataTables.Api} this
-	 */
-	_api_register( 'page()', function ( action ) {
-		if ( action === undefined ) {
-			return this.page.info().page; // not an expensive call
-		}
-	
-		// else, have an action to take on all tables
-		return this.iterator( 'table', function ( settings ) {
-			_fnPageChange( settings, action );
-		} );
-	} );
-	
-	
-	/**
-	 * Paging information for the first table in the current context.
-	 *
-	 * If you require paging information for another table, use the `table()` method
-	 * with a suitable selector.
-	 *
-	 * @return {object} Object with the following properties set:
-	 *  * `page` - Current page index (zero based - i.e. the first page is `0`)
-	 *  * `pages` - Total number of pages
-	 *  * `start` - Display index for the first record shown on the current page
-	 *  * `end` - Display index for the last record shown on the current page
-	 *  * `length` - Display length (number of records). Note that generally `start
-	 *    + length = end`, but this is not always true, for example if there are
-	 *    only 2 records to show on the final page, with a length of 10.
-	 *  * `recordsTotal` - Full data set length
-	 *  * `recordsDisplay` - Data set length once the current filtering criterion
-	 *    are applied.
-	 */
-	_api_register( 'page.info()', function () {
-		if ( this.context.length === 0 ) {
-			return undefined;
-		}
-	
-		var
-			settings   = this.context[0],
-			start      = settings._iDisplayStart,
-			len        = settings.oFeatures.bPaginate ? settings._iDisplayLength : -1,
-			visRecords = settings.fnRecordsDisplay(),
-			all        = len === -1;
-	
-		return {
-			"page":           all ? 0 : Math.floor( start / len ),
-			"pages":          all ? 1 : Math.ceil( visRecords / len ),
-			"start":          start,
-			"end":            settings.fnDisplayEnd(),
-			"length":         len,
-			"recordsTotal":   settings.fnRecordsTotal(),
-			"recordsDisplay": visRecords,
-			"serverSide":     _fnDataSource( settings ) === 'ssp'
-		};
-	} );
-	
-	
-	/**
-	 * Get the current page length.
-	 *
-	 * @return {integer} Current page length. Note `-1` indicates that all records
-	 *   are to be shown.
-	 *//**
-	 * Set the current page length.
-	 *
-	 * @param {integer} Page length to set. Use `-1` to show all records.
-	 * @returns {DataTables.Api} this
-	 */
-	_api_register( 'page.len()', function ( len ) {
-		// Note that we can't call this function 'length()' because `length`
-		// is a Javascript property of functions which defines how many arguments
-		// the function expects.
-		if ( len === undefined ) {
-			return this.context.length !== 0 ?
-				this.context[0]._iDisplayLength :
-				undefined;
-		}
-	
-		// else, set the page length
-		return this.iterator( 'table', function ( settings ) {
-			_fnLengthChange( settings, len );
-		} );
-	} );
-	
-	
-	
-	var __reload = function ( settings, holdPosition, callback ) {
-		// Use the draw event to trigger a callback
-		if ( callback ) {
-			var api = new _Api( settings );
-	
-			api.one( 'draw', function () {
-				callback( api.ajax.json() );
-			} );
-		}
-	
-		if ( _fnDataSource( settings ) == 'ssp' ) {
-			_fnReDraw( settings, holdPosition );
-		}
-		else {
-			_fnProcessingDisplay( settings, true );
-	
-			// Cancel an existing request
-			var xhr = settings.jqXHR;
-			if ( xhr && xhr.readyState !== 4 ) {
-				xhr.abort();
-			}
-	
-			// Trigger xhr
-			_fnBuildAjax( settings, {}, function( json ) {
-				_fnClearTable( settings );
-	
-				var data = _fnAjaxDataSrc( settings, json );
-				for ( var i=0, ien=data.length ; i<ien ; i++ ) {
-					_fnAddData( settings, data[i] );
-				}
-	
-				_fnReDraw( settings, holdPosition );
-				_fnInitComplete( settings );
-				_fnProcessingDisplay( settings, false );
-			} );
-		}
-	};
-	
-	
-	/**
-	 * Get the JSON response from the last Ajax request that DataTables made to the
-	 * server. Note that this returns the JSON from the first table in the current
-	 * context.
-	 *
-	 * @return {object} JSON received from the server.
-	 */
-	_api_register( 'ajax.json()', function () {
-		var ctx = this.context;
-	
-		if ( ctx.length > 0 ) {
-			return ctx[0].json;
-		}
-	
-		// else return undefined;
-	} );
-	
-	
-	/**
-	 * Get the data submitted in the last Ajax request
-	 */
-	_api_register( 'ajax.params()', function () {
-		var ctx = this.context;
-	
-		if ( ctx.length > 0 ) {
-			return ctx[0].oAjaxData;
-		}
-	
-		// else return undefined;
-	} );
-	
-	
-	/**
-	 * Reload tables from the Ajax data source. Note that this function will
-	 * automatically re-draw the table when the remote data has been loaded.
-	 *
-	 * @param {boolean} [reset=true] Reset (default) or hold the current paging
-	 *   position. A full re-sort and re-filter is performed when this method is
-	 *   called, which is why the pagination reset is the default action.
-	 * @returns {DataTables.Api} this
-	 */
-	_api_register( 'ajax.reload()', function ( callback, resetPaging ) {
-		return this.iterator( 'table', function (settings) {
-			__reload( settings, resetPaging===false, callback );
-		} );
-	} );
-	
-	
-	/**
-	 * Get the current Ajax URL. Note that this returns the URL from the first
-	 * table in the current context.
-	 *
-	 * @return {string} Current Ajax source URL
-	 *//**
-	 * Set the Ajax URL. Note that this will set the URL for all tables in the
-	 * current context.
-	 *
-	 * @param {string} url URL to set.
-	 * @returns {DataTables.Api} this
-	 */
-	_api_register( 'ajax.url()', function ( url ) {
-		var ctx = this.context;
-	
-		if ( url === undefined ) {
-			// get
-			if ( ctx.length === 0 ) {
-				return undefined;
-			}
-			ctx = ctx[0];
-	
-			return $.isPlainObject( ctx.ajax ) ?
-				ctx.ajax.url :
-				ctx.ajax;
-		}
-	
-		// set
-		return this.iterator( 'table', function ( settings ) {
-			if ( $.isPlainObject( settings.ajax ) ) {
-				settings.ajax.url = url;
-			}
-			else {
-				settings.ajax = url;
-			}
-		} );
-	} );
-	
-	
-	/**
-	 * Load data from the newly set Ajax URL. Note that this method is only
-	 * available when `ajax.url()` is used to set a URL. Additionally, this method
-	 * has the same effect as calling `ajax.reload()` but is provided for
-	 * convenience when setting a new URL. Like `ajax.reload()` it will
-	 * automatically redraw the table once the remote data has been loaded.
-	 *
-	 * @returns {DataTables.Api} this
-	 */
-	_api_register( 'ajax.url().load()', function ( callback, resetPaging ) {
-		// Same as a reload, but makes sense to present it for easy access after a
-		// url change
-		return this.iterator( 'table', function ( ctx ) {
-			__reload( ctx, resetPaging===false, callback );
-		} );
-	} );
-	
-	
-	
-	
-	var _selector_run = function ( type, selector, selectFn, settings, opts )
-	{
-		var
-			out = [], res,
-			a, i, ien, j, jen,
-			selectorType = typeof selector;
-	
-		// Can't just check for isArray here, as an API or jQuery instance might be
-		// given with their array like look
-		if ( ! selector || selectorType === 'string' || selectorType === 'function' || selector.length === undefined ) {
-			selector = [ selector ];
-		}
-	
-		for ( i=0, ien=selector.length ; i<ien ; i++ ) {
-			// Only split on simple strings - complex expressions will be jQuery selectors
-			a = selector[i] && selector[i].split && ! selector[i].match(/[[(:]/) ?
-				selector[i].split(',') :
-				[ selector[i] ];
-	
-			for ( j=0, jen=a.length ; j<jen ; j++ ) {
-				res = selectFn( typeof a[j] === 'string' ? (a[j]).trim() : a[j] );
-	
-				// Remove empty items
-				res = res.filter( function (item) {
-					return item !== null && item !== undefined;
-				});
-	
-				if ( res && res.length ) {
-					out = out.concat( res );
-				}
-			}
-		}
-	
-		// selector extensions
-		var ext = _ext.selector[ type ];
-		if ( ext.length ) {
-			for ( i=0, ien=ext.length ; i<ien ; i++ ) {
-				out = ext[i]( settings, opts, out );
-			}
-		}
-	
-		return _unique( out );
-	};
-	
-	
-	var _selector_opts = function ( opts )
-	{
-		if ( ! opts ) {
-			opts = {};
-		}
-	
-		// Backwards compatibility for 1.9- which used the terminology filter rather
-		// than search
-		if ( opts.filter && opts.search === undefined ) {
-			opts.search = opts.filter;
-		}
-	
-		return $.extend( {
-			search: 'none',
-			order: 'current',
-			page: 'all'
-		}, opts );
-	};
-	
-	
-	// Reduce the API instance to the first item found
-	var _selector_first = function ( old )
-	{
-		var inst = new _Api(old.context[0]);
-	
-		// Use a push rather than passing to the constructor, since it will
-		// merge arrays down automatically, which isn't what is wanted here
-		if (old.length) {
-			inst.push( old[0] );
-		}
-	
-		inst.selector = old.selector;
-	
-		// Limit to a single row / column / cell
-		if (inst.length && inst[0].length > 1) {
-			inst[0].splice(1);
-		}
-	
-		return inst;
-	};
-	
-	
-	var _selector_row_indexes = function ( settings, opts )
-	{
-		var
-			i, ien, tmp, a=[],
-			displayFiltered = settings.aiDisplay,
-			displayMaster = settings.aiDisplayMaster;
-	
-		var
-			search = opts.search,  // none, applied, removed
-			order  = opts.order,   // applied, current, index (original - compatibility with 1.9)
-			page   = opts.page;    // all, current
-	
-		if ( _fnDataSource( settings ) == 'ssp' ) {
-			// In server-side processing mode, most options are irrelevant since
-			// rows not shown don't exist and the index order is the applied order
-			// Removed is a special case - for consistency just return an empty
-			// array
-			return search === 'removed' ?
-				[] :
-				_range( 0, displayMaster.length );
-		}
-	
-		if ( page == 'current' ) {
-			// Current page implies that order=current and filter=applied, since it is
-			// fairly senseless otherwise, regardless of what order and search actually
-			// are
-			for ( i=settings._iDisplayStart, ien=settings.fnDisplayEnd() ; i<ien ; i++ ) {
-				a.push( displayFiltered[i] );
-			}
-		}
-		else if ( order == 'current' || order == 'applied' ) {
-			if ( search == 'none') {
-				a = displayMaster.slice();
-			}
-			else if ( search == 'applied' ) {
-				a = displayFiltered.slice();
-			}
-			else if ( search == 'removed' ) {
-				// O(n+m) solution by creating a hash map
-				var displayFilteredMap = {};
-	
-				for ( i=0, ien=displayFiltered.length ; i<ien ; i++ ) {
-					displayFilteredMap[displayFiltered[i]] = null;
-				}
-	
-				displayMaster.forEach(function (item) {
-					if (! Object.prototype.hasOwnProperty.call(displayFilteredMap, item)) {
-						a.push(item);
-					}
-				});
-			}
-		}
-		else if ( order == 'index' || order == 'original' ) {
-			for ( i=0, ien=settings.aoData.length ; i<ien ; i++ ) {
-				if (! settings.aoData[i]) {
-					continue;
-				}
-	
-				if ( search == 'none' ) {
-					a.push( i );
-				}
-				else { // applied | removed
-					tmp = displayFiltered.indexOf(i);
-	
-					if ((tmp === -1 && search == 'removed') ||
-						(tmp >= 0   && search == 'applied') )
-					{
-						a.push( i );
-					}
-				}
-			}
-		}
-		else if ( typeof order === 'number' ) {
-			// Order the rows by the given column
-			var ordered = _fnSort(settings, order, 'asc');
-	
-			if (search === 'none') {
-				a = ordered;
-			}
-			else { // applied | removed
-				for (i=0; i<ordered.length; i++) {
-					tmp = displayFiltered.indexOf(ordered[i]);
-	
-					if ((tmp === -1 && search == 'removed') ||
-						(tmp >= 0   && search == 'applied') )
-					{
-						a.push( ordered[i] );
-					}
-				}
-			}
-		}
-	
-		return a;
-	};
-	
-	
-	/* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *
-	 * Rows
-	 *
-	 * {}          - no selector - use all available rows
-	 * {integer}   - row aoData index
-	 * {node}      - TR node
-	 * {string}    - jQuery selector to apply to the TR elements
-	 * {array}     - jQuery array of nodes, or simply an array of TR nodes
-	 *
-	 */
-	var __row_selector = function ( settings, selector, opts )
-	{
-		var rows;
-		var run = function ( sel ) {
-			var selInt = _intVal( sel );
-			var aoData = settings.aoData;
-	
-			// Short cut - selector is a number and no options provided (default is
-			// all records, so no need to check if the index is in there, since it
-			// must be - dev error if the index doesn't exist).
-			if ( selInt !== null && ! opts ) {
-				return [ selInt ];
-			}
-	
-			if ( ! rows ) {
-				rows = _selector_row_indexes( settings, opts );
-			}
-	
-			if ( selInt !== null && rows.indexOf(selInt) !== -1 ) {
-				// Selector - integer
-				return [ selInt ];
-			}
-			else if ( sel === null || sel === undefined || sel === '' ) {
-				// Selector - none
-				return rows;
-			}
-	
-			// Selector - function
-			if ( typeof sel === 'function' ) {
-				return rows.map( function (idx) {
-					var row = aoData[ idx ];
-					return sel( idx, row._aData, row.nTr ) ? idx : null;
-				} );
-			}
-	
-			// Selector - node
-			if ( sel.nodeName ) {
-				var rowIdx = sel._DT_RowIndex;  // Property added by DT for fast lookup
-				var cellIdx = sel._DT_CellIndex;
-	
-				if ( rowIdx !== undefined ) {
-					// Make sure that the row is actually still present in the table
-					return aoData[ rowIdx ] && aoData[ rowIdx ].nTr === sel ?
-						[ rowIdx ] :
-						[];
-				}
-				else if ( cellIdx ) {
-					return aoData[ cellIdx.row ] && aoData[ cellIdx.row ].nTr === sel.parentNode ?
-						[ cellIdx.row ] :
-						[];
-				}
-				else {
-					var host = $(sel).closest('*[data-dt-row]');
-					return host.length ?
-						[ host.data('dt-row') ] :
-						[];
-				}
-			}
-	
-			// ID selector. Want to always be able to select rows by id, regardless
-			// of if the tr element has been created or not, so can't rely upon
-			// jQuery here - hence a custom implementation. This does not match
-			// Sizzle's fast selector or HTML4 - in HTML5 the ID can be anything,
-			// but to select it using a CSS selector engine (like Sizzle or
-			// querySelect) it would need to need to be escaped for some characters.
-			// DataTables simplifies this for row selectors since you can select
-			// only a row. A # indicates an id any anything that follows is the id -
-			// unescaped.
-			if ( typeof sel === 'string' && sel.charAt(0) === '#' ) {
-				// get row index from id
-				var rowObj = settings.aIds[ sel.replace( /^#/, '' ) ];
-				if ( rowObj !== undefined ) {
-					return [ rowObj.idx ];
-				}
-	
-				// need to fall through to jQuery in case there is DOM id that
-				// matches
-			}
-			
-			// Get nodes in the order from the `rows` array with null values removed
-			var nodes = _removeEmpty(
-				_pluck_order( settings.aoData, rows, 'nTr' )
-			);
-	
-			// Selector - jQuery selector string, array of nodes or jQuery object/
-			// As jQuery's .filter() allows jQuery objects to be passed in filter,
-			// it also allows arrays, so this will cope with all three options
-			return $(nodes)
-				.filter( sel )
-				.map( function () {
-					return this._DT_RowIndex;
-				} )
-				.toArray();
-		};
-	
-		var matched = _selector_run( 'row', selector, run, settings, opts );
-	
-		if (opts.order === 'current' || opts.order === 'applied') {
-			_fnSortDisplay(settings, matched);
-		}
-	
-		return matched;
-	};
-	
-	
-	_api_register( 'rows()', function ( selector, opts ) {
-		// argument shifting
-		if ( selector === undefined ) {
-			selector = '';
-		}
-		else if ( $.isPlainObject( selector ) ) {
-			opts = selector;
-			selector = '';
-		}
-	
-		opts = _selector_opts( opts );
-	
-		var inst = this.iterator( 'table', function ( settings ) {
-			return __row_selector( settings, selector, opts );
-		}, 1 );
-	
-		// Want argument shifting here and in __row_selector?
-		inst.selector.rows = selector;
-		inst.selector.opts = opts;
-	
-		return inst;
-	} );
-	
-	_api_register( 'rows().nodes()', function () {
-		return this.iterator( 'row', function ( settings, row ) {
-			return settings.aoData[ row ].nTr || undefined;
-		}, 1 );
-	} );
-	
-	_api_register( 'rows().data()', function () {
-		return this.iterator( true, 'rows', function ( settings, rows ) {
-			return _pluck_order( settings.aoData, rows, '_aData' );
-		}, 1 );
-	} );
-	
-	_api_registerPlural( 'rows().cache()', 'row().cache()', function ( type ) {
-		return this.iterator( 'row', function ( settings, row ) {
-			var r = settings.aoData[ row ];
-			return type === 'search' ? r._aFilterData : r._aSortData;
-		}, 1 );
-	} );
-	
-	_api_registerPlural( 'rows().invalidate()', 'row().invalidate()', function ( src ) {
-		return this.iterator( 'row', function ( settings, row ) {
-			_fnInvalidate( settings, row, src );
-		} );
-	} );
-	
-	_api_registerPlural( 'rows().indexes()', 'row().index()', function () {
-		return this.iterator( 'row', function ( settings, row ) {
-			return row;
-		}, 1 );
-	} );
-	
-	_api_registerPlural( 'rows().ids()', 'row().id()', function ( hash ) {
-		var a = [];
-		var context = this.context;
-	
-		// `iterator` will drop undefined values, but in this case we want them
-		for ( var i=0, ien=context.length ; i<ien ; i++ ) {
-			for ( var j=0, jen=this[i].length ; j<jen ; j++ ) {
-				var id = context[i].rowIdFn( context[i].aoData[ this[i][j] ]._aData );
-				a.push( (hash === true ? '#' : '' )+ id );
-			}
-		}
-	
-		return new _Api( context, a );
-	} );
-	
-	_api_registerPlural( 'rows().remove()', 'row().remove()', function () {
-		this.iterator( 'row', function ( settings, row ) {
-			var data = settings.aoData;
-			var rowData = data[ row ];
-	
-			// Delete from the display arrays
-			var idx = settings.aiDisplayMaster.indexOf(row);
-			if (idx !== -1) {
-				settings.aiDisplayMaster.splice(idx, 1);
-			}
-	
-			// For server-side processing tables - subtract the deleted row from the count
-			if ( settings._iRecordsDisplay > 0 ) {
-				settings._iRecordsDisplay--;
-			}
-	
-			// Check for an 'overflow' they case for displaying the table
-			_fnLengthOverflow( settings );
-	
-			// Remove the row's ID reference if there is one
-			var id = settings.rowIdFn( rowData._aData );
-			if ( id !== undefined ) {
-				delete settings.aIds[ id ];
-			}
-	
-			data[row] = null;
-		} );
-	
-		return this;
-	} );
-	
-	
-	_api_register( 'rows.add()', function ( rows ) {
-		var newRows = this.iterator( 'table', function ( settings ) {
-				var row, i, ien;
-				var out = [];
-	
-				for ( i=0, ien=rows.length ; i<ien ; i++ ) {
-					row = rows[i];
-	
-					if ( row.nodeName && row.nodeName.toUpperCase() === 'TR' ) {
-						out.push( _fnAddTr( settings, row )[0] );
-					}
-					else {
-						out.push( _fnAddData( settings, row ) );
-					}
-				}
-	
-				return out;
-			}, 1 );
-	
-		// Return an Api.rows() extended instance, so rows().nodes() etc can be used
-		var modRows = this.rows( -1 );
-		modRows.pop();
-		modRows.push.apply(modRows, newRows);
-	
-		return modRows;
-	} );
-	
-	
-	
-	
-	
-	/**
-	 *
-	 */
-	_api_register( 'row()', function ( selector, opts ) {
-		return _selector_first( this.rows( selector, opts ) );
-	} );
-	
-	
-	_api_register( 'row().data()', function ( data ) {
-		var ctx = this.context;
-	
-		if ( data === undefined ) {
-			// Get
-			return ctx.length && this.length && this[0].length ?
-				ctx[0].aoData[ this[0] ]._aData :
-				undefined;
-		}
-	
-		// Set
-		var row = ctx[0].aoData[ this[0] ];
-		row._aData = data;
-	
-		// If the DOM has an id, and the data source is an array
-		if ( Array.isArray( data ) && row.nTr && row.nTr.id ) {
-			_fnSetObjectDataFn( ctx[0].rowId )( data, row.nTr.id );
-		}
-	
-		// Automatically invalidate
-		_fnInvalidate( ctx[0], this[0], 'data' );
-	
-		return this;
-	} );
-	
-	
-	_api_register( 'row().node()', function () {
-		var ctx = this.context;
-	
-		if (ctx.length && this.length && this[0].length) {
-			var row = ctx[0].aoData[ this[0] ];
-	
-			if (row && row.nTr) {
-				return row.nTr;
-			}
-		}
-	
-		return null;
-	} );
-	
-	
-	_api_register( 'row.add()', function ( row ) {
-		// Allow a jQuery object to be passed in - only a single row is added from
-		// it though - the first element in the set
-		if ( row instanceof $ && row.length ) {
-			row = row[0];
-		}
-	
-		var rows = this.iterator( 'table', function ( settings ) {
-			if ( row.nodeName && row.nodeName.toUpperCase() === 'TR' ) {
-				return _fnAddTr( settings, row )[0];
-			}
-			return _fnAddData( settings, row );
-		} );
-	
-		// Return an Api.rows() extended instance, with the newly added row selected
-		return this.row( rows[0] );
-	} );
-	
-	
-	$(document).on('plugin-init.dt', function (e, context) {
-		var api = new _Api( context );
-	
-		api.on( 'stateSaveParams.DT', function ( e, settings, d ) {
-			// This could be more compact with the API, but it is a lot faster as a simple
-			// internal loop
-			var idFn = settings.rowIdFn;
-			var rows = settings.aiDisplayMaster;
-			var ids = [];
-	
-			for (var i=0 ; i<rows.length ; i++) {
-				var rowIdx = rows[i];
-				var data = settings.aoData[rowIdx];
-	
-				if (data._detailsShow) {
-					ids.push( '#' + idFn(data._aData) );
-				}
-			}
-	
-			d.childRows = ids;
-		});
-	
-		// For future state loads (e.g. with StateRestore)
-		api.on( 'stateLoaded.DT', function (e, settings, state) {
-			__details_state_load( api, state );
-		});
-	
-		// And the initial load state
-		__details_state_load( api, api.state.loaded() );
-	});
-	
-	var __details_state_load = function (api, state)
-	{
-		if ( state && state.childRows ) {
-			api
-				.rows( state.childRows.map(function (id) {
-					// Escape any `:` characters from the row id. Accounts for
-					// already escaped characters.
-					return id.replace(/([^:\\]*(?:\\.[^:\\]*)*):/g, "$1\\:");
-				}) )
-				.every( function () {
-					_fnCallbackFire( api.settings()[0], null, 'requestChild', [ this ] )
-				});
-		}
-	}
-	
-	var __details_add = function ( ctx, row, data, klass )
-	{
-		// Convert to array of TR elements
-		var rows = [];
-		var addRow = function ( r, k ) {
-			// Recursion to allow for arrays of jQuery objects
-			if ( Array.isArray( r ) || r instanceof $ ) {
-				for ( var i=0, ien=r.length ; i<ien ; i++ ) {
-					addRow( r[i], k );
-				}
-				return;
-			}
-	
-			// If we get a TR element, then just add it directly - up to the dev
-			// to add the correct number of columns etc
-			if ( r.nodeName && r.nodeName.toLowerCase() === 'tr' ) {
-				r.setAttribute( 'data-dt-row', row.idx );
-				rows.push( r );
-			}
-			else {
-				// Otherwise create a row with a wrapper
-				var created = $('<tr><td></td></tr>')
-					.attr( 'data-dt-row', row.idx )
-					.addClass( k );
-				
-				$('td', created)
-					.addClass( k )
-					.html( r )[0].colSpan = _fnVisbleColumns( ctx );
-	
-				rows.push( created[0] );
-			}
-		};
-	
-		addRow( data, klass );
-	
-		if ( row._details ) {
-			row._details.detach();
-		}
-	
-		row._details = $(rows);
-	
-		// If the children were already shown, that state should be retained
-		if ( row._detailsShow ) {
-			row._details.insertAfter( row.nTr );
-		}
-	};
-	
-	
-	// Make state saving of child row details async to allow them to be batch processed
-	var __details_state = DataTable.util.throttle(
-		function (ctx) {
-			_fnSaveState( ctx[0] )
-		},
-		500
-	);
-	
-	
-	var __details_remove = function ( api, idx )
-	{
-		var ctx = api.context;
-	
-		if ( ctx.length ) {
-			var row = ctx[0].aoData[ idx !== undefined ? idx : api[0] ];
-	
-			if ( row && row._details ) {
-				row._details.remove();
-	
-				row._detailsShow = undefined;
-				row._details = undefined;
-				$( row.nTr ).removeClass( 'dt-hasChild' );
-				__details_state( ctx );
-			}
-		}
-	};
-	
-	
-	var __details_display = function ( api, show ) {
-		var ctx = api.context;
-	
-		if ( ctx.length && api.length ) {
-			var row = ctx[0].aoData[ api[0] ];
-	
-			if ( row._details ) {
-				row._detailsShow = show;
-	
-				if ( show ) {
-					row._details.insertAfter( row.nTr );
-					$( row.nTr ).addClass( 'dt-hasChild' );
-				}
-				else {
-					row._details.detach();
-					$( row.nTr ).removeClass( 'dt-hasChild' );
-				}
-	
-				_fnCallbackFire( ctx[0], null, 'childRow', [ show, api.row( api[0] ) ] )
-	
-				__details_events( ctx[0] );
-				__details_state( ctx );
-			}
-		}
-	};
-	
-	
-	var __details_events = function ( settings )
-	{
-		var api = new _Api( settings );
-		var namespace = '.dt.DT_details';
-		var drawEvent = 'draw'+namespace;
-		var colvisEvent = 'column-sizing'+namespace;
-		var destroyEvent = 'destroy'+namespace;
-		var data = settings.aoData;
-	
-		api.off( drawEvent +' '+ colvisEvent +' '+ destroyEvent );
-	
-		if ( _pluck( data, '_details' ).length > 0 ) {
-			// On each draw, insert the required elements into the document
-			api.on( drawEvent, function ( e, ctx ) {
-				if ( settings !== ctx ) {
-					return;
-				}
-	
-				api.rows( {page:'current'} ).eq(0).each( function (idx) {
-					// Internal data grab
-					var row = data[ idx ];
-	
-					if ( row._detailsShow ) {
-						row._details.insertAfter( row.nTr );
-					}
-				} );
-			} );
-	
-			// Column visibility change - update the colspan
-			api.on( colvisEvent, function ( e, ctx ) {
-				if ( settings !== ctx ) {
-					return;
-				}
-	
-				// Update the colspan for the details rows (note, only if it already has
-				// a colspan)
-				var row, visible = _fnVisbleColumns( ctx );
-	
-				for ( var i=0, ien=data.length ; i<ien ; i++ ) {
-					row = data[i];
-	
-					if ( row && row._details ) {
-						row._details.each(function () {
-							var el = $(this).children('td');
-	
-							if (el.length == 1) {
-								el.attr('colspan', visible);
-							}
-						});
-					}
-				}
-			} );
-	
-			// Table destroyed - nuke any child rows
-			api.on( destroyEvent, function ( e, ctx ) {
-				if ( settings !== ctx ) {
-					return;
-				}
-	
-				for ( var i=0, ien=data.length ; i<ien ; i++ ) {
-					if ( data[i] && data[i]._details ) {
-						__details_remove( api, i );
-					}
-				}
-			} );
-		}
-	};
-	
-	// Strings for the method names to help minification
-	var _emp = '';
-	var _child_obj = _emp+'row().child';
-	var _child_mth = _child_obj+'()';
-	
-	// data can be:
-	//  tr
-	//  string
-	//  jQuery or array of any of the above
-	_api_register( _child_mth, function ( data, klass ) {
-		var ctx = this.context;
-	
-		if ( data === undefined ) {
-			// get
-			return ctx.length && this.length && ctx[0].aoData[ this[0] ]
-				? ctx[0].aoData[ this[0] ]._details
-				: undefined;
-		}
-		else if ( data === true ) {
-			// show
-			this.child.show();
-		}
-		else if ( data === false ) {
-			// remove
-			__details_remove( this );
-		}
-		else if ( ctx.length && this.length ) {
-			// set
-			__details_add( ctx[0], ctx[0].aoData[ this[0] ], data, klass );
-		}
-	
-		return this;
-	} );
-	
-	
-	_api_register( [
-		_child_obj+'.show()',
-		_child_mth+'.show()' // only when `child()` was called with parameters (without
-	], function () {         // it returns an object and this method is not executed)
-		__details_display( this, true );
-		return this;
-	} );
-	
-	
-	_api_register( [
-		_child_obj+'.hide()',
-		_child_mth+'.hide()' // only when `child()` was called with parameters (without
-	], function () {         // it returns an object and this method is not executed)
-		__details_display( this, false );
-		return this;
-	} );
-	
-	
-	_api_register( [
-		_child_obj+'.remove()',
-		_child_mth+'.remove()' // only when `child()` was called with parameters (without
-	], function () {           // it returns an object and this method is not executed)
-		__details_remove( this );
-		return this;
-	} );
-	
-	
-	_api_register( _child_obj+'.isShown()', function () {
-		var ctx = this.context;
-	
-		if ( ctx.length && this.length && ctx[0].aoData[ this[0] ] ) {
-			// _detailsShown as false or undefined will fall through to return false
-			return ctx[0].aoData[ this[0] ]._detailsShow || false;
-		}
-		return false;
-	} );
-	
-	
-	
-	/* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *
-	 * Columns
-	 *
-	 * {integer}           - column index (>=0 count from left, <0 count from right)
-	 * "{integer}:visIdx"  - visible column index (i.e. translate to column index)  (>=0 count from left, <0 count from right)
-	 * "{integer}:visible" - alias for {integer}:visIdx  (>=0 count from left, <0 count from right)
-	 * "{string}:name"     - column name
-	 * "{string}"          - jQuery selector on column header nodes
-	 *
-	 */
-	
-	// can be an array of these items, comma separated list, or an array of comma
-	// separated lists
-	
-	var __re_column_selector = /^([^:]+)?:(name|title|visIdx|visible)$/;
-	
-	
-	// r1 and r2 are redundant - but it means that the parameters match for the
-	// iterator callback in columns().data()
-	var __columnData = function ( settings, column, r1, r2, rows, type ) {
-		var a = [];
-		for ( var row=0, ien=rows.length ; row<ien ; row++ ) {
-			a.push( _fnGetCellData( settings, rows[row], column, type ) );
-		}
-		return a;
-	};
-	
-	
-	var __column_header = function ( settings, column, row ) {
-		var header = settings.aoHeader;
-		var target = row !== undefined
-			? row
-			: settings.bSortCellsTop // legacy support
-				? 0
-				: header.length - 1;
-	
-		return header[target][column].cell;
-	};
-	
-	var __column_selector = function ( settings, selector, opts )
-	{
-		var
-			columns = settings.aoColumns,
-			names = _pluck( columns, 'sName' ),
-			titles = _pluck( columns, 'sTitle' ),
-			cells = DataTable.util.get('[].[].cell')(settings.aoHeader),
-			nodes = _unique( _flatten([], cells) );
-		
-		var run = function ( s ) {
-			var selInt = _intVal( s );
-	
-			// Selector - all
-			if ( s === '' ) {
-				return _range( columns.length );
-			}
-	
-			// Selector - index
-			if ( selInt !== null ) {
-				return [ selInt >= 0 ?
-					selInt : // Count from left
-					columns.length + selInt // Count from right (+ because its a negative value)
-				];
-			}
-	
-			// Selector = function
-			if ( typeof s === 'function' ) {
-				var rows = _selector_row_indexes( settings, opts );
-	
-				return columns.map(function (col, idx) {
-					return s(
-							idx,
-							__columnData( settings, idx, 0, 0, rows ),
-							__column_header( settings, idx )
-						) ? idx : null;
-				});
-			}
-	
-			// jQuery or string selector
-			var match = typeof s === 'string' ?
-				s.match( __re_column_selector ) :
-				'';
-	
-			if ( match ) {
-				switch( match[2] ) {
-					case 'visIdx':
-					case 'visible':
-						// Selector is a column index
-						if (match[1] && match[1].match(/^\d+$/)) {
-							var idx = parseInt( match[1], 10 );
-	
-							// Visible index given, convert to column index
-							if ( idx < 0 ) {
-								// Counting from the right
-								var visColumns = columns.map( function (col,i) {
-									return col.bVisible ? i : null;
-								} );
-								return [ visColumns[ visColumns.length + idx ] ];
-							}
-							// Counting from the left
-							return [ _fnVisibleToColumnIndex( settings, idx ) ];
-						}
-						
-						return columns.map( function (col, idx) {
-							// Not visible, can't match
-							if (! col.bVisible) {
-								return null;
-							}
-	
-							// Selector
-							if (match[1]) {
-								return $(nodes[idx]).filter(match[1]).length > 0 ? idx : null;
-							}
-	
-							// `:visible` on its own
-							return idx;
-						} );
-	
-					case 'name':
-						// match by name. `names` is column index complete and in order
-						return names.map( function (name, i) {
-							return name === match[1] ? i : null;
-						} );
-	
-					case 'title':
-						// match by column title
-						return titles.map( function (title, i) {
-							return title === match[1] ? i : null;
-						} );
-	
-					default:
-						return [];
-				}
-			}
-	
-			// Cell in the table body
-			if ( s.nodeName && s._DT_CellIndex ) {
-				return [ s._DT_CellIndex.column ];
-			}
-	
-			// jQuery selector on the TH elements for the columns
-			var jqResult = $( nodes )
-				.filter( s )
-				.map( function () {
-					return _fnColumnsFromHeader( this ); // `nodes` is column index complete and in order
-				} )
-				.toArray();
-	
-			if ( jqResult.length || ! s.nodeName ) {
-				return jqResult;
-			}
-	
-			// Otherwise a node which might have a `dt-column` data attribute, or be
-			// a child or such an element
-			var host = $(s).closest('*[data-dt-column]');
-			return host.length ?
-				[ host.data('dt-column') ] :
-				[];
-		};
-	
-		return _selector_run( 'column', selector, run, settings, opts );
-	};
-	
-	
-	var __setColumnVis = function ( settings, column, vis ) {
-		var
-			cols = settings.aoColumns,
-			col  = cols[ column ],
-			data = settings.aoData,
-			cells, i, ien, tr;
-	
-		// Get
-		if ( vis === undefined ) {
-			return col.bVisible;
-		}
-	
-		// Set
-		// No change
-		if ( col.bVisible === vis ) {
-			return false;
-		}
-	
-		if ( vis ) {
-			// Insert column
-			// Need to decide if we should use appendChild or insertBefore
-			var insertBefore = _pluck(cols, 'bVisible').indexOf(true, column+1);
-	
-			for ( i=0, ien=data.length ; i<ien ; i++ ) {
-				if (data[i]) {
-					tr = data[i].nTr;
-					cells = data[i].anCells;
-	
-					if ( tr ) {
-						// insertBefore can act like appendChild if 2nd arg is null
-						tr.insertBefore( cells[ column ], cells[ insertBefore ] || null );
-					}
-				}
-			}
-		}
-		else {
-			// Remove column
-			$( _pluck( settings.aoData, 'anCells', column ) ).detach();
-		}
-	
-		// Common actions
-		col.bVisible = vis;
-	
-		_colGroup(settings);
-		
-		return true;
-	};
-	
-	
-	_api_register( 'columns()', function ( selector, opts ) {
-		// argument shifting
-		if ( selector === undefined ) {
-			selector = '';
-		}
-		else if ( $.isPlainObject( selector ) ) {
-			opts = selector;
-			selector = '';
-		}
-	
-		opts = _selector_opts( opts );
-	
-		var inst = this.iterator( 'table', function ( settings ) {
-			return __column_selector( settings, selector, opts );
-		}, 1 );
-	
-		// Want argument shifting here and in _row_selector?
-		inst.selector.cols = selector;
-		inst.selector.opts = opts;
-	
-		return inst;
-	} );
-	
-	_api_registerPlural( 'columns().header()', 'column().header()', function ( row ) {
-		return this.iterator( 'column', function (settings, column) {
-			return __column_header(settings, column, row);
-		}, 1 );
-	} );
-	
-	_api_registerPlural( 'columns().footer()', 'column().footer()', function ( row ) {
-		return this.iterator( 'column', function ( settings, column ) {
-			var footer = settings.aoFooter;
-	
-			if (! footer.length) {
-				return null;
-			}
-	
-			return settings.aoFooter[row !== undefined ? row : 0][column].cell;
-		}, 1 );
-	} );
-	
-	_api_registerPlural( 'columns().data()', 'column().data()', function () {
-		return this.iterator( 'column-rows', __columnData, 1 );
-	} );
-	
-	_api_registerPlural( 'columns().render()', 'column().render()', function ( type ) {
-		return this.iterator( 'column-rows', function ( settings, column, i, j, rows ) {
-			return __columnData( settings, column, i, j, rows, type );
-		}, 1 );
-	} );
-	
-	_api_registerPlural( 'columns().dataSrc()', 'column().dataSrc()', function () {
-		return this.iterator( 'column', function ( settings, column ) {
-			return settings.aoColumns[column].mData;
-		}, 1 );
-	} );
-	
-	_api_registerPlural( 'columns().cache()', 'column().cache()', function ( type ) {
-		return this.iterator( 'column-rows', function ( settings, column, i, j, rows ) {
-			return _pluck_order( settings.aoData, rows,
-				type === 'search' ? '_aFilterData' : '_aSortData', column
-			);
-		}, 1 );
-	} );
-	
-	_api_registerPlural( 'columns().init()', 'column().init()', function () {
-		return this.iterator( 'column', function ( settings, column ) {
-			return settings.aoColumns[column];
-		}, 1 );
-	} );
-	
-	_api_registerPlural( 'columns().nodes()', 'column().nodes()', function () {
-		return this.iterator( 'column-rows', function ( settings, column, i, j, rows ) {
-			return _pluck_order( settings.aoData, rows, 'anCells', column ) ;
-		}, 1 );
-	} );
-	
-	_api_registerPlural( 'columns().titles()', 'column().title()', function (title, row) {
-		return this.iterator( 'column', function ( settings, column ) {
-			// Argument shifting
-			if (typeof title === 'number') {
-				row = title;
-				title = undefined;
-			}
-	
-			var span = $('span.dt-column-title', this.column(column).header(row));
-	
-			if (title !== undefined) {
-				span.html(title);
-				return this;
-			}
-	
-			return span.html();
-		}, 1 );
-	} );
-	
-	_api_registerPlural( 'columns().types()', 'column().type()', function () {
-		return this.iterator( 'column', function ( settings, column ) {
-			var type = settings.aoColumns[column].sType;
-	
-			// If the type was invalidated, then resolve it. This actually does
-			// all columns at the moment. Would only happen once if getting all
-			// column's data types.
-			if (! type) {
-				_fnColumnTypes(settings);
-			}
-	
-			return type;
-		}, 1 );
-	} );
-	
-	_api_registerPlural( 'columns().visible()', 'column().visible()', function ( vis, calc ) {
-		var that = this;
-		var changed = [];
-		var ret = this.iterator( 'column', function ( settings, column ) {
-			if ( vis === undefined ) {
-				return settings.aoColumns[ column ].bVisible;
-			} // else
-			
-			if (__setColumnVis( settings, column, vis )) {
-				changed.push(column);
-			}
-		} );
-	
-		// Group the column visibility changes
-		if ( vis !== undefined ) {
-			this.iterator( 'table', function ( settings ) {
-				// Redraw the header after changes
-				_fnDrawHead( settings, settings.aoHeader );
-				_fnDrawHead( settings, settings.aoFooter );
-		
-				// Update colspan for no records display. Child rows and extensions will use their own
-				// listeners to do this - only need to update the empty table item here
-				if ( ! settings.aiDisplay.length ) {
-					$(settings.nTBody).find('td[colspan]').attr('colspan', _fnVisbleColumns(settings));
-				}
-		
-				_fnSaveState( settings );
-	
-				// Second loop once the first is done for events
-				that.iterator( 'column', function ( settings, column ) {
-					if (changed.includes(column)) {
-						_fnCallbackFire( settings, null, 'column-visibility', [settings, column, vis, calc] );
-					}
-				} );
-	
-				if ( changed.length && (calc === undefined || calc) ) {
-					that.columns.adjust();
-				}
-			});
-		}
-	
-		return ret;
-	} );
-	
-	_api_registerPlural( 'columns().widths()', 'column().width()', function () {
-		// Injects a fake row into the table for just a moment so the widths can
-		// be read, regardless of colspan in the header and rows being present in
-		// the body
-		var columns = this.columns(':visible').count();
-		var row = $('<tr>').html('<td>' + Array(columns).join('</td><td>') + '</td>');
-	
-		$(this.table().body()).append(row);
-	
-		var widths = row.children().map(function () {
-			return $(this).outerWidth();
-		});
-	
-		row.remove();
-		
-		return this.iterator( 'column', function ( settings, column ) {
-			var visIdx = _fnColumnIndexToVisible( settings, column );
-	
-			return visIdx !== null ? widths[visIdx] : 0;
-		}, 1);
-	} );
-	
-	_api_registerPlural( 'columns().indexes()', 'column().index()', function ( type ) {
-		return this.iterator( 'column', function ( settings, column ) {
-			return type === 'visible' ?
-				_fnColumnIndexToVisible( settings, column ) :
-				column;
-		}, 1 );
-	} );
-	
-	_api_register( 'columns.adjust()', function () {
-		return this.iterator( 'table', function ( settings ) {
-			_fnAdjustColumnSizing( settings );
-		}, 1 );
-	} );
-	
-	_api_register( 'column.index()', function ( type, idx ) {
-		if ( this.context.length !== 0 ) {
-			var ctx = this.context[0];
-	
-			if ( type === 'fromVisible' || type === 'toData' ) {
-				return _fnVisibleToColumnIndex( ctx, idx );
-			}
-			else if ( type === 'fromData' || type === 'toVisible' ) {
-				return _fnColumnIndexToVisible( ctx, idx );
-			}
-		}
-	} );
-	
-	_api_register( 'column()', function ( selector, opts ) {
-		return _selector_first( this.columns( selector, opts ) );
-	} );
-	
-	var __cell_selector = function ( settings, selector, opts )
-	{
-		var data = settings.aoData;
-		var rows = _selector_row_indexes( settings, opts );
-		var cells = _removeEmpty( _pluck_order( data, rows, 'anCells' ) );
-		var allCells = $(_flatten( [], cells ));
-		var row;
-		var columns = settings.aoColumns.length;
-		var a, i, ien, j, o, host;
-	
-		var run = function ( s ) {
-			var fnSelector = typeof s === 'function';
-	
-			if ( s === null || s === undefined || fnSelector ) {
-				// All cells and function selectors
-				a = [];
-	
-				for ( i=0, ien=rows.length ; i<ien ; i++ ) {
-					row = rows[i];
-	
-					for ( j=0 ; j<columns ; j++ ) {
-						o = {
-							row: row,
-							column: j
-						};
-	
-						if ( fnSelector ) {
-							// Selector - function
-							host = data[ row ];
-	
-							if ( s( o, _fnGetCellData(settings, row, j), host.anCells ? host.anCells[j] : null ) ) {
-								a.push( o );
-							}
-						}
-						else {
-							// Selector - all
-							a.push( o );
-						}
-					}
-				}
-	
-				return a;
-			}
-			
-			// Selector - index
-			if ( $.isPlainObject( s ) ) {
-				// Valid cell index and its in the array of selectable rows
-				return s.column !== undefined && s.row !== undefined && rows.indexOf(s.row) !== -1 ?
-					[s] :
-					[];
-			}
-	
-			// Selector - jQuery filtered cells
-			var jqResult = allCells
-				.filter( s )
-				.map( function (i, el) {
-					return { // use a new object, in case someone changes the values
-						row:    el._DT_CellIndex.row,
-						column: el._DT_CellIndex.column
-					};
-				} )
-				.toArray();
-	
-			if ( jqResult.length || ! s.nodeName ) {
-				return jqResult;
-			}
-	
-			// Otherwise the selector is a node, and there is one last option - the
-			// element might be a child of an element which has dt-row and dt-column
-			// data attributes
-			host = $(s).closest('*[data-dt-row]');
-			return host.length ?
-				[ {
-					row: host.data('dt-row'),
-					column: host.data('dt-column')
-				} ] :
-				[];
-		};
-	
-		return _selector_run( 'cell', selector, run, settings, opts );
-	};
-	
-	
-	
-	
-	_api_register( 'cells()', function ( rowSelector, columnSelector, opts ) {
-		// Argument shifting
-		if ( $.isPlainObject( rowSelector ) ) {
-			// Indexes
-			if ( rowSelector.row === undefined ) {
-				// Selector options in first parameter
-				opts = rowSelector;
-				rowSelector = null;
-			}
-			else {
-				// Cell index objects in first parameter
-				opts = columnSelector;
-				columnSelector = null;
-			}
-		}
-		if ( $.isPlainObject( columnSelector ) ) {
-			opts = columnSelector;
-			columnSelector = null;
-		}
-	
-		// Cell selector
-		if ( columnSelector === null || columnSelector === undefined ) {
-			return this.iterator( 'table', function ( settings ) {
-				return __cell_selector( settings, rowSelector, _selector_opts( opts ) );
-			} );
-		}
-	
-		// The default built in options need to apply to row and columns
-		var internalOpts = opts ? {
-			page: opts.page,
-			order: opts.order,
-			search: opts.search
-		} : {};
-	
-		// Row + column selector
-		var columns = this.columns( columnSelector, internalOpts );
-		var rows = this.rows( rowSelector, internalOpts );
-		var i, ien, j, jen;
-	
-		var cellsNoOpts = this.iterator( 'table', function ( settings, idx ) {
-			var a = [];
-	
-			for ( i=0, ien=rows[idx].length ; i<ien ; i++ ) {
-				for ( j=0, jen=columns[idx].length ; j<jen ; j++ ) {
-					a.push( {
-						row:    rows[idx][i],
-						column: columns[idx][j]
-					} );
-				}
-			}
-	
-			return a;
-		}, 1 );
-	
-		// There is currently only one extension which uses a cell selector extension
-		// It is a _major_ performance drag to run this if it isn't needed, so this is
-		// an extension specific check at the moment
-		var cells = opts && opts.selected ?
-			this.cells( cellsNoOpts, opts ) :
-			cellsNoOpts;
-	
-		$.extend( cells.selector, {
-			cols: columnSelector,
-			rows: rowSelector,
-			opts: opts
-		} );
-	
-		return cells;
-	} );
-	
-	
-	_api_registerPlural( 'cells().nodes()', 'cell().node()', function () {
-		return this.iterator( 'cell', function ( settings, row, column ) {
-			var data = settings.aoData[ row ];
-	
-			return data && data.anCells ?
-				data.anCells[ column ] :
-				undefined;
-		}, 1 );
-	} );
-	
-	
-	_api_register( 'cells().data()', function () {
-		return this.iterator( 'cell', function ( settings, row, column ) {
-			return _fnGetCellData( settings, row, column );
-		}, 1 );
-	} );
-	
-	
-	_api_registerPlural( 'cells().cache()', 'cell().cache()', function ( type ) {
-		type = type === 'search' ? '_aFilterData' : '_aSortData';
-	
-		return this.iterator( 'cell', function ( settings, row, column ) {
-			return settings.aoData[ row ][ type ][ column ];
-		}, 1 );
-	} );
-	
-	
-	_api_registerPlural( 'cells().render()', 'cell().render()', function ( type ) {
-		return this.iterator( 'cell', function ( settings, row, column ) {
-			return _fnGetCellData( settings, row, column, type );
-		}, 1 );
-	} );
-	
-	
-	_api_registerPlural( 'cells().indexes()', 'cell().index()', function () {
-		return this.iterator( 'cell', function ( settings, row, column ) {
-			return {
-				row: row,
-				column: column,
-				columnVisible: _fnColumnIndexToVisible( settings, column )
-			};
-		}, 1 );
-	} );
-	
-	
-	_api_registerPlural( 'cells().invalidate()', 'cell().invalidate()', function ( src ) {
-		return this.iterator( 'cell', function ( settings, row, column ) {
-			_fnInvalidate( settings, row, src, column );
-		} );
-	} );
-	
-	
-	
-	_api_register( 'cell()', function ( rowSelector, columnSelector, opts ) {
-		return _selector_first( this.cells( rowSelector, columnSelector, opts ) );
-	} );
-	
-	
-	_api_register( 'cell().data()', function ( data ) {
-		var ctx = this.context;
-		var cell = this[0];
-	
-		if ( data === undefined ) {
-			// Get
-			return ctx.length && cell.length ?
-				_fnGetCellData( ctx[0], cell[0].row, cell[0].column ) :
-				undefined;
-		}
-	
-		// Set
-		_fnSetCellData( ctx[0], cell[0].row, cell[0].column, data );
-		_fnInvalidate( ctx[0], cell[0].row, 'data', cell[0].column );
-	
-		return this;
-	} );
-	
-	
-	
-	/**
-	 * Get current ordering (sorting) that has been applied to the table.
-	 *
-	 * @returns {array} 2D array containing the sorting information for the first
-	 *   table in the current context. Each element in the parent array represents
-	 *   a column being sorted upon (i.e. multi-sorting with two columns would have
-	 *   2 inner arrays). The inner arrays may have 2 or 3 elements. The first is
-	 *   the column index that the sorting condition applies to, the second is the
-	 *   direction of the sort (`desc` or `asc`) and, optionally, the third is the
-	 *   index of the sorting order from the `column.sorting` initialisation array.
-	 *//**
-	 * Set the ordering for the table.
-	 *
-	 * @param {integer} order Column index to sort upon.
-	 * @param {string} direction Direction of the sort to be applied (`asc` or `desc`)
-	 * @returns {DataTables.Api} this
-	 *//**
-	 * Set the ordering for the table.
-	 *
-	 * @param {array} order 1D array of sorting information to be applied.
-	 * @param {array} [...] Optional additional sorting conditions
-	 * @returns {DataTables.Api} this
-	 *//**
-	 * Set the ordering for the table.
-	 *
-	 * @param {array} order 2D array of sorting information to be applied.
-	 * @returns {DataTables.Api} this
-	 */
-	_api_register( 'order()', function ( order, dir ) {
-		var ctx = this.context;
-		var args = Array.prototype.slice.call( arguments );
-	
-		if ( order === undefined ) {
-			// get
-			return ctx.length !== 0 ?
-				ctx[0].aaSorting :
-				undefined;
-		}
-	
-		// set
-		if ( typeof order === 'number' ) {
-			// Simple column / direction passed in
-			order = [ [ order, dir ] ];
-		}
-		else if ( args.length > 1 ) {
-			// Arguments passed in (list of 1D arrays)
-			order = args;
-		}
-		// otherwise a 2D array was passed in
-	
-		return this.iterator( 'table', function ( settings ) {
-			settings.aaSorting = Array.isArray(order) ? order.slice() : order;
-		} );
-	} );
-	
-	
-	/**
-	 * Attach a sort listener to an element for a given column
-	 *
-	 * @param {node|jQuery|string} node Identifier for the element(s) to attach the
-	 *   listener to. This can take the form of a single DOM node, a jQuery
-	 *   collection of nodes or a jQuery selector which will identify the node(s).
-	 * @param {integer} column the column that a click on this node will sort on
-	 * @param {function} [callback] callback function when sort is run
-	 * @returns {DataTables.Api} this
-	 */
-	_api_register( 'order.listener()', function ( node, column, callback ) {
-		return this.iterator( 'table', function ( settings ) {
-			_fnSortAttachListener(settings, node, {}, column, callback);
-		} );
-	} );
-	
-	
-	_api_register( 'order.fixed()', function ( set ) {
-		if ( ! set ) {
-			var ctx = this.context;
-			var fixed = ctx.length ?
-				ctx[0].aaSortingFixed :
-				undefined;
-	
-			return Array.isArray( fixed ) ?
-				{ pre: fixed } :
-				fixed;
-		}
-	
-		return this.iterator( 'table', function ( settings ) {
-			settings.aaSortingFixed = $.extend( true, {}, set );
-		} );
-	} );
-	
-	
-	// Order by the selected column(s)
-	_api_register( [
-		'columns().order()',
-		'column().order()'
-	], function ( dir ) {
-		var that = this;
-	
-		if ( ! dir ) {
-			return this.iterator( 'column', function ( settings, idx ) {
-				var sort = _fnSortFlatten( settings );
-	
-				for ( var i=0, ien=sort.length ; i<ien ; i++ ) {
-					if ( sort[i].col === idx ) {
-						return sort[i].dir;
-					}
-				}
-	
-				return null;
-			}, 1 );
-		}
-		else {
-			return this.iterator( 'table', function ( settings, i ) {
-				settings.aaSorting = that[i].map( function (col) {
-					return [ col, dir ];
-				} );
-			} );
-		}
-	} );
-	
-	_api_registerPlural('columns().orderable()', 'column().orderable()', function ( directions ) {
-		return this.iterator( 'column', function ( settings, idx ) {
-			var col = settings.aoColumns[idx];
-	
-			return directions ?
-				col.asSorting :
-				col.bSortable;
-		}, 1 );
-	} );
-	
-	
-	_api_register( 'processing()', function ( show ) {
-		return this.iterator( 'table', function ( ctx ) {
-			_fnProcessingDisplay( ctx, show );
-		} );
-	} );
-	
-	
-	_api_register( 'search()', function ( input, regex, smart, caseInsen ) {
-		var ctx = this.context;
-	
-		if ( input === undefined ) {
-			// get
-			return ctx.length !== 0 ?
-				ctx[0].oPreviousSearch.search :
-				undefined;
-		}
-	
-		// set
-		return this.iterator( 'table', function ( settings ) {
-			if ( ! settings.oFeatures.bFilter ) {
-				return;
-			}
-	
-			if (typeof regex === 'object') {
-				// New style options to pass to the search builder
-				_fnFilterComplete( settings, $.extend( settings.oPreviousSearch, regex, {
-					search: input
-				} ) );
-			}
-			else {
-				// Compat for the old options
-				_fnFilterComplete( settings, $.extend( settings.oPreviousSearch, {
-					search: input,
-					regex:  regex === null ? false : regex,
-					smart:  smart === null ? true  : smart,
-					caseInsensitive: caseInsen === null ? true : caseInsen
-				} ) );
-			}
-		} );
-	} );
-	
-	_api_register( 'search.fixed()', function ( name, search ) {
-		var ret = this.iterator( true, 'table', function ( settings ) {
-			var fixed = settings.searchFixed;
-	
-			if (! name) {
-				return Object.keys(fixed)
-			}
-			else if (search === undefined) {
-				return fixed[name];
-			}
-			else if (search === null) {
-				delete fixed[name];
-			}
-			else {
-				fixed[name] = search;
-			}
-	
-			return this;
-		} );
-	
-		return name !== undefined && search === undefined
-			? ret[0]
-			: ret;
-	} );
-	
-	_api_registerPlural(
-		'columns().search()',
-		'column().search()',
-		function ( input, regex, smart, caseInsen ) {
-			return this.iterator( 'column', function ( settings, column ) {
-				var preSearch = settings.aoPreSearchCols;
-	
-				if ( input === undefined ) {
-					// get
-					return preSearch[ column ].search;
-				}
-	
-				// set
-				if ( ! settings.oFeatures.bFilter ) {
-					return;
-				}
-	
-				if (typeof regex === 'object') {
-					// New style options to pass to the search builder
-					$.extend( preSearch[ column ], regex, {
-						search: input
-					} );
-				}
-				else {
-					// Old style (with not all options available)
-					$.extend( preSearch[ column ], {
-						search: input,
-						regex:  regex === null ? false : regex,
-						smart:  smart === null ? true  : smart,
-						caseInsensitive: caseInsen === null ? true : caseInsen
-					} );
-				}
-	
-				_fnFilterComplete( settings, settings.oPreviousSearch );
-			} );
-		}
-	);
-	
-	_api_register([
-			'columns().search.fixed()',
-			'column().search.fixed()'
-		],
-		function ( name, search ) {
-			var ret = this.iterator( true, 'column', function ( settings, colIdx ) {
-				var fixed = settings.aoColumns[colIdx].searchFixed;
-	
-				if (! name) {
-					return Object.keys(fixed)
-				}
-				else if (search === undefined) {
-					return fixed[name];
-				}
-				else if (search === null) {
-					delete fixed[name];
-				}
-				else {
-					fixed[name] = search;
-				}
-	
-				return this;
-			} );
-	
-			return name !== undefined && search === undefined
-				? ret[0]
-				: ret;
-		}
-	);
-	/*
-	 * State API methods
-	 */
-	
-	_api_register( 'state()', function ( set, ignoreTime ) {
-		// getter
-		if ( ! set ) {
-			return this.context.length ?
-				this.context[0].oSavedState :
-				null;
-		}
-	
-		var setMutate = $.extend( true, {}, set );
-	
-		// setter
-		return this.iterator( 'table', function ( settings ) {
-			if ( ignoreTime !== false ) {
-				setMutate.time = +new Date() + 100;
-			}
-	
-			_fnImplementState( settings, setMutate, function(){} );
-		} );
-	} );
-	
-	
-	_api_register( 'state.clear()', function () {
-		return this.iterator( 'table', function ( settings ) {
-			// Save an empty object
-			settings.fnStateSaveCallback.call( settings.oInstance, settings, {} );
-		} );
-	} );
-	
-	
-	_api_register( 'state.loaded()', function () {
-		return this.context.length ?
-			this.context[0].oLoadedState :
-			null;
-	} );
-	
-	
-	_api_register( 'state.save()', function () {
-		return this.iterator( 'table', function ( settings ) {
-			_fnSaveState( settings );
-		} );
-	} );
-	
-	/**
-	 * Set the libraries that DataTables uses, or the global objects.
-	 * Note that the arguments can be either way around (legacy support)
-	 * and the second is optional. See docs.
-	 */
-	DataTable.use = function (arg1, arg2) {
-		// Reverse arguments for legacy support
-		var module = typeof arg1 === 'string'
-			? arg2
-			: arg1;
-		var type = typeof arg2 === 'string'
-			? arg2
-			: arg1;
-	
-		// Getter
-		if (module === undefined && typeof type === 'string') {
-			switch (type) {
-				case 'lib':
-				case 'jq':
-					return $;
-	
-				case 'win':
-					return window;
-	
-				case 'datetime':
-					return DataTable.DateTime;
-	
-				case 'luxon':
-					return __luxon;
-	
-				case 'moment':
-					return __moment;
-	
-				default:
-					return null;
-			}
-		}
-	
-		// Setter
-		if (type === 'lib' || type === 'jq' || (module && module.fn && module.fn.jquery)) {
-			$ = module;
-		}
-		else if (type == 'win' || (module && module.document)) {
-			window = module;
-			document = module.document;
-		}
-		else if (type === 'datetime' || (module && module.type === 'DateTime')) {
-			DataTable.DateTime = module;
-		}
-		else if (type === 'luxon' || (module && module.FixedOffsetZone)) {
-			__luxon = module;
-		}
-		else if (type === 'moment' || (module && module.isMoment)) {
-			__moment = module;
-		}
-	}
-	
-	/**
-	 * CommonJS factory function pass through. This will check if the arguments
-	 * given are a window object or a jQuery object. If so they are set
-	 * accordingly.
-	 * @param {*} root Window
-	 * @param {*} jq jQUery
-	 * @returns {boolean} Indicator
-	 */
-	DataTable.factory = function (root, jq) {
-		var is = false;
-	
-		// Test if the first parameter is a window object
-		if (root && root.document) {
-			window = root;
-			document = root.document;
-		}
-	
-		// Test if the second parameter is a jQuery object
-		if (jq && jq.fn && jq.fn.jquery) {
-			$ = jq;
-			is = true;
-		}
-	
-		return is;
-	}
-	
-	/**
-	 * Provide a common method for plug-ins to check the version of DataTables being
-	 * used, in order to ensure compatibility.
-	 *
-	 *  @param {string} version Version string to check for, in the format "X.Y.Z".
-	 *    Note that the formats "X" and "X.Y" are also acceptable.
-	 *  @param {string} [version2=current DataTables version] As above, but optional.
-	 *   If not given the current DataTables version will be used.
-	 *  @returns {boolean} true if this version of DataTables is greater or equal to
-	 *    the required version, or false if this version of DataTales is not
-	 *    suitable
-	 *  @static
-	 *  @dtopt API-Static
-	 *
-	 *  @example
-	 *    alert( $.fn.dataTable.versionCheck( '1.9.0' ) );
-	 */
-	DataTable.versionCheck = function( version, version2 )
-	{
-		var aThis = version2 ?
-			version2.split('.') :
-			DataTable.version.split('.');
-		var aThat = version.split('.');
-		var iThis, iThat;
-	
-		for ( var i=0, iLen=aThat.length ; i<iLen ; i++ ) {
-			iThis = parseInt( aThis[i], 10 ) || 0;
-			iThat = parseInt( aThat[i], 10 ) || 0;
-	
-			// Parts are the same, keep comparing
-			if (iThis === iThat) {
-				continue;
-			}
-	
-			// Parts are different, return immediately
-			return iThis > iThat;
-		}
-	
-		return true;
-	};
-	
-	
-	/**
-	 * Check if a `<table>` node is a DataTable table already or not.
-	 *
-	 *  @param {node|jquery|string} table Table node, jQuery object or jQuery
-	 *      selector for the table to test. Note that if more than more than one
-	 *      table is passed on, only the first will be checked
-	 *  @returns {boolean} true the table given is a DataTable, or false otherwise
-	 *  @static
-	 *  @dtopt API-Static
-	 *
-	 *  @example
-	 *    if ( ! $.fn.DataTable.isDataTable( '#example' ) ) {
-	 *      $('#example').dataTable();
-	 *    }
-	 */
-	DataTable.isDataTable = function ( table )
-	{
-		var t = $(table).get(0);
-		var is = false;
-	
-		if ( table instanceof DataTable.Api ) {
-			return true;
-		}
-	
-		$.each( DataTable.settings, function (i, o) {
-			var head = o.nScrollHead ? $('table', o.nScrollHead)[0] : null;
-			var foot = o.nScrollFoot ? $('table', o.nScrollFoot)[0] : null;
-	
-			if ( o.nTable === t || head === t || foot === t ) {
-				is = true;
-			}
-		} );
-	
-		return is;
-	};
-	
-	
-	/**
-	 * Get all DataTable tables that have been initialised - optionally you can
-	 * select to get only currently visible tables.
-	 *
-	 *  @param {boolean} [visible=false] Flag to indicate if you want all (default)
-	 *    or visible tables only.
-	 *  @returns {array} Array of `table` nodes (not DataTable instances) which are
-	 *    DataTables
-	 *  @static
-	 *  @dtopt API-Static
-	 *
-	 *  @example
-	 *    $.each( $.fn.dataTable.tables(true), function () {
-	 *      $(table).DataTable().columns.adjust();
-	 *    } );
-	 */
-	DataTable.tables = function ( visible )
-	{
-		var api = false;
-	
-		if ( $.isPlainObject( visible ) ) {
-			api = visible.api;
-			visible = visible.visible;
-		}
-	
-		var a = DataTable.settings
-			.filter( function (o) {
-				return !visible || (visible && $(o.nTable).is(':visible')) 
-					? true
-					: false;
-			} )
-			.map( function (o) {
-				return o.nTable;
-			});
-	
-		return api ?
-			new _Api( a ) :
-			a;
-	};
-	
-	
-	/**
-	 * Convert from camel case parameters to Hungarian notation. This is made public
-	 * for the extensions to provide the same ability as DataTables core to accept
-	 * either the 1.9 style Hungarian notation, or the 1.10+ style camelCase
-	 * parameters.
-	 *
-	 *  @param {object} src The model object which holds all parameters that can be
-	 *    mapped.
-	 *  @param {object} user The object to convert from camel case to Hungarian.
-	 *  @param {boolean} force When set to `true`, properties which already have a
-	 *    Hungarian value in the `user` object will be overwritten. Otherwise they
-	 *    won't be.
-	 */
-	DataTable.camelToHungarian = _fnCamelToHungarian;
-	
-	
-	
-	/**
-	 *
-	 */
-	_api_register( '$()', function ( selector, opts ) {
-		var
-			rows   = this.rows( opts ).nodes(), // Get all rows
-			jqRows = $(rows);
-	
-		return $( [].concat(
-			jqRows.filter( selector ).toArray(),
-			jqRows.find( selector ).toArray()
-		) );
-	} );
-	
-	
-	// jQuery functions to operate on the tables
-	$.each( [ 'on', 'one', 'off' ], function (i, key) {
-		_api_register( key+'()', function ( /* event, handler */ ) {
-			var args = Array.prototype.slice.call(arguments);
-	
-			// Add the `dt` namespace automatically if it isn't already present
-			args[0] = args[0].split( /\s/ ).map( function ( e ) {
-				return ! e.match(/\.dt\b/) ?
-					e+'.dt' :
-					e;
-				} ).join( ' ' );
-	
-			var inst = $( this.tables().nodes() );
-			inst[key].apply( inst, args );
-			return this;
-		} );
-	} );
-	
-	
-	_api_register( 'clear()', function () {
-		return this.iterator( 'table', function ( settings ) {
-			_fnClearTable( settings );
-		} );
-	} );
-	
-	
-	_api_register( 'error()', function (msg) {
-		return this.iterator( 'table', function ( settings ) {
-			_fnLog( settings, 0, msg );
-		} );
-	} );
-	
-	
-	_api_register( 'settings()', function () {
-		return new _Api( this.context, this.context );
-	} );
-	
-	
-	_api_register( 'init()', function () {
-		var ctx = this.context;
-		return ctx.length ? ctx[0].oInit : null;
-	} );
-	
-	
-	_api_register( 'data()', function () {
-		return this.iterator( 'table', function ( settings ) {
-			return _pluck( settings.aoData, '_aData' );
-		} ).flatten();
-	} );
-	
-	
-	_api_register( 'trigger()', function ( name, args, bubbles ) {
-		return this.iterator( 'table', function ( settings ) {
-			return _fnCallbackFire( settings, null, name, args, bubbles );
-		} ).flatten();
-	} );
-	
-	
-	_api_register( 'ready()', function ( fn ) {
-		var ctx = this.context;
-	
-		// Get status of first table
-		if (! fn) {
-			return ctx.length
-				? (ctx[0]._bInitComplete || false)
-				: null;
-		}
-	
-		// Function to run either once the table becomes ready or
-		// immediately if it is already ready.
-		return this.tables().every(function () {
-			if (this.context[0]._bInitComplete) {
-				fn.call(this);
-			}
-			else {
-				this.on('init.dt.DT', function () {
-					fn.call(this);
-				});
-			}
-		} );
-	} );
-	
-	
-	_api_register( 'destroy()', function ( remove ) {
-		remove = remove || false;
-	
-		return this.iterator( 'table', function ( settings ) {
-			var classes   = settings.oClasses;
-			var table     = settings.nTable;
-			var tbody     = settings.nTBody;
-			var thead     = settings.nTHead;
-			var tfoot     = settings.nTFoot;
-			var jqTable   = $(table);
-			var jqTbody   = $(tbody);
-			var jqWrapper = $(settings.nTableWrapper);
-			var rows      = settings.aoData.map( function (r) { return r ? r.nTr : null; } );
-			var orderClasses = classes.order;
-	
-			// Flag to note that the table is currently being destroyed - no action
-			// should be taken
-			settings.bDestroying = true;
-	
-			// Fire off the destroy callbacks for plug-ins etc
-			_fnCallbackFire( settings, "aoDestroyCallback", "destroy", [settings], true );
-	
-			// If not being removed from the document, make all columns visible
-			if ( ! remove ) {
-				new _Api( settings ).columns().visible( true );
-			}
-	
-			// Blitz all `DT` namespaced events (these are internal events, the
-			// lowercase, `dt` events are user subscribed and they are responsible
-			// for removing them
-			jqWrapper.off('.DT').find(':not(tbody *)').off('.DT');
-			$(window).off('.DT-'+settings.sInstance);
-	
-			// When scrolling we had to break the table up - restore it
-			if ( table != thead.parentNode ) {
-				jqTable.children('thead').detach();
-				jqTable.append( thead );
-			}
-	
-			if ( tfoot && table != tfoot.parentNode ) {
-				jqTable.children('tfoot').detach();
-				jqTable.append( tfoot );
-			}
-	
-			settings.colgroup.remove();
-	
-			settings.aaSorting = [];
-			settings.aaSortingFixed = [];
-			_fnSortingClasses( settings );
-	
-			$('th, td', thead)
-				.removeClass(
-					orderClasses.canAsc + ' ' +
-					orderClasses.canDesc + ' ' +
-					orderClasses.isAsc + ' ' +
-					orderClasses.isDesc
-				)
-				.css('width', '');
-	
-			// Add the TR elements back into the table in their original order
-			jqTbody.children().detach();
-			jqTbody.append( rows );
-	
-			var orig = settings.nTableWrapper.parentNode;
-			var insertBefore = settings.nTableWrapper.nextSibling;
-	
-			// Remove the DataTables generated nodes, events and classes
-			var removedMethod = remove ? 'remove' : 'detach';
-			jqTable[ removedMethod ]();
-			jqWrapper[ removedMethod ]();
-	
-			// If we need to reattach the table to the document
-			if ( ! remove && orig ) {
-				// insertBefore acts like appendChild if !arg[1]
-				orig.insertBefore( table, insertBefore );
-	
-				// Restore the width of the original table - was read from the style property,
-				// so we can restore directly to that
-				jqTable
-					.css( 'width', settings.sDestroyWidth )
-					.removeClass( classes.table );
-			}
-	
-			/* Remove the settings object from the settings array */
-			var idx = DataTable.settings.indexOf(settings);
-			if ( idx !== -1 ) {
-				DataTable.settings.splice( idx, 1 );
-			}
-		} );
-	} );
-	
-	
-	// Add the `every()` method for rows, columns and cells in a compact form
-	$.each( [ 'column', 'row', 'cell' ], function ( i, type ) {
-		_api_register( type+'s().every()', function ( fn ) {
-			var opts = this.selector.opts;
-			var api = this;
-			var inst;
-			var counter = 0;
-	
-			return this.iterator( 'every', function ( settings, selectedIdx, tableIdx ) {
-				inst = api[ type ](selectedIdx, opts);
-	
-				if (type === 'cell') {
-					fn.call(inst, inst[0][0].row, inst[0][0].column, tableIdx, counter);
-				}
-				else {
-					fn.call(inst, selectedIdx, tableIdx, counter);
-				}
-	
-				counter++;
-			} );
-		} );
-	} );
-	
-	
-	// i18n method for extensions to be able to use the language object from the
-	// DataTable
-	_api_register( 'i18n()', function ( token, def, plural ) {
-		var ctx = this.context[0];
-		var resolved = _fnGetObjectDataFn( token )( ctx.oLanguage );
-	
-		if ( resolved === undefined ) {
-			resolved = def;
-		}
-	
-		if ( $.isPlainObject( resolved ) ) {
-			resolved = plural !== undefined && resolved[ plural ] !== undefined ?
-				resolved[ plural ] :
-				resolved._;
-		}
-	
-		return typeof resolved === 'string'
-			? resolved.replace( '%d', plural ) // nb: plural might be undefined,
-			: resolved;
-	} );
-	
-	/**
-	 * Version string for plug-ins to check compatibility. Allowed format is
-	 * `a.b.c-d` where: a:int, b:int, c:int, d:string(dev|beta|alpha). `d` is used
-	 * only for non-release builds. See https://semver.org/ for more information.
-	 *  @member
-	 *  @type string
-	 *  @default Version number
-	 */
-	DataTable.version = "2.1.8";
-	
-	/**
-	 * Private data store, containing all of the settings objects that are
-	 * created for the tables on a given page.
-	 *
-	 * Note that the `DataTable.settings` object is aliased to
-	 * `jQuery.fn.dataTableExt` through which it may be accessed and
-	 * manipulated, or `jQuery.fn.dataTable.settings`.
-	 *  @member
-	 *  @type array
-	 *  @default []
-	 *  @private
-	 */
-	DataTable.settings = [];
-	
-	/**
-	 * Object models container, for the various models that DataTables has
-	 * available to it. These models define the objects that are used to hold
-	 * the active state and configuration of the table.
-	 *  @namespace
-	 */
-	DataTable.models = {};
-	
-	
-	
-	/**
-	 * Template object for the way in which DataTables holds information about
-	 * search information for the global filter and individual column filters.
-	 *  @namespace
-	 */
-	DataTable.models.oSearch = {
-		/**
-		 * Flag to indicate if the filtering should be case insensitive or not
-		 */
-		"caseInsensitive": true,
-	
-		/**
-		 * Applied search term
-		 */
-		"search": "",
-	
-		/**
-		 * Flag to indicate if the search term should be interpreted as a
-		 * regular expression (true) or not (false) and therefore and special
-		 * regex characters escaped.
-		 */
-		"regex": false,
-	
-		/**
-		 * Flag to indicate if DataTables is to use its smart filtering or not.
-		 */
-		"smart": true,
-	
-		/**
-		 * Flag to indicate if DataTables should only trigger a search when
-		 * the return key is pressed.
-		 */
-		"return": false
-	};
-	
-	
-	
-	
-	/**
-	 * Template object for the way in which DataTables holds information about
-	 * each individual row. This is the object format used for the settings
-	 * aoData array.
-	 *  @namespace
-	 */
-	DataTable.models.oRow = {
-		/**
-		 * TR element for the row
-		 */
-		"nTr": null,
-	
-		/**
-		 * Array of TD elements for each row. This is null until the row has been
-		 * created.
-		 */
-		"anCells": null,
-	
-		/**
-		 * Data object from the original data source for the row. This is either
-		 * an array if using the traditional form of DataTables, or an object if
-		 * using mData options. The exact type will depend on the passed in
-		 * data from the data source, or will be an array if using DOM a data
-		 * source.
-		 */
-		"_aData": [],
-	
-		/**
-		 * Sorting data cache - this array is ostensibly the same length as the
-		 * number of columns (although each index is generated only as it is
-		 * needed), and holds the data that is used for sorting each column in the
-		 * row. We do this cache generation at the start of the sort in order that
-		 * the formatting of the sort data need be done only once for each cell
-		 * per sort. This array should not be read from or written to by anything
-		 * other than the master sorting methods.
-		 */
-		"_aSortData": null,
-	
-		/**
-		 * Per cell filtering data cache. As per the sort data cache, used to
-		 * increase the performance of the filtering in DataTables
-		 */
-		"_aFilterData": null,
-	
-		/**
-		 * Filtering data cache. This is the same as the cell filtering cache, but
-		 * in this case a string rather than an array. This is easily computed with
-		 * a join on `_aFilterData`, but is provided as a cache so the join isn't
-		 * needed on every search (memory traded for performance)
-		 */
-		"_sFilterRow": null,
-	
-		/**
-		 * Denote if the original data source was from the DOM, or the data source
-		 * object. This is used for invalidating data, so DataTables can
-		 * automatically read data from the original source, unless uninstructed
-		 * otherwise.
-		 */
-		"src": null,
-	
-		/**
-		 * Index in the aoData array. This saves an indexOf lookup when we have the
-		 * object, but want to know the index
-		 */
-		"idx": -1,
-	
-		/**
-		 * Cached display value
-		 */
-		displayData: null
-	};
-	
-	
-	/**
-	 * Template object for the column information object in DataTables. This object
-	 * is held in the settings aoColumns array and contains all the information that
-	 * DataTables needs about each individual column.
-	 *
-	 * Note that this object is related to {@link DataTable.defaults.column}
-	 * but this one is the internal data store for DataTables's cache of columns.
-	 * It should NOT be manipulated outside of DataTables. Any configuration should
-	 * be done through the initialisation options.
-	 *  @namespace
-	 */
-	DataTable.models.oColumn = {
-		/**
-		 * Column index.
-		 */
-		"idx": null,
-	
-		/**
-		 * A list of the columns that sorting should occur on when this column
-		 * is sorted. That this property is an array allows multi-column sorting
-		 * to be defined for a column (for example first name / last name columns
-		 * would benefit from this). The values are integers pointing to the
-		 * columns to be sorted on (typically it will be a single integer pointing
-		 * at itself, but that doesn't need to be the case).
-		 */
-		"aDataSort": null,
-	
-		/**
-		 * Define the sorting directions that are applied to the column, in sequence
-		 * as the column is repeatedly sorted upon - i.e. the first value is used
-		 * as the sorting direction when the column if first sorted (clicked on).
-		 * Sort it again (click again) and it will move on to the next index.
-		 * Repeat until loop.
-		 */
-		"asSorting": null,
-	
-		/**
-		 * Flag to indicate if the column is searchable, and thus should be included
-		 * in the filtering or not.
-		 */
-		"bSearchable": null,
-	
-		/**
-		 * Flag to indicate if the column is sortable or not.
-		 */
-		"bSortable": null,
-	
-		/**
-		 * Flag to indicate if the column is currently visible in the table or not
-		 */
-		"bVisible": null,
-	
-		/**
-		 * Store for manual type assignment using the `column.type` option. This
-		 * is held in store so we can manipulate the column's `sType` property.
-		 */
-		"_sManualType": null,
-	
-		/**
-		 * Flag to indicate if HTML5 data attributes should be used as the data
-		 * source for filtering or sorting. True is either are.
-		 */
-		"_bAttrSrc": false,
-	
-		/**
-		 * Developer definable function that is called whenever a cell is created (Ajax source,
-		 * etc) or processed for input (DOM source). This can be used as a compliment to mRender
-		 * allowing you to modify the DOM element (add background colour for example) when the
-		 * element is available.
-		 */
-		"fnCreatedCell": null,
-	
-		/**
-		 * Function to get data from a cell in a column. You should <b>never</b>
-		 * access data directly through _aData internally in DataTables - always use
-		 * the method attached to this property. It allows mData to function as
-		 * required. This function is automatically assigned by the column
-		 * initialisation method
-		 */
-		"fnGetData": null,
-	
-		/**
-		 * Function to set data for a cell in the column. You should <b>never</b>
-		 * set the data directly to _aData internally in DataTables - always use
-		 * this method. It allows mData to function as required. This function
-		 * is automatically assigned by the column initialisation method
-		 */
-		"fnSetData": null,
-	
-		/**
-		 * Property to read the value for the cells in the column from the data
-		 * source array / object. If null, then the default content is used, if a
-		 * function is given then the return from the function is used.
-		 */
-		"mData": null,
-	
-		/**
-		 * Partner property to mData which is used (only when defined) to get
-		 * the data - i.e. it is basically the same as mData, but without the
-		 * 'set' option, and also the data fed to it is the result from mData.
-		 * This is the rendering method to match the data method of mData.
-		 */
-		"mRender": null,
-	
-		/**
-		 * The class to apply to all TD elements in the table's TBODY for the column
-		 */
-		"sClass": null,
-	
-		/**
-		 * When DataTables calculates the column widths to assign to each column,
-		 * it finds the longest string in each column and then constructs a
-		 * temporary table and reads the widths from that. The problem with this
-		 * is that "mmm" is much wider then "iiii", but the latter is a longer
-		 * string - thus the calculation can go wrong (doing it properly and putting
-		 * it into an DOM object and measuring that is horribly(!) slow). Thus as
-		 * a "work around" we provide this option. It will append its value to the
-		 * text that is found to be the longest string for the column - i.e. padding.
-		 */
-		"sContentPadding": null,
-	
-		/**
-		 * Allows a default value to be given for a column's data, and will be used
-		 * whenever a null data source is encountered (this can be because mData
-		 * is set to null, or because the data source itself is null).
-		 */
-		"sDefaultContent": null,
-	
-		/**
-		 * Name for the column, allowing reference to the column by name as well as
-		 * by index (needs a lookup to work by name).
-		 */
-		"sName": null,
-	
-		/**
-		 * Custom sorting data type - defines which of the available plug-ins in
-		 * afnSortData the custom sorting will use - if any is defined.
-		 */
-		"sSortDataType": 'std',
-	
-		/**
-		 * Class to be applied to the header element when sorting on this column
-		 */
-		"sSortingClass": null,
-	
-		/**
-		 * Title of the column - what is seen in the TH element (nTh).
-		 */
-		"sTitle": null,
-	
-		/**
-		 * Column sorting and filtering type
-		 */
-		"sType": null,
-	
-		/**
-		 * Width of the column
-		 */
-		"sWidth": null,
-	
-		/**
-		 * Width of the column when it was first "encountered"
-		 */
-		"sWidthOrig": null,
-	
-		/** Cached string which is the longest in the column */
-		maxLenString: null,
-	
-		/**
-		 * Store for named searches
-		 */
-		searchFixed: null
-	};
-	
-	
-	/*
-	 * Developer note: The properties of the object below are given in Hungarian
-	 * notation, that was used as the interface for DataTables prior to v1.10, however
-	 * from v1.10 onwards the primary interface is camel case. In order to avoid
-	 * breaking backwards compatibility utterly with this change, the Hungarian
-	 * version is still, internally the primary interface, but is is not documented
-	 * - hence the @name tags in each doc comment. This allows a Javascript function
-	 * to create a map from Hungarian notation to camel case (going the other direction
-	 * would require each property to be listed, which would add around 3K to the size
-	 * of DataTables, while this method is about a 0.5K hit).
-	 *
-	 * Ultimately this does pave the way for Hungarian notation to be dropped
-	 * completely, but that is a massive amount of work and will break current
-	 * installs (therefore is on-hold until v2).
-	 */
-	
-	/**
-	 * Initialisation options that can be given to DataTables at initialisation
-	 * time.
-	 *  @namespace
-	 */
-	DataTable.defaults = {
-		/**
-		 * An array of data to use for the table, passed in at initialisation which
-		 * will be used in preference to any data which is already in the DOM. This is
-		 * particularly useful for constructing tables purely in Javascript, for
-		 * example with a custom Ajax call.
-		 */
-		"aaData": null,
-	
-	
-		/**
-		 * If ordering is enabled, then DataTables will perform a first pass sort on
-		 * initialisation. You can define which column(s) the sort is performed
-		 * upon, and the sorting direction, with this variable. The `sorting` array
-		 * should contain an array for each column to be sorted initially containing
-		 * the column's index and a direction string ('asc' or 'desc').
-		 */
-		"aaSorting": [[0,'asc']],
-	
-	
-		/**
-		 * This parameter is basically identical to the `sorting` parameter, but
-		 * cannot be overridden by user interaction with the table. What this means
-		 * is that you could have a column (visible or hidden) which the sorting
-		 * will always be forced on first - any sorting after that (from the user)
-		 * will then be performed as required. This can be useful for grouping rows
-		 * together.
-		 */
-		"aaSortingFixed": [],
-	
-	
-		/**
-		 * DataTables can be instructed to load data to display in the table from a
-		 * Ajax source. This option defines how that Ajax call is made and where to.
-		 *
-		 * The `ajax` property has three different modes of operation, depending on
-		 * how it is defined. These are:
-		 *
-		 * * `string` - Set the URL from where the data should be loaded from.
-		 * * `object` - Define properties for `jQuery.ajax`.
-		 * * `function` - Custom data get function
-		 *
-		 * `string`
-		 * --------
-		 *
-		 * As a string, the `ajax` property simply defines the URL from which
-		 * DataTables will load data.
-		 *
-		 * `object`
-		 * --------
-		 *
-		 * As an object, the parameters in the object are passed to
-		 * [jQuery.ajax](https://api.jquery.com/jQuery.ajax/) allowing fine control
-		 * of the Ajax request. DataTables has a number of default parameters which
-		 * you can override using this option. Please refer to the jQuery
-		 * documentation for a full description of the options available, although
-		 * the following parameters provide additional options in DataTables or
-		 * require special consideration:
-		 *
-		 * * `data` - As with jQuery, `data` can be provided as an object, but it
-		 *   can also be used as a function to manipulate the data DataTables sends
-		 *   to the server. The function takes a single parameter, an object of
-		 *   parameters with the values that DataTables has readied for sending. An
-		 *   object may be returned which will be merged into the DataTables
-		 *   defaults, or you can add the items to the object that was passed in and
-		 *   not return anything from the function. This supersedes `fnServerParams`
-		 *   from DataTables 1.9-.
-		 *
-		 * * `dataSrc` - By default DataTables will look for the property `data` (or
-		 *   `aaData` for compatibility with DataTables 1.9-) when obtaining data
-		 *   from an Ajax source or for server-side processing - this parameter
-		 *   allows that property to be changed. You can use Javascript dotted
-		 *   object notation to get a data source for multiple levels of nesting, or
-		 *   it my be used as a function. As a function it takes a single parameter,
-		 *   the JSON returned from the server, which can be manipulated as
-		 *   required, with the returned value being that used by DataTables as the
-		 *   data source for the table.
-		 *
-		 * * `success` - Should not be overridden it is used internally in
-		 *   DataTables. To manipulate / transform the data returned by the server
-		 *   use `ajax.dataSrc`, or use `ajax` as a function (see below).
-		 *
-		 * `function`
-		 * ----------
-		 *
-		 * As a function, making the Ajax call is left up to yourself allowing
-		 * complete control of the Ajax request. Indeed, if desired, a method other
-		 * than Ajax could be used to obtain the required data, such as Web storage
-		 * or an AIR database.
-		 *
-		 * The function is given four parameters and no return is required. The
-		 * parameters are:
-		 *
-		 * 1. _object_ - Data to send to the server
-		 * 2. _function_ - Callback function that must be executed when the required
-		 *    data has been obtained. That data should be passed into the callback
-		 *    as the only parameter
-		 * 3. _object_ - DataTables settings object for the table
-		 */
-		"ajax": null,
-	
-	
-		/**
-		 * This parameter allows you to readily specify the entries in the length drop
-		 * down menu that DataTables shows when pagination is enabled. It can be
-		 * either a 1D array of options which will be used for both the displayed
-		 * option and the value, or a 2D array which will use the array in the first
-		 * position as the value, and the array in the second position as the
-		 * displayed options (useful for language strings such as 'All').
-		 *
-		 * Note that the `pageLength` property will be automatically set to the
-		 * first value given in this array, unless `pageLength` is also provided.
-		 */
-		"aLengthMenu": [ 10, 25, 50, 100 ],
-	
-	
-		/**
-		 * The `columns` option in the initialisation parameter allows you to define
-		 * details about the way individual columns behave. For a full list of
-		 * column options that can be set, please see
-		 * {@link DataTable.defaults.column}. Note that if you use `columns` to
-		 * define your columns, you must have an entry in the array for every single
-		 * column that you have in your table (these can be null if you don't which
-		 * to specify any options).
-		 */
-		"aoColumns": null,
-	
-		/**
-		 * Very similar to `columns`, `columnDefs` allows you to target a specific
-		 * column, multiple columns, or all columns, using the `targets` property of
-		 * each object in the array. This allows great flexibility when creating
-		 * tables, as the `columnDefs` arrays can be of any length, targeting the
-		 * columns you specifically want. `columnDefs` may use any of the column
-		 * options available: {@link DataTable.defaults.column}, but it _must_
-		 * have `targets` defined in each object in the array. Values in the `targets`
-		 * array may be:
-		 *   <ul>
-		 *     <li>a string - class name will be matched on the TH for the column</li>
-		 *     <li>0 or a positive integer - column index counting from the left</li>
-		 *     <li>a negative integer - column index counting from the right</li>
-		 *     <li>the string "_all" - all columns (i.e. assign a default)</li>
-		 *   </ul>
-		 */
-		"aoColumnDefs": null,
-	
-	
-		/**
-		 * Basically the same as `search`, this parameter defines the individual column
-		 * filtering state at initialisation time. The array must be of the same size
-		 * as the number of columns, and each element be an object with the parameters
-		 * `search` and `escapeRegex` (the latter is optional). 'null' is also
-		 * accepted and the default will be used.
-		 */
-		"aoSearchCols": [],
-	
-	
-		/**
-		 * Enable or disable automatic column width calculation. This can be disabled
-		 * as an optimisation (it takes some time to calculate the widths) if the
-		 * tables widths are passed in using `columns`.
-		 */
-		"bAutoWidth": true,
-	
-	
-		/**
-		 * Deferred rendering can provide DataTables with a huge speed boost when you
-		 * are using an Ajax or JS data source for the table. This option, when set to
-		 * true, will cause DataTables to defer the creation of the table elements for
-		 * each row until they are needed for a draw - saving a significant amount of
-		 * time.
-		 */
-		"bDeferRender": true,
-	
-	
-		/**
-		 * Replace a DataTable which matches the given selector and replace it with
-		 * one which has the properties of the new initialisation object passed. If no
-		 * table matches the selector, then the new DataTable will be constructed as
-		 * per normal.
-		 */
-		"bDestroy": false,
-	
-	
-		/**
-		 * Enable or disable filtering of data. Filtering in DataTables is "smart" in
-		 * that it allows the end user to input multiple words (space separated) and
-		 * will match a row containing those words, even if not in the order that was
-		 * specified (this allow matching across multiple columns). Note that if you
-		 * wish to use filtering in DataTables this must remain 'true' - to remove the
-		 * default filtering input box and retain filtering abilities, please use
-		 * {@link DataTable.defaults.dom}.
-		 */
-		"bFilter": true,
-	
-		/**
-		 * Used only for compatiblity with DT1
-		 * @deprecated
-		 */
-		"bInfo": true,
-	
-		/**
-		 * Used only for compatiblity with DT1
-		 * @deprecated
-		 */
-		"bLengthChange": true,
-	
-		/**
-		 * Enable or disable pagination.
-		 */
-		"bPaginate": true,
-	
-	
-		/**
-		 * Enable or disable the display of a 'processing' indicator when the table is
-		 * being processed (e.g. a sort). This is particularly useful for tables with
-		 * large amounts of data where it can take a noticeable amount of time to sort
-		 * the entries.
-		 */
-		"bProcessing": false,
-	
-	
-		/**
-		 * Retrieve the DataTables object for the given selector. Note that if the
-		 * table has already been initialised, this parameter will cause DataTables
-		 * to simply return the object that has already been set up - it will not take
-		 * account of any changes you might have made to the initialisation object
-		 * passed to DataTables (setting this parameter to true is an acknowledgement
-		 * that you understand this). `destroy` can be used to reinitialise a table if
-		 * you need.
-		 */
-		"bRetrieve": false,
-	
-	
-		/**
-		 * When vertical (y) scrolling is enabled, DataTables will force the height of
-		 * the table's viewport to the given height at all times (useful for layout).
-		 * However, this can look odd when filtering data down to a small data set,
-		 * and the footer is left "floating" further down. This parameter (when
-		 * enabled) will cause DataTables to collapse the table's viewport down when
-		 * the result set will fit within the given Y height.
-		 */
-		"bScrollCollapse": false,
-	
-	
-		/**
-		 * Configure DataTables to use server-side processing. Note that the
-		 * `ajax` parameter must also be given in order to give DataTables a
-		 * source to obtain the required data for each draw.
-		 */
-		"bServerSide": false,
-	
-	
-		/**
-		 * Enable or disable sorting of columns. Sorting of individual columns can be
-		 * disabled by the `sortable` option for each column.
-		 */
-		"bSort": true,
-	
-	
-		/**
-		 * Enable or display DataTables' ability to sort multiple columns at the
-		 * same time (activated by shift-click by the user).
-		 */
-		"bSortMulti": true,
-	
-	
-		/**
-		 * Allows control over whether DataTables should use the top (true) unique
-		 * cell that is found for a single column, or the bottom (false - default).
-		 * This is useful when using complex headers.
-		 */
-		"bSortCellsTop": null,
-	
-	
-		/**
-		 * Enable or disable the addition of the classes `sorting\_1`, `sorting\_2` and
-		 * `sorting\_3` to the columns which are currently being sorted on. This is
-		 * presented as a feature switch as it can increase processing time (while
-		 * classes are removed and added) so for large data sets you might want to
-		 * turn this off.
-		 */
-		"bSortClasses": true,
-	
-	
-		/**
-		 * Enable or disable state saving. When enabled HTML5 `localStorage` will be
-		 * used to save table display information such as pagination information,
-		 * display length, filtering and sorting. As such when the end user reloads
-		 * the page the display display will match what thy had previously set up.
-		 */
-		"bStateSave": false,
-	
-	
-		/**
-		 * This function is called when a TR element is created (and all TD child
-		 * elements have been inserted), or registered if using a DOM source, allowing
-		 * manipulation of the TR element (adding classes etc).
-		 */
-		"fnCreatedRow": null,
-	
-	
-		/**
-		 * This function is called on every 'draw' event, and allows you to
-		 * dynamically modify any aspect you want about the created DOM.
-		 */
-		"fnDrawCallback": null,
-	
-	
-		/**
-		 * Identical to fnHeaderCallback() but for the table footer this function
-		 * allows you to modify the table footer on every 'draw' event.
-		 */
-		"fnFooterCallback": null,
-	
-	
-		/**
-		 * When rendering large numbers in the information element for the table
-		 * (i.e. "Showing 1 to 10 of 57 entries") DataTables will render large numbers
-		 * to have a comma separator for the 'thousands' units (e.g. 1 million is
-		 * rendered as "1,000,000") to help readability for the end user. This
-		 * function will override the default method DataTables uses.
-		 */
-		"fnFormatNumber": function ( toFormat ) {
-			return toFormat.toString().replace(
-				/\B(?=(\d{3})+(?!\d))/g,
-				this.oLanguage.sThousands
-			);
-		},
-	
-	
-		/**
-		 * This function is called on every 'draw' event, and allows you to
-		 * dynamically modify the header row. This can be used to calculate and
-		 * display useful information about the table.
-		 */
-		"fnHeaderCallback": null,
-	
-	
-		/**
-		 * The information element can be used to convey information about the current
-		 * state of the table. Although the internationalisation options presented by
-		 * DataTables are quite capable of dealing with most customisations, there may
-		 * be times where you wish to customise the string further. This callback
-		 * allows you to do exactly that.
-		 */
-		"fnInfoCallback": null,
-	
-	
-		/**
-		 * Called when the table has been initialised. Normally DataTables will
-		 * initialise sequentially and there will be no need for this function,
-		 * however, this does not hold true when using external language information
-		 * since that is obtained using an async XHR call.
-		 */
-		"fnInitComplete": null,
-	
-	
-		/**
-		 * Called at the very start of each table draw and can be used to cancel the
-		 * draw by returning false, any other return (including undefined) results in
-		 * the full draw occurring).
-		 */
-		"fnPreDrawCallback": null,
-	
-	
-		/**
-		 * This function allows you to 'post process' each row after it have been
-		 * generated for each table draw, but before it is rendered on screen. This
-		 * function might be used for setting the row class name etc.
-		 */
-		"fnRowCallback": null,
-	
-	
-		/**
-		 * Load the table state. With this function you can define from where, and how, the
-		 * state of a table is loaded. By default DataTables will load from `localStorage`
-		 * but you might wish to use a server-side database or cookies.
-		 */
-		"fnStateLoadCallback": function ( settings ) {
-			try {
-				return JSON.parse(
-					(settings.iStateDuration === -1 ? sessionStorage : localStorage).getItem(
-						'DataTables_'+settings.sInstance+'_'+location.pathname
-					)
-				);
-			} catch (e) {
-				return {};
-			}
-		},
-	
-	
-		/**
-		 * Callback which allows modification of the saved state prior to loading that state.
-		 * This callback is called when the table is loading state from the stored data, but
-		 * prior to the settings object being modified by the saved state. Note that for
-		 * plug-in authors, you should use the `stateLoadParams` event to load parameters for
-		 * a plug-in.
-		 */
-		"fnStateLoadParams": null,
-	
-	
-		/**
-		 * Callback that is called when the state has been loaded from the state saving method
-		 * and the DataTables settings object has been modified as a result of the loaded state.
-		 */
-		"fnStateLoaded": null,
-	
-	
-		/**
-		 * Save the table state. This function allows you to define where and how the state
-		 * information for the table is stored By default DataTables will use `localStorage`
-		 * but you might wish to use a server-side database or cookies.
-		 */
-		"fnStateSaveCallback": function ( settings, data ) {
-			try {
-				(settings.iStateDuration === -1 ? sessionStorage : localStorage).setItem(
-					'DataTables_'+settings.sInstance+'_'+location.pathname,
-					JSON.stringify( data )
-				);
-			} catch (e) {
-				// noop
-			}
-		},
-	
-	
-		/**
-		 * Callback which allows modification of the state to be saved. Called when the table
-		 * has changed state a new state save is required. This method allows modification of
-		 * the state saving object prior to actually doing the save, including addition or
-		 * other state properties or modification. Note that for plug-in authors, you should
-		 * use the `stateSaveParams` event to save parameters for a plug-in.
-		 */
-		"fnStateSaveParams": null,
-	
-	
-		/**
-		 * Duration for which the saved state information is considered valid. After this period
-		 * has elapsed the state will be returned to the default.
-		 * Value is given in seconds.
-		 */
-		"iStateDuration": 7200,
-	
-	
-		/**
-		 * Number of rows to display on a single page when using pagination. If
-		 * feature enabled (`lengthChange`) then the end user will be able to override
-		 * this to a custom setting using a pop-up menu.
-		 */
-		"iDisplayLength": 10,
-	
-	
-		/**
-		 * Define the starting point for data display when using DataTables with
-		 * pagination. Note that this parameter is the number of records, rather than
-		 * the page number, so if you have 10 records per page and want to start on
-		 * the third page, it should be "20".
-		 */
-		"iDisplayStart": 0,
-	
-	
-		/**
-		 * By default DataTables allows keyboard navigation of the table (sorting, paging,
-		 * and filtering) by adding a `tabindex` attribute to the required elements. This
-		 * allows you to tab through the controls and press the enter key to activate them.
-		 * The tabindex is default 0, meaning that the tab follows the flow of the document.
-		 * You can overrule this using this parameter if you wish. Use a value of -1 to
-		 * disable built-in keyboard navigation.
-		 */
-		"iTabIndex": 0,
-	
-	
-		/**
-		 * Classes that DataTables assigns to the various components and features
-		 * that it adds to the HTML table. This allows classes to be configured
-		 * during initialisation in addition to through the static
-		 * {@link DataTable.ext.oStdClasses} object).
-		 */
-		"oClasses": {},
-	
-	
-		/**
-		 * All strings that DataTables uses in the user interface that it creates
-		 * are defined in this object, allowing you to modified them individually or
-		 * completely replace them all as required.
-		 */
-		"oLanguage": {
-			/**
-			 * Strings that are used for WAI-ARIA labels and controls only (these are not
-			 * actually visible on the page, but will be read by screenreaders, and thus
-			 * must be internationalised as well).
-			 */
-			"oAria": {
-				/**
-				 * ARIA label that is added to the table headers when the column may be sorted
-				 */
-				"orderable": ": Activate to sort",
-	
-				/**
-				 * ARIA label that is added to the table headers when the column is currently being sorted
-				 */
-				"orderableReverse": ": Activate to invert sorting",
-	
-				/**
-				 * ARIA label that is added to the table headers when the column is currently being 
-				 * sorted and next step is to remove sorting
-				 */
-				"orderableRemove": ": Activate to remove sorting",
-	
-				paginate: {
-					first: 'First',
-					last: 'Last',
-					next: 'Next',
-					previous: 'Previous',
-					number: ''
-				}
-			},
-	
-			/**
-			 * Pagination string used by DataTables for the built-in pagination
-			 * control types.
-			 */
-			"oPaginate": {
-				/**
-				 * Label and character for first page button («)
-				 */
-				"sFirst": "\u00AB",
-	
-				/**
-				 * Last page button (»)
-				 */
-				"sLast": "\u00BB",
-	
-				/**
-				 * Next page button (›)
-				 */
-				"sNext": "\u203A",
-	
-				/**
-				 * Previous page button (‹)
-				 */
-				"sPrevious": "\u2039",
-			},
-	
-			/**
-			 * Plural object for the data type the table is showing
-			 */
-			entries: {
-				_: "entries",
-				1: "entry"
-			},
-	
-			/**
-			 * This string is shown in preference to `zeroRecords` when the table is
-			 * empty of data (regardless of filtering). Note that this is an optional
-			 * parameter - if it is not given, the value of `zeroRecords` will be used
-			 * instead (either the default or given value).
-			 */
-			"sEmptyTable": "No data available in table",
-	
-	
-			/**
-			 * This string gives information to the end user about the information
-			 * that is current on display on the page. The following tokens can be
-			 * used in the string and will be dynamically replaced as the table
-			 * display updates. This tokens can be placed anywhere in the string, or
-			 * removed as needed by the language requires:
-			 *
-			 * * `\_START\_` - Display index of the first record on the current page
-			 * * `\_END\_` - Display index of the last record on the current page
-			 * * `\_TOTAL\_` - Number of records in the table after filtering
-			 * * `\_MAX\_` - Number of records in the table without filtering
-			 * * `\_PAGE\_` - Current page number
-			 * * `\_PAGES\_` - Total number of pages of data in the table
-			 */
-			"sInfo": "Showing _START_ to _END_ of _TOTAL_ _ENTRIES-TOTAL_",
-	
-	
-			/**
-			 * Display information string for when the table is empty. Typically the
-			 * format of this string should match `info`.
-			 */
-			"sInfoEmpty": "Showing 0 to 0 of 0 _ENTRIES-TOTAL_",
-	
-	
-			/**
-			 * When a user filters the information in a table, this string is appended
-			 * to the information (`info`) to give an idea of how strong the filtering
-			 * is. The variable _MAX_ is dynamically updated.
-			 */
-			"sInfoFiltered": "(filtered from _MAX_ total _ENTRIES-MAX_)",
-	
-	
-			/**
-			 * If can be useful to append extra information to the info string at times,
-			 * and this variable does exactly that. This information will be appended to
-			 * the `info` (`infoEmpty` and `infoFiltered` in whatever combination they are
-			 * being used) at all times.
-			 */
-			"sInfoPostFix": "",
-	
-	
-			/**
-			 * This decimal place operator is a little different from the other
-			 * language options since DataTables doesn't output floating point
-			 * numbers, so it won't ever use this for display of a number. Rather,
-			 * what this parameter does is modify the sort methods of the table so
-			 * that numbers which are in a format which has a character other than
-			 * a period (`.`) as a decimal place will be sorted numerically.
-			 *
-			 * Note that numbers with different decimal places cannot be shown in
-			 * the same table and still be sortable, the table must be consistent.
-			 * However, multiple different tables on the page can use different
-			 * decimal place characters.
-			 */
-			"sDecimal": "",
-	
-	
-			/**
-			 * DataTables has a build in number formatter (`formatNumber`) which is
-			 * used to format large numbers that are used in the table information.
-			 * By default a comma is used, but this can be trivially changed to any
-			 * character you wish with this parameter.
-			 */
-			"sThousands": ",",
-	
-	
-			/**
-			 * Detail the action that will be taken when the drop down menu for the
-			 * pagination length option is changed. The '_MENU_' variable is replaced
-			 * with a default select list of 10, 25, 50 and 100, and can be replaced
-			 * with a custom select box if required.
-			 */
-			"sLengthMenu": "_MENU_ _ENTRIES_ per page",
-	
-	
-			/**
-			 * When using Ajax sourced data and during the first draw when DataTables is
-			 * gathering the data, this message is shown in an empty row in the table to
-			 * indicate to the end user the the data is being loaded. Note that this
-			 * parameter is not used when loading data by server-side processing, just
-			 * Ajax sourced data with client-side processing.
-			 */
-			"sLoadingRecords": "Loading...",
-	
-	
-			/**
-			 * Text which is displayed when the table is processing a user action
-			 * (usually a sort command or similar).
-			 */
-			"sProcessing": "",
-	
-	
-			/**
-			 * Details the actions that will be taken when the user types into the
-			 * filtering input text box. The variable "_INPUT_", if used in the string,
-			 * is replaced with the HTML text box for the filtering input allowing
-			 * control over where it appears in the string. If "_INPUT_" is not given
-			 * then the input box is appended to the string automatically.
-			 */
-			"sSearch": "Search:",
-	
-	
-			/**
-			 * Assign a `placeholder` attribute to the search `input` element
-			 *  @type string
-			 *  @default 
-			 *
-			 *  @dtopt Language
-			 *  @name DataTable.defaults.language.searchPlaceholder
-			 */
-			"sSearchPlaceholder": "",
-	
-	
-			/**
-			 * All of the language information can be stored in a file on the
-			 * server-side, which DataTables will look up if this parameter is passed.
-			 * It must store the URL of the language file, which is in a JSON format,
-			 * and the object has the same properties as the oLanguage object in the
-			 * initialiser object (i.e. the above parameters). Please refer to one of
-			 * the example language files to see how this works in action.
-			 */
-			"sUrl": "",
-	
-	
-			/**
-			 * Text shown inside the table records when the is no information to be
-			 * displayed after filtering. `emptyTable` is shown when there is simply no
-			 * information in the table at all (regardless of filtering).
-			 */
-			"sZeroRecords": "No matching records found"
-		},
-	
-	
-		/** The initial data order is reversed when `desc` ordering */
-		orderDescReverse: true,
-	
-	
-		/**
-		 * This parameter allows you to have define the global filtering state at
-		 * initialisation time. As an object the `search` parameter must be
-		 * defined, but all other parameters are optional. When `regex` is true,
-		 * the search string will be treated as a regular expression, when false
-		 * (default) it will be treated as a straight string. When `smart`
-		 * DataTables will use it's smart filtering methods (to word match at
-		 * any point in the data), when false this will not be done.
-		 */
-		"oSearch": $.extend( {}, DataTable.models.oSearch ),
-	
-	
-		/**
-		 * Table and control layout. This replaces the legacy `dom` option.
-		 */
-		layout: {
-			topStart: 'pageLength',
-			topEnd: 'search',
-			bottomStart: 'info',
-			bottomEnd: 'paging'
-		},
-	
-	
-		/**
-		 * Legacy DOM layout option
-		 */
-		"sDom": null,
-	
-	
-		/**
-		 * Search delay option. This will throttle full table searches that use the
-		 * DataTables provided search input element (it does not effect calls to
-		 * `dt-api search()`, providing a delay before the search is made.
-		 */
-		"searchDelay": null,
-	
-	
-		/**
-		 * DataTables features six different built-in options for the buttons to
-		 * display for pagination control:
-		 *
-		 * * `numbers` - Page number buttons only
-		 * * `simple` - 'Previous' and 'Next' buttons only
-		 * * 'simple_numbers` - 'Previous' and 'Next' buttons, plus page numbers
-		 * * `full` - 'First', 'Previous', 'Next' and 'Last' buttons
-		 * * `full_numbers` - 'First', 'Previous', 'Next' and 'Last' buttons, plus page numbers
-		 * * `first_last_numbers` - 'First' and 'Last' buttons, plus page numbers
-		 */
-		"sPaginationType": "",
-	
-	
-		/**
-		 * Enable horizontal scrolling. When a table is too wide to fit into a
-		 * certain layout, or you have a large number of columns in the table, you
-		 * can enable x-scrolling to show the table in a viewport, which can be
-		 * scrolled. This property can be `true` which will allow the table to
-		 * scroll horizontally when needed, or any CSS unit, or a number (in which
-		 * case it will be treated as a pixel measurement). Setting as simply `true`
-		 * is recommended.
-		 */
-		"sScrollX": "",
-	
-	
-		/**
-		 * This property can be used to force a DataTable to use more width than it
-		 * might otherwise do when x-scrolling is enabled. For example if you have a
-		 * table which requires to be well spaced, this parameter is useful for
-		 * "over-sizing" the table, and thus forcing scrolling. This property can by
-		 * any CSS unit, or a number (in which case it will be treated as a pixel
-		 * measurement).
-		 */
-		"sScrollXInner": "",
-	
-	
-		/**
-		 * Enable vertical scrolling. Vertical scrolling will constrain the DataTable
-		 * to the given height, and enable scrolling for any data which overflows the
-		 * current viewport. This can be used as an alternative to paging to display
-		 * a lot of data in a small area (although paging and scrolling can both be
-		 * enabled at the same time). This property can be any CSS unit, or a number
-		 * (in which case it will be treated as a pixel measurement).
-		 */
-		"sScrollY": "",
-	
-	
-		/**
-		 * __Deprecated__ The functionality provided by this parameter has now been
-		 * superseded by that provided through `ajax`, which should be used instead.
-		 *
-		 * Set the HTTP method that is used to make the Ajax call for server-side
-		 * processing or Ajax sourced data.
-		 */
-		"sServerMethod": "GET",
-	
-	
-		/**
-		 * DataTables makes use of renderers when displaying HTML elements for
-		 * a table. These renderers can be added or modified by plug-ins to
-		 * generate suitable mark-up for a site. For example the Bootstrap
-		 * integration plug-in for DataTables uses a paging button renderer to
-		 * display pagination buttons in the mark-up required by Bootstrap.
-		 *
-		 * For further information about the renderers available see
-		 * DataTable.ext.renderer
-		 */
-		"renderer": null,
-	
-	
-		/**
-		 * Set the data property name that DataTables should use to get a row's id
-		 * to set as the `id` property in the node.
-		 */
-		"rowId": "DT_RowId",
-	
-	
-		/**
-		 * Caption value
-		 */
-		"caption": null,
-	
-	
-		/**
-		 * For server-side processing - use the data from the DOM for the first draw
-		 */
-		iDeferLoading: null
-	};
-	
-	_fnHungarianMap( DataTable.defaults );
-	
-	
-	
-	/*
-	 * Developer note - See note in model.defaults.js about the use of Hungarian
-	 * notation and camel case.
-	 */
-	
-	/**
-	 * Column options that can be given to DataTables at initialisation time.
-	 *  @namespace
-	 */
-	DataTable.defaults.column = {
-		/**
-		 * Define which column(s) an order will occur on for this column. This
-		 * allows a column's ordering to take multiple columns into account when
-		 * doing a sort or use the data from a different column. For example first
-		 * name / last name columns make sense to do a multi-column sort over the
-		 * two columns.
-		 */
-		"aDataSort": null,
-		"iDataSort": -1,
-	
-		ariaTitle: '',
-	
-	
-		/**
-		 * You can control the default ordering direction, and even alter the
-		 * behaviour of the sort handler (i.e. only allow ascending ordering etc)
-		 * using this parameter.
-		 */
-		"asSorting": [ 'asc', 'desc', '' ],
-	
-	
-		/**
-		 * Enable or disable filtering on the data in this column.
-		 */
-		"bSearchable": true,
-	
-	
-		/**
-		 * Enable or disable ordering on this column.
-		 */
-		"bSortable": true,
-	
-	
-		/**
-		 * Enable or disable the display of this column.
-		 */
-		"bVisible": true,
-	
-	
-		/**
-		 * Developer definable function that is called whenever a cell is created (Ajax source,
-		 * etc) or processed for input (DOM source). This can be used as a compliment to mRender
-		 * allowing you to modify the DOM element (add background colour for example) when the
-		 * element is available.
-		 */
-		"fnCreatedCell": null,
-	
-	
-		/**
-		 * This property can be used to read data from any data source property,
-		 * including deeply nested objects / properties. `data` can be given in a
-		 * number of different ways which effect its behaviour:
-		 *
-		 * * `integer` - treated as an array index for the data source. This is the
-		 *   default that DataTables uses (incrementally increased for each column).
-		 * * `string` - read an object property from the data source. There are
-		 *   three 'special' options that can be used in the string to alter how
-		 *   DataTables reads the data from the source object:
-		 *    * `.` - Dotted Javascript notation. Just as you use a `.` in
-		 *      Javascript to read from nested objects, so to can the options
-		 *      specified in `data`. For example: `browser.version` or
-		 *      `browser.name`. If your object parameter name contains a period, use
-		 *      `\\` to escape it - i.e. `first\\.name`.
-		 *    * `[]` - Array notation. DataTables can automatically combine data
-		 *      from and array source, joining the data with the characters provided
-		 *      between the two brackets. For example: `name[, ]` would provide a
-		 *      comma-space separated list from the source array. If no characters
-		 *      are provided between the brackets, the original array source is
-		 *      returned.
-		 *    * `()` - Function notation. Adding `()` to the end of a parameter will
-		 *      execute a function of the name given. For example: `browser()` for a
-		 *      simple function on the data source, `browser.version()` for a
-		 *      function in a nested property or even `browser().version` to get an
-		 *      object property if the function called returns an object. Note that
-		 *      function notation is recommended for use in `render` rather than
-		 *      `data` as it is much simpler to use as a renderer.
-		 * * `null` - use the original data source for the row rather than plucking
-		 *   data directly from it. This action has effects on two other
-		 *   initialisation options:
-		 *    * `defaultContent` - When null is given as the `data` option and
-		 *      `defaultContent` is specified for the column, the value defined by
-		 *      `defaultContent` will be used for the cell.
-		 *    * `render` - When null is used for the `data` option and the `render`
-		 *      option is specified for the column, the whole data source for the
-		 *      row is used for the renderer.
-		 * * `function` - the function given will be executed whenever DataTables
-		 *   needs to set or get the data for a cell in the column. The function
-		 *   takes three parameters:
-		 *    * Parameters:
-		 *      * `{array|object}` The data source for the row
-		 *      * `{string}` The type call data requested - this will be 'set' when
-		 *        setting data or 'filter', 'display', 'type', 'sort' or undefined
-		 *        when gathering data. Note that when `undefined` is given for the
-		 *        type DataTables expects to get the raw data for the object back<
-		 *      * `{*}` Data to set when the second parameter is 'set'.
-		 *    * Return:
-		 *      * The return value from the function is not required when 'set' is
-		 *        the type of call, but otherwise the return is what will be used
-		 *        for the data requested.
-		 *
-		 * Note that `data` is a getter and setter option. If you just require
-		 * formatting of data for output, you will likely want to use `render` which
-		 * is simply a getter and thus simpler to use.
-		 *
-		 * Note that prior to DataTables 1.9.2 `data` was called `mDataProp`. The
-		 * name change reflects the flexibility of this property and is consistent
-		 * with the naming of mRender. If 'mDataProp' is given, then it will still
-		 * be used by DataTables, as it automatically maps the old name to the new
-		 * if required.
-		 */
-		"mData": null,
-	
-	
-		/**
-		 * This property is the rendering partner to `data` and it is suggested that
-		 * when you want to manipulate data for display (including filtering,
-		 * sorting etc) without altering the underlying data for the table, use this
-		 * property. `render` can be considered to be the the read only companion to
-		 * `data` which is read / write (then as such more complex). Like `data`
-		 * this option can be given in a number of different ways to effect its
-		 * behaviour:
-		 *
-		 * * `integer` - treated as an array index for the data source. This is the
-		 *   default that DataTables uses (incrementally increased for each column).
-		 * * `string` - read an object property from the data source. There are
-		 *   three 'special' options that can be used in the string to alter how
-		 *   DataTables reads the data from the source object:
-		 *    * `.` - Dotted Javascript notation. Just as you use a `.` in
-		 *      Javascript to read from nested objects, so to can the options
-		 *      specified in `data`. For example: `browser.version` or
-		 *      `browser.name`. If your object parameter name contains a period, use
-		 *      `\\` to escape it - i.e. `first\\.name`.
-		 *    * `[]` - Array notation. DataTables can automatically combine data
-		 *      from and array source, joining the data with the characters provided
-		 *      between the two brackets. For example: `name[, ]` would provide a
-		 *      comma-space separated list from the source array. If no characters
-		 *      are provided between the brackets, the original array source is
-		 *      returned.
-		 *    * `()` - Function notation. Adding `()` to the end of a parameter will
-		 *      execute a function of the name given. For example: `browser()` for a
-		 *      simple function on the data source, `browser.version()` for a
-		 *      function in a nested property or even `browser().version` to get an
-		 *      object property if the function called returns an object.
-		 * * `object` - use different data for the different data types requested by
-		 *   DataTables ('filter', 'display', 'type' or 'sort'). The property names
-		 *   of the object is the data type the property refers to and the value can
-		 *   defined using an integer, string or function using the same rules as
-		 *   `render` normally does. Note that an `_` option _must_ be specified.
-		 *   This is the default value to use if you haven't specified a value for
-		 *   the data type requested by DataTables.
-		 * * `function` - the function given will be executed whenever DataTables
-		 *   needs to set or get the data for a cell in the column. The function
-		 *   takes three parameters:
-		 *    * Parameters:
-		 *      * {array|object} The data source for the row (based on `data`)
-		 *      * {string} The type call data requested - this will be 'filter',
-		 *        'display', 'type' or 'sort'.
-		 *      * {array|object} The full data source for the row (not based on
-		 *        `data`)
-		 *    * Return:
-		 *      * The return value from the function is what will be used for the
-		 *        data requested.
-		 */
-		"mRender": null,
-	
-	
-		/**
-		 * Change the cell type created for the column - either TD cells or TH cells. This
-		 * can be useful as TH cells have semantic meaning in the table body, allowing them
-		 * to act as a header for a row (you may wish to add scope='row' to the TH elements).
-		 */
-		"sCellType": "td",
-	
-	
-		/**
-		 * Class to give to each cell in this column.
-		 */
-		"sClass": "",
-	
-		/**
-		 * When DataTables calculates the column widths to assign to each column,
-		 * it finds the longest string in each column and then constructs a
-		 * temporary table and reads the widths from that. The problem with this
-		 * is that "mmm" is much wider then "iiii", but the latter is a longer
-		 * string - thus the calculation can go wrong (doing it properly and putting
-		 * it into an DOM object and measuring that is horribly(!) slow). Thus as
-		 * a "work around" we provide this option. It will append its value to the
-		 * text that is found to be the longest string for the column - i.e. padding.
-		 * Generally you shouldn't need this!
-		 */
-		"sContentPadding": "",
-	
-	
-		/**
-		 * Allows a default value to be given for a column's data, and will be used
-		 * whenever a null data source is encountered (this can be because `data`
-		 * is set to null, or because the data source itself is null).
-		 */
-		"sDefaultContent": null,
-	
-	
-		/**
-		 * This parameter is only used in DataTables' server-side processing. It can
-		 * be exceptionally useful to know what columns are being displayed on the
-		 * client side, and to map these to database fields. When defined, the names
-		 * also allow DataTables to reorder information from the server if it comes
-		 * back in an unexpected order (i.e. if you switch your columns around on the
-		 * client-side, your server-side code does not also need updating).
-		 */
-		"sName": "",
-	
-	
-		/**
-		 * Defines a data source type for the ordering which can be used to read
-		 * real-time information from the table (updating the internally cached
-		 * version) prior to ordering. This allows ordering to occur on user
-		 * editable elements such as form inputs.
-		 */
-		"sSortDataType": "std",
-	
-	
-		/**
-		 * The title of this column.
-		 */
-		"sTitle": null,
-	
-	
-		/**
-		 * The type allows you to specify how the data for this column will be
-		 * ordered. Four types (string, numeric, date and html (which will strip
-		 * HTML tags before ordering)) are currently available. Note that only date
-		 * formats understood by Javascript's Date() object will be accepted as type
-		 * date. For example: "Mar 26, 2008 5:03 PM". May take the values: 'string',
-		 * 'numeric', 'date' or 'html' (by default). Further types can be adding
-		 * through plug-ins.
-		 */
-		"sType": null,
-	
-	
-		/**
-		 * Defining the width of the column, this parameter may take any CSS value
-		 * (3em, 20px etc). DataTables applies 'smart' widths to columns which have not
-		 * been given a specific width through this interface ensuring that the table
-		 * remains readable.
-		 */
-		"sWidth": null
-	};
-	
-	_fnHungarianMap( DataTable.defaults.column );
-	
-	
-	
-	/**
-	 * DataTables settings object - this holds all the information needed for a
-	 * given table, including configuration, data and current application of the
-	 * table options. DataTables does not have a single instance for each DataTable
-	 * with the settings attached to that instance, but rather instances of the
-	 * DataTable "class" are created on-the-fly as needed (typically by a
-	 * $().dataTable() call) and the settings object is then applied to that
-	 * instance.
-	 *
-	 * Note that this object is related to {@link DataTable.defaults} but this
-	 * one is the internal data store for DataTables's cache of columns. It should
-	 * NOT be manipulated outside of DataTables. Any configuration should be done
-	 * through the initialisation options.
-	 */
-	DataTable.models.oSettings = {
-		/**
-		 * Primary features of DataTables and their enablement state.
-		 */
-		"oFeatures": {
-	
-			/**
-			 * Flag to say if DataTables should automatically try to calculate the
-			 * optimum table and columns widths (true) or not (false).
-			 * Note that this parameter will be set by the initialisation routine. To
-			 * set a default use {@link DataTable.defaults}.
-			 */
-			"bAutoWidth": null,
-	
-			/**
-			 * Delay the creation of TR and TD elements until they are actually
-			 * needed by a driven page draw. This can give a significant speed
-			 * increase for Ajax source and Javascript source data, but makes no
-			 * difference at all for DOM and server-side processing tables.
-			 * Note that this parameter will be set by the initialisation routine. To
-			 * set a default use {@link DataTable.defaults}.
-			 */
-			"bDeferRender": null,
-	
-			/**
-			 * Enable filtering on the table or not. Note that if this is disabled
-			 * then there is no filtering at all on the table, including fnFilter.
-			 * To just remove the filtering input use sDom and remove the 'f' option.
-			 * Note that this parameter will be set by the initialisation routine. To
-			 * set a default use {@link DataTable.defaults}.
-			 */
-			"bFilter": null,
-	
-			/**
-			 * Used only for compatiblity with DT1
-			 * @deprecated
-			 */
-			"bInfo": true,
-	
-			/**
-			 * Used only for compatiblity with DT1
-			 * @deprecated
-			 */
-			"bLengthChange": true,
-	
-			/**
-			 * Pagination enabled or not. Note that if this is disabled then length
-			 * changing must also be disabled.
-			 * Note that this parameter will be set by the initialisation routine. To
-			 * set a default use {@link DataTable.defaults}.
-			 */
-			"bPaginate": null,
-	
-			/**
-			 * Processing indicator enable flag whenever DataTables is enacting a
-			 * user request - typically an Ajax request for server-side processing.
-			 * Note that this parameter will be set by the initialisation routine. To
-			 * set a default use {@link DataTable.defaults}.
-			 */
-			"bProcessing": null,
-	
-			/**
-			 * Server-side processing enabled flag - when enabled DataTables will
-			 * get all data from the server for every draw - there is no filtering,
-			 * sorting or paging done on the client-side.
-			 * Note that this parameter will be set by the initialisation routine. To
-			 * set a default use {@link DataTable.defaults}.
-			 */
-			"bServerSide": null,
-	
-			/**
-			 * Sorting enablement flag.
-			 * Note that this parameter will be set by the initialisation routine. To
-			 * set a default use {@link DataTable.defaults}.
-			 */
-			"bSort": null,
-	
-			/**
-			 * Multi-column sorting
-			 * Note that this parameter will be set by the initialisation routine. To
-			 * set a default use {@link DataTable.defaults}.
-			 */
-			"bSortMulti": null,
-	
-			/**
-			 * Apply a class to the columns which are being sorted to provide a
-			 * visual highlight or not. This can slow things down when enabled since
-			 * there is a lot of DOM interaction.
-			 * Note that this parameter will be set by the initialisation routine. To
-			 * set a default use {@link DataTable.defaults}.
-			 */
-			"bSortClasses": null,
-	
-			/**
-			 * State saving enablement flag.
-			 * Note that this parameter will be set by the initialisation routine. To
-			 * set a default use {@link DataTable.defaults}.
-			 */
-			"bStateSave": null
-		},
-	
-	
-		/**
-		 * Scrolling settings for a table.
-		 */
-		"oScroll": {
-			/**
-			 * When the table is shorter in height than sScrollY, collapse the
-			 * table container down to the height of the table (when true).
-			 * Note that this parameter will be set by the initialisation routine. To
-			 * set a default use {@link DataTable.defaults}.
-			 */
-			"bCollapse": null,
-	
-			/**
-			 * Width of the scrollbar for the web-browser's platform. Calculated
-			 * during table initialisation.
-			 */
-			"iBarWidth": 0,
-	
-			/**
-			 * Viewport width for horizontal scrolling. Horizontal scrolling is
-			 * disabled if an empty string.
-			 * Note that this parameter will be set by the initialisation routine. To
-			 * set a default use {@link DataTable.defaults}.
-			 */
-			"sX": null,
-	
-			/**
-			 * Width to expand the table to when using x-scrolling. Typically you
-			 * should not need to use this.
-			 * Note that this parameter will be set by the initialisation routine. To
-			 * set a default use {@link DataTable.defaults}.
-			 *  @deprecated
-			 */
-			"sXInner": null,
-	
-			/**
-			 * Viewport height for vertical scrolling. Vertical scrolling is disabled
-			 * if an empty string.
-			 * Note that this parameter will be set by the initialisation routine. To
-			 * set a default use {@link DataTable.defaults}.
-			 */
-			"sY": null
-		},
-	
-		/**
-		 * Language information for the table.
-		 */
-		"oLanguage": {
-			/**
-			 * Information callback function. See
-			 * {@link DataTable.defaults.fnInfoCallback}
-			 */
-			"fnInfoCallback": null
-		},
-	
-		/**
-		 * Browser support parameters
-		 */
-		"oBrowser": {
-			/**
-			 * Determine if the vertical scrollbar is on the right or left of the
-			 * scrolling container - needed for rtl language layout, although not
-			 * all browsers move the scrollbar (Safari).
-			 */
-			"bScrollbarLeft": false,
-	
-			/**
-			 * Browser scrollbar width
-			 */
-			"barWidth": 0
-		},
-	
-	
-		"ajax": null,
-	
-	
-		/**
-		 * Array referencing the nodes which are used for the features. The
-		 * parameters of this object match what is allowed by sDom - i.e.
-		 *   <ul>
-		 *     <li>'l' - Length changing</li>
-		 *     <li>'f' - Filtering input</li>
-		 *     <li>'t' - The table!</li>
-		 *     <li>'i' - Information</li>
-		 *     <li>'p' - Pagination</li>
-		 *     <li>'r' - pRocessing</li>
-		 *   </ul>
-		 */
-		"aanFeatures": [],
-	
-		/**
-		 * Store data information - see {@link DataTable.models.oRow} for detailed
-		 * information.
-		 */
-		"aoData": [],
-	
-		/**
-		 * Array of indexes which are in the current display (after filtering etc)
-		 */
-		"aiDisplay": [],
-	
-		/**
-		 * Array of indexes for display - no filtering
-		 */
-		"aiDisplayMaster": [],
-	
-		/**
-		 * Map of row ids to data indexes
-		 */
-		"aIds": {},
-	
-		/**
-		 * Store information about each column that is in use
-		 */
-		"aoColumns": [],
-	
-		/**
-		 * Store information about the table's header
-		 */
-		"aoHeader": [],
-	
-		/**
-		 * Store information about the table's footer
-		 */
-		"aoFooter": [],
-	
-		/**
-		 * Store the applied global search information in case we want to force a
-		 * research or compare the old search to a new one.
-		 * Note that this parameter will be set by the initialisation routine. To
-		 * set a default use {@link DataTable.defaults}.
-		 */
-		"oPreviousSearch": {},
-	
-		/**
-		 * Store for named searches
-		 */
-		searchFixed: {},
-	
-		/**
-		 * Store the applied search for each column - see
-		 * {@link DataTable.models.oSearch} for the format that is used for the
-		 * filtering information for each column.
-		 */
-		"aoPreSearchCols": [],
-	
-		/**
-		 * Sorting that is applied to the table. Note that the inner arrays are
-		 * used in the following manner:
-		 * <ul>
-		 *   <li>Index 0 - column number</li>
-		 *   <li>Index 1 - current sorting direction</li>
-		 * </ul>
-		 * Note that this parameter will be set by the initialisation routine. To
-		 * set a default use {@link DataTable.defaults}.
-		 */
-		"aaSorting": null,
-	
-		/**
-		 * Sorting that is always applied to the table (i.e. prefixed in front of
-		 * aaSorting).
-		 * Note that this parameter will be set by the initialisation routine. To
-		 * set a default use {@link DataTable.defaults}.
-		 */
-		"aaSortingFixed": [],
-	
-		/**
-		 * If restoring a table - we should restore its width
-		 */
-		"sDestroyWidth": 0,
-	
-		/**
-		 * Callback functions array for every time a row is inserted (i.e. on a draw).
-		 */
-		"aoRowCallback": [],
-	
-		/**
-		 * Callback functions for the header on each draw.
-		 */
-		"aoHeaderCallback": [],
-	
-		/**
-		 * Callback function for the footer on each draw.
-		 */
-		"aoFooterCallback": [],
-	
-		/**
-		 * Array of callback functions for draw callback functions
-		 */
-		"aoDrawCallback": [],
-	
-		/**
-		 * Array of callback functions for row created function
-		 */
-		"aoRowCreatedCallback": [],
-	
-		/**
-		 * Callback functions for just before the table is redrawn. A return of
-		 * false will be used to cancel the draw.
-		 */
-		"aoPreDrawCallback": [],
-	
-		/**
-		 * Callback functions for when the table has been initialised.
-		 */
-		"aoInitComplete": [],
-	
-	
-		/**
-		 * Callbacks for modifying the settings to be stored for state saving, prior to
-		 * saving state.
-		 */
-		"aoStateSaveParams": [],
-	
-		/**
-		 * Callbacks for modifying the settings that have been stored for state saving
-		 * prior to using the stored values to restore the state.
-		 */
-		"aoStateLoadParams": [],
-	
-		/**
-		 * Callbacks for operating on the settings object once the saved state has been
-		 * loaded
-		 */
-		"aoStateLoaded": [],
-	
-		/**
-		 * Cache the table ID for quick access
-		 */
-		"sTableId": "",
-	
-		/**
-		 * The TABLE node for the main table
-		 */
-		"nTable": null,
-	
-		/**
-		 * Permanent ref to the thead element
-		 */
-		"nTHead": null,
-	
-		/**
-		 * Permanent ref to the tfoot element - if it exists
-		 */
-		"nTFoot": null,
-	
-		/**
-		 * Permanent ref to the tbody element
-		 */
-		"nTBody": null,
-	
-		/**
-		 * Cache the wrapper node (contains all DataTables controlled elements)
-		 */
-		"nTableWrapper": null,
-	
-		/**
-		 * Indicate if all required information has been read in
-		 */
-		"bInitialised": false,
-	
-		/**
-		 * Information about open rows. Each object in the array has the parameters
-		 * 'nTr' and 'nParent'
-		 */
-		"aoOpenRows": [],
-	
-		/**
-		 * Dictate the positioning of DataTables' control elements - see
-		 * {@link DataTable.model.oInit.sDom}.
-		 * Note that this parameter will be set by the initialisation routine. To
-		 * set a default use {@link DataTable.defaults}.
-		 */
-		"sDom": null,
-	
-		/**
-		 * Search delay (in mS)
-		 */
-		"searchDelay": null,
-	
-		/**
-		 * Which type of pagination should be used.
-		 * Note that this parameter will be set by the initialisation routine. To
-		 * set a default use {@link DataTable.defaults}.
-		 */
-		"sPaginationType": "two_button",
-	
-		/**
-		 * Number of paging controls on the page. Only used for backwards compatibility
-		 */
-		pagingControls: 0,
-	
-		/**
-		 * The state duration (for `stateSave`) in seconds.
-		 * Note that this parameter will be set by the initialisation routine. To
-		 * set a default use {@link DataTable.defaults}.
-		 */
-		"iStateDuration": 0,
-	
-		/**
-		 * Array of callback functions for state saving. Each array element is an
-		 * object with the following parameters:
-		 *   <ul>
-		 *     <li>function:fn - function to call. Takes two parameters, oSettings
-		 *       and the JSON string to save that has been thus far created. Returns
-		 *       a JSON string to be inserted into a json object
-		 *       (i.e. '"param": [ 0, 1, 2]')</li>
-		 *     <li>string:sName - name of callback</li>
-		 *   </ul>
-		 */
-		"aoStateSave": [],
-	
-		/**
-		 * Array of callback functions for state loading. Each array element is an
-		 * object with the following parameters:
-		 *   <ul>
-		 *     <li>function:fn - function to call. Takes two parameters, oSettings
-		 *       and the object stored. May return false to cancel state loading</li>
-		 *     <li>string:sName - name of callback</li>
-		 *   </ul>
-		 */
-		"aoStateLoad": [],
-	
-		/**
-		 * State that was saved. Useful for back reference
-		 */
-		"oSavedState": null,
-	
-		/**
-		 * State that was loaded. Useful for back reference
-		 */
-		"oLoadedState": null,
-	
-		/**
-		 * Note if draw should be blocked while getting data
-		 */
-		"bAjaxDataGet": true,
-	
-		/**
-		 * The last jQuery XHR object that was used for server-side data gathering.
-		 * This can be used for working with the XHR information in one of the
-		 * callbacks
-		 */
-		"jqXHR": null,
-	
-		/**
-		 * JSON returned from the server in the last Ajax request
-		 */
-		"json": undefined,
-	
-		/**
-		 * Data submitted as part of the last Ajax request
-		 */
-		"oAjaxData": undefined,
-	
-		/**
-		 * Send the XHR HTTP method - GET or POST (could be PUT or DELETE if
-		 * required).
-		 * Note that this parameter will be set by the initialisation routine. To
-		 * set a default use {@link DataTable.defaults}.
-		 */
-		"sServerMethod": null,
-	
-		/**
-		 * Format numbers for display.
-		 * Note that this parameter will be set by the initialisation routine. To
-		 * set a default use {@link DataTable.defaults}.
-		 */
-		"fnFormatNumber": null,
-	
-		/**
-		 * List of options that can be used for the user selectable length menu.
-		 * Note that this parameter will be set by the initialisation routine. To
-		 * set a default use {@link DataTable.defaults}.
-		 */
-		"aLengthMenu": null,
-	
-		/**
-		 * Counter for the draws that the table does. Also used as a tracker for
-		 * server-side processing
-		 */
-		"iDraw": 0,
-	
-		/**
-		 * Indicate if a redraw is being done - useful for Ajax
-		 */
-		"bDrawing": false,
-	
-		/**
-		 * Draw index (iDraw) of the last error when parsing the returned data
-		 */
-		"iDrawError": -1,
-	
-		/**
-		 * Paging display length
-		 */
-		"_iDisplayLength": 10,
-	
-		/**
-		 * Paging start point - aiDisplay index
-		 */
-		"_iDisplayStart": 0,
-	
-		/**
-		 * Server-side processing - number of records in the result set
-		 * (i.e. before filtering), Use fnRecordsTotal rather than
-		 * this property to get the value of the number of records, regardless of
-		 * the server-side processing setting.
-		 */
-		"_iRecordsTotal": 0,
-	
-		/**
-		 * Server-side processing - number of records in the current display set
-		 * (i.e. after filtering). Use fnRecordsDisplay rather than
-		 * this property to get the value of the number of records, regardless of
-		 * the server-side processing setting.
-		 */
-		"_iRecordsDisplay": 0,
-	
-		/**
-		 * The classes to use for the table
-		 */
-		"oClasses": {},
-	
-		/**
-		 * Flag attached to the settings object so you can check in the draw
-		 * callback if filtering has been done in the draw. Deprecated in favour of
-		 * events.
-		 *  @deprecated
-		 */
-		"bFiltered": false,
-	
-		/**
-		 * Flag attached to the settings object so you can check in the draw
-		 * callback if sorting has been done in the draw. Deprecated in favour of
-		 * events.
-		 *  @deprecated
-		 */
-		"bSorted": false,
-	
-		/**
-		 * Indicate that if multiple rows are in the header and there is more than
-		 * one unique cell per column, if the top one (true) or bottom one (false)
-		 * should be used for sorting / title by DataTables.
-		 * Note that this parameter will be set by the initialisation routine. To
-		 * set a default use {@link DataTable.defaults}.
-		 */
-		"bSortCellsTop": null,
-	
-		/**
-		 * Initialisation object that is used for the table
-		 */
-		"oInit": null,
-	
-		/**
-		 * Destroy callback functions - for plug-ins to attach themselves to the
-		 * destroy so they can clean up markup and events.
-		 */
-		"aoDestroyCallback": [],
-	
-	
-		/**
-		 * Get the number of records in the current record set, before filtering
-		 */
-		"fnRecordsTotal": function ()
-		{
-			return _fnDataSource( this ) == 'ssp' ?
-				this._iRecordsTotal * 1 :
-				this.aiDisplayMaster.length;
-		},
-	
-		/**
-		 * Get the number of records in the current record set, after filtering
-		 */
-		"fnRecordsDisplay": function ()
-		{
-			return _fnDataSource( this ) == 'ssp' ?
-				this._iRecordsDisplay * 1 :
-				this.aiDisplay.length;
-		},
-	
-		/**
-		 * Get the display end point - aiDisplay index
-		 */
-		"fnDisplayEnd": function ()
-		{
-			var
-				len      = this._iDisplayLength,
-				start    = this._iDisplayStart,
-				calc     = start + len,
-				records  = this.aiDisplay.length,
-				features = this.oFeatures,
-				paginate = features.bPaginate;
-	
-			if ( features.bServerSide ) {
-				return paginate === false || len === -1 ?
-					start + records :
-					Math.min( start+len, this._iRecordsDisplay );
-			}
-			else {
-				return ! paginate || calc>records || len===-1 ?
-					records :
-					calc;
-			}
-		},
-	
-		/**
-		 * The DataTables object for this table
-		 */
-		"oInstance": null,
-	
-		/**
-		 * Unique identifier for each instance of the DataTables object. If there
-		 * is an ID on the table node, then it takes that value, otherwise an
-		 * incrementing internal counter is used.
-		 */
-		"sInstance": null,
-	
-		/**
-		 * tabindex attribute value that is added to DataTables control elements, allowing
-		 * keyboard navigation of the table and its controls.
-		 */
-		"iTabIndex": 0,
-	
-		/**
-		 * DIV container for the footer scrolling table if scrolling
-		 */
-		"nScrollHead": null,
-	
-		/**
-		 * DIV container for the footer scrolling table if scrolling
-		 */
-		"nScrollFoot": null,
-	
-		/**
-		 * Last applied sort
-		 */
-		"aLastSort": [],
-	
-		/**
-		 * Stored plug-in instances
-		 */
-		"oPlugins": {},
-	
-		/**
-		 * Function used to get a row's id from the row's data
-		 */
-		"rowIdFn": null,
-	
-		/**
-		 * Data location where to store a row's id
-		 */
-		"rowId": null,
-	
-		caption: '',
-	
-		captionNode: null,
-	
-		colgroup: null,
-	
-		/** Delay loading of data */
-		deferLoading: null,
-	
-		/** Allow auto type detection */
-		typeDetect: true
-	};
-	
-	/**
-	 * Extension object for DataTables that is used to provide all extension
-	 * options.
-	 *
-	 * Note that the `DataTable.ext` object is available through
-	 * `jQuery.fn.dataTable.ext` where it may be accessed and manipulated. It is
-	 * also aliased to `jQuery.fn.dataTableExt` for historic reasons.
-	 *  @namespace
-	 *  @extends DataTable.models.ext
-	 */
-	
-	
-	var extPagination = DataTable.ext.pager;
-	
-	// Paging buttons configuration
-	$.extend( extPagination, {
-		simple: function () {
-			return [ 'previous', 'next' ];
-		},
-	
-		full: function () {
-			return [ 'first', 'previous', 'next', 'last' ];
-		},
-	
-		numbers: function () {
-			return [ 'numbers' ];
-		},
-	
-		simple_numbers: function () {
-			return [ 'previous', 'numbers', 'next' ];
-		},
-	
-		full_numbers: function () {
-			return [ 'first', 'previous', 'numbers', 'next', 'last' ];
-		},
-	
-		first_last: function () {
-			return ['first', 'last'];
-		},
-	
-		first_last_numbers: function () {
-			return ['first', 'numbers', 'last'];
-		},
-	
-		// For testing and plug-ins to use
-		_numbers: _pagingNumbers,
-	
-		// Number of number buttons - legacy, use `numbers` option for paging feature
-		numbers_length: 7
-	} );
-	
-	
-	$.extend( true, DataTable.ext.renderer, {
-		pagingButton: {
-			_: function (settings, buttonType, content, active, disabled) {
-				var classes = settings.oClasses.paging;
-				var btnClasses = [classes.button];
-				var btn;
-	
-				if (active) {
-					btnClasses.push(classes.active);
-				}
-	
-				if (disabled) {
-					btnClasses.push(classes.disabled)
-				}
-	
-				if (buttonType === 'ellipsis') {
-					btn = $('<span class="ellipsis"></span>').html(content)[0];
-				}
-				else {
-					btn = $('<button>', {
-						class: btnClasses.join(' '),
-						role: 'link',
-						type: 'button'
-					}).html(content);
-				}
-	
-				return {
-					display: btn,
-					clicker: btn
-				}
-			}
-		},
-	
-		pagingContainer: {
-			_: function (settings, buttons) {
-				// No wrapping element - just append directly to the host
-				return buttons;
-			}
-		}
-	} );
-	
-	// Common function to remove new lines, strip HTML and diacritic control
-	var _filterString = function (stripHtml, normalize) {
-		return function (str) {
-			if (_empty(str) || typeof str !== 'string') {
-				return str;
-			}
-	
-			str = str.replace( _re_new_lines, " " );
-	
-			if (stripHtml) {
-				str = _stripHtml(str);
-			}
-	
-			if (normalize) {
-				str = _normalize(str, false);
-			}
-	
-			return str;
-		};
-	}
-	
-	/*
-	 * Public helper functions. These aren't used internally by DataTables, or
-	 * called by any of the options passed into DataTables, but they can be used
-	 * externally by developers working with DataTables. They are helper functions
-	 * to make working with DataTables a little bit easier.
-	 */
-	
-	/**
-	 * Common logic for moment, luxon or a date action.
-	 *
-	 * Happens after __mldObj, so don't need to call `resolveWindowsLibs` again
-	 */
-	function __mld( dtLib, momentFn, luxonFn, dateFn, arg1 ) {
-		if (__moment) {
-			return dtLib[momentFn]( arg1 );
-		}
-		else if (__luxon) {
-			return dtLib[luxonFn]( arg1 );
-		}
-		
-		return dateFn ? dtLib[dateFn]( arg1 ) : dtLib;
-	}
-	
-	
-	var __mlWarning = false;
-	var __luxon; // Can be assigned in DateTeble.use()
-	var __moment; // Can be assigned in DateTeble.use()
-	
-	/**
-	 * 
-	 */
-	function resolveWindowLibs() {
-		if (window.luxon && ! __luxon) {
-			__luxon = window.luxon;
-		}
-		
-		if (window.moment && ! __moment) {
-			__moment = window.moment;
-		}
-	}
-	
-	function __mldObj (d, format, locale) {
-		var dt;
-	
-		resolveWindowLibs();
-	
-		if (__moment) {
-			dt = __moment.utc( d, format, locale, true );
-	
-			if (! dt.isValid()) {
-				return null;
-			}
-		}
-		else if (__luxon) {
-			dt = format && typeof d === 'string'
-				? __luxon.DateTime.fromFormat( d, format )
-				: __luxon.DateTime.fromISO( d );
-	
-			if (! dt.isValid) {
-				return null;
-			}
-	
-			dt.setLocale(locale);
-		}
-		else if (! format) {
-			// No format given, must be ISO
-			dt = new Date(d);
-		}
-		else {
-			if (! __mlWarning) {
-				alert('DataTables warning: Formatted date without Moment.js or Luxon - https://datatables.net/tn/17');
-			}
-	
-			__mlWarning = true;
-		}
-	
-		return dt;
-	}
-	
-	// Wrapper for date, datetime and time which all operate the same way with the exception of
-	// the output string for auto locale support
-	function __mlHelper (localeString) {
-		return function ( from, to, locale, def ) {
-			// Luxon and Moment support
-			// Argument shifting
-			if ( arguments.length === 0 ) {
-				locale = 'en';
-				to = null; // means toLocaleString
-				from = null; // means iso8601
-			}
-			else if ( arguments.length === 1 ) {
-				locale = 'en';
-				to = from;
-				from = null;
-			}
-			else if ( arguments.length === 2 ) {
-				locale = to;
-				to = from;
-				from = null;
-			}
-	
-			var typeName = 'datetime' + (to ? '-' + to : '');
-	
-			// Add type detection and sorting specific to this date format - we need to be able to identify
-			// date type columns as such, rather than as numbers in extensions. Hence the need for this.
-			if (! DataTable.ext.type.order[typeName + '-pre']) {
-				DataTable.type(typeName, {
-					detect: function (d) {
-						// The renderer will give the value to type detect as the type!
-						return d === typeName ? typeName : false;
-					},
-					order: {
-						pre: function (d) {
-							// The renderer gives us Moment, Luxon or Date obects for the sorting, all of which have a
-							// `valueOf` which gives milliseconds epoch
-							return d.valueOf();
-						}
-					},
-					className: 'dt-right'
-				});
-			}
-		
-			return function ( d, type ) {
-				// Allow for a default value
-				if (d === null || d === undefined) {
-					if (def === '--now') {
-						// We treat everything as UTC further down, so no changes are
-						// made, as such need to get the local date / time as if it were
-						// UTC
-						var local = new Date();
-						d = new Date( Date.UTC(
-							local.getFullYear(), local.getMonth(), local.getDate(),
-							local.getHours(), local.getMinutes(), local.getSeconds()
-						) );
-					}
-					else {
-						d = '';
-					}
-				}
-	
-				if (type === 'type') {
-					// Typing uses the type name for fast matching
-					return typeName;
-				}
-	
-				if (d === '') {
-					return type !== 'sort'
-						? ''
-						: __mldObj('0000-01-01 00:00:00', null, locale);
-				}
-	
-				// Shortcut. If `from` and `to` are the same, we are using the renderer to
-				// format for ordering, not display - its already in the display format.
-				if ( to !== null && from === to && type !== 'sort' && type !== 'type' && ! (d instanceof Date) ) {
-					return d;
-				}
-	
-				var dt = __mldObj(d, from, locale);
-	
-				if (dt === null) {
-					return d;
-				}
-	
-				if (type === 'sort') {
-					return dt;
-				}
-				
-				var formatted = to === null
-					? __mld(dt, 'toDate', 'toJSDate', '')[localeString]()
-					: __mld(dt, 'format', 'toFormat', 'toISOString', to);
-	
-				// XSS protection
-				return type === 'display' ?
-					_escapeHtml( formatted ) :
-					formatted;
-			};
-		}
-	}
-	
-	// Based on locale, determine standard number formatting
-	// Fallback for legacy browsers is US English
-	var __thousands = ',';
-	var __decimal = '.';
-	
-	if (window.Intl !== undefined) {
-		try {
-			var num = new Intl.NumberFormat().formatToParts(100000.1);
-		
-			for (var i=0 ; i<num.length ; i++) {
-				if (num[i].type === 'group') {
-					__thousands = num[i].value;
-				}
-				else if (num[i].type === 'decimal') {
-					__decimal = num[i].value;
-				}
-			}
-		}
-		catch (e) {
-			// noop
-		}
-	}
-	
-	// Formatted date time detection - use by declaring the formats you are going to use
-	DataTable.datetime = function ( format, locale ) {
-		var typeName = 'datetime-' + format;
-	
-		if (! locale) {
-			locale = 'en';
-		}
-	
-		if (! DataTable.ext.type.order[typeName]) {
-			DataTable.type(typeName, {
-				detect: function (d) {
-					var dt = __mldObj(d, format, locale);
-					return d === '' || dt ? typeName : false;
-				},
-				order: {
-					pre: function (d) {
-						return __mldObj(d, format, locale) || 0;
-					}
-				},
-				className: 'dt-right'
-			});
-		}
-	}
-	
-	/**
-	 * Helpers for `columns.render`.
-	 *
-	 * The options defined here can be used with the `columns.render` initialisation
-	 * option to provide a display renderer. The following functions are defined:
-	 *
-	 * * `moment` - Uses the MomentJS library to convert from a given format into another.
-	 * This renderer has three overloads:
-	 *   * 1 parameter:
-	 *     * `string` - Format to convert to (assumes input is ISO8601 and locale is `en`)
-	 *   * 2 parameters:
-	 *     * `string` - Format to convert from
-	 *     * `string` - Format to convert to. Assumes `en` locale
-	 *   * 3 parameters:
-	 *     * `string` - Format to convert from
-	 *     * `string` - Format to convert to
-	 *     * `string` - Locale
-	 * * `number` - Will format numeric data (defined by `columns.data`) for
-	 *   display, retaining the original unformatted data for sorting and filtering.
-	 *   It takes 5 parameters:
-	 *   * `string` - Thousands grouping separator
-	 *   * `string` - Decimal point indicator
-	 *   * `integer` - Number of decimal points to show
-	 *   * `string` (optional) - Prefix.
-	 *   * `string` (optional) - Postfix (/suffix).
-	 * * `text` - Escape HTML to help prevent XSS attacks. It has no optional
-	 *   parameters.
-	 *
-	 * @example
-	 *   // Column definition using the number renderer
-	 *   {
-	 *     data: "salary",
-	 *     render: $.fn.dataTable.render.number( '\'', '.', 0, '$' )
-	 *   }
-	 *
-	 * @namespace
-	 */
-	DataTable.render = {
-		date: __mlHelper('toLocaleDateString'),
-		datetime: __mlHelper('toLocaleString'),
-		time: __mlHelper('toLocaleTimeString'),
-		number: function ( thousands, decimal, precision, prefix, postfix ) {
-			// Auto locale detection
-			if (thousands === null || thousands === undefined) {
-				thousands = __thousands;
-			}
-	
-			if (decimal === null || decimal === undefined) {
-				decimal = __decimal;
-			}
-	
-			return {
-				display: function ( d ) {
-					if ( typeof d !== 'number' && typeof d !== 'string' ) {
-						return d;
-					}
-	
-					if (d === '' || d === null) {
-						return d;
-					}
-	
-					var negative = d < 0 ? '-' : '';
-					var flo = parseFloat( d );
-					var abs = Math.abs(flo);
-	
-					// Scientific notation for large and small numbers
-					if (abs >= 100000000000 || (abs < 0.0001 && abs !== 0) ) {
-						var exp = flo.toExponential(precision).split(/e\+?/);
-						return exp[0] + ' x 10<sup>' + exp[1] + '</sup>';
-					}
-	
-					// If NaN then there isn't much formatting that we can do - just
-					// return immediately, escaping any HTML (this was supposed to
-					// be a number after all)
-					if ( isNaN( flo ) ) {
-						return _escapeHtml( d );
-					}
-	
-					flo = flo.toFixed( precision );
-					d = Math.abs( flo );
-	
-					var intPart = parseInt( d, 10 );
-					var floatPart = precision ?
-						decimal+(d - intPart).toFixed( precision ).substring( 2 ):
-						'';
-	
-					// If zero, then can't have a negative prefix
-					if (intPart === 0 && parseFloat(floatPart) === 0) {
-						negative = '';
-					}
-	
-					return negative + (prefix||'') +
-						intPart.toString().replace(
-							/\B(?=(\d{3})+(?!\d))/g, thousands
-						) +
-						floatPart +
-						(postfix||'');
-				}
-			};
-		},
-	
-		text: function () {
-			return {
-				display: _escapeHtml,
-				filter: _escapeHtml
-			};
-		}
-	};
-	
-	
-	var _extTypes = DataTable.ext.type;
-	
-	// Get / set type
-	DataTable.type = function (name, prop, val) {
-		if (! prop) {
-			return {
-				className: _extTypes.className[name],
-				detect: _extTypes.detect.find(function (fn) {
-					return fn._name === name;
-				}),
-				order: {
-					pre: _extTypes.order[name + '-pre'],
-					asc: _extTypes.order[name + '-asc'],
-					desc: _extTypes.order[name + '-desc']
-				},
-				render: _extTypes.render[name],
-				search: _extTypes.search[name]
-			};
-		}
-	
-		var setProp = function(prop, propVal) {
-			_extTypes[prop][name] = propVal;
-		};
-		var setDetect = function (detect) {
-			// `detect` can be a function or an object - we set a name
-			// property for either - that is used for the detection
-			Object.defineProperty(detect, "_name", {value: name});
-	
-			var idx = _extTypes.detect.findIndex(function (item) {
-				return item._name === name;
-			});
-	
-			if (idx === -1) {
-				_extTypes.detect.unshift(detect);
-			}
-			else {
-				_extTypes.detect.splice(idx, 1, detect);
-			}
-		};
-		var setOrder = function (obj) {
-			_extTypes.order[name + '-pre'] = obj.pre; // can be undefined
-			_extTypes.order[name + '-asc'] = obj.asc; // can be undefined
-			_extTypes.order[name + '-desc'] = obj.desc; // can be undefined
-		};
-	
-		// prop is optional
-		if (val === undefined) {
-			val = prop;
-			prop = null;
-		}
-	
-		if (prop === 'className') {
-			setProp('className', val);
-		}
-		else if (prop === 'detect') {
-			setDetect(val);
-		}
-		else if (prop === 'order') {
-			setOrder(val);
-		}
-		else if (prop === 'render') {
-			setProp('render', val);
-		}
-		else if (prop === 'search') {
-			setProp('search', val);
-		}
-		else if (! prop) {
-			if (val.className) {
-				setProp('className', val.className);
-			}
-	
-			if (val.detect !== undefined) {
-				setDetect(val.detect);
-			}
-	
-			if (val.order) {
-				setOrder(val.order);
-			}
-	
-			if (val.render !== undefined) {
-				setProp('render', val.render);
-			}
-	
-			if (val.search !== undefined) {
-				setProp('search', val.search);
-			}
-		}
-	}
-	
-	// Get a list of types
-	DataTable.types = function () {
-		return _extTypes.detect.map(function (fn) {
-			return fn._name;
-		});
-	};
-	
-	var __diacriticSort = function (a, b) {
-		a = a !== null && a !== undefined ? a.toString().toLowerCase() : '';
-		b = b !== null && b !== undefined ? b.toString().toLowerCase() : '';
-	
-		// Checked for `navigator.languages` support in `oneOf` so this code can't execute in old
-		// Safari and thus can disable this check
-		// eslint-disable-next-line compat/compat
-		return a.localeCompare(b, navigator.languages[0] || navigator.language, {
-			numeric: true,
-			ignorePunctuation: true,
-		});
-	}
-	
-	//
-	// Built in data types
-	//
-	
-	DataTable.type('string', {
-		detect: function () {
-			return 'string';
-		},
-		order: {
-			pre: function ( a ) {
-				// This is a little complex, but faster than always calling toString,
-				// http://jsperf.com/tostring-v-check
-				return _empty(a) && typeof a !== 'boolean' ?
-					'' :
-					typeof a === 'string' ?
-						a.toLowerCase() :
-						! a.toString ?
-							'' :
-							a.toString();
-			}
-		},
-		search: _filterString(false, true)
-	});
-	
-	DataTable.type('string-utf8', {
-		detect: {
-			allOf: function ( d ) {
-				return true;
-			},
-			oneOf: function ( d ) {
-				// At least one data point must contain a non-ASCII character
-				// This line will also check if navigator.languages is supported or not. If not (Safari 10.0-)
-				// this data type won't be supported.
-				// eslint-disable-next-line compat/compat
-				return ! _empty( d ) && navigator.languages && typeof d === 'string' && d.match(/[^\x00-\x7F]/);
-			}
-		},
-		order: {
-			asc: __diacriticSort,
-			desc: function (a, b) {
-				return __diacriticSort(a, b) * -1;
-			}
-		},
-		search: _filterString(false, true)
-	});
-	
-	
-	DataTable.type('html', {
-		detect: {
-			allOf: function ( d ) {
-				return _empty( d ) || (typeof d === 'string' && d.indexOf('<') !== -1);
-			},
-			oneOf: function ( d ) {
-				// At least one data point must contain a `<`
-				return ! _empty( d ) && typeof d === 'string' && d.indexOf('<') !== -1;
-			}
-		},
-		order: {
-			pre: function ( a ) {
-				return _empty(a) ?
-					'' :
-					a.replace ?
-						_stripHtml(a).trim().toLowerCase() :
-						a+'';
-			}
-		},
-		search: _filterString(true, true)
-	});
-	
-	
-	DataTable.type('date', {
-		className: 'dt-type-date',
-		detect: {
-			allOf: function ( d ) {
-				// V8 tries _very_ hard to make a string passed into `Date.parse()`
-				// valid, so we need to use a regex to restrict date formats. Use a
-				// plug-in for anything other than ISO8601 style strings
-				if ( d && !(d instanceof Date) && ! _re_date.test(d) ) {
-					return null;
-				}
-				var parsed = Date.parse(d);
-				return (parsed !== null && !isNaN(parsed)) || _empty(d);
-			},
-			oneOf: function ( d ) {
-				// At least one entry must be a date or a string with a date
-				return (d instanceof Date) || (typeof d === 'string' && _re_date.test(d));
-			}
-		},
-		order: {
-			pre: function ( d ) {
-				var ts = Date.parse( d );
-				return isNaN(ts) ? -Infinity : ts;
-			}
-		}
-	});
-	
-	
-	DataTable.type('html-num-fmt', {
-		className: 'dt-type-numeric',
-		detect: {
-			allOf: function ( d, settings ) {
-				var decimal = settings.oLanguage.sDecimal;
-				return _htmlNumeric( d, decimal, true, false );
-			},
-			oneOf: function (d, settings) {
-				// At least one data point must contain a numeric value
-				var decimal = settings.oLanguage.sDecimal;
-				return _htmlNumeric( d, decimal, true, false );
-			}
-		},
-		order: {
-			pre: function ( d, s ) {
-				var dp = s.oLanguage.sDecimal;
-				return __numericReplace( d, dp, _re_html, _re_formatted_numeric );
-			}
-		},
-		search: _filterString(true, true)
-	});
-	
-	
-	DataTable.type('html-num', {
-		className: 'dt-type-numeric',
-		detect: {
-			allOf: function ( d, settings ) {
-				var decimal = settings.oLanguage.sDecimal;
-				return _htmlNumeric( d, decimal, false, true );
-			},
-			oneOf: function (d, settings) {
-				// At least one data point must contain a numeric value
-				var decimal = settings.oLanguage.sDecimal;
-				return _htmlNumeric( d, decimal, false, false );
-			}
-		},
-		order: {
-			pre: function ( d, s ) {
-				var dp = s.oLanguage.sDecimal;
-				return __numericReplace( d, dp, _re_html );
-			}
-		},
-		search: _filterString(true, true)
-	});
-	
-	
-	DataTable.type('num-fmt', {
-		className: 'dt-type-numeric',
-		detect: {
-			allOf: function ( d, settings ) {
-				var decimal = settings.oLanguage.sDecimal;
-				return _isNumber( d, decimal, true, true );
-			},
-			oneOf: function (d, settings) {
-				// At least one data point must contain a numeric value
-				var decimal = settings.oLanguage.sDecimal;
-				return _isNumber( d, decimal, true, false );
-			}
-		},
-		order: {
-			pre: function ( d, s ) {
-				var dp = s.oLanguage.sDecimal;
-				return __numericReplace( d, dp, _re_formatted_numeric );
-			}
-		}
-	});
-	
-	
-	DataTable.type('num', {
-		className: 'dt-type-numeric',
-		detect: {
-			allOf: function ( d, settings ) {
-				var decimal = settings.oLanguage.sDecimal;
-				return _isNumber( d, decimal, false, true );
-			},
-			oneOf: function (d, settings) {
-				// At least one data point must contain a numeric value
-				var decimal = settings.oLanguage.sDecimal;
-				return _isNumber( d, decimal, false, false );
-			}
-		},
-		order: {
-			pre: function (d, s) {
-				var dp = s.oLanguage.sDecimal;
-				return __numericReplace( d, dp );
-			}
-		}
-	});
-	
-	
-	
-	
-	var __numericReplace = function ( d, decimalPlace, re1, re2 ) {
-		if ( d !== 0 && (!d || d === '-') ) {
-			return -Infinity;
-		}
-		
-		var type = typeof d;
-	
-		if (type === 'number' || type === 'bigint') {
-			return d;
-		}
-	
-		// If a decimal place other than `.` is used, it needs to be given to the
-		// function so we can detect it and replace with a `.` which is the only
-		// decimal place Javascript recognises - it is not locale aware.
-		if ( decimalPlace ) {
-			d = _numToDecimal( d, decimalPlace );
-		}
-	
-		if ( d.replace ) {
-			if ( re1 ) {
-				d = d.replace( re1, '' );
-			}
-	
-			if ( re2 ) {
-				d = d.replace( re2, '' );
-			}
-		}
-	
-		return d * 1;
-	};
-	
-	
-	$.extend( true, DataTable.ext.renderer, {
-		footer: {
-			_: function ( settings, cell, classes ) {
-				cell.addClass(classes.tfoot.cell);
-			}
-		},
-	
-		header: {
-			_: function ( settings, cell, classes ) {
-				cell.addClass(classes.thead.cell);
-	
-				if (! settings.oFeatures.bSort) {
-					cell.addClass(classes.order.none);
-				}
-	
-				var legacyTop = settings.bSortCellsTop;
-				var headerRows = cell.closest('thead').find('tr');
-				var rowIdx = cell.parent().index();
-	
-				// Conditions to not apply the ordering icons
-				if (
-					// Cells and rows which have the attribute to disable the icons
-					cell.attr('data-dt-order') === 'disable' ||
-					cell.parent().attr('data-dt-order') === 'disable' ||
-	
-					// Legacy support for `orderCellsTop`. If it is set, then cells
-					// which are not in the top or bottom row of the header (depending
-					// on the value) do not get the sorting classes applied to them
-					(legacyTop === true && rowIdx !== 0) ||
-					(legacyTop === false && rowIdx !== headerRows.length - 1)
-				) {
-					return;
-				}
-	
-				// No additional mark-up required
-				// Attach a sort listener to update on sort - note that using the
-				// `DT` namespace will allow the event to be removed automatically
-				// on destroy, while the `dt` namespaced event is the one we are
-				// listening for
-				$(settings.nTable).on( 'order.dt.DT column-visibility.dt.DT', function ( e, ctx ) {
-					if ( settings !== ctx ) { // need to check this this is the host
-						return;               // table, not a nested one
-					}
-	
-					var sorting = ctx.sortDetails;
-	
-					if (! sorting) {
-						return;
-					}
-	
-					var i;
-					var orderClasses = classes.order;
-					var columns = ctx.api.columns( cell );
-					var col = settings.aoColumns[columns.flatten()[0]];
-					var orderable = columns.orderable().includes(true);
-					var ariaType = '';
-					var indexes = columns.indexes();
-					var sortDirs = columns.orderable(true).flatten();
-					var orderedColumns = _pluck(sorting, 'col');
-	
-					cell
-						.removeClass(
-							orderClasses.isAsc +' '+
-							orderClasses.isDesc
-						)
-						.toggleClass( orderClasses.none, ! orderable )
-						.toggleClass( orderClasses.canAsc, orderable && sortDirs.includes('asc') )
-						.toggleClass( orderClasses.canDesc, orderable && sortDirs.includes('desc') );
-	
-					// Determine if all of the columns that this cell covers are included in the
-					// current ordering
-					var isOrdering = true;
-					
-					for (i=0; i<indexes.length; i++) {
-						if (! orderedColumns.includes(indexes[i])) {
-							isOrdering = false;
-						}
-					}
-	
-					if ( isOrdering ) {
-						// Get the ordering direction for the columns under this cell
-						// Note that it is possible for a cell to be asc and desc sorting
-						// (column spanning cells)
-						var orderDirs = columns.order();
-	
-						cell.addClass(
-							orderDirs.includes('asc') ? orderClasses.isAsc : '' +
-							orderDirs.includes('desc') ? orderClasses.isDesc : ''
-						);
-					}
-	
-					// Find the first visible column that has ordering applied to it - it get's
-					// the aria information, as the ARIA spec says that only one column should
-					// be marked with aria-sort
-					var firstVis = -1; // column index
-	
-					for (i=0; i<orderedColumns.length; i++) {
-						if (settings.aoColumns[orderedColumns[i]].bVisible) {
-							firstVis = orderedColumns[i];
-							break;
-						}
-					}
-	
-					if (indexes[0] == firstVis) {
-						var firstSort = sorting[0];
-						var sortOrder = col.asSorting;
-	
-						cell.attr('aria-sort', firstSort.dir === 'asc' ? 'ascending' : 'descending');
-	
-						// Determine if the next click will remove sorting or change the sort
-						ariaType = ! sortOrder[firstSort.index + 1] ? 'Remove' : 'Reverse';
-					}
-					else {
-						cell.removeAttr('aria-sort');
-					}
-	
-					cell.attr('aria-label', orderable
-						? col.ariaTitle + ctx.api.i18n('oAria.orderable' + ariaType)
-						: col.ariaTitle
-					);
-	
-					// Make the headers tab-able for keyboard navigation
-					if (orderable) {
-						cell.find('.dt-column-title').attr('role', 'button');
-						cell.attr('tabindex', 0)
-					}
-				} );
-			}
-		},
-	
-		layout: {
-			_: function ( settings, container, items ) {
-				var classes = settings.oClasses.layout;
-				var row = $('<div/>')
-					.attr('id', items.id || null)
-					.addClass(items.className || classes.row)
-					.appendTo( container );
-	
-				$.each( items, function (key, val) {
-					if (key === 'id' || key === 'className') {
-						return;
-					}
-	
-					var klass = '';
-	
-					if (val.table) {
-						row.addClass(classes.tableRow);
-						klass += classes.tableCell + ' ';
-					}
-	
-					if (key === 'start') {
-						klass += classes.start;
-					}
-					else if (key === 'end') {
-						klass += classes.end;
-					}
-					else {
-						klass += classes.full;
-					}
-	
-					$('<div/>')
-						.attr({
-							id: val.id || null,
-							"class": val.className
-								? val.className
-								: classes.cell + ' ' + klass
-						})
-						.append( val.contents )
-						.appendTo( row );
-				} );
-			}
-		}
-	} );
-	
-	
-	DataTable.feature = {};
-	
-	// Third parameter is internal only!
-	DataTable.feature.register = function ( name, cb, legacy ) {
-		DataTable.ext.features[ name ] = cb;
-	
-		if (legacy) {
-			_ext.feature.push({
-				cFeature: legacy,
-				fnInit: cb
-			});
-		}
-	};
-	
-	function _divProp(el, prop, val) {
-		if (val) {
-			el[prop] = val;
-		}
-	}
-	
-	DataTable.feature.register( 'div', function ( settings, opts ) {
-		var n = $('<div>')[0];
-	
-		if (opts) {
-			_divProp(n, 'className', opts.className);
-			_divProp(n, 'id', opts.id);
-			_divProp(n, 'innerHTML', opts.html);
-			_divProp(n, 'textContent', opts.text);
-		}
-	
-		return n;
-	} );
-	
-	DataTable.feature.register( 'info', function ( settings, opts ) {
-		// For compatibility with the legacy `info` top level option
-		if (! settings.oFeatures.bInfo) {
-			return null;
-		}
-	
-		var
-			lang  = settings.oLanguage,
-			tid = settings.sTableId,
-			n = $('<div/>', {
-				'class': settings.oClasses.info.container,
-			} );
-	
-		opts = $.extend({
-			callback: lang.fnInfoCallback,
-			empty: lang.sInfoEmpty,
-			postfix: lang.sInfoPostFix,
-			search: lang.sInfoFiltered,
-			text: lang.sInfo,
-		}, opts);
-	
-	
-		// Update display on each draw
-		settings.aoDrawCallback.push(function (s) {
-			_fnUpdateInfo(s, opts, n);
-		});
-	
-		// For the first info display in the table, we add a callback and aria information.
-		if (! settings._infoEl) {
-			n.attr({
-				'aria-live': 'polite',
-				id: tid+'_info',
-				role: 'status'
-			});
-	
-			// Table is described by our info div
-			$(settings.nTable).attr( 'aria-describedby', tid+'_info' );
-	
-			settings._infoEl = n;
-		}
-	
-		return n;
-	}, 'i' );
-	
-	/**
-	 * Update the information elements in the display
-	 *  @param {object} settings dataTables settings object
-	 *  @memberof DataTable#oApi
-	 */
-	function _fnUpdateInfo ( settings, opts, node )
-	{
-		var
-			start = settings._iDisplayStart+1,
-			end   = settings.fnDisplayEnd(),
-			max   = settings.fnRecordsTotal(),
-			total = settings.fnRecordsDisplay(),
-			out   = total
-				? opts.text
-				: opts.empty;
-	
-		if ( total !== max ) {
-			// Record set after filtering
-			out += ' ' + opts.search;
-		}
-	
-		// Convert the macros
-		out += opts.postfix;
-		out = _fnMacros( settings, out );
-	
-		if ( opts.callback ) {
-			out = opts.callback.call( settings.oInstance,
-				settings, start, end, max, total, out
-			);
-		}
-	
-		node.html( out );
-	
-		_fnCallbackFire(settings, null, 'info', [settings, node[0], out]);
-	}
-	
-	var __searchCounter = 0;
-	
-	// opts
-	// - text
-	// - placeholder
-	DataTable.feature.register( 'search', function ( settings, opts ) {
-		// Don't show the input if filtering isn't available on the table
-		if (! settings.oFeatures.bFilter) {
-			return null;
-		}
-	
-		var classes = settings.oClasses.search;
-		var tableId = settings.sTableId;
-		var language = settings.oLanguage;
-		var previousSearch = settings.oPreviousSearch;
-		var input = '<input type="search" class="'+classes.input+'"/>';
-	
-		opts = $.extend({
-			placeholder: language.sSearchPlaceholder,
-			processing: false,
-			text: language.sSearch
-		}, opts);
-	
-		// The _INPUT_ is optional - is appended if not present
-		if (opts.text.indexOf('_INPUT_') === -1) {
-			opts.text += '_INPUT_';
-		}
-	
-		opts.text = _fnMacros(settings, opts.text);
-	
-		// We can put the <input> outside of the label if it is at the start or end
-		// which helps improve accessability (not all screen readers like implicit
-		// for elements).
-		var end = opts.text.match(/_INPUT_$/);
-		var start = opts.text.match(/^_INPUT_/);
-		var removed = opts.text.replace(/_INPUT_/, '');
-		var str = '<label>' + opts.text + '</label>';
-	
-		if (start) {
-			str = '_INPUT_<label>' + removed + '</label>';
-		}
-		else if (end) {
-			str = '<label>' + removed + '</label>_INPUT_';
-		}
-	
-		var filter = $('<div>')
-			.addClass(classes.container)
-			.append(str.replace(/_INPUT_/, input));
-	
-		// add for and id to label and input
-		filter.find('label').attr('for', 'dt-search-' + __searchCounter);
-		filter.find('input').attr('id', 'dt-search-' + __searchCounter);
-		__searchCounter++;
-	
-		var searchFn = function(event) {
-			var val = this.value;
-	
-			if(previousSearch.return && event.key !== "Enter") {
-				return;
-			}
-	
-			/* Now do the filter */
-			if ( val != previousSearch.search ) {
-				_fnProcessingRun(settings, opts.processing, function () {
-					previousSearch.search = val;
-			
-					_fnFilterComplete( settings, previousSearch );
-			
-					// Need to redraw, without resorting
-					settings._iDisplayStart = 0;
-					_fnDraw( settings );
-				});
-			}
-		};
-	
-		var searchDelay = settings.searchDelay !== null ?
-			settings.searchDelay :
-			0;
-	
-		var jqFilter = $('input', filter)
-			.val( previousSearch.search )
-			.attr( 'placeholder', opts.placeholder )
-			.on(
-				'keyup.DT search.DT input.DT paste.DT cut.DT',
-				searchDelay ?
-					DataTable.util.debounce( searchFn, searchDelay ) :
-					searchFn
-			)
-			.on( 'mouseup.DT', function(e) {
-				// Edge fix! Edge 17 does not trigger anything other than mouse events when clicking
-				// on the clear icon (Edge bug 17584515). This is safe in other browsers as `searchFn`
-				// checks the value to see if it has changed. In other browsers it won't have.
-				setTimeout( function () {
-					searchFn.call(jqFilter[0], e);
-				}, 10);
-			} )
-			.on( 'keypress.DT', function(e) {
-				/* Prevent form submission */
-				if ( e.keyCode == 13 ) {
-					return false;
-				}
-			} )
-			.attr('aria-controls', tableId);
-	
-		// Update the input elements whenever the table is filtered
-		$(settings.nTable).on( 'search.dt.DT', function ( ev, s ) {
-			if ( settings === s && jqFilter[0] !== document.activeElement ) {
-				jqFilter.val( typeof previousSearch.search !== 'function'
-					? previousSearch.search
-					: ''
-				);
-			}
-		} );
-	
-		return filter;
-	}, 'f' );
-	
-	// opts
-	// - type - button configuration
-	// - buttons - number of buttons to show - must be odd
-	DataTable.feature.register( 'paging', function ( settings, opts ) {
-		// Don't show the paging input if the table doesn't have paging enabled
-		if (! settings.oFeatures.bPaginate) {
-			return null;
-		}
-	
-		opts = $.extend({
-			buttons: DataTable.ext.pager.numbers_length,
-			type: settings.sPaginationType,
-			boundaryNumbers: true,
-			firstLast: true,
-			previousNext: true,
-			numbers: true
-		}, opts);
-	
-		var host = $('<div/>')
-			.addClass(settings.oClasses.paging.container + (opts.type ? ' paging_' + opts.type : ''))
-			.append(
-				$('<nav>')
-					.attr('aria-label', 'pagination')
-					.addClass(settings.oClasses.paging.nav)
-			);
-		var draw = function () {
-			_pagingDraw(settings, host.children(), opts);
-		};
-	
-		settings.aoDrawCallback.push(draw);
-	
-		// Responsive redraw of paging control
-		$(settings.nTable).on('column-sizing.dt.DT', draw);
-	
-		return host;
-	}, 'p' );
-	
-	/**
-	 * Dynamically create the button type array based on the configuration options.
-	 * This will only happen if the paging type is not defined.
-	 */
-	function _pagingDynamic(opts) {
-		var out = [];
-	
-		if (opts.numbers) {
-			out.push('numbers');
-		}
-	
-		if (opts.previousNext) {
-			out.unshift('previous');
-			out.push('next');
-		}
-	
-		if (opts.firstLast) {
-			out.unshift('first');
-			out.push('last');
-		}
-	
-		return out;
-	}
-	
-	function _pagingDraw(settings, host, opts) {
-		if (! settings._bInitComplete) {
-			return;
-		}
-	
-		var
-			plugin = opts.type
-				? DataTable.ext.pager[ opts.type ]
-				: _pagingDynamic,
-			aria = settings.oLanguage.oAria.paginate || {},
-			start      = settings._iDisplayStart,
-			len        = settings._iDisplayLength,
-			visRecords = settings.fnRecordsDisplay(),
-			all        = len === -1,
-			page = all ? 0 : Math.ceil( start / len ),
-			pages = all ? 1 : Math.ceil( visRecords / len ),
-			buttons = [],
-			buttonEls = [],
-			buttonsNested = plugin(opts)
-				.map(function (val) {
-					return val === 'numbers'
-						? _pagingNumbers(page, pages, opts.buttons, opts.boundaryNumbers)
-						: val;
-				});
-	
-		// .flat() would be better, but not supported in old Safari
-		buttons = buttons.concat.apply(buttons, buttonsNested);
-	
-		for (var i=0 ; i<buttons.length ; i++) {
-			var button = buttons[i];
-	
-			var btnInfo = _pagingButtonInfo(settings, button, page, pages);
-			var btn = _fnRenderer( settings, 'pagingButton' )(
-				settings,
-				button,
-				btnInfo.display,
-				btnInfo.active,
-				btnInfo.disabled
-			);
-	
-			var ariaLabel = typeof button === 'string'
-				? aria[ button ]
-				: aria.number
-					? aria.number + (button+1)
-					: null;
-	
-			// Common attributes
-			$(btn.clicker).attr({
-				'aria-controls': settings.sTableId,
-				'aria-disabled': btnInfo.disabled ? 'true' : null,
-				'aria-current': btnInfo.active ? 'page' : null,
-				'aria-label': ariaLabel,
-				'data-dt-idx': button,
-				'tabIndex': btnInfo.disabled
-					? -1
-					: settings.iTabIndex
-						? settings.iTabIndex
-						: null, // `0` doesn't need a tabIndex since it is the default
-			});
-	
-			if (typeof button !== 'number') {
-				$(btn.clicker).addClass(button);
-			}
-	
-			_fnBindAction(
-				btn.clicker, {action: button}, function(e) {
-					e.preventDefault();
-	
-					_fnPageChange( settings, e.data.action, true );
-				}
-			);
-	
-			buttonEls.push(btn.display);
-		}
-	
-		var wrapped = _fnRenderer(settings, 'pagingContainer')(
-			settings, buttonEls
-		);
-	
-		var activeEl = host.find(document.activeElement).data('dt-idx');
-	
-		host.empty().append(wrapped);
-	
-		if ( activeEl !== undefined ) {
-			host.find( '[data-dt-idx='+activeEl+']' ).trigger('focus');
-		}
-	
-		// Responsive - check if the buttons are over two lines based on the
-		// height of the buttons and the container.
-		if (
-			buttonEls.length && // any buttons
-			opts.buttons > 1 && // prevent infinite
-			$(host).height() >= ($(buttonEls[0]).outerHeight() * 2) - 10
-		) {
-			_pagingDraw(settings, host, $.extend({}, opts, { buttons: opts.buttons - 2 }));
-		}
-	}
-	
-	/**
-	 * Get properties for a button based on the current paging state of the table
-	 *
-	 * @param {*} settings DT settings object
-	 * @param {*} button The button type in question
-	 * @param {*} page Table's current page
-	 * @param {*} pages Number of pages
-	 * @returns Info object
-	 */
-	function _pagingButtonInfo(settings, button, page, pages) {
-		var lang = settings.oLanguage.oPaginate;
-		var o = {
-			display: '',
-			active: false,
-			disabled: false
-		};
-	
-		switch ( button ) {
-			case 'ellipsis':
-				o.display = '&#x2026;';
-				o.disabled = true;
-				break;
-	
-			case 'first':
-				o.display = lang.sFirst;
-	
-				if (page === 0) {
-					o.disabled = true;
-				}
-				break;
-	
-			case 'previous':
-				o.display = lang.sPrevious;
-	
-				if ( page === 0 ) {
-					o.disabled = true;
-				}
-				break;
-	
-			case 'next':
-				o.display = lang.sNext;
-	
-				if ( pages === 0 || page === pages-1 ) {
-					o.disabled = true;
-				}
-				break;
-	
-			case 'last':
-				o.display = lang.sLast;
-	
-				if ( pages === 0 || page === pages-1 ) {
-					o.disabled = true;
-				}
-				break;
-	
-			default:
-				if ( typeof button === 'number' ) {
-					o.display = settings.fnFormatNumber( button + 1 );
-					
-					if (page === button) {
-						o.active = true;
-					}
-				}
-				break;
-		}
-	
-		return o;
-	}
-	
-	/**
-	 * Compute what number buttons to show in the paging control
-	 *
-	 * @param {*} page Current page
-	 * @param {*} pages Total number of pages
-	 * @param {*} buttons Target number of number buttons
-	 * @param {boolean} addFirstLast Indicate if page 1 and end should be included
-	 * @returns Buttons to show
-	 */
-	function _pagingNumbers ( page, pages, buttons, addFirstLast ) {
-		var
-			numbers = [],
-			half = Math.floor(buttons / 2),
-			before = addFirstLast ? 2 : 1,
-			after = addFirstLast ? 1 : 0;
-	
-		if ( pages <= buttons ) {
-			numbers = _range(0, pages);
-		}
-		else if (buttons === 1) {
-			// Single button - current page only
-			numbers = [page];
-		}
-		else if (buttons === 3) {
-			// Special logic for just three buttons
-			if (page <= 1) {
-				numbers = [0, 1, 'ellipsis'];
-			}
-			else if (page >= pages - 2) {
-				numbers = _range(pages-2, pages);
-				numbers.unshift('ellipsis');
-			}
-			else {
-				numbers = ['ellipsis', page, 'ellipsis'];
-			}
-		}
-		else if ( page <= half ) {
-			numbers = _range(0, buttons-before);
-			numbers.push('ellipsis');
-	
-			if (addFirstLast) {
-				numbers.push(pages-1);
-			}
-		}
-		else if ( page >= pages - 1 - half ) {
-			numbers = _range(pages-(buttons-before), pages);
-			numbers.unshift('ellipsis');
-	
-			if (addFirstLast) {
-				numbers.unshift(0);
-			}
-		}
-		else {
-			numbers = _range(page-half+before, page+half-after);
-			numbers.push('ellipsis');
-			numbers.unshift('ellipsis');
-	
-			if (addFirstLast) {
-				numbers.push(pages-1);
-				numbers.unshift(0);
-			}
-		}
-	
-		return numbers;
-	}
-	
-	var __lengthCounter = 0;
-	
-	// opts
-	// - menu
-	// - text
-	DataTable.feature.register( 'pageLength', function ( settings, opts ) {
-		var features = settings.oFeatures;
-	
-		// For compatibility with the legacy `pageLength` top level option
-		if (! features.bPaginate || ! features.bLengthChange) {
-			return null;
-		}
-	
-		opts = $.extend({
-			menu: settings.aLengthMenu,
-			text: settings.oLanguage.sLengthMenu
-		}, opts);
-	
-		var
-			classes  = settings.oClasses.length,
-			tableId  = settings.sTableId,
-			menu     = opts.menu,
-			lengths  = [],
-			language = [],
-			i;
-	
-		// Options can be given in a number of ways
-		if (Array.isArray( menu[0] )) {
-			// Old 1.x style - 2D array
-			lengths = menu[0];
-			language = menu[1];
-		}
-		else {
-			for ( i=0 ; i<menu.length ; i++ ) {
-				// An object with different label and value
-				if ($.isPlainObject(menu[i])) {
-					lengths.push(menu[i].value);
-					language.push(menu[i].label);
-				}
-				else {
-					// Or just a number to display and use
-					lengths.push(menu[i]);
-					language.push(menu[i]);
-				}
-			}
-		}
-	
-		// We can put the <select> outside of the label if it is at the start or
-		// end which helps improve accessability (not all screen readers like
-		// implicit for elements).
-		var end = opts.text.match(/_MENU_$/);
-		var start = opts.text.match(/^_MENU_/);
-		var removed = opts.text.replace(/_MENU_/, '');
-		var str = '<label>' + opts.text + '</label>';
-	
-		if (start) {
-			str = '_MENU_<label>' + removed + '</label>';
-		}
-		else if (end) {
-			str = '<label>' + removed + '</label>_MENU_';
-		}
-	
-		// Wrapper element - use a span as a holder for where the select will go
-		var tmpId = 'tmp-' + (+new Date())
-		var div = $('<div/>')
-			.addClass( classes.container )
-			.append(
-				str.replace( '_MENU_', '<span id="'+tmpId+'"></span>' )
-			);
-	
-		// Save text node content for macro updating
-		var textNodes = [];
-		Array.from(div.find('label')[0].childNodes).forEach(function (el) {
-			if (el.nodeType === Node.TEXT_NODE) {
-				textNodes.push({
-					el: el,
-					text: el.textContent
-				});
-			}
-		});
-	
-		// Update the label text in case it has an entries value
-		var updateEntries = function (len) {
-			textNodes.forEach(function (node) {
-				node.el.textContent = _fnMacros(settings, node.text, len);
-			});
-		}
-	
-		// Next, the select itself, along with the options
-		var select = $('<select/>', {
-			'name':          tableId+'_length',
-			'aria-controls': tableId,
-			'class':         classes.select
-		} );
-	
-		for ( i=0 ; i<lengths.length ; i++ ) {
-			select[0][ i ] = new Option(
-				typeof language[i] === 'number' ?
-					settings.fnFormatNumber( language[i] ) :
-					language[i],
-				lengths[i]
-			);
-		}
-	
-		// add for and id to label and input
-		div.find('label').attr('for', 'dt-length-' + __lengthCounter);
-		select.attr('id', 'dt-length-' + __lengthCounter);
-		__lengthCounter++;
-	
-		// Swap in the select list
-		div.find('#' + tmpId).replaceWith(select);
-	
-		// Can't use `select` variable as user might provide their own and the
-		// reference is broken by the use of outerHTML
-		$('select', div)
-			.val( settings._iDisplayLength )
-			.on( 'change.DT', function() {
-				_fnLengthChange( settings, $(this).val() );
-				_fnDraw( settings );
-			} );
-	
-		// Update node value whenever anything changes the table's length
-		$(settings.nTable).on( 'length.dt.DT', function (e, s, len) {
-			if ( settings === s ) {
-				$('select', div).val( len );
-	
-				// Resolve plurals in the text for the new length
-				updateEntries(len);
-			}
-		} );
-	
-		updateEntries(settings._iDisplayLength);
-	
-		return div;
-	}, 'l' );
-	
-	// jQuery access
-	$.fn.dataTable = DataTable;
-	
-	// Provide access to the host jQuery object (circular reference)
-	DataTable.$ = $;
-	
-	// Legacy aliases
-	$.fn.dataTableSettings = DataTable.settings;
-	$.fn.dataTableExt = DataTable.ext;
-	
-	// With a capital `D` we return a DataTables API instance rather than a
-	// jQuery object
-	$.fn.DataTable = function ( opts ) {
-		return $(this).dataTable( opts ).api();
-	};
-	
-	// All properties that are available to $.fn.dataTable should also be
-	// available on $.fn.DataTable
-	$.each( DataTable, function ( prop, val ) {
-		$.fn.DataTable[ prop ] = val;
-	} );
-
-	return DataTable;
-}));
diff --git a/dist/assets/js/dataTables.min.js b/dist/assets/js/dataTables.min.js
new file mode 100644
index 0000000..874527d
--- /dev/null
+++ b/dist/assets/js/dataTables.min.js
@@ -0,0 +1,4 @@
+/*! DataTables 2.2.0
+ * © SpryMedia Ltd - datatables.net/license
+ */
+!function(n){"use strict";var r;"function"==typeof define&&define.amd?define(["jquery"],function(e){return n(e,window,document)}):"object"==typeof exports?(r=require("jquery"),"undefined"==typeof window?module.exports=function(e,t){return e=e||window,t=t||r(e),n(t,e,e.document)}:module.exports=n(r,window,window.document)):window.DataTable=n(jQuery,window,document)}(function(H,W,L){"use strict";function f(e){var t=parseInt(e,10);return!isNaN(t)&&isFinite(e)?t:null}function s(e,t,n,r){var a=typeof e,o="string"==a;return"number"==a||"bigint"==a||!(!r||!T(e))||(t&&o&&(e=E(e,t)),n&&o&&(e=e.replace(P,"")),!isNaN(parseFloat(e))&&isFinite(e))}function c(e,t,n,r){var a;return!(!r||!T(e))||("string"!=typeof e||!e.match(/<(input|select)/i))&&(T(a=e)||"string"==typeof a)&&!!s(A(e),t,n,r)||null}function m(e,t,n,r){var a=[],o=0,i=t.length;if(void 0!==r)for(;o<i;o++)e[t[o]]&&e[t[o]][n]&&a.push(e[t[o]][n][r]);else for(;o<i;o++)e[t[o]]&&a.push(e[t[o]][n]);return a}function h(e,t){var n,r=[];void 0===t?(t=0,n=e):(n=t,t=e);for(var a=t;a<n;a++)r.push(a);return r}function _(e){for(var t=[],n=0,r=e.length;n<r;n++)e[n]&&t.push(e[n]);return t}var I,X,t,e,B=function(e,P){var E,k,M;return B.factory(e,P)?B:this instanceof B?H(e).DataTable(P):(k=void 0===(P=e),M=(E=this).length,k&&(P={}),this.api=function(){return new X(this)},this.each(function(){var e=1<M?et({},P,!0):P,t=0,n=this.getAttribute("id"),r=B.defaults,a=H(this);if("table"!=this.nodeName.toLowerCase())z(null,0,"Non-table node initialisation ("+this.nodeName+")",2);else{H(this).trigger("options.dt",e),Q(r),K(r.column),V(r,r,!0),V(r.column,r.column,!0),V(r,H.extend(e,a.data()),!0);var o=B.settings;for(t=0,j=o.length;t<j;t++){var i=o[t];if(i.nTable==this||i.nTHead&&i.nTHead.parentNode==this||i.nTFoot&&i.nTFoot.parentNode==this){var l=(void 0!==e.bRetrieve?e:r).bRetrieve,s=(void 0!==e.bDestroy?e:r).bDestroy;if(k||l)return i.oInstance;if(s){new B.Api(i).destroy();break}return void z(i,0,"Cannot reinitialise DataTable",3)}if(i.sTableId==this.id){o.splice(t,1);break}}null!==n&&""!==n||(n="DataTables_Table_"+B.ext._unique++,this.id=n);var u,c=H.extend(!0,{},B.models.oSettings,{sDestroyWidth:a[0].style.width,sInstance:n,sTableId:n,colgroup:H("<colgroup>").prependTo(this),fastData:function(e,t,n){return q(c,e,t,n)}}),n=(c.nTable=this,c.oInit=e,o.push(c),c.api=new X(c),c.oInstance=1===E.length?E:a.dataTable(),Q(e),e.aLengthMenu&&!e.iDisplayLength&&(e.iDisplayLength=Array.isArray(e.aLengthMenu[0])?e.aLengthMenu[0][0]:H.isPlainObject(e.aLengthMenu[0])?e.aLengthMenu[0].value:e.aLengthMenu[0]),e=et(H.extend(!0,{},r),e),$(c.oFeatures,e,["bPaginate","bLengthChange","bFilter","bSort","bSortMulti","bInfo","bProcessing","bAutoWidth","bSortClasses","bServerSide","bDeferRender"]),$(c,e,["ajax","fnFormatNumber","sServerMethod","aaSorting","aaSortingFixed","aLengthMenu","sPaginationType","iStateDuration","bSortCellsTop","iTabIndex","sDom","fnStateLoadCallback","fnStateSaveCallback","renderer","searchDelay","rowId","caption","layout","orderDescReverse","typeDetect",["iCookieDuration","iStateDuration"],["oSearch","oPreviousSearch"],["aoSearchCols","aoPreSearchCols"],["iDisplayLength","_iDisplayLength"]]),$(c.oScroll,e,[["sScrollX","sX"],["sScrollXInner","sXInner"],["sScrollY","sY"],["bScrollCollapse","bCollapse"]]),$(c.oLanguage,e,"fnInfoCallback"),Y(c,"aoDrawCallback",e.fnDrawCallback),Y(c,"aoStateSaveParams",e.fnStateSaveParams),Y(c,"aoStateLoadParams",e.fnStateLoadParams),Y(c,"aoStateLoaded",e.fnStateLoaded),Y(c,"aoRowCallback",e.fnRowCallback),Y(c,"aoRowCreatedCallback",e.fnCreatedRow),Y(c,"aoHeaderCallback",e.fnHeaderCallback),Y(c,"aoFooterCallback",e.fnFooterCallback),Y(c,"aoInitComplete",e.fnInitComplete),Y(c,"aoPreDrawCallback",e.fnPreDrawCallback),c.rowIdFn=U(e.rowId),c),d=(B.__browser||(f={},B.__browser=f,p=H("<div/>").css({position:"fixed",top:0,left:-1*W.pageXOffset,height:1,width:1,overflow:"hidden"}).append(H("<div/>").css({position:"absolute",top:1,left:1,width:100,overflow:"scroll"}).append(H("<div/>").css({width:"100%",height:10}))).appendTo("body"),d=p.children(),u=d.children(),f.barWidth=d[0].offsetWidth-d[0].clientWidth,f.bScrollbarLeft=1!==Math.round(u.offset().left),p.remove()),H.extend(n.oBrowser,B.__browser),n.oScroll.iBarWidth=B.__browser.barWidth,c.oClasses),f=(H.extend(d,B.ext.classes,e.oClasses),a.addClass(d.table),c.oFeatures.bPaginate||(e.iDisplayStart=0),void 0===c.iInitDisplayStart&&(c.iInitDisplayStart=e.iDisplayStart,c._iDisplayStart=e.iDisplayStart),e.iDeferLoading),h=(null!==f&&(c.deferLoading=!0,u=Array.isArray(f),c._iRecordsDisplay=u?f[0]:f,c._iRecordsTotal=u?f[1]:f),[]),p=this.getElementsByTagName("thead"),n=Ae(c,p[0]);if(e.aoColumns)h=e.aoColumns;else if(n.length)for(j=n[t=0].length;t<j;t++)h.push(null);for(t=0,j=h.length;t<j;t++)ee(c);var g,v,m,b,y,D,x,S=c,w=e.aoColumnDefs,T=h,_=n,C=function(e,t){te(c,e,t)},L=S.aoColumns;if(T)for(g=0,v=T.length;g<v;g++)T[g]&&T[g].name&&(L[g].sName=T[g].name);if(w)for(g=w.length-1;0<=g;g--){var I=void 0!==(x=w[g]).target?x.target:void 0!==x.targets?x.targets:x.aTargets;for(Array.isArray(I)||(I=[I]),m=0,b=I.length;m<b;m++){var A=I[m];if("number"==typeof A&&0<=A){for(;L.length<=A;)ee(S);C(A,x)}else if("number"==typeof A&&A<0)C(L.length+A,x);else if("string"==typeof A)for(y=0,D=L.length;y<D;y++)"_all"===A?C(y,x):-1!==A.indexOf(":name")?L[y].sName===A.replace(":name","")&&C(y,x):_.forEach(function(e){e[y]&&(e=H(e[y].cell),A.match(/^[a-z][\w-]*$/i)&&(A="."+A),e.is(A))&&C(y,x)})}}if(T)for(g=0,v=T.length;g<v;g++)C(g,T[g]);var N,n=a.children("tbody").find("tr").eq(0),F=(n.length&&(N=function(e,t){return null!==e.getAttribute("data-"+t)?t:null},H(n[0]).children("th, td").each(function(e,t){var n,r=c.aoColumns[e];r||z(c,0,"Incorrect column count",18),r.mData===e&&(n=N(t,"sort")||N(t,"order"),t=N(t,"filter")||N(t,"search"),null===n&&null===t||(r.mData={_:e+".display",sort:null!==n?e+".@data-"+n:void 0,type:null!==n?e+".@data-"+n:void 0,filter:null!==t?e+".@data-"+t:void 0},r._isArrayHost=!0,te(c,e)))})),Y(c,"aoDrawCallback",Qe),c.oFeatures);if(e.bStateSave&&(F.bStateSave=!0),void 0===e.aaSorting)for(var O=c.aaSorting,t=0,j=O.length;t<j;t++)O[t][1]=c.aoColumns[t].asSorting[0];Ze(c),Y(c,"aoDrawCallback",function(){(c.bSorted||"ssp"===J(c)||F.bDeferRender)&&Ze(c)});var n=a.children("caption"),n=(c.caption&&(n=0===n.length?H("<caption/>").appendTo(a):n).html(c.caption),n.length&&(n[0]._captionSide=n.css("caption-side"),c.captionNode=n[0]),0===p.length&&(p=H("<thead/>").appendTo(a)),c.nTHead=p[0],a.children("tbody")),n=(0===n.length&&(n=H("<tbody/>").insertAfter(p)),c.nTBody=n[0],a.children("tfoot")),R=(0===n.length&&(n=H("<tfoot/>").appendTo(a)),c.nTFoot=n[0],c.aiDisplay=c.aiDisplayMaster.slice(),c.bInitialised=!0,c.oLanguage);H.extend(!0,R,e.oLanguage),R.sUrl?H.ajax({dataType:"json",url:R.sUrl,success:function(e){V(r.oLanguage,e),H.extend(!0,R,e,c.oInit.oLanguage),G(c,null,"i18n",[c],!0),Me(c)},error:function(){z(c,0,"i18n file loading error",21),Me(c)}}):(G(c,null,"i18n",[c],!0),Me(c))}}),E=null,this)},g=(B.ext=I={buttons:{},classes:{},builder:"-source-",errMode:"alert",feature:[],features:{},search:[],selector:{cell:[],column:[],row:[]},legacy:{ajax:null},pager:{},renderer:{pageButton:{},header:{}},order:{},type:{className:{},detect:[],render:{},search:{},order:{}},_unique:0,fnVersionCheck:B.fnVersionCheck,iApiIndex:0,sVersion:B.version},H.extend(I,{afnFiltering:I.search,aTypes:I.type.detect,ofnSearch:I.type.search,oSort:I.type.order,afnSortData:I.order,aoFeatures:I.feature,oStdClasses:I.classes,oPagination:I.pager}),H.extend(B.ext.classes,{container:"dt-container",empty:{row:"dt-empty"},info:{container:"dt-info"},layout:{row:"dt-layout-row",cell:"dt-layout-cell",tableRow:"dt-layout-table",tableCell:"",start:"dt-layout-start",end:"dt-layout-end",full:"dt-layout-full"},length:{container:"dt-length",select:"dt-input"},order:{canAsc:"dt-orderable-asc",canDesc:"dt-orderable-desc",isAsc:"dt-ordering-asc",isDesc:"dt-ordering-desc",none:"dt-orderable-none",position:"sorting_"},processing:{container:"dt-processing"},scrolling:{body:"dt-scroll-body",container:"dt-scroll",footer:{self:"dt-scroll-foot",inner:"dt-scroll-footInner"},header:{self:"dt-scroll-head",inner:"dt-scroll-headInner"}},search:{container:"dt-search",input:"dt-input"},table:"dataTable",tbody:{cell:"",row:""},thead:{cell:"",row:""},tfoot:{cell:"",row:""},paging:{active:"current",button:"dt-paging-button",container:"dt-paging",disabled:"disabled",nav:""}}),{}),C=/[\r\n\u2028]/g,F=/<([^>]*>)/g,O=Math.pow(2,28),j=/^\d{2,4}[./-]\d{1,2}[./-]\d{1,2}([T ]{1}\d{1,2}[:.]\d{2}([.:]\d{2})?)?$/,R=new RegExp("(\\"+["/",".","*","+","?","|","(",")","[","]","{","}","\\","$","^","-"].join("|\\")+")","g"),P=/['\u00A0,$£€¥%\u2009\u202F\u20BD\u20a9\u20BArfkɃΞ]/gi,T=function(e){return!e||!0===e||"-"===e},E=function(e,t){return g[t]||(g[t]=new RegExp(Pe(t),"g")),"string"==typeof e&&"."!==t?e.replace(/\./g,"").replace(g[t],"."):e},b=function(e,t,n){var r=[],a=0,o=e.length;if(void 0!==n)for(;a<o;a++)e[a]&&e[a][t]&&r.push(e[a][t][n]);else for(;a<o;a++)e[a]&&r.push(e[a][t]);return r},A=function(e){if(!e||"string"!=typeof e)return e;if(e.length>O)throw new Error("Exceeded max str len");var t;for(e=e.replace(F,"");(e=(t=e).replace(/<script/i,""))!==t;);return t},u=function(e){return"string"==typeof(e=Array.isArray(e)?e.join(","):e)?e.replace(/&/g,"&amp;").replace(/</g,"&lt;").replace(/>/g,"&gt;").replace(/"/g,"&quot;"):e},k=function(e,t){var n;return"string"!=typeof e?e:(n=e.normalize?e.normalize("NFD"):e).length!==e.length?(!0===t?e+" ":"")+n.replace(/[\u0300-\u036f]/g,""):n},x=function(e){if(Array.from&&Set)return Array.from(new Set(e));if(function(e){if(!(e.length<2))for(var t=e.slice().sort(),n=t[0],r=1,a=t.length;r<a;r++){if(t[r]===n)return!1;n=t[r]}return!0}(e))return e.slice();var t,n,r,a=[],o=e.length,i=0;e:for(n=0;n<o;n++){for(t=e[n],r=0;r<i;r++)if(a[r]===t)continue e;a.push(t),i++}return a},M=function(e,t){if(Array.isArray(t))for(var n=0;n<t.length;n++)M(e,t[n]);else e.push(t);return e};function y(t,e){e&&e.split(" ").forEach(function(e){e&&t.classList.add(e)})}function Z(t){var n,r,a={};H.each(t,function(e){(n=e.match(/^([^A-Z]+?)([A-Z])/))&&-1!=="a aa ai ao as b fn i m o s ".indexOf(n[1]+" ")&&(r=e.replace(n[0],n[2].toLowerCase()),a[r]=e,"o"===n[1])&&Z(t[e])}),t._hungarianMap=a}function V(t,n,r){var a;t._hungarianMap||Z(t),H.each(n,function(e){void 0===(a=t._hungarianMap[e])||!r&&void 0!==n[a]||("o"===a.charAt(0)?(n[a]||(n[a]={}),H.extend(!0,n[a],n[e]),V(t[a],n[a],r)):n[a]=n[e])})}B.util={diacritics:function(e,t){if("function"!=typeof e)return k(e,t);k=e},debounce:function(n,r){var a;return function(){var e=this,t=arguments;clearTimeout(a),a=setTimeout(function(){n.apply(e,t)},r||250)}},throttle:function(r,e){var a,o,i=void 0!==e?e:200;return function(){var e=this,t=+new Date,n=arguments;a&&t<a+i?(clearTimeout(o),o=setTimeout(function(){a=void 0,r.apply(e,n)},i)):(a=t,r.apply(e,n))}},escapeRegex:function(e){return e.replace(R,"\\$1")},set:function(r){var f;return H.isPlainObject(r)?B.util.set(r._):null===r?function(){}:"function"==typeof r?function(e,t,n){r(e,"set",t,n)}:"string"!=typeof r||-1===r.indexOf(".")&&-1===r.indexOf("[")&&-1===r.indexOf("(")?function(e,t){e[r]=t}:(f=function(e,t,n){for(var r,a,o,i,l=ge(n),n=l[l.length-1],s=0,u=l.length-1;s<u;s++){if("__proto__"===l[s]||"constructor"===l[s])throw new Error("Cannot set prototype values");if(r=l[s].match(pe),a=l[s].match(p),r){if(l[s]=l[s].replace(pe,""),e[l[s]]=[],(r=l.slice()).splice(0,s+1),i=r.join("."),Array.isArray(t))for(var c=0,d=t.length;c<d;c++)f(o={},t[c],i),e[l[s]].push(o);else e[l[s]]=t;return}a&&(l[s]=l[s].replace(p,""),e=e[l[s]](t)),null!==e[l[s]]&&void 0!==e[l[s]]||(e[l[s]]={}),e=e[l[s]]}n.match(p)?e[n.replace(p,"")](t):e[n.replace(pe,"")]=t},function(e,t){return f(e,t,r)})},get:function(a){var o,f;return H.isPlainObject(a)?(o={},H.each(a,function(e,t){t&&(o[e]=B.util.get(t))}),function(e,t,n,r){var a=o[t]||o._;return void 0!==a?a(e,t,n,r):e}):null===a?function(e){return e}:"function"==typeof a?function(e,t,n,r){return a(e,t,n,r)}:"string"!=typeof a||-1===a.indexOf(".")&&-1===a.indexOf("[")&&-1===a.indexOf("(")?function(e){return e[a]}:(f=function(e,t,n){var r,a,o;if(""!==n)for(var i=ge(n),l=0,s=i.length;l<s;l++){if(d=i[l].match(pe),r=i[l].match(p),d){if(i[l]=i[l].replace(pe,""),""!==i[l]&&(e=e[i[l]]),a=[],i.splice(0,l+1),o=i.join("."),Array.isArray(e))for(var u=0,c=e.length;u<c;u++)a.push(f(e[u],t,o));var d=d[0].substring(1,d[0].length-1);e=""===d?a:a.join(d);break}if(r)i[l]=i[l].replace(p,""),e=e[i[l]]();else{if(null===e||null===e[i[l]])return null;if(void 0===e||void 0===e[i[l]])return;e=e[i[l]]}}return e},function(e,t){return f(e,t,a)})},stripHtml:function(e){var t=typeof e;if("function"!=t)return"string"==t?A(e):e;A=e},escapeHtml:function(e){var t=typeof e;if("function"!=t)return"string"==t||Array.isArray(e)?u(e):e;u=e},unique:x};var a=function(e,t,n){void 0!==e[t]&&(e[n]=e[t])};function Q(e){a(e,"ordering","bSort"),a(e,"orderMulti","bSortMulti"),a(e,"orderClasses","bSortClasses"),a(e,"orderCellsTop","bSortCellsTop"),a(e,"order","aaSorting"),a(e,"orderFixed","aaSortingFixed"),a(e,"paging","bPaginate"),a(e,"pagingType","sPaginationType"),a(e,"pageLength","iDisplayLength"),a(e,"searching","bFilter"),"boolean"==typeof e.sScrollX&&(e.sScrollX=e.sScrollX?"100%":""),"boolean"==typeof e.scrollX&&(e.scrollX=e.scrollX?"100%":"");var t=e.aoSearchCols;if(t)for(var n=0,r=t.length;n<r;n++)t[n]&&V(B.models.oSearch,t[n]);e.serverSide&&!e.searchDelay&&(e.searchDelay=400)}function K(e){a(e,"orderable","bSortable"),a(e,"orderData","aDataSort"),a(e,"orderSequence","asSorting"),a(e,"orderDataType","sortDataType");var t=e.aDataSort;"number"!=typeof t||Array.isArray(t)||(e.aDataSort=[t])}function ee(e){var t=B.defaults.column,n=e.aoColumns.length,t=H.extend({},B.models.oColumn,t,{aDataSort:t.aDataSort||[n],mData:t.mData||n,idx:n,searchFixed:{},colEl:H("<col>").attr("data-dt-column",n)}),t=(e.aoColumns.push(t),e.aoPreSearchCols);t[n]=H.extend({},B.models.oSearch,t[n])}function te(e,t,n){function r(e){return"string"==typeof e&&-1!==e.indexOf("@")}var a=e.aoColumns[t],o=(null!=n&&(K(n),V(B.defaults.column,n,!0),void 0===n.mDataProp||n.mData||(n.mData=n.mDataProp),n.sType&&(a._sManualType=n.sType),n.className&&!n.sClass&&(n.sClass=n.className),t=a.sClass,H.extend(a,n),$(a,n,"sWidth","sWidthOrig"),t!==a.sClass&&(a.sClass=t+" "+a.sClass),void 0!==n.iDataSort&&(a.aDataSort=[n.iDataSort]),$(a,n,"aDataSort")),a.mData),i=U(o);a.mRender&&Array.isArray(a.mRender)&&(n=(t=a.mRender.slice()).shift(),a.mRender=B.render[n].apply(W,t)),a._render=a.mRender?U(a.mRender):null;a._bAttrSrc=H.isPlainObject(o)&&(r(o.sort)||r(o.type)||r(o.filter)),a._setter=null,a.fnGetData=function(e,t,n){var r=i(e,t,void 0,n);return a._render&&t?a._render(r,t,e,n):r},a.fnSetData=function(e,t,n){return v(o)(e,t,n)},"number"==typeof o||a._isArrayHost||(e._rowReadObject=!0),e.oFeatures.bSort||(a.bSortable=!1)}function ne(e){var t=e;if(t.oFeatures.bAutoWidth){var n,r,a=t.nTable,o=t.aoColumns,i=t.oScroll,l=i.sY,s=i.sX,i=i.sXInner,u=ie(t,"bVisible"),c=a.getAttribute("width"),d=a.parentNode,f=a.style.width,f=(f||c||(a.style.width="100%",f="100%"),f&&-1!==f.indexOf("%")&&(c=f),G(t,null,"column-calc",{visible:u},!1),H(a.cloneNode()).css("visibility","hidden").removeAttr("id")),h=(f.append("<tbody>"),H("<tr/>").appendTo(f.find("tbody")));for(f.append(H(t.nTHead).clone()).append(H(t.nTFoot).clone()),f.find("tfoot th, tfoot td").css("width",""),f.find("thead th, thead td").each(function(){var e=ce(t,this,!0,!1);e?(this.style.width=e,s&&(this.style.minWidth=e,H(this).append(H("<div/>").css({width:e,margin:0,padding:0,border:0,height:1})))):this.style.width=""}),n=0;n<u.length;n++){p=u[n],r=o[p];var p=function(e,t){var n=e.aoColumns[t];if(!n.maxLenString){for(var r,a="",o=-1,i=0,l=e.aiDisplayMaster.length;i<l;i++){var s=e.aiDisplayMaster[i],s=De(e,s)[t],s=s&&"object"==typeof s&&s.nodeType?s.innerHTML:s+"";s=s.replace(/id=".*?"/g,"").replace(/name=".*?"/g,""),(r=A(s).replace(/&nbsp;/g," ")).length>o&&(a=s,o=r.length)}n.maxLenString=a}return n.maxLenString}(t,p),g=I.type.className[r.sType],v=p+r.sContentPadding,p=-1===p.indexOf("<")?L.createTextNode(v):v;H("<td/>").addClass(g).addClass(r.sClass).append(p).appendTo(h)}H("[name]",f).removeAttr("name");var m,b,y=H("<div/>").css(s||l?{position:"absolute",top:0,left:0,height:1,right:0,overflow:"hidden"}:{}).append(f).appendTo(d),D=(s&&i?f.width(i):s?(f.css("width","auto"),f.removeAttr("width"),f.width()<d.clientWidth&&c&&f.width(d.clientWidth)):l?f.width(d.clientWidth):c&&f.width(c),0),x=f.find("tbody tr").eq(0).children();for(n=0;n<u.length;n++){var S=x[n].getBoundingClientRect().width;D+=S,o[u[n]].sWidth=N(S)}a.style.width=N(D),y.remove(),c&&(a.style.width=N(c)),!c&&!s||t._reszEvt||(m=function(){return H(t.nTableWrapper).is(":visible")?H(t.nTableWrapper).width():0},t.containerWidth=m(),b=B.util.throttle(function(){var e=m();t.bDestroying||t.containerWidth===e||0===e||(ne(t),t.containerWidth=e)}),W.ResizeObserver?(t.resizeObserver=new ResizeObserver(function(e){e=e[0].contentBoxSize;(Array.isArray(e)?e[0]:e).inlineSize<t.containerWidth||b()}),t.resizeObserver.observe(t.nTableWrapper)):H(W).on("resize.DT-"+t.sInstance,b),t._reszEvt=!0)}for(var w=e,T=w.aoColumns,_=0;_<T.length;_++){var C=ce(w,[_],!1,!1);T[_].colEl.css("width",C),w.oScroll.sX&&T[_].colEl.css("min-width",C)}i=e.oScroll;""===i.sY&&""===i.sX||qe(e),G(e,null,"column-sizing",[e])}function re(e,t){e=ie(e,"bVisible");return"number"==typeof e[t]?e[t]:null}function ae(e,t){e=ie(e,"bVisible").indexOf(t);return-1!==e?e:null}function oe(e){var t=e.aoHeader,n=e.aoColumns,r=0;if(t.length)for(var a=0,o=t[0].length;a<o;a++)n[a].bVisible&&"none"!==H(t[0][a].cell).css("display")&&r++;return r}function ie(e,n){var r=[];return e.aoColumns.map(function(e,t){e[n]&&r.push(t)}),r}function le(e,t){return!0===t?e._name:t}function se(e){for(var t,n,r,a,o,i,l=e.aoColumns,s=e.aoData,u=B.ext.type.detect,c=0,d=l.length;c<d;c++){if(i=[],!(o=l[c]).sType&&o._sManualType)o.sType=o._sManualType;else if(!o.sType){if(!e.typeDetect)return;for(t=0,n=u.length;t<n;t++){var f=u[t],h=f.oneOf,p=f.allOf||f,g=f.init,v=!1,m=null;if(g&&(m=le(f,g(e,o,c)))){o.sType=m;break}for(r=0,a=s.length;r<a;r++)if(s[r]){if(void 0===i[r]&&(i[r]=q(e,r,c,"type")),h&&!v&&(v=le(f,h(i[r],e))),!(m=le(f,p(i[r],e)))&&t!==u.length-3)break;if("html"===m&&!T(i[r]))break}if(h&&v&&m||!h&&m){o.sType=m;break}}o.sType||(o.sType="string")}var b=I.type.className[o.sType],b=(b&&(ue(e.aoHeader,c,b),ue(e.aoFooter,c,b)),I.type.render[o.sType]);if(b&&!o._render){o._render=B.util.get(b),y=w=S=x=D=void 0;for(var y,D=e,x=c,S=D.aoData,w=0;w<S.length;w++)S[w].nTr&&(y=q(D,w,x,"display"),S[w].displayData[x]=y,he(S[w].anCells[x],y))}}}function ue(e,t,n){e.forEach(function(e){e[t]&&e[t].unique&&y(e[t].cell,n)})}function ce(e,t,n,r){Array.isArray(t)||(t=de(t));for(var a,o=0,i=e.aoColumns,l=0,s=t.length;l<s;l++){var u=i[t[l]],c=n?u.sWidthOrig:u.sWidth;if(r||!1!==u.bVisible){if(null==c)return null;"number"==typeof c?(a="px",o+=c):(u=c.match(/([\d\.]+)([^\d]*)/))&&(o+=+u[1],a=3===u.length?u[2]:"px")}}return o+a}function de(e){e=H(e).closest("[data-dt-column]").attr("data-dt-column");return e?e.split(",").map(function(e){return+e}):[]}function D(e,t,n,r){for(var a=e.aoData.length,o=H.extend(!0,{},B.models.oRow,{src:n?"dom":"data",idx:a}),i=(o._aData=t,e.aoData.push(o),e.aoColumns),l=0,s=i.length;l<s;l++)i[l].sType=null;e.aiDisplayMaster.push(a);t=e.rowIdFn(t);return void 0!==t&&(e.aIds[t]=o),!n&&e.oFeatures.bDeferRender||xe(e,a,n,r),a}function fe(n,e){var r;return(e=e instanceof H?e:H(e)).map(function(e,t){return r=ye(n,t),D(n,r.data,t,r.cells)})}function q(e,t,n,r){"search"===r?r="filter":"order"===r&&(r="sort");var a=e.aoData[t];if(a){var o=e.iDraw,i=e.aoColumns[n],a=a._aData,l=i.sDefaultContent,s=i.fnGetData(a,r,{settings:e,row:t,col:n});if(void 0===(s="display"!==r&&s&&"object"==typeof s&&s.nodeName?s.innerHTML:s))return e.iDrawError!=o&&null===l&&(z(e,0,"Requested unknown parameter "+("function"==typeof i.mData?"{function}":"'"+i.mData+"'")+" for row "+t+", column "+n,4),e.iDrawError=o),l;if(s!==a&&null!==s||null===l||void 0===r){if("function"==typeof s)return s.call(a)}else s=l;return null===s&&"display"===r?"":s="filter"===r&&(t=B.ext.type.search)[i.sType]?t[i.sType](s):s}}function he(e,t){t&&"object"==typeof t&&t.nodeName?H(e).empty().append(t):e.innerHTML=t}var pe=/\[.*?\]$/,p=/\(\)$/;function ge(e){return(e.match(/(\\.|[^.])+/g)||[""]).map(function(e){return e.replace(/\\\./g,".")})}var U=B.util.get,v=B.util.set;function ve(e){return b(e.aoData,"_aData")}function me(e){e.aoData.length=0,e.aiDisplayMaster.length=0,e.aiDisplay.length=0,e.aIds={}}function be(e,t,n,r){var a,o,i=e.aoData[t];if(i._aSortData=null,i._aFilterData=null,i.displayData=null,"dom"!==n&&(n&&"auto"!==n||"dom"!==i.src)){var l=i.anCells,s=De(e,t);if(l)if(void 0!==r)he(l[r],s[r]);else for(a=0,o=l.length;a<o;a++)he(l[a],s[a])}else i._aData=ye(e,i,r,void 0===r?void 0:i._aData).data;var u=e.aoColumns;if(void 0!==r)u[r].sType=null,u[r].maxLenString=null;else{for(a=0,o=u.length;a<o;a++)u[a].sType=null,u[a].maxLenString=null;Se(e,i)}}function ye(e,t,n,r){function a(e,t){var n;"string"==typeof e&&-1!==(n=e.indexOf("@"))&&(n=e.substring(n+1),v(e)(r,t.getAttribute(n)))}function o(e){void 0!==n&&n!==d||(l=f[d],s=e.innerHTML.trim(),l&&l._bAttrSrc?(v(l.mData._)(r,s),a(l.mData.sort,e),a(l.mData.type,e),a(l.mData.filter,e)):h?(l._setter||(l._setter=v(l.mData)),l._setter(r,s)):r[d]=s),d++}var i,l,s,u=[],c=t.firstChild,d=0,f=e.aoColumns,h=e._rowReadObject;r=void 0!==r?r:h?{}:[];if(c)for(;c;)"TD"!=(i=c.nodeName.toUpperCase())&&"TH"!=i||(o(c),u.push(c)),c=c.nextSibling;else for(var p=0,g=(u=t.anCells).length;p<g;p++)o(u[p]);var t=t.firstChild?t:t.nTr;return t&&(t=t.getAttribute("id"))&&v(e.rowId)(r,t),{data:r,cells:u}}function De(e,t){var n=e.aoData[t],r=e.aoColumns;if(!n.displayData){n.displayData=[];for(var a=0,o=r.length;a<o;a++)n.displayData.push(q(e,t,a,"display"))}return n.displayData}function xe(e,t,n,r){var a,o,i,l,s,u,c=e.aoData[t],d=c._aData,f=[],h=e.oClasses.tbody.row;if(null===c.nTr){for(a=n||L.createElement("tr"),c.nTr=a,c.anCells=f,y(a,h),a._DT_RowIndex=t,Se(e,c),l=0,s=e.aoColumns.length;l<s;l++){i=e.aoColumns[l],(o=(u=!n||!r[l])?L.createElement(i.sCellType):r[l])||z(e,0,"Incorrect column count",18),o._DT_CellIndex={row:t,column:l},f.push(o);var p=De(e,t);!u&&(!i.mRender&&i.mData===l||H.isPlainObject(i.mData)&&i.mData._===l+".display")||he(o,p[l]),y(o,i.sClass),i.bVisible&&u?a.appendChild(o):i.bVisible||u||o.parentNode.removeChild(o),i.fnCreatedCell&&i.fnCreatedCell.call(e.oInstance,o,q(e,t,l),d,t,l)}G(e,"aoRowCreatedCallback","row-created",[a,d,t,f])}else y(c.nTr,h)}function Se(e,t){var n=t.nTr,r=t._aData;n&&((e=e.rowIdFn(r))&&(n.id=e),r.DT_RowClass&&(e=r.DT_RowClass.split(" "),t.__rowc=t.__rowc?x(t.__rowc.concat(e)):e,H(n).removeClass(t.__rowc.join(" ")).addClass(r.DT_RowClass)),r.DT_RowAttr&&H(n).attr(r.DT_RowAttr),r.DT_RowData)&&H(n).data(r.DT_RowData)}function we(e,t){var n,r,a,o=e.oClasses,i=e.aoColumns,l="header"===t?e.nTHead:e.nTFoot,s="header"===t?"sTitle":t;if(l){if(("header"===t||b(e.aoColumns,s).join(""))&&1===(a=(a=H("tr",l)).length?a:H("<tr/>").appendTo(l)).length){var u=0;for(H("td, th",a).each(function(){u+=this.colSpan}),n=u,r=i.length;n<r;n++)H("<th/>").html(i[n][s]||"").appendTo(a)}var c=Ae(e,l,!0);"header"===t?(e.aoHeader=c,H("tr",l).addClass(o.thead.row)):(e.aoFooter=c,H("tr",l).addClass(o.tfoot.row)),H(l).children("tr").children("th, td").each(function(){rt(e,t)(e,H(this),o)})}}function Te(e,t,n){var r,a,o,i,l,s=[],u=[],c=e.aoColumns,e=c.length;if(t){for(n=n||h(e).filter(function(e){return c[e].bVisible}),r=0;r<t.length;r++)s[r]=t[r].slice().filter(function(e,t){return n.includes(t)}),u.push([]);for(r=0;r<s.length;r++)for(a=0;a<s[r].length;a++)if(l=i=1,void 0===u[r][a]){for(o=s[r][a].cell;void 0!==s[r+i]&&s[r][a].cell==s[r+i][a].cell;)u[r+i][a]=null,i++;for(;void 0!==s[r][a+l]&&s[r][a].cell==s[r][a+l].cell;){for(var d=0;d<i;d++)u[r+d][a+l]=null;l++}var f=H("span.dt-column-title",o);u[r][a]={cell:o,colspan:l,rowspan:i,title:(f.length?f:H(o)).html()}}return u}}function _e(e,t){for(var n,r,a=Te(e,t),o=0;o<t.length;o++){if(n=t[o].row)for(;r=n.firstChild;)n.removeChild(r);for(var i=0;i<a[o].length;i++){var l=a[o][i];l&&H(l.cell).appendTo(n).attr("rowspan",l.rowspan).attr("colspan",l.colspan)}}}function S(e,t){if(a="ssp"==J(s=e),void 0!==(i=s.iInitDisplayStart)&&-1!==i&&(s._iDisplayStart=!a&&i>=s.fnRecordsDisplay()?0:i,s.iInitDisplayStart=-1),-1!==G(e,"aoPreDrawCallback","preDraw",[e]).indexOf(!1))w(e,!1);else{var l,n=[],r=0,a="ssp"==J(e),o=e.aiDisplay,i=e._iDisplayStart,s=e.fnDisplayEnd(),u=e.aoColumns,c=H(e.nTBody);if(e.bDrawing=!0,e.deferLoading)e.deferLoading=!1,e.iDraw++,w(e,!1);else if(a){if(!e.bDestroying&&!t)return 0===e.iDraw&&c.empty().append(Ce(e)),(l=e).iDraw++,w(l,!0),void Ne(l,function(t){function n(e,t){return"function"==typeof r[e][t]?"function":r[e][t]}var r=t.aoColumns,e=t.oFeatures,a=t.oPreviousSearch,o=t.aoPreSearchCols;return{draw:t.iDraw,columns:r.map(function(t,e){return{data:n(e,"mData"),name:t.sName,searchable:t.bSearchable,orderable:t.bSortable,search:{value:o[e].search,regex:o[e].regex,fixed:Object.keys(t.searchFixed).map(function(e){return{name:e,term:t.searchFixed[e].toString()}})}}}),order:Ge(t).map(function(e){return{column:e.col,dir:e.dir,name:n(e.col,"sName")}}),start:t._iDisplayStart,length:e.bPaginate?t._iDisplayLength:-1,search:{value:a.search,regex:a.regex,fixed:Object.keys(t.searchFixed).map(function(e){return{name:e,term:t.searchFixed[e].toString()}})}}}(l),function(e){var t=l,n=Fe(t,e=e),r=Oe(t,"draw",e),a=Oe(t,"recordsTotal",e),e=Oe(t,"recordsFiltered",e);if(void 0!==r){if(+r<t.iDraw)return;t.iDraw=+r}n=n||[],me(t),t._iRecordsTotal=parseInt(a,10),t._iRecordsDisplay=parseInt(e,10);for(var o=0,i=n.length;o<i;o++)D(t,n[o]);t.aiDisplay=t.aiDisplayMaster.slice(),se(t),S(t,!0),He(t),w(t,!1)})}else e.iDraw++;if(0!==o.length)for(var d=a?e.aoData.length:s,f=a?0:i;f<d;f++){for(var h=o[f],p=e.aoData[h],g=(null===p.nTr&&xe(e,h),p.nTr),v=0;v<u.length;v++){var m=u[v],b=p.anCells[v];y(b,I.type.className[m.sType]),y(b,e.oClasses.tbody.cell)}G(e,"aoRowCallback",null,[g,p._aData,r,f,h]),n.push(g),r++}else n[0]=Ce(e);G(e,"aoHeaderCallback","header",[H(e.nTHead).children("tr")[0],ve(e),i,s,o]),G(e,"aoFooterCallback","footer",[H(e.nTFoot).children("tr")[0],ve(e),i,s,o]),c[0].replaceChildren?c[0].replaceChildren.apply(c[0],n):(c.children().detach(),c.append(H(n))),H(e.nTableWrapper).toggleClass("dt-empty-footer",0===H("tr",e.nTFoot).length),G(e,"aoDrawCallback","draw",[e],!0),e.bSorted=!1,e.bFiltered=!1,e.bDrawing=!1}}function d(e,t,n){var r=e.oFeatures,a=r.bSort,r=r.bFilter;void 0!==n&&!0!==n||(se(e),a&&Je(e),r?je(e,e.oPreviousSearch):e.aiDisplay=e.aiDisplayMaster.slice()),!0!==t&&(e._iDisplayStart=0),e._drawHold=t,S(e),e._drawHold=!1}function Ce(e){var t=e.oLanguage,n=t.sZeroRecords,r=J(e);return e.iDraw<1&&"ssp"===r||e.iDraw<=1&&"ajax"===r?n=t.sLoadingRecords:t.sEmptyTable&&0===e.fnRecordsTotal()&&(n=t.sEmptyTable),H("<tr/>").append(H("<td />",{colSpan:oe(e),class:e.oClasses.empty.row}).html(n))[0]}function Le(e,t,a){var o=[];H.each(t,function(e,t){var n,r;null!==t&&(n=(e=e.match(/^([a-z]+)([0-9]*)([A-Za-z]*)$/))[2]?+e[2]:0,r=e[3]?e[3].toLowerCase():"full",e[1]===a)&&function e(t,n,r){if(Array.isArray(r))for(var a=0;a<r.length;a++)e(t,n,r[a]);else{var o=t[n];H.isPlainObject(r)?r.features?(r.rowId&&(t.id=r.rowId),r.rowClass&&(t.className=r.rowClass),o.id=r.id,o.className=r.className,e(t,n,r.features)):Object.keys(r).map(function(e){o.contents.push({feature:e,opts:r[e]})}):o.contents.push(r)}}(function(e,t,n){for(var r,a=0;a<e.length;a++)if((r=e[a]).rowNum===t&&("full"===n&&r.full||("start"===n||"end"===n)&&(r.start||r.end)))return r[n]||(r[n]={contents:[]}),r;return(r={rowNum:t})[n]={contents:[]},e.push(r),r}(o,n,r),r,t)}),o.sort(function(e,t){var n=e.rowNum,r=t.rowNum;return n===r?(e=e.full&&!t.full?-1:1,"bottom"===a?-1*e:e):r-n}),"bottom"===a&&o.reverse();for(var n=0;n<o.length;n++)delete o[n].rowNum,!function(o,i){function l(e,t){return I.features[e]||z(o,0,"Unknown feature: "+e),I.features[e].apply(this,[o,t])}function e(e){if(i[e])for(var t,n=i[e].contents,r=0,a=n.length;r<a;r++)n[r]&&("string"==typeof n[r]?n[r]=l(n[r],null):H.isPlainObject(n[r])?n[r]=l(n[r].feature,n[r].opts):"function"==typeof n[r].node?n[r]=n[r].node(o):"function"==typeof n[r]&&(t=n[r](o),n[r]="function"==typeof t.node?t.node():t))}e("start"),e("end"),e("full")}(e,o[n]);return o}function Ie(t){var r,e=t.oClasses,n=H(t.nTable),a=H("<div/>").attr({id:t.sTableId+"_wrapper",class:e.container}).insertBefore(n);if(t.nTableWrapper=a[0],t.sDom)for(var o,i,l,s,u,c,d=t,e=t.sDom,f=a,h=e.match(/(".*?")|('.*?')|./g),p=0;p<h.length;p++)o=null,"<"==(i=h[p])?(l=H("<div/>"),"'"!=(s=h[p+1])[0]&&'"'!=s[0]||(s=s.replace(/['"]/g,""),u="",-1!=s.indexOf(".")?(c=s.split("."),u=c[0],c=c[1]):"#"==s[0]?u=s:c=s,l.attr("id",u.substring(1)).addClass(c),p++),f.append(l),f=l):">"==i?f=f.parent():"t"==i?o=Ve(d):B.ext.feature.forEach(function(e){i==e.cFeature&&(o=e.fnInit(d))}),o&&f.append(o);else{var n=Le(t,t.layout,"top"),e=Le(t,t.layout,"bottom"),g=rt(t,"layout");n.forEach(function(e){g(t,a,e)}),g(t,a,{full:{table:!0,contents:[Ve(t)]}}),e.forEach(function(e){g(t,a,e)})}var n=t,e=n.nTable,v=""!==n.oScroll.sX||""!==n.oScroll.sY;n.oFeatures.bProcessing&&(r=H("<div/>",{id:n.sTableId+"_processing",class:n.oClasses.processing.container,role:"status"}).html(n.oLanguage.sProcessing).append("<div><div></div><div></div><div></div><div></div></div>"),v?r.prependTo(H("div.dt-scroll",n.nTableWrapper)):r.insertBefore(e),H(e).on("processing.dt.DT",function(e,t,n){r.css("display",n?"block":"none")}))}function Ae(e,t,n){for(var r,a,o,i,l,s,u=e.aoColumns,c=H(t).children("tr"),d=t&&"thead"===t.nodeName.toLowerCase(),f=[],h=0,p=c.length;h<p;h++)f.push([]);for(h=0,p=c.length;h<p;h++)for(a=(r=c[h]).firstChild;a;){if("TD"==a.nodeName.toUpperCase()||"TH"==a.nodeName.toUpperCase()){var g,v,m,b,y,D=[];for(b=(b=+a.getAttribute("colspan"))&&0!=b&&1!=b?b:1,y=(y=+a.getAttribute("rowspan"))&&0!=y&&1!=y?y:1,l=function(e,t,n){for(var r=e[t];r[n];)n++;return n}(f,h,0),s=1==b,n&&(s&&(te(e,l,H(a).data()),g=u[l],v=a.getAttribute("width")||null,(m=a.style.width.match(/width:\s*(\d+[pxem%]+)/))&&(v=m[1]),g.sWidthOrig=g.sWidth||v,d?(null===g.sTitle||g.autoTitle||(a.innerHTML=g.sTitle),!g.sTitle&&s&&(g.sTitle=A(a.innerHTML),g.autoTitle=!0)):g.footer&&(a.innerHTML=g.footer),g.ariaTitle||(g.ariaTitle=H(a).attr("aria-label")||g.sTitle),g.className)&&H(a).addClass(g.className),0===H("span.dt-column-title",a).length&&H("<span>").addClass("dt-column-title").append(a.childNodes).appendTo(a),d)&&0===H("span.dt-column-order",a).length&&H("<span>").addClass("dt-column-order").appendTo(a),i=0;i<b;i++){for(o=0;o<y;o++)f[h+o][l+i]={cell:a,unique:s},f[h+o].row=r;D.push(l+i)}a.setAttribute("data-dt-column",x(D).join(","))}a=a.nextSibling}return f}function Ne(n,e,r){function t(e){var t=n.jqXHR?n.jqXHR.status:null;if((null===e||"number"==typeof t&&204==t)&&Fe(n,e={},[]),(t=e.error||e.sError)&&z(n,0,t),e.d&&"string"==typeof e.d)try{e=JSON.parse(e.d)}catch(e){}n.json=e,G(n,null,"xhr",[n,e,n.jqXHR],!0),r(e)}var a,o=n.ajax,i=n.oInstance,l=(H.isPlainObject(o)&&o.data&&(l="function"==typeof(a=o.data)?a(e,n):a,e="function"==typeof a&&l?l:H.extend(!0,e,l),delete o.data),{url:"string"==typeof o?o:"",data:e,success:t,dataType:"json",cache:!1,type:n.sServerMethod,error:function(e,t){-1===G(n,null,"xhr",[n,null,n.jqXHR],!0).indexOf(!0)&&("parsererror"==t?z(n,0,"Invalid JSON response",1):4===e.readyState&&z(n,0,"Ajax error",7)),w(n,!1)}});H.isPlainObject(o)&&H.extend(l,o),n.oAjaxData=e,G(n,null,"preXhr",[n,e,l],!0),"function"==typeof o?n.jqXHR=o.call(i,e,t,n):""===o.url?(i={},B.util.set(o.dataSrc)(i,[]),t(i)):n.jqXHR=H.ajax(l),a&&(o.data=a)}function Fe(e,t,n){var r="data";if(H.isPlainObject(e.ajax)&&void 0!==e.ajax.dataSrc&&("string"==typeof(e=e.ajax.dataSrc)||"function"==typeof e?r=e:void 0!==e.data&&(r=e.data)),!n)return"data"===r?t.aaData||t[r]:""!==r?U(r)(t):t;v(r)(t,n)}function Oe(e,t,n){var e=H.isPlainObject(e.ajax)?e.ajax.dataSrc:null;return e&&e[t]?U(e[t])(n):(e="","draw"===t?e="sEcho":"recordsTotal"===t?e="iTotalRecords":"recordsFiltered"===t&&(e="iTotalDisplayRecords"),void 0!==n[e]?n[e]:n[t])}function je(n,e){var t=n.aoPreSearchCols;if("ssp"!=J(n)){for(var r,a,o,i,l,s=n,u=s.aoColumns,c=s.aoData,d=0;d<c.length;d++)if(c[d]&&!(l=c[d])._aFilterData){for(o=[],r=0,a=u.length;r<a;r++)u[r].bSearchable?"string"!=typeof(i=null===(i=q(s,d,r,"filter"))?"":i)&&i.toString&&(i=i.toString()):i="",i.indexOf&&-1!==i.indexOf("&")&&(Ee.innerHTML=i,i=ke?Ee.textContent:Ee.innerText),i.replace&&(i=i.replace(/[\r\n\u2028]/g,"")),o.push(i);l._aFilterData=o,l._sFilterRow=o.join("  "),0}n.aiDisplay=n.aiDisplayMaster.slice(),Re(n.aiDisplay,n,e.search,e),H.each(n.searchFixed,function(e,t){Re(n.aiDisplay,n,t,{})});for(var f=0;f<t.length;f++){var h=t[f];Re(n.aiDisplay,n,h.search,h,f),H.each(n.aoColumns[f].searchFixed,function(e,t){Re(n.aiDisplay,n,t,{},f)})}for(var p,g,v=n,m=B.ext.search,b=v.aiDisplay,y=0,D=m.length;y<D;y++){for(var x=[],S=0,w=b.length;S<w;S++)g=b[S],p=v.aoData[g],m[y](v,p._aFilterData,g,p._aData,S)&&x.push(g);b.length=0,ot(b,x)}}n.bFiltered=!0,G(n,null,"search",[n])}function Re(e,t,n,r,a){if(""!==n){for(var o=0,i=[],l="function"==typeof n?n:null,s=n instanceof RegExp?n:l?null:function(e,t){var r=[],t=H.extend({},{boundary:!1,caseInsensitive:!0,exact:!1,regex:!1,smart:!0},t);"string"!=typeof e&&(e=e.toString());if(e=k(e),t.exact)return new RegExp("^"+Pe(e)+"$",t.caseInsensitive?"i":"");{var n,a,o;e=t.regex?e:Pe(e),t.smart&&(n=(e.match(/!?["\u201C][^"\u201D]+["\u201D]|[^ ]+/g)||[""]).map(function(e){var t,n=!1;return"!"===e.charAt(0)&&(n=!0,e=e.substring(1)),'"'===e.charAt(0)?e=(t=e.match(/^"(.*)"$/))?t[1]:e:"“"===e.charAt(0)&&(e=(t=e.match(/^\u201C(.*)\u201D$/))?t[1]:e),n&&(1<e.length&&r.push("(?!"+e+")"),e=""),e.replace(/"/g,"")}),a=r.length?r.join(""):"",o=t.boundary?"\\b":"",e="^(?=.*?"+o+n.join(")(?=.*?"+o)+")("+a+".)*$")}return new RegExp(e,t.caseInsensitive?"i":"")}(n,r),o=0;o<e.length;o++){var u=t.aoData[e[o]],c=void 0===a?u._sFilterRow:u._aFilterData[a];(l&&l(c,u._aData,e[o],a)||s&&s.test(c))&&i.push(e[o])}for(e.length=i.length,o=0;o<i.length;o++)e[o]=i[o]}}var Pe=B.util.escapeRegex,Ee=H("<div>")[0],ke=void 0!==Ee.textContent;function Me(i){var l,t,n,e,s=i.oInit,u=i.deferLoading,c=J(i);i.bInitialised?(we(i,"header"),we(i,"footer"),n=function(){_e(i,i.aoHeader),_e(i,i.aoFooter);var n=i.iInitDisplayStart;if(s.aaData)for(l=0;l<s.aaData.length;l++)D(i,s.aaData[l]);else!u&&"dom"!=c||fe(i,H(i.nTBody).children("tr"));i.aiDisplay=i.aiDisplayMaster.slice(),Ie(i);var e=i,t=e.nTHead,r=t.querySelectorAll("tr"),a=e.bSortCellsTop,o=':not([data-dt-order="disable"]):not([data-dt-order="icon-only"])';!0===a?t=r[0]:!1===a&&(t=r[r.length-1]),ze(e,t,t===e.nTHead?"tr"+o+" th"+o+", tr"+o+" td"+o:"th"+o+", td"+o),Ye(e,a=[],e.aaSorting),e.aaSorting=a,Ue(i),w(i,!0),G(i,null,"preInit",[i],!0),d(i),"ssp"==c&&!u||("ajax"==c?Ne(i,{},function(e){var t=Fe(i,e);for(l=0;l<t.length;l++)D(i,t[l]);i.iInitDisplayStart=n,d(i),w(i,!1),He(i)}):(He(i),w(i,!1)))},(t=i).oFeatures.bStateSave?void 0!==(e=t.fnStateLoadCallback.call(t.oInstance,t,function(e){Ke(t,e,n)}))&&Ke(t,e,n):n()):setTimeout(function(){Me(i)},200)}function He(e){var t;e._bInitComplete||(t=[e,e.json],e._bInitComplete=!0,ne(e),G(e,null,"plugin-init",t,!0),G(e,"aoInitComplete","init",t,!0))}function We(e,t){t=parseInt(t,10);e._iDisplayLength=t,nt(e),G(e,null,"length",[e,t])}function Xe(e,t,n){var r=e._iDisplayStart,a=e._iDisplayLength,o=e.fnRecordsDisplay();if(0===o||-1===a)r=0;else if("number"==typeof t)o<(r=t*a)&&(r=0);else if("first"==t)r=0;else if("previous"==t)(r=0<=a?r-a:0)<0&&(r=0);else if("next"==t)r+a<o&&(r+=a);else if("last"==t)r=Math.floor((o-1)/a)*a;else{if("ellipsis"===t)return;z(e,0,"Unknown paging action: "+t,5)}o=e._iDisplayStart!==r;e._iDisplayStart=r,G(e,null,o?"page":"page-nc",[e]),o&&n&&S(e)}function w(e,t){e.bDrawing&&!1===t||G(e,null,"processing",[e,t])}function Be(e,t,n){t?(w(e,!0),setTimeout(function(){n(),w(e,!1)},0)):n()}function Ve(e){var t,n,r,a,o,i,l,s,u,c,d,f,h,p=H(e.nTable),g=e.oScroll;return""===g.sX&&""===g.sY?e.nTable:(t=g.sX,n=g.sY,r=e.oClasses.scrolling,o=(a=e.captionNode)?a._captionSide:null,u=H(p[0].cloneNode(!1)),i=H(p[0].cloneNode(!1)),c=function(e){return e?N(e):null},(l=p.children("tfoot")).length||(l=null),u=H(s="<div/>",{class:r.container}).append(H(s,{class:r.header.self}).css({overflow:"hidden",position:"relative",border:0,width:t?c(t):"100%"}).append(H(s,{class:r.header.inner}).css({"box-sizing":"content-box",width:g.sXInner||"100%"}).append(u.removeAttr("id").css("margin-left",0).append("top"===o?a:null).append(p.children("thead"))))).append(H(s,{class:r.body}).css({position:"relative",overflow:"auto",width:c(t)}).append(p)),l&&u.append(H(s,{class:r.footer.self}).css({overflow:"hidden",border:0,width:t?c(t):"100%"}).append(H(s,{class:r.footer.inner}).append(i.removeAttr("id").css("margin-left",0).append("bottom"===o?a:null).append(p.children("tfoot"))))),c=u.children(),d=c[0],f=c[1],h=l?c[2]:null,H(f).on("scroll.DT",function(){var e=this.scrollLeft;d.scrollLeft=e,l&&(h.scrollLeft=e)}),H("th, td",d).on("focus",function(){var e=d.scrollLeft;f.scrollLeft=e,l&&(f.scrollLeft=e)}),H(f).css("max-height",n),g.bCollapse||H(f).css("height",n),e.nScrollHead=d,e.nScrollBody=f,e.nScrollFoot=h,e.aoDrawCallback.push(qe),u[0])}function qe(t){var e=t.oScroll,n=e.iBarWidth,r=H(t.nScrollHead).children("div"),a=r.children("table"),o=t.nScrollBody,i=H(o),l=H(t.nScrollFoot).children("div"),s=l.children("table"),u=H(t.nTHead),c=H(t.nTable),d=t.nTFoot&&H("th, td",t.nTFoot).length?H(t.nTFoot):null,f=t.oBrowser,h=o.scrollHeight>o.clientHeight;if(t.scrollBarVis!==h&&void 0!==t.scrollBarVis)t.scrollBarVis=h,ne(t);else{if(t.scrollBarVis=h,c.children("thead, tfoot").remove(),(h=u.clone().prependTo(c)).find("th, td").removeAttr("tabindex"),h.find("[id]").removeAttr("id"),d&&(D=d.clone().prependTo(c)).find("[id]").removeAttr("id"),t.aiDisplay.length){for(var p=null,g="ssp"!==J(t)?t._iDisplayStart:0,v=g;v<g+t.aiDisplay.length;v++){var m=t.aiDisplay[v],m=t.aoData[m].nTr;if(m){p=m;break}}if(p)for(var b=H(p).children("th, td").map(function(e){return{idx:re(t,e),width:H(this).outerWidth()}}),v=0;v<b.length;v++){var y=t.aoColumns[b[v].idx].colEl[0];y.style.width.replace("px","")!==b[v].width&&(y.style.width=b[v].width+"px",e.sX)&&(y.style.minWidth=b[v].width+"px")}}a.find("colgroup").remove(),a.append(t.colgroup.clone()),d&&(s.find("colgroup").remove(),s.append(t.colgroup.clone())),H("th, td",h).each(function(){H(this.childNodes).wrapAll('<div class="dt-scroll-sizing">')}),d&&H("th, td",D).each(function(){H(this.childNodes).wrapAll('<div class="dt-scroll-sizing">')});var u=Math.floor(c.height())>o.clientHeight||"scroll"==i.css("overflow-y"),h="padding"+(f.bScrollbarLeft?"Left":"Right"),D=c.outerWidth();a.css("width",N(D)),r.css("width",N(D)).css(h,u?n+"px":"0px"),d&&(s.css("width",N(D)),l.css("width",N(D)).css(h,u?n+"px":"0px")),c.children("colgroup").prependTo(c),i.trigger("scroll"),!t.bSorted&&!t.bFiltered||t._drawHold||(o.scrollTop=0)}}function N(e){return null===e?"0px":"number"==typeof e?e<0?"0px":e+"px":e.match(/\d$/)?e+"px":e}function Ue(e){var t=e.aoColumns;for(e.colgroup.empty(),r=0;r<t.length;r++)t[r].bVisible&&e.colgroup.append(t[r].colEl)}function ze(o,e,t,i,l){tt(e,t,function(e){var t=!1,n=void 0===i?de(e.target):[i];if(n.length){for(var r=0,a=n.length;r<a;r++)if(!1!==function(e,t,n,r){function a(e,t){var n=e._idx;return(n=void 0===n?s.indexOf(e[1]):n)+1<s.length?n+1:t?null:0}var o,i=e.aoColumns[t],l=e.aaSorting,s=i.asSorting;if(!i.bSortable)return!1;"number"==typeof l[0]&&(l=e.aaSorting=[l]);(r||n)&&e.oFeatures.bSortMulti?-1!==(i=b(l,"0").indexOf(t))?null===(o=null===(o=a(l[i],!0))&&1===l.length?0:o)?l.splice(i,1):(l[i][1]=s[o],l[i]._idx=o):(r?l.push([t,s[0],0]):l.push([t,l[0][1],0]),l[l.length-1]._idx=0):l.length&&l[0][0]==t?(o=a(l[0]),l.length=1,l[0][1]=s[o],l[0]._idx=o):(l.length=0,l.push([t,s[0]]),l[0]._idx=0)}(o,n[r],r,e.shiftKey)&&(t=!0),1===o.aaSorting.length&&""===o.aaSorting[0][1])break;t&&Be(o,!0,function(){Je(o),$e(o,o.aiDisplay),d(o,!1,!1),l&&l()})}})}function $e(e,t){if(!(t.length<2)){for(var n=e.aiDisplayMaster,r={},a={},o=0;o<n.length;o++)r[n[o]]=o;for(o=0;o<t.length;o++)a[t[o]]=r[t[o]];t.sort(function(e,t){return a[e]-a[t]})}}function Ye(n,r,e){function t(e){var t;H.isPlainObject(e)?void 0!==e.idx?r.push([e.idx,e.dir]):e.name&&-1!==(t=b(n.aoColumns,"sName").indexOf(e.name))&&r.push([t,e.dir]):r.push(e)}if(H.isPlainObject(e))t(e);else if(e.length&&"number"==typeof e[0])t(e);else if(e.length)for(var a=0;a<e.length;a++)t(e[a])}function Ge(e){var t,n,r,a,o,i,l,s=[],u=B.ext.type.order,c=e.aoColumns,d=e.aaSortingFixed,f=H.isPlainObject(d),h=[];if(e.oFeatures.bSort)for(Array.isArray(d)&&Ye(e,h,d),f&&d.pre&&Ye(e,h,d.pre),Ye(e,h,e.aaSorting),f&&d.post&&Ye(e,h,d.post),t=0;t<h.length;t++)if(c[l=h[t][0]])for(n=0,r=(a=c[l].aDataSort).length;n<r;n++)i=c[o=a[n]].sType||"string",void 0===h[t]._idx&&(h[t]._idx=c[o].asSorting.indexOf(h[t][1])),h[t][1]&&s.push({src:l,col:o,dir:h[t][1],index:h[t]._idx,type:i,formatter:u[i+"-pre"],sorter:u[i+"-"+h[t][1]]});return s}function Je(e,t,n){var r,a,o,i,l,c,d=[],s=B.ext.type.order,f=e.aoData,u=e.aiDisplayMaster;for(void 0!==t?(l=e.aoColumns[t],c=[{src:t,col:t,dir:n,index:0,type:l.sType,formatter:s[l.sType+"-pre"],sorter:s[l.sType+"-"+n]}],u=u.slice()):c=Ge(e),r=0,a=c.length;r<a;r++){i=c[r],S=x=D=g=p=h=y=b=m=v=void 0;var h,p,g,v=e,m=i.col,b=v.aoColumns[m],y=B.ext.order[b.sSortDataType];y&&(h=y.call(v.oInstance,v,m,ae(v,m)));for(var D=B.ext.type.order[b.sType+"-pre"],x=v.aoData,S=0;S<x.length;S++)x[S]&&((p=x[S])._aSortData||(p._aSortData=[]),p._aSortData[m]&&!y||(g=y?h[S]:q(v,S,m,"sort"),p._aSortData[m]=D?D(g,v):g))}if("ssp"!=J(e)&&0!==c.length){for(r=0,o=u.length;r<o;r++)d[r]=r;c.length&&"desc"===c[0].dir&&e.orderDescReverse&&d.reverse(),u.sort(function(e,t){for(var n,r,a,o,i=c.length,l=f[e]._aSortData,s=f[t]._aSortData,u=0;u<i;u++)if(n=l[(o=c[u]).col],r=s[o.col],o.sorter){if(0!==(a=o.sorter(n,r)))return a}else if(0!==(a=n<r?-1:r<n?1:0))return"asc"===o.dir?a:-a;return(n=d[e])<(r=d[t])?-1:r<n?1:0})}else 0===c.length&&u.sort(function(e,t){return e<t?-1:t<e?1:0});return void 0===t&&(e.bSorted=!0,e.sortDetails=c,G(e,null,"order",[e,c])),u}function Ze(e){var t,n,r,a=e.aLastSort,o=e.oClasses.order.position,i=Ge(e),l=e.oFeatures;if(l.bSort&&l.bSortClasses){for(t=0,n=a.length;t<n;t++)r=a[t].src,H(b(e.aoData,"anCells",r)).removeClass(o+(t<2?t+1:3));for(t=0,n=i.length;t<n;t++)r=i[t].src,H(b(e.aoData,"anCells",r)).addClass(o+(t<2?t+1:3))}e.aLastSort=i}function Qe(n){var t,e;n._bLoadingState||(Ye(n,e=[],n.aaSorting),t=n.aoColumns,e={time:+new Date,start:n._iDisplayStart,length:n._iDisplayLength,order:e.map(function(e){return t[e[0]]&&t[e[0]].sName?[t[e[0]].sName,e[1]]:e.slice()}),search:H.extend({},n.oPreviousSearch),columns:n.aoColumns.map(function(e,t){return{name:e.sName,visible:e.bVisible,search:H.extend({},n.aoPreSearchCols[t])}})},n.oSavedState=e,G(n,"aoStateSaveParams","stateSaveParams",[n,e]),n.oFeatures.bStateSave&&!n.bDestroying&&n.fnStateSaveCallback.call(n.oInstance,n,e))}function Ke(r,e,t){var n,a,o=r.aoColumns,i=b(r.aoColumns,"sName"),l=(r._bLoadingState=!0,r._bInitComplete?new B.Api(r):null);if(e&&e.time){var s=r.iStateDuration;if(0<s&&e.time<+new Date-1e3*s)r._bLoadingState=!1;else if(-1!==G(r,"aoStateLoadParams","stateLoadParams",[r,e]).indexOf(!1))r._bLoadingState=!1;else{if(r.oLoadedState=H.extend(!0,{},e),G(r,null,"stateLoadInit",[r,e],!0),void 0!==e.length&&(l?l.page.len(e.length):r._iDisplayLength=e.length),void 0!==e.start&&(null===l?(r._iDisplayStart=e.start,r.iInitDisplayStart=e.start):Xe(r,e.start/r._iDisplayLength)),void 0!==e.order&&(r.aaSorting=[],H.each(e.order,function(e,t){var n=[t[0],t[1]];"string"==typeof t[0]?(t=i.indexOf(t[0]),n[0]=0<=t?t:0):n[0]>=o.length&&(n[0]=0),r.aaSorting.push(n)})),void 0!==e.search&&H.extend(r.oPreviousSearch,e.search),e.columns){var u,c=e.columns,d=b(e.columns,"name");if(d.join("").length&&d.join("")!==i.join(""))for(c=[],n=0;n<i.length;n++)""!=i[n]&&0<=(u=d.indexOf(i[n]))?c.push(e.columns[u]):c.push({});if(c.length===o.length){for(n=0,a=c.length;n<a;n++){var f=c[n];void 0!==f.visible&&(l?l.column(n).visible(f.visible,!1):o[n].bVisible=f.visible),void 0!==f.search&&H.extend(r.aoPreSearchCols[n],f.search)}l&&l.columns.adjust()}}r._bLoadingState=!1,G(r,"aoStateLoaded","stateLoaded",[r,e])}}else r._bLoadingState=!1;t()}function z(e,t,n,r){if(n="DataTables warning: "+(e?"table id="+e.sTableId+" - ":"")+n,r&&(n+=". For more information about this error, please see https://datatables.net/tn/"+r),t)W.console&&console.log&&console.log(n);else{t=B.ext,t=t.sErrMode||t.errMode;if(e&&G(e,null,"dt-error",[e,r,n],!0),"alert"==t)alert(n);else{if("throw"==t)throw new Error(n);"function"==typeof t&&t(e,r,n)}}}function $(n,r,e,t){Array.isArray(e)?H.each(e,function(e,t){Array.isArray(t)?$(n,r,t[0],t[1]):$(n,r,t)}):(void 0===t&&(t=e),void 0!==r[e]&&(n[t]=r[e]))}function et(e,t,n){var r,a;for(a in t)Object.prototype.hasOwnProperty.call(t,a)&&(r=t[a],H.isPlainObject(r)?(H.isPlainObject(e[a])||(e[a]={}),H.extend(!0,e[a],r)):n&&"data"!==a&&"aaData"!==a&&Array.isArray(r)?e[a]=r.slice():e[a]=r);return e}function tt(e,t,n){H(e).on("click.DT",t,function(e){n(e)}).on("keypress.DT",t,function(e){13===e.which&&(e.preventDefault(),n(e))}).on("selectstart.DT",t,function(){return!1})}function Y(e,t,n){n&&e[t].push(n)}function G(t,e,n,r,a){var o=[];return e&&(o=t[e].slice().reverse().map(function(e){return e.apply(t.oInstance,r)})),null!==n&&(e=H.Event(n+".dt"),n=H(t.nTable),e.dt=t.api,n[a?"trigger":"triggerHandler"](e,r),a&&0===n.parents("body").length&&H("body").trigger(e,r),o.push(e.result)),o}function nt(e){var t=e._iDisplayStart,n=e.fnDisplayEnd(),r=e._iDisplayLength;n<=t&&(t=n-r),t-=t%r,e._iDisplayStart=t=-1===r||t<0?0:t}function rt(e,t){var e=e.renderer,n=B.ext.renderer[t];return H.isPlainObject(e)&&e[t]?n[e[t]]||n._:"string"==typeof e&&n[e]||n._}function J(e){return e.oFeatures.bServerSide?"ssp":e.ajax?"ajax":"dom"}function at(e,t,n){var r=e.fnFormatNumber,a=e._iDisplayStart+1,o=e._iDisplayLength,i=e.fnRecordsDisplay(),l=e.fnRecordsTotal(),s=-1===o;return t.replace(/_START_/g,r.call(e,a)).replace(/_END_/g,r.call(e,e.fnDisplayEnd())).replace(/_MAX_/g,r.call(e,l)).replace(/_TOTAL_/g,r.call(e,i)).replace(/_PAGE_/g,r.call(e,s?1:Math.ceil(a/o))).replace(/_PAGES_/g,r.call(e,s?1:Math.ceil(i/o))).replace(/_ENTRIES_/g,e.api.i18n("entries","",n)).replace(/_ENTRIES-MAX_/g,e.api.i18n("entries","",l)).replace(/_ENTRIES-TOTAL_/g,e.api.i18n("entries","",i))}function ot(e,t){if(t)if(t.length<1e4)e.push.apply(e,t);else for(r=0;r<t.length;r++)e.push(t[r])}var it=[],n=Array.prototype;X=function(e,t){if(!(this instanceof X))return new X(e,t);function n(e){e=e,t=B.settings,r=b(t,"nTable");var n,t,r,a=e?e.nTable&&e.oFeatures?[e]:e.nodeName&&"table"===e.nodeName.toLowerCase()?-1!==(a=r.indexOf(e))?[t[a]]:null:e&&"function"==typeof e.settings?e.settings().toArray():("string"==typeof e?n=H(e).get():e instanceof H&&(n=e.get()),n?t.filter(function(e,t){return n.includes(r[t])}):void 0):[];a&&o.push.apply(o,a)}var r,o=[];if(Array.isArray(e))for(r=0;r<e.length;r++)n(e[r]);else n(e);this.context=1<o.length?x(o):o,ot(this,t),this.selector={rows:null,cols:null,opts:null},X.extend(this,this,it)},B.Api=X,H.extend(X.prototype,{any:function(){return 0!==this.count()},context:[],count:function(){return this.flatten().length},each:function(e){for(var t=0,n=this.length;t<n;t++)e.call(this,this[t],t,this);return this},eq:function(e){var t=this.context;return t.length>e?new X(t[e],this[e]):null},filter:function(e){e=n.filter.call(this,e,this);return new X(this.context,e)},flatten:function(){var e=[];return new X(this.context,e.concat.apply(e,this.toArray()))},get:function(e){return this[e]},join:n.join,includes:function(e){return-1!==this.indexOf(e)},indexOf:n.indexOf,iterator:function(e,t,n,r){var a,o,i,l,s,u,c,d,f=[],h=this.context,p=this.selector;for("string"==typeof e&&(r=n,n=t,t=e,e=!1),o=0,i=h.length;o<i;o++){var g=new X(h[o]);if("table"===t)void 0!==(a=n.call(g,h[o],o))&&f.push(a);else if("columns"===t||"rows"===t)void 0!==(a=n.call(g,h[o],this[o],o))&&f.push(a);else if("every"===t||"column"===t||"column-rows"===t||"row"===t||"cell"===t)for(c=this[o],"column-rows"===t&&(u=yt(h[o],p.opts)),l=0,s=c.length;l<s;l++)d=c[l],void 0!==(a="cell"===t?n.call(g,h[o],d.row,d.column,o,l):n.call(g,h[o],d,o,l,u))&&f.push(a)}return f.length||r?((e=(r=new X(h,e?f.concat.apply([],f):f)).selector).rows=p.rows,e.cols=p.cols,e.opts=p.opts,r):this},lastIndexOf:n.lastIndexOf,length:0,map:function(e){e=n.map.call(this,e,this);return new X(this.context,e)},pluck:function(e){var t=B.util.get(e);return this.map(function(e){return t(e)})},pop:n.pop,push:n.push,reduce:n.reduce,reduceRight:n.reduceRight,reverse:n.reverse,selector:null,shift:n.shift,slice:function(){return new X(this.context,this)},sort:n.sort,splice:n.splice,toArray:function(){return n.slice.call(this)},to$:function(){return H(this)},toJQuery:function(){return H(this)},unique:function(){return new X(this.context,x(this.toArray()))},unshift:n.unshift}),W.__apiStruct=it,X.extend=function(e,t,n){if(n.length&&t&&(t instanceof X||t.__dt_wrapper))for(var r,a=0,o=n.length;a<o;a++)"__proto__"!==(r=n[a]).name&&(t[r.name]="function"===r.type?function(t,n,r){return function(){var e=n.apply(t||this,arguments);return X.extend(e,e,r.methodExt),e}}(e,r.val,r):"object"===r.type?{}:r.val,t[r.name].__dt_wrapper=!0,X.extend(e,t[r.name],r.propExt))},X.register=t=function(e,t){if(Array.isArray(e))for(var n=0,r=e.length;n<r;n++)X.register(e[n],t);else for(var a=e.split("."),o=it,i=0,l=a.length;i<l;i++){var s,u,c=function(e,t){for(var n=0,r=e.length;n<r;n++)if(e[n].name===t)return e[n];return null}(o,u=(s=-1!==a[i].indexOf("()"))?a[i].replace("()",""):a[i]);c||o.push(c={name:u,val:{},methodExt:[],propExt:[],type:"object"}),i===l-1?(c.val=t,c.type="function"==typeof t?"function":H.isPlainObject(t)?"object":"other"):o=s?c.methodExt:c.propExt}},X.registerPlural=e=function(e,t,n){X.register(e,n),X.register(t,function(){var e=n.apply(this,arguments);return e===this?this:e instanceof X?e.length?Array.isArray(e[0])?new X(e.context,e[0]):e[0]:void 0:e})};function lt(e,t){var n,r;return Array.isArray(e)?(n=[],e.forEach(function(e){e=lt(e,t);ot(n,e)}),n.filter(function(e){return e})):"number"==typeof e?[t[e]]:(r=t.map(function(e){return e.nTable}),H(r).filter(e).map(function(){var e=r.indexOf(this);return t[e]}).toArray())}function st(a,o,e){var t,n;e&&(t=new X(a)).one("draw",function(){e(t.ajax.json())}),"ssp"==J(a)?d(a,o):(w(a,!0),(n=a.jqXHR)&&4!==n.readyState&&n.abort(),Ne(a,{},function(e){me(a);for(var t=Fe(a,e),n=0,r=t.length;n<r;n++)D(a,t[n]);d(a,o),He(a),w(a,!1)}))}function ut(e,t,n,r,a){for(var o,i,l,s,u=[],c=typeof t,d=0,f=(t=t&&"string"!=c&&"function"!=c&&void 0!==t.length?t:[t]).length;d<f;d++)for(l=0,s=(i=t[d]&&t[d].split&&!t[d].match(/[[(:]/)?t[d].split(","):[t[d]]).length;l<s;l++)(o=(o=n("string"==typeof i[l]?i[l].trim():i[l])).filter(function(e){return null!=e}))&&o.length&&(u=u.concat(o));var h=I.selector[e];if(h.length)for(d=0,f=h.length;d<f;d++)u=h[d](r,a,u);return x(u)}function ct(e){return(e=e||{}).filter&&void 0===e.search&&(e.search=e.filter),H.extend({search:"none",order:"current",page:"all"},e)}function dt(e){var t=new X(e.context[0]);return e.length&&t.push(e[0]),t.selector=e.selector,t.length&&1<t[0].length&&t[0].splice(1),t}t("tables()",function(e){return null!=e?new X(lt(e,this.context)):this}),t("table()",function(e){var e=this.tables(e),t=e.context;return t.length?new X(t[0]):e}),[["nodes","node","nTable"],["body","body","nTBody"],["header","header","nTHead"],["footer","footer","nTFoot"]].forEach(function(t){e("tables()."+t[0]+"()","table()."+t[1]+"()",function(){return this.iterator("table",function(e){return e[t[2]]},1)})}),[["header","aoHeader"],["footer","aoFooter"]].forEach(function(n){t("table()."+n[0]+".structure()",function(e){var e=this.columns(e).indexes().flatten(),t=this.context[0];return Te(t,t[n[1]],e)})}),e("tables().containers()","table().container()",function(){return this.iterator("table",function(e){return e.nTableWrapper},1)}),t("tables().every()",function(n){var r=this;return this.iterator("table",function(e,t){n.call(r.table(t),t)})}),t("caption()",function(a,o){var e,t=this.context;return void 0===a?(e=t[0].captionNode)&&t.length?e.innerHTML:null:this.iterator("table",function(e){var t=H(e.nTable),n=H(e.captionNode),r=H(e.nTableWrapper);n.length||(n=H("<caption/>").html(a),e.captionNode=n[0],o)||(t.prepend(n),o=n.css("caption-side")),n.html(a),o&&(n.css("caption-side",o),n[0]._captionSide=o),(r.find("div.dataTables_scroll").length?(e="top"===o?"Head":"Foot",r.find("div.dataTables_scroll"+e+" table")):t).prepend(n)},1)}),t("caption.node()",function(){var e=this.context;return e.length?e[0].captionNode:null}),t("draw()",function(t){return this.iterator("table",function(e){"page"===t?S(e):d(e,!1===(t="string"==typeof t?"full-hold"!==t:t))})}),t("page()",function(t){return void 0===t?this.page.info().page:this.iterator("table",function(e){Xe(e,t)})}),t("page.info()",function(){var e,t,n,r,a;if(0!==this.context.length)return t=(e=this.context[0])._iDisplayStart,n=e.oFeatures.bPaginate?e._iDisplayLength:-1,r=e.fnRecordsDisplay(),{page:(a=-1===n)?0:Math.floor(t/n),pages:a?1:Math.ceil(r/n),start:t,end:e.fnDisplayEnd(),length:n,recordsTotal:e.fnRecordsTotal(),recordsDisplay:r,serverSide:"ssp"===J(e)}}),t("page.len()",function(t){return void 0===t?0!==this.context.length?this.context[0]._iDisplayLength:void 0:this.iterator("table",function(e){We(e,t)})}),t("ajax.json()",function(){var e=this.context;if(0<e.length)return e[0].json}),t("ajax.params()",function(){var e=this.context;if(0<e.length)return e[0].oAjaxData}),t("ajax.reload()",function(t,n){return this.iterator("table",function(e){st(e,!1===n,t)})}),t("ajax.url()",function(t){var e=this.context;return void 0===t?0===e.length?void 0:(e=e[0],H.isPlainObject(e.ajax)?e.ajax.url:e.ajax):this.iterator("table",function(e){H.isPlainObject(e.ajax)?e.ajax.url=t:e.ajax=t})}),t("ajax.url().load()",function(t,n){return this.iterator("table",function(e){st(e,!1===n,t)})});function ft(o,i,e,t){function l(e,t){var n;if(Array.isArray(e)||e instanceof H)for(var r=0,a=e.length;r<a;r++)l(e[r],t);else e.nodeName&&"tr"===e.nodeName.toLowerCase()?(e.setAttribute("data-dt-row",i.idx),s.push(e)):(n=H("<tr><td></td></tr>").attr("data-dt-row",i.idx).addClass(t),H("td",n).addClass(t).html(e)[0].colSpan=oe(o),s.push(n[0]))}var s=[];l(e,t),i._details&&i._details.detach(),i._details=H(s),i._detailsShow&&i._details.insertAfter(i.nTr)}function ht(e,t){var n=e.context;if(n.length&&e.length){var r=n[0].aoData[e[0]];if(r._details){(r._detailsShow=t)?(r._details.insertAfter(r.nTr),H(r.nTr).addClass("dt-hasChild")):(r._details.detach(),H(r.nTr).removeClass("dt-hasChild")),G(n[0],null,"childRow",[t,e.row(e[0])]);var i=n[0],a=new X(i),r=".dt.DT_details",t="draw"+r,e="column-sizing"+r,r="destroy"+r,l=i.aoData;if(a.off(t+" "+e+" "+r),b(l,"_details").length>0){a.on(t,function(e,t){if(i!==t)return;a.rows({page:"current"}).eq(0).each(function(e){var t=l[e];if(t._detailsShow)t._details.insertAfter(t.nTr)})});a.on(e,function(e,t){if(i!==t)return;var n,r=oe(t);for(var a=0,o=l.length;a<o;a++){n=l[a];if(n&&n._details)n._details.each(function(){var e=H(this).children("td");if(e.length==1)e.attr("colspan",r)})}});a.on(r,function(e,t){if(i!==t)return;for(var n=0,r=l.length;n<r;n++)if(l[n]&&l[n]._details)St(a,n)})}xt(n)}}}function pt(e,t,n,r,a,o){for(var i=[],l=0,s=a.length;l<s;l++)i.push(q(e,a[l],t,o));return i}function gt(e,t,n){var r=e.aoHeader;return r[void 0!==n?n:e.bSortCellsTop?0:r.length-1][t].cell}function vt(t,n){return function(e){return T(e)||"string"!=typeof e||(e=e.replace(C," "),t&&(e=A(e)),n&&(e=k(e,!1))),e}}var mt,bt,yt=function(e,t){var n,r=[],a=e.aiDisplay,o=e.aiDisplayMaster,i=t.search,l=t.order,t=t.page;if("ssp"==J(e))return"removed"===i?[]:h(0,o.length);if("current"==t)for(u=e._iDisplayStart,c=e.fnDisplayEnd();u<c;u++)r.push(a[u]);else if("current"==l||"applied"==l){if("none"==i)r=o.slice();else if("applied"==i)r=a.slice();else if("removed"==i){for(var s={},u=0,c=a.length;u<c;u++)s[a[u]]=null;o.forEach(function(e){Object.prototype.hasOwnProperty.call(s,e)||r.push(e)})}}else if("index"==l||"original"==l)for(u=0,c=e.aoData.length;u<c;u++)e.aoData[u]&&("none"==i||-1===(n=a.indexOf(u))&&"removed"==i||0<=n&&"applied"==i)&&r.push(u);else if("number"==typeof l){var d=Je(e,l,"asc");if("none"===i)r=d;else for(u=0;u<d.length;u++)(-1===(n=a.indexOf(d[u]))&&"removed"==i||0<=n&&"applied"==i)&&r.push(d[u])}return r},Dt=(t("rows()",function(n,r){void 0===n?n="":H.isPlainObject(n)&&(r=n,n=""),r=ct(r);var e=this.iterator("table",function(e){return t=ut("row",t=n,function(n){var e=f(n),r=a.aoData;if(null!==e&&!o)return[e];if(i=i||yt(a,o),null!==e&&-1!==i.indexOf(e))return[e];if(null==n||""===n)return i;if("function"==typeof n)return i.map(function(e){var t=r[e];return n(e,t._aData,t.nTr)?e:null});if(n.nodeName)return e=n._DT_RowIndex,t=n._DT_CellIndex,void 0!==e?r[e]&&r[e].nTr===n?[e]:[]:t?r[t.row]&&r[t.row].nTr===n.parentNode?[t.row]:[]:(e=H(n).closest("*[data-dt-row]")).length?[e.data("dt-row")]:[];if("string"==typeof n&&"#"===n.charAt(0)){var t=a.aIds[n.replace(/^#/,"")];if(void 0!==t)return[t.idx]}e=_(m(a.aoData,i,"nTr"));return H(e).filter(n).map(function(){return this._DT_RowIndex}).toArray()},a=e,o=r),"current"!==o.order&&"applied"!==o.order||$e(a,t),t;var a,t,o,i},1);return e.selector.rows=n,e.selector.opts=r,e}),t("rows().nodes()",function(){return this.iterator("row",function(e,t){return e.aoData[t].nTr||void 0},1)}),t("rows().data()",function(){return this.iterator(!0,"rows",function(e,t){return m(e.aoData,t,"_aData")},1)}),e("rows().cache()","row().cache()",function(n){return this.iterator("row",function(e,t){e=e.aoData[t];return"search"===n?e._aFilterData:e._aSortData},1)}),e("rows().invalidate()","row().invalidate()",function(n){return this.iterator("row",function(e,t){be(e,t,n)})}),e("rows().indexes()","row().index()",function(){return this.iterator("row",function(e,t){return t},1)}),e("rows().ids()","row().id()",function(e){for(var t=[],n=this.context,r=0,a=n.length;r<a;r++)for(var o=0,i=this[r].length;o<i;o++){var l=n[r].rowIdFn(n[r].aoData[this[r][o]]._aData);t.push((!0===e?"#":"")+l)}return new X(n,t)}),e("rows().remove()","row().remove()",function(){return this.iterator("row",function(e,t){var n=e.aoData,r=n[t],a=e.aiDisplayMaster.indexOf(t),a=(-1!==a&&e.aiDisplayMaster.splice(a,1),0<e._iRecordsDisplay&&e._iRecordsDisplay--,nt(e),e.rowIdFn(r._aData));void 0!==a&&delete e.aIds[a],n[t]=null}),this}),t("rows.add()",function(o){var e=this.iterator("table",function(e){for(var t,n=[],r=0,a=o.length;r<a;r++)(t=o[r]).nodeName&&"TR"===t.nodeName.toUpperCase()?n.push(fe(e,t)[0]):n.push(D(e,t));return n},1),t=this.rows(-1);return t.pop(),ot(t,e),t}),t("row()",function(e,t){return dt(this.rows(e,t))}),t("row().data()",function(e){var t,n=this.context;return void 0===e?n.length&&this.length&&this[0].length?n[0].aoData[this[0]]._aData:void 0:((t=n[0].aoData[this[0]])._aData=e,Array.isArray(e)&&t.nTr&&t.nTr.id&&v(n[0].rowId)(e,t.nTr.id),be(n[0],this[0],"data"),this)}),t("row().node()",function(){var e=this.context;if(e.length&&this.length&&this[0].length){e=e[0].aoData[this[0]];if(e&&e.nTr)return e.nTr}return null}),t("row.add()",function(t){t instanceof H&&t.length&&(t=t[0]);var e=this.iterator("table",function(e){return t.nodeName&&"TR"===t.nodeName.toUpperCase()?fe(e,t)[0]:D(e,t)});return this.row(e[0])}),H(L).on("plugin-init.dt",function(e,t){var r=new X(t);r.on("stateSaveParams.DT",function(e,t,n){for(var r=t.rowIdFn,a=t.aiDisplayMaster,o=[],i=0;i<a.length;i++){var l=a[i],l=t.aoData[l];l._detailsShow&&o.push("#"+r(l._aData))}n.childRows=o}),r.on("stateLoaded.DT",function(e,t,n){Dt(r,n)}),Dt(r,r.state.loaded())}),function(e,t){t&&t.childRows&&e.rows(t.childRows.map(function(e){return e.replace(/([^:\\]*(?:\\.[^:\\]*)*):/g,"$1\\:")})).every(function(){G(e.settings()[0],null,"requestChild",[this])})}),xt=B.util.throttle(function(e){Qe(e[0])},500),St=function(e,t){var n=e.context;n.length&&(t=n[0].aoData[void 0!==t?t:e[0]])&&t._details&&(t._details.remove(),t._detailsShow=void 0,t._details=void 0,H(t.nTr).removeClass("dt-hasChild"),xt(n))},wt="row().child",Tt=wt+"()",_t=(t(Tt,function(e,t){var n=this.context;return void 0===e?n.length&&this.length&&n[0].aoData[this[0]]?n[0].aoData[this[0]]._details:void 0:(!0===e?this.child.show():!1===e?St(this):n.length&&this.length&&ft(n[0],n[0].aoData[this[0]],e,t),this)}),t([wt+".show()",Tt+".show()"],function(){return ht(this,!0),this}),t([wt+".hide()",Tt+".hide()"],function(){return ht(this,!1),this}),t([wt+".remove()",Tt+".remove()"],function(){return St(this),this}),t(wt+".isShown()",function(){var e=this.context;return e.length&&this.length&&e[0].aoData[this[0]]&&e[0].aoData[this[0]]._detailsShow||!1}),/^([^:]+)?:(name|title|visIdx|visible)$/),Tt=(t("columns()",function(n,r){void 0===n?n="":H.isPlainObject(n)&&(r=n,n=""),r=ct(r);var e=this.iterator("table",function(e){return t=n,l=r,s=(i=e).aoColumns,u=b(s,"sName"),c=b(s,"sTitle"),e=B.util.get("[].[].cell")(i.aoHeader),d=x(M([],e)),ut("column",t,function(n){var r,e=f(n);if(""===n)return h(s.length);if(null!==e)return[0<=e?e:s.length+e];if("function"==typeof n)return r=yt(i,l),s.map(function(e,t){return n(t,pt(i,t,0,0,r),gt(i,t))?t:null});var t,a,o="string"==typeof n?n.match(_t):"";if(o)switch(o[2]){case"visIdx":case"visible":return o[1]&&o[1].match(/^\d+$/)?(t=parseInt(o[1],10))<0?[(a=s.map(function(e,t){return e.bVisible?t:null}))[a.length+t]]:[re(i,t)]:s.map(function(e,t){return e.bVisible&&(!o[1]||0<H(d[t]).filter(o[1]).length)?t:null});case"name":return u.map(function(e,t){return e===o[1]?t:null});case"title":return c.map(function(e,t){return e===o[1]?t:null});default:return[]}return n.nodeName&&n._DT_CellIndex?[n._DT_CellIndex.column]:(e=H(d).filter(n).map(function(){return de(this)}).toArray().sort(function(e,t){return e-t})).length||!n.nodeName?e:(e=H(n).closest("*[data-dt-column]")).length?[e.data("dt-column")]:[]},i,l);var i,t,l,s,u,c,d},1);return e.selector.cols=n,e.selector.opts=r,e}),e("columns().header()","column().header()",function(n){return this.iterator("column",function(e,t){return gt(e,t,n)},1)}),e("columns().footer()","column().footer()",function(n){return this.iterator("column",function(e,t){return e.aoFooter.length?e.aoFooter[void 0!==n?n:0][t].cell:null},1)}),e("columns().data()","column().data()",function(){return this.iterator("column-rows",pt,1)}),e("columns().render()","column().render()",function(o){return this.iterator("column-rows",function(e,t,n,r,a){return pt(e,t,0,0,a,o)},1)}),e("columns().dataSrc()","column().dataSrc()",function(){return this.iterator("column",function(e,t){return e.aoColumns[t].mData},1)}),e("columns().cache()","column().cache()",function(o){return this.iterator("column-rows",function(e,t,n,r,a){return m(e.aoData,a,"search"===o?"_aFilterData":"_aSortData",t)},1)}),e("columns().init()","column().init()",function(){return this.iterator("column",function(e,t){return e.aoColumns[t]},1)}),e("columns().nodes()","column().nodes()",function(){return this.iterator("column-rows",function(e,t,n,r,a){return m(e.aoData,a,"anCells",t)},1)}),e("columns().titles()","column().title()",function(n,r){return this.iterator("column",function(e,t){"number"==typeof n&&(r=n,n=void 0);t=H("span.dt-column-title",this.column(t).header(r));return void 0!==n?(t.html(n),this):t.html()},1)}),e("columns().types()","column().type()",function(){return this.iterator("column",function(e,t){t=e.aoColumns[t].sType;return t||se(e),t},1)}),e("columns().visible()","column().visible()",function(n,r){var t=this,a=[],e=this.iterator("column",function(e,t){if(void 0===n)return e.aoColumns[t].bVisible;!function(e,t,n){var r,a,o=e.aoColumns,i=o[t],l=e.aoData;if(void 0===n)return i.bVisible;if(i.bVisible===n)return!1;if(n)for(var s=b(o,"bVisible").indexOf(!0,t+1),u=0,c=l.length;u<c;u++)l[u]&&(a=l[u].nTr,r=l[u].anCells,a)&&a.insertBefore(r[t],r[s]||null);else H(b(e.aoData,"anCells",t)).detach();return i.bVisible=n,Ue(e),!0}(e,t,n)||a.push(t)});return void 0!==n&&this.iterator("table",function(e){_e(e,e.aoHeader),_e(e,e.aoFooter),e.aiDisplay.length||H(e.nTBody).find("td[colspan]").attr("colspan",oe(e)),Qe(e),t.iterator("column",function(e,t){a.includes(t)&&G(e,null,"column-visibility",[e,t,n,r])}),a.length&&(void 0===r||r)&&t.columns.adjust()}),e}),e("columns().widths()","column().width()",function(){var e=this.columns(":visible").count(),e=H("<tr>").html("<td>"+Array(e).join("</td><td>")+"</td>"),n=(H(this.table().body()).append(e),e.children().map(function(){return H(this).outerWidth()}));return e.remove(),this.iterator("column",function(e,t){e=ae(e,t);return null!==e?n[e]:0},1)}),e("columns().indexes()","column().index()",function(n){return this.iterator("column",function(e,t){return"visible"===n?ae(e,t):t},1)}),t("columns.adjust()",function(){return this.iterator("table",function(e){ne(e)},1)}),t("column.index()",function(e,t){var n;if(0!==this.context.length)return n=this.context[0],"fromVisible"===e||"toData"===e?re(n,t):"fromData"===e||"toVisible"===e?ae(n,t):void 0}),t("column()",function(e,t){return dt(this.columns(e,t))}),t("cells()",function(g,e,v){var r,a,o,i,l,s,t;return H.isPlainObject(g)&&(void 0===g.row?(v=g,g=null):(v=e,e=null)),H.isPlainObject(e)&&(v=e,e=null),null==e?this.iterator("table",function(e){return r=e,e=g,t=ct(v),d=r.aoData,f=yt(r,t),n=_(m(d,f,"anCells")),h=H(M([],n)),p=r.aoColumns.length,ut("cell",e,function(e){var t,n="function"==typeof e;if(null==e||n){for(o=[],i=0,l=f.length;i<l;i++)for(a=f[i],s=0;s<p;s++)u={row:a,column:s},(!n||(c=d[a],e(u,q(r,a,s),c.anCells?c.anCells[s]:null)))&&o.push(u);return o}return H.isPlainObject(e)?void 0!==e.column&&void 0!==e.row&&-1!==f.indexOf(e.row)?[e]:[]:(t=h.filter(e).map(function(e,t){return{row:t._DT_CellIndex.row,column:t._DT_CellIndex.column}}).toArray()).length||!e.nodeName?t:(c=H(e).closest("*[data-dt-row]")).length?[{row:c.data("dt-row"),column:c.data("dt-column")}]:[]},r,t);var r,t,a,o,i,l,s,u,c,d,f,n,h,p}):(t=v?{page:v.page,order:v.order,search:v.search}:{},r=this.columns(e,t),a=this.rows(g,t),t=this.iterator("table",function(e,t){var n=[];for(o=0,i=a[t].length;o<i;o++)for(l=0,s=r[t].length;l<s;l++)n.push({row:a[t][o],column:r[t][l]});return n},1),t=v&&v.selected?this.cells(t,v):t,H.extend(t.selector,{cols:e,rows:g,opts:v}),t)}),e("cells().nodes()","cell().node()",function(){return this.iterator("cell",function(e,t,n){e=e.aoData[t];return e&&e.anCells?e.anCells[n]:void 0},1)}),t("cells().data()",function(){return this.iterator("cell",function(e,t,n){return q(e,t,n)},1)}),e("cells().cache()","cell().cache()",function(r){return r="search"===r?"_aFilterData":"_aSortData",this.iterator("cell",function(e,t,n){return e.aoData[t][r][n]},1)}),e("cells().render()","cell().render()",function(r){return this.iterator("cell",function(e,t,n){return q(e,t,n,r)},1)}),e("cells().indexes()","cell().index()",function(){return this.iterator("cell",function(e,t,n){return{row:t,column:n,columnVisible:ae(e,n)}},1)}),e("cells().invalidate()","cell().invalidate()",function(r){return this.iterator("cell",function(e,t,n){be(e,t,r,n)})}),t("cell()",function(e,t,n){return dt(this.cells(e,t,n))}),t("cell().data()",function(e){var t,n,r,a,o,i=this.context,l=this[0];return void 0===e?i.length&&l.length?q(i[0],l[0].row,l[0].column):void 0:(t=i[0],n=l[0].row,r=l[0].column,a=t.aoColumns[r],o=t.aoData[n]._aData,a.fnSetData(o,e,{settings:t,row:n,col:r}),be(i[0],l[0].row,"data",l[0].column),this)}),t("order()",function(t,e){var n=this.context,r=Array.prototype.slice.call(arguments);return void 0===t?0!==n.length?n[0].aaSorting:void 0:("number"==typeof t?t=[[t,e]]:1<r.length&&(t=r),this.iterator("table",function(e){e.aaSorting=Array.isArray(t)?t.slice():t}))}),t("order.listener()",function(t,n,r){return this.iterator("table",function(e){ze(e,t,{},n,r)})}),t("order.fixed()",function(t){var e;return t?this.iterator("table",function(e){e.aaSortingFixed=H.extend(!0,{},t)}):(e=(e=this.context).length?e[0].aaSortingFixed:void 0,Array.isArray(e)?{pre:e}:e)}),t(["columns().order()","column().order()"],function(n){var r=this;return n?this.iterator("table",function(e,t){e.aaSorting=r[t].map(function(e){return[e,n]})}):this.iterator("column",function(e,t){for(var n=Ge(e),r=0,a=n.length;r<a;r++)if(n[r].col===t)return n[r].dir;return null},1)}),e("columns().orderable()","column().orderable()",function(n){return this.iterator("column",function(e,t){e=e.aoColumns[t];return n?e.asSorting:e.bSortable},1)}),t("processing()",function(t){return this.iterator("table",function(e){w(e,t)})}),t("search()",function(t,n,r,a){var e=this.context;return void 0===t?0!==e.length?e[0].oPreviousSearch.search:void 0:this.iterator("table",function(e){e.oFeatures.bFilter&&je(e,"object"==typeof n?H.extend(e.oPreviousSearch,n,{search:t}):H.extend(e.oPreviousSearch,{search:t,regex:null!==n&&n,smart:null===r||r,caseInsensitive:null===a||a}))})}),t("search.fixed()",function(t,n){var e=this.iterator(!0,"table",function(e){e=e.searchFixed;return t?void 0===n?e[t]:(null===n?delete e[t]:e[t]=n,this):Object.keys(e)});return void 0!==t&&void 0===n?e[0]:e}),e("columns().search()","column().search()",function(r,a,o,i){return this.iterator("column",function(e,t){var n=e.aoPreSearchCols;if(void 0===r)return n[t].search;e.oFeatures.bFilter&&("object"==typeof a?H.extend(n[t],a,{search:r}):H.extend(n[t],{search:r,regex:null!==a&&a,smart:null===o||o,caseInsensitive:null===i||i}),je(e,e.oPreviousSearch))})}),t(["columns().search.fixed()","column().search.fixed()"],function(n,r){var e=this.iterator(!0,"column",function(e,t){e=e.aoColumns[t].searchFixed;return n?void 0===r?e[n]:(null===r?delete e[n]:e[n]=r,this):Object.keys(e)});return void 0!==n&&void 0===r?e[0]:e}),t("state()",function(e,t){var n;return e?(n=H.extend(!0,{},e),this.iterator("table",function(e){!1!==t&&(n.time=+new Date+100),Ke(e,n,function(){})})):this.context.length?this.context[0].oSavedState:null}),t("state.clear()",function(){return this.iterator("table",function(e){e.fnStateSaveCallback.call(e.oInstance,e,{})})}),t("state.loaded()",function(){return this.context.length?this.context[0].oLoadedState:null}),t("state.save()",function(){return this.iterator("table",function(e){Qe(e)})}),B.use=function(e,t){var n="string"==typeof e?t:e,t="string"==typeof t?t:e;if(void 0===n&&"string"==typeof t)switch(t){case"lib":case"jq":return H;case"win":return W;case"datetime":return B.DateTime;case"luxon":return o;case"moment":return i;case"bootstrap":return mt||W.bootstrap;case"foundation":return bt||W.Foundation;default:return null}"lib"===t||"jq"===t||n&&n.fn&&n.fn.jquery?H=n:"win"===t||n&&n.document?L=(W=n).document:"datetime"===t||n&&"DateTime"===n.type?B.DateTime=n:"luxon"===t||n&&n.FixedOffsetZone?o=n:"moment"===t||n&&n.isMoment?i=n:"bootstrap"===t||n&&n.Modal&&"modal"===n.Modal.NAME?mt=n:("foundation"===t||n&&n.Reveal)&&(bt=n)},B.factory=function(e,t){var n=!1;return e&&e.document&&(L=(W=e).document),t&&t.fn&&t.fn.jquery&&(H=t,n=!0),n},B.versionCheck=function(e,t){for(var n,r,a=(t||B.version).split("."),o=e.split("."),i=0,l=o.length;i<l;i++)if((n=parseInt(a[i],10)||0)!==(r=parseInt(o[i],10)||0))return r<n;return!0},B.isDataTable=function(e){var a=H(e).get(0),o=!1;return e instanceof B.Api||(H.each(B.settings,function(e,t){var n=t.nScrollHead?H("table",t.nScrollHead)[0]:null,r=t.nScrollFoot?H("table",t.nScrollFoot)[0]:null;t.nTable!==a&&n!==a&&r!==a||(o=!0)}),o)},B.tables=function(t){var e=!1,n=(H.isPlainObject(t)&&(e=t.api,t=t.visible),B.settings.filter(function(e){return!(t&&!H(e.nTable).is(":visible"))}).map(function(e){return e.nTable}));return e?new X(n):n},B.camelToHungarian=V,t("$()",function(e,t){t=this.rows(t).nodes(),t=H(t);return H([].concat(t.filter(e).toArray(),t.find(e).toArray()))}),H.each(["on","one","off"],function(e,n){t(n+"()",function(){var e=Array.prototype.slice.call(arguments),t=(e[0]=e[0].split(/\s/).map(function(e){return e.match(/\.dt\b/)?e:e+".dt"}).join(" "),H(this.tables().nodes()));return t[n].apply(t,e),this})}),t("clear()",function(){return this.iterator("table",function(e){me(e)})}),t("error()",function(t){return this.iterator("table",function(e){z(e,0,t)})}),t("settings()",function(){return new X(this.context,this.context)}),t("init()",function(){var e=this.context;return e.length?e[0].oInit:null}),t("data()",function(){return this.iterator("table",function(e){return b(e.aoData,"_aData")}).flatten()}),t("trigger()",function(t,n,r){return this.iterator("table",function(e){return G(e,null,t,n,r)}).flatten()}),t("ready()",function(e){var t=this.context;return e?this.tables().every(function(){this.context[0]._bInitComplete?e.call(this):this.on("init.dt.DT",function(){e.call(this)})}):t.length?t[0]._bInitComplete||!1:null}),t("destroy()",function(c){return c=c||!1,this.iterator("table",function(e){var t=e.oClasses,n=e.nTable,r=e.nTBody,a=e.nTHead,o=e.nTFoot,i=H(n),r=H(r),l=H(e.nTableWrapper),s=e.aoData.map(function(e){return e?e.nTr:null}),u=t.order,o=(e.bDestroying=!0,G(e,"aoDestroyCallback","destroy",[e],!0),c||new X(e).columns().visible(!0),e.resizeObserver&&e.resizeObserver.disconnect(),l.off(".DT").find(":not(tbody *)").off(".DT"),H(W).off(".DT-"+e.sInstance),n!=a.parentNode&&(i.children("thead").detach(),i.append(a)),o&&n!=o.parentNode&&(i.children("tfoot").detach(),i.append(o)),e.colgroup.remove(),e.aaSorting=[],e.aaSortingFixed=[],Ze(e),H("th, td",a).removeClass(u.canAsc+" "+u.canDesc+" "+u.isAsc+" "+u.isDesc).css("width",""),r.children().detach(),r.append(s),e.nTableWrapper.parentNode),a=e.nTableWrapper.nextSibling,u=c?"remove":"detach",r=(i[u](),l[u](),!c&&o&&(o.insertBefore(n,a),i.css("width",e.sDestroyWidth).removeClass(t.table)),B.settings.indexOf(e));-1!==r&&B.settings.splice(r,1)})}),H.each(["column","row","cell"],function(e,s){t(s+"s().every()",function(r){var a,o=this.selector.opts,i=this,l=0;return this.iterator("every",function(e,t,n){a=i[s](t,o),"cell"===s?r.call(a,a[0][0].row,a[0][0].column,n,l):r.call(a,t,n,l),l++})})}),t("i18n()",function(e,t,n){var r=this.context[0],e=U(e)(r.oLanguage);return"string"==typeof(e=H.isPlainObject(e=void 0===e?t:e)?void 0!==n&&void 0!==e[n]?e[n]:e._:e)?e.replace("%d",n):e}),B.version="2.2.0",B.settings=[],B.models={},B.models.oSearch={caseInsensitive:!0,search:"",regex:!1,smart:!0,return:!1},B.models.oRow={nTr:null,anCells:null,_aData:[],_aSortData:null,_aFilterData:null,_sFilterRow:null,src:null,idx:-1,displayData:null},B.models.oColumn={idx:null,aDataSort:null,asSorting:null,bSearchable:null,bSortable:null,bVisible:null,_sManualType:null,_bAttrSrc:!1,fnCreatedCell:null,fnGetData:null,fnSetData:null,mData:null,mRender:null,sClass:null,sContentPadding:null,sDefaultContent:null,sName:null,sSortDataType:"std",sSortingClass:null,sTitle:null,sType:null,sWidth:null,sWidthOrig:null,maxLenString:null,searchFixed:null},B.defaults={aaData:null,aaSorting:[[0,"asc"]],aaSortingFixed:[],ajax:null,aLengthMenu:[10,25,50,100],aoColumns:null,aoColumnDefs:null,aoSearchCols:[],bAutoWidth:!0,bDeferRender:!0,bDestroy:!1,bFilter:!0,bInfo:!0,bLengthChange:!0,bPaginate:!0,bProcessing:!1,bRetrieve:!1,bScrollCollapse:!1,bServerSide:!1,bSort:!0,bSortMulti:!0,bSortCellsTop:null,bSortClasses:!0,bStateSave:!1,fnCreatedRow:null,fnDrawCallback:null,fnFooterCallback:null,fnFormatNumber:function(e){return e.toString().replace(/\B(?=(\d{3})+(?!\d))/g,this.oLanguage.sThousands)},fnHeaderCallback:null,fnInfoCallback:null,fnInitComplete:null,fnPreDrawCallback:null,fnRowCallback:null,fnStateLoadCallback:function(e){try{return JSON.parse((-1===e.iStateDuration?sessionStorage:localStorage).getItem("DataTables_"+e.sInstance+"_"+location.pathname))}catch(e){return{}}},fnStateLoadParams:null,fnStateLoaded:null,fnStateSaveCallback:function(e,t){try{(-1===e.iStateDuration?sessionStorage:localStorage).setItem("DataTables_"+e.sInstance+"_"+location.pathname,JSON.stringify(t))}catch(e){}},fnStateSaveParams:null,iStateDuration:7200,iDisplayLength:10,iDisplayStart:0,iTabIndex:0,oClasses:{},oLanguage:{oAria:{orderable:": Activate to sort",orderableReverse:": Activate to invert sorting",orderableRemove:": Activate to remove sorting",paginate:{first:"First",last:"Last",next:"Next",previous:"Previous",number:""}},oPaginate:{sFirst:"«",sLast:"»",sNext:"›",sPrevious:"‹"},entries:{_:"entries",1:"entry"},sEmptyTable:"No data available in table",sInfo:"Showing _START_ to _END_ of _TOTAL_ _ENTRIES-TOTAL_",sInfoEmpty:"Showing 0 to 0 of 0 _ENTRIES-TOTAL_",sInfoFiltered:"(filtered from _MAX_ total _ENTRIES-MAX_)",sInfoPostFix:"",sDecimal:"",sThousands:",",sLengthMenu:"_MENU_ _ENTRIES_ per page",sLoadingRecords:"Loading...",sProcessing:"",sSearch:"Search:",sSearchPlaceholder:"",sUrl:"",sZeroRecords:"No matching records found"},orderDescReverse:!0,oSearch:H.extend({},B.models.oSearch),layout:{topStart:"pageLength",topEnd:"search",bottomStart:"info",bottomEnd:"paging"},sDom:null,searchDelay:null,sPaginationType:"",sScrollX:"",sScrollXInner:"",sScrollY:"",sServerMethod:"GET",renderer:null,rowId:"DT_RowId",caption:null,iDeferLoading:null},Z(B.defaults),B.defaults.column={aDataSort:null,iDataSort:-1,ariaTitle:"",asSorting:["asc","desc",""],bSearchable:!0,bSortable:!0,bVisible:!0,fnCreatedCell:null,mData:null,mRender:null,sCellType:"td",sClass:"",sContentPadding:"",sDefaultContent:null,sName:"",sSortDataType:"std",sTitle:null,sType:null,sWidth:null},Z(B.defaults.column),B.models.oSettings={oFeatures:{bAutoWidth:null,bDeferRender:null,bFilter:null,bInfo:!0,bLengthChange:!0,bPaginate:null,bProcessing:null,bServerSide:null,bSort:null,bSortMulti:null,bSortClasses:null,bStateSave:null},oScroll:{bCollapse:null,iBarWidth:0,sX:null,sXInner:null,sY:null},oLanguage:{fnInfoCallback:null},oBrowser:{bScrollbarLeft:!1,barWidth:0},ajax:null,aanFeatures:[],aoData:[],aiDisplay:[],aiDisplayMaster:[],aIds:{},aoColumns:[],aoHeader:[],aoFooter:[],oPreviousSearch:{},searchFixed:{},aoPreSearchCols:[],aaSorting:null,aaSortingFixed:[],sDestroyWidth:0,aoRowCallback:[],aoHeaderCallback:[],aoFooterCallback:[],aoDrawCallback:[],aoRowCreatedCallback:[],aoPreDrawCallback:[],aoInitComplete:[],aoStateSaveParams:[],aoStateLoadParams:[],aoStateLoaded:[],sTableId:"",nTable:null,nTHead:null,nTFoot:null,nTBody:null,nTableWrapper:null,bInitialised:!1,aoOpenRows:[],sDom:null,searchDelay:null,sPaginationType:"two_button",pagingControls:0,iStateDuration:0,aoStateSave:[],aoStateLoad:[],oSavedState:null,oLoadedState:null,bAjaxDataGet:!0,jqXHR:null,json:void 0,oAjaxData:void 0,sServerMethod:null,fnFormatNumber:null,aLengthMenu:null,iDraw:0,bDrawing:!1,iDrawError:-1,_iDisplayLength:10,_iDisplayStart:0,_iRecordsTotal:0,_iRecordsDisplay:0,oClasses:{},bFiltered:!1,bSorted:!1,bSortCellsTop:null,oInit:null,aoDestroyCallback:[],fnRecordsTotal:function(){return"ssp"==J(this)?+this._iRecordsTotal:this.aiDisplayMaster.length},fnRecordsDisplay:function(){return"ssp"==J(this)?+this._iRecordsDisplay:this.aiDisplay.length},fnDisplayEnd:function(){var e=this._iDisplayLength,t=this._iDisplayStart,n=t+e,r=this.aiDisplay.length,a=this.oFeatures,o=a.bPaginate;return a.bServerSide?!1===o||-1===e?t+r:Math.min(t+e,this._iRecordsDisplay):!o||r<n||-1===e?r:n},oInstance:null,sInstance:null,iTabIndex:0,nScrollHead:null,nScrollFoot:null,aLastSort:[],oPlugins:{},rowIdFn:null,rowId:null,caption:"",captionNode:null,colgroup:null,deferLoading:null,typeDetect:!0,resizeObserver:null,containerWidth:0},B.ext.pager);H.extend(Tt,{simple:function(){return["previous","next"]},full:function(){return["first","previous","next","last"]},numbers:function(){return["numbers"]},simple_numbers:function(){return["previous","numbers","next"]},full_numbers:function(){return["first","previous","numbers","next","last"]},first_last:function(){return["first","last"]},first_last_numbers:function(){return["first","numbers","last"]},_numbers:Wt,numbers_length:7}),H.extend(!0,B.ext.renderer,{pagingButton:{_:function(e,t,n,r,a){var e=e.oClasses.paging,o=[e.button];return r&&o.push(e.active),a&&o.push(e.disabled),{display:r="ellipsis"===t?H('<span class="ellipsis"></span>').html(n)[0]:H("<button>",{class:o.join(" "),role:"link",type:"button"}).html(n),clicker:r}}},pagingContainer:{_:function(e,t){return t}}});function Ct(e,t,n,r,a){return i?e[t](a):o?e[n](a):r?e[r](a):e}var o,i,Lt=!1;function It(e,t,n){var r;if(W.luxon&&!o&&(o=W.luxon),i=W.moment&&!i?W.moment:i){if(!(r=i.utc(e,t,n,!0)).isValid())return null}else if(o){if(!(r=t&&"string"==typeof e?o.DateTime.fromFormat(e,t):o.DateTime.fromISO(e)).isValid)return null;r=r.setLocale(n)}else t?(Lt||alert("DataTables warning: Formatted date without Moment.js or Luxon - https://datatables.net/tn/17"),Lt=!0):r=new Date(e);return r}function At(s){return function(r,a,o,i){0===arguments.length?(o="en",r=a=null):1===arguments.length?(o="en",a=r,r=null):2===arguments.length&&(o=a,a=r,r=null);var l="datetime"+(a?"-"+a:"");return B.ext.type.order[l+"-pre"]||B.type(l,{detect:function(e){return e===l&&l},order:{pre:function(e){return e.valueOf()}},className:"dt-right"}),function(e,t){var n;return null==e&&(e="--now"===i?(n=new Date,new Date(Date.UTC(n.getFullYear(),n.getMonth(),n.getDate(),n.getHours(),n.getMinutes(),n.getSeconds()))):""),"type"===t?l:""===e?"sort"!==t?"":It("0000-01-01 00:00:00",null,o):!(null===a||r!==a||"sort"===t||"type"===t||e instanceof Date)||null===(n=It(e,r,o))?e:"sort"===t?n:(e=null===a?Ct(n,"toDate","toJSDate","")[s]():Ct(n,"format","toFormat","toISOString",a),"display"===t?u(e):e)}}}var Nt=",",Ft=".";if(void 0!==W.Intl)try{for(var Ot=(new Intl.NumberFormat).formatToParts(100000.1),r=0;r<Ot.length;r++)"group"===Ot[r].type?Nt=Ot[r].value:"decimal"===Ot[r].type&&(Ft=Ot[r].value)}catch(e){}B.datetime=function(n,r){var a="datetime-"+n;r=r||"en",B.ext.type.order[a]||B.type(a,{detect:function(e){var t=It(e,n,r);return!(""!==e&&!t)&&a},order:{pre:function(e){return It(e,n,r)||0}},className:"dt-right"})},B.render={date:At("toLocaleDateString"),datetime:At("toLocaleString"),time:At("toLocaleTimeString"),number:function(a,o,i,l,s){return null==a&&(a=Nt),null==o&&(o=Ft),{display:function(e){if("number"!=typeof e&&"string"!=typeof e)return e;if(""===e||null===e)return e;var t=e<0?"-":"",n=parseFloat(e),r=Math.abs(n);if(1e11<=r||r<1e-4&&0!==r)return(r=n.toExponential(i).split(/e\+?/))[0]+" x 10<sup>"+r[1]+"</sup>";if(isNaN(n))return u(e);n=n.toFixed(i),e=Math.abs(n);r=parseInt(e,10),n=i?o+(e-r).toFixed(i).substring(2):"";return(t=0===r&&0===parseFloat(n)?"":t)+(l||"")+r.toString().replace(/\B(?=(\d{3})+(?!\d))/g,a)+n+(s||"")}}},text:function(){return{display:u,filter:u}}};function jt(e,t){return e=null!=e?e.toString().toLowerCase():"",t=null!=t?t.toString().toLowerCase():"",e.localeCompare(t,navigator.languages[0]||navigator.language,{numeric:!0,ignorePunctuation:!0})}function Rt(e,t){return e=A(e),t=A(t),jt(e,t)}var l=B.ext.type,Pt=(B.type=function(n,e,t){if(!e)return{className:l.className[n],detect:l.detect.find(function(e){return e._name===n}),order:{pre:l.order[n+"-pre"],asc:l.order[n+"-asc"],desc:l.order[n+"-desc"]},render:l.render[n],search:l.search[n]};function r(e,t){l[e][n]=t}function a(e){Object.defineProperty(e,"_name",{value:n});var t=l.detect.findIndex(function(e){return e._name===n});-1===t?l.detect.unshift(e):l.detect.splice(t,1,e)}function o(e){l.order[n+"-pre"]=e.pre,l.order[n+"-asc"]=e.asc,l.order[n+"-desc"]=e.desc}void 0===t&&(t=e,e=null),"className"===e?r("className",t):"detect"===e?a(t):"order"===e?o(t):"render"===e?r("render",t):"search"===e?r("search",t):e||(t.className&&r("className",t.className),void 0!==t.detect&&a(t.detect),t.order&&o(t.order),void 0!==t.render&&r("render",t.render),void 0!==t.search&&r("search",t.search))},B.types=function(){return l.detect.map(function(e){return e._name})},B.type("string",{detect:function(){return"string"},order:{pre:function(e){return T(e)&&"boolean"!=typeof e?"":"string"==typeof e?e.toLowerCase():e.toString?e.toString():""}},search:vt(!1,!0)}),B.type("string-utf8",{detect:{allOf:function(e){return!0},oneOf:function(e){return!T(e)&&navigator.languages&&"string"==typeof e&&e.match(/[^\x00-\x7F]/)}},order:{asc:jt,desc:function(e,t){return-1*jt(e,t)}},search:vt(!1,!0)}),B.type("html",{detect:{allOf:function(e){return T(e)||"string"==typeof e&&-1!==e.indexOf("<")},oneOf:function(e){return!T(e)&&"string"==typeof e&&-1!==e.indexOf("<")}},order:{pre:function(e){return T(e)?"":e.replace?A(e).trim().toLowerCase():e+""}},search:vt(!0,!0)}),B.type("html-utf8",{detect:{allOf:function(e){return T(e)||"string"==typeof e&&-1!==e.indexOf("<")},oneOf:function(e){return navigator.languages&&!T(e)&&"string"==typeof e&&-1!==e.indexOf("<")&&"string"==typeof e&&e.match(/[^\x00-\x7F]/)}},order:{asc:Rt,desc:function(e,t){return-1*Rt(e,t)}},search:vt(!0,!0)}),B.type("date",{className:"dt-type-date",detect:{allOf:function(e){var t;return!e||e instanceof Date||j.test(e)?null!==(t=Date.parse(e))&&!isNaN(t)||T(e):null},oneOf:function(e){return e instanceof Date||"string"==typeof e&&j.test(e)}},order:{pre:function(e){e=Date.parse(e);return isNaN(e)?-1/0:e}}}),B.type("html-num-fmt",{className:"dt-type-numeric",detect:{allOf:function(e,t){t=t.oLanguage.sDecimal;return c(e,t,!0,!1)},oneOf:function(e,t){t=t.oLanguage.sDecimal;return c(e,t,!0,!1)}},order:{pre:function(e,t){t=t.oLanguage.sDecimal;return Pt(e,t,F,P)}},search:vt(!0,!0)}),B.type("html-num",{className:"dt-type-numeric",detect:{allOf:function(e,t){t=t.oLanguage.sDecimal;return c(e,t,!1,!0)},oneOf:function(e,t){t=t.oLanguage.sDecimal;return c(e,t,!1,!1)}},order:{pre:function(e,t){t=t.oLanguage.sDecimal;return Pt(e,t,F)}},search:vt(!0,!0)}),B.type("num-fmt",{className:"dt-type-numeric",detect:{allOf:function(e,t){t=t.oLanguage.sDecimal;return s(e,t,!0,!0)},oneOf:function(e,t){t=t.oLanguage.sDecimal;return s(e,t,!0,!1)}},order:{pre:function(e,t){t=t.oLanguage.sDecimal;return Pt(e,t,P)}}}),B.type("num",{className:"dt-type-numeric",detect:{allOf:function(e,t){t=t.oLanguage.sDecimal;return s(e,t,!1,!0)},oneOf:function(e,t){t=t.oLanguage.sDecimal;return s(e,t,!1,!1)}},order:{pre:function(e,t){t=t.oLanguage.sDecimal;return Pt(e,t)}}}),function(e,t,n,r){var a;return 0===e||e&&"-"!==e?"number"==(a=typeof e)||"bigint"==a?e:+(e=(e=t?E(e,t):e).replace&&(n&&(e=e.replace(n,"")),r)?e.replace(r,""):e):-1/0});function Et(e,t,n){n&&(e[t]=n)}H.extend(!0,B.ext.renderer,{footer:{_:function(e,t,n){t.addClass(n.tfoot.cell)}},header:{_:function(g,v,m){v.addClass(m.thead.cell),g.oFeatures.bSort||v.addClass(m.order.none);var e=g.bSortCellsTop,t=v.closest("thead").find("tr"),n=v.parent().index();"disable"===v.attr("data-dt-order")||"disable"===v.parent().attr("data-dt-order")||!0===e&&0!==n||!1===e&&n!==t.length-1||H(g.nTable).on("order.dt.DT column-visibility.dt.DT",function(e,t){if(g===t){var n=t.sortDetails;if(n){for(var r=m.order,a=t.api.columns(v),o=g.aoColumns[a.flatten()[0]],i=a.orderable().includes(!0),l="",s=a.indexes(),u=a.orderable(!0).flatten(),c=b(n,"col"),d=g.iTabIndex,f=(v.removeClass(r.isAsc+" "+r.isDesc).toggleClass(r.none,!i).toggleClass(r.canAsc,i&&u.includes("asc")).toggleClass(r.canDesc,i&&u.includes("desc")),!0),h=0;h<s.length;h++)c.includes(s[h])||(f=!1);f&&(u=a.order(),v.addClass(u.includes("asc")?r.isAsc:""+u.includes("desc")?r.isDesc:""));var p=-1;for(h=0;h<c.length;h++)if(g.aoColumns[c[h]].bVisible){p=c[h];break}s[0]==p?(a=n[0],u=o.asSorting,v.attr("aria-sort","asc"===a.dir?"ascending":"descending"),l=u[a.index+1]?"Reverse":"Remove"):v.removeAttr("aria-sort"),v.attr("aria-label",i?o.ariaTitle+t.api.i18n("oAria.orderable"+l):o.ariaTitle),i&&((r=v.find(".dt-column-order")).attr("role","button"),-1!==d)&&r.attr("tabindex",d)}}})}},layout:{_:function(e,t,n){var r=e.oClasses.layout,a=H("<div/>").attr("id",n.id||null).addClass(n.className||r.row).appendTo(t);B.ext.renderer.layout._forLayoutRow(n,function(e,t){var n;"id"!==e&&"className"!==e&&(n="",t.table&&(a.addClass(r.tableRow),n+=r.tableCell+" "),n+="start"===e?r.start:"end"===e?r.end:r.full,H("<div/>").attr({id:t.id||null,class:t.className||r.cell+" "+n}).append(t.contents).appendTo(a))})},_forLayoutRow:function(t,n){function r(e){switch(e){case"":return 0;case"start":return 1;case"end":return 2;default:return 3}}Object.keys(t).sort(function(e,t){return r(e)-r(t)}).forEach(function(e){n(e,t[e])})}}}),B.feature={},B.feature.register=function(e,t,n){B.ext.features[e]=t,n&&I.feature.push({cFeature:n,fnInit:t})},B.feature.register("div",function(e,t){var n=H("<div>")[0];return t&&(Et(n,"className",t.className),Et(n,"id",t.id),Et(n,"innerHTML",t.html),Et(n,"textContent",t.text)),n}),B.feature.register("info",function(e,s){var t,n,u;return e.oFeatures.bInfo?(t=e.oLanguage,n=e.sTableId,u=H("<div/>",{class:e.oClasses.info.container}),s=H.extend({callback:t.fnInfoCallback,empty:t.sInfoEmpty,postfix:t.sInfoPostFix,search:t.sInfoFiltered,text:t.sInfo},s),e.aoDrawCallback.push(function(e){var t=s,n=u,r=e._iDisplayStart+1,a=e.fnDisplayEnd(),o=e.fnRecordsTotal(),i=e.fnRecordsDisplay(),l=i?t.text:t.empty;i!==o&&(l+=" "+t.search),l+=t.postfix,l=at(e,l),t.callback&&(l=t.callback.call(e.oInstance,e,r,a,o,i,l)),n.html(l),G(e,null,"info",[e,n[0],l])}),e._infoEl||(u.attr({"aria-live":"polite",id:n+"_info",role:"status"}),H(e.nTable).attr("aria-describedby",n+"_info"),e._infoEl=u),u):null},"i");var kt=0;function Mt(e){var t=[];return e.numbers&&t.push("numbers"),e.previousNext&&(t.unshift("previous"),t.push("next")),e.firstLast&&(t.unshift("first"),t.push("last")),t}function Ht(e,t,n,r){var a=e.oLanguage.oPaginate,o={display:"",active:!1,disabled:!1};switch(t){case"ellipsis":o.display="&#x2026;";break;case"first":o.display=a.sFirst,0===n&&(o.disabled=!0);break;case"previous":o.display=a.sPrevious,0===n&&(o.disabled=!0);break;case"next":o.display=a.sNext,0!==r&&n!==r-1||(o.disabled=!0);break;case"last":o.display=a.sLast,0!==r&&n!==r-1||(o.disabled=!0);break;default:"number"==typeof t&&(o.display=e.fnFormatNumber(t+1),n===t)&&(o.active=!0)}return o}function Wt(e,t,n,r){var a=[],o=Math.floor(n/2),i=r?2:1,l=r?1:0;return t<=n?a=h(0,t):1===n?a=[e]:3===n?e<=1?a=[0,1,"ellipsis"]:t-2<=e?(a=h(t-2,t)).unshift("ellipsis"):a=["ellipsis",e,"ellipsis"]:e<=o?((a=h(0,n-i)).push("ellipsis"),r&&a.push(t-1)):t-1-o<=e?((a=h(t-(n-i),t)).unshift("ellipsis"),r&&a.unshift(0)):((a=h(e-o+i,e+o-l)).push("ellipsis"),a.unshift("ellipsis"),r&&(a.push(t-1),a.unshift(0))),a}B.feature.register("search",function(n,r){var e,t,a,o,i,l,s,u,c,d;return n.oFeatures.bFilter?(e=n.oClasses.search,t=n.sTableId,c=n.oLanguage,a=n.oPreviousSearch,o='<input type="search" class="'+e.input+'"/>',-1===(r=H.extend({placeholder:c.sSearchPlaceholder,processing:!1,text:c.sSearch},r)).text.indexOf("_INPUT_")&&(r.text+="_INPUT_"),r.text=at(n,r.text),c=r.text.match(/_INPUT_$/),s=r.text.match(/^_INPUT_/),i=r.text.replace(/_INPUT_/,""),l="<label>"+r.text+"</label>",s?l="_INPUT_<label>"+i+"</label>":c&&(l="<label>"+i+"</label>_INPUT_"),(s=H("<div>").addClass(e.container).append(l.replace(/_INPUT_/,o))).find("label").attr("for","dt-search-"+kt),s.find("input").attr("id","dt-search-"+kt),kt++,u=function(e){var t=this.value;a.return&&"Enter"!==e.key||t!=a.search&&Be(n,r.processing,function(){a.search=t,je(n,a),n._iDisplayStart=0,S(n)})},c=null!==n.searchDelay?n.searchDelay:0,d=H("input",s).val(a.search).attr("placeholder",r.placeholder).on("keyup.DT search.DT input.DT paste.DT cut.DT",c?B.util.debounce(u,c):u).on("mouseup.DT",function(e){setTimeout(function(){u.call(d[0],e)},10)}).on("keypress.DT",function(e){if(13==e.keyCode)return!1}).attr("aria-controls",t),H(n.nTable).on("search.dt.DT",function(e,t){n===t&&d[0]!==L.activeElement&&d.val("function"!=typeof a.search?a.search:"")}),s):null},"f"),B.feature.register("paging",function(e,t){if(!e.oFeatures.bPaginate)return null;t=H.extend({buttons:B.ext.pager.numbers_length,type:e.sPaginationType,boundaryNumbers:!0,firstLast:!0,previousNext:!0,numbers:!0},t);function n(){!function e(t,n,r){if(!t._bInitComplete)return;var a=r.type?B.ext.pager[r.type]:Mt,o=t.oLanguage.oAria.paginate||{},i=t._iDisplayStart,l=t._iDisplayLength,s=t.fnRecordsDisplay(),u=-1===l,c=u?0:Math.ceil(i/l),d=u?1:Math.ceil(s/l),f=[],h=[],i=a(r).map(function(e){return"numbers"===e?Wt(c,d,r.buttons,r.boundaryNumbers):e});f=f.concat.apply(f,i);for(var p=0;p<f.length;p++){var g=f[p],v=Ht(t,g,c,d),m=rt(t,"pagingButton")(t,g,v.display,v.active,v.disabled),b="string"==typeof g?o[g]:o.number?o.number+(g+1):null;H(m.clicker).attr({"aria-controls":t.sTableId,"aria-disabled":v.disabled?"true":null,"aria-current":v.active?"page":null,"aria-label":b,"data-dt-idx":g,tabIndex:v.disabled?-1:t.iTabIndex&&"span"!==m.clicker[0].nodeName.toLowerCase()?t.iTabIndex:null}),"number"!=typeof g&&H(m.clicker).addClass(g),tt(m.clicker,{action:g},function(e){e.preventDefault(),Xe(t,e.data.action,!0)}),h.push(m.display)}u=rt(t,"pagingContainer")(t,h);s=n.find(L.activeElement).data("dt-idx");n.empty().append(u);void 0!==s&&n.find("[data-dt-idx="+s+"]").trigger("focus");h.length&&(l=H(h[0]).outerHeight(),1<r.buttons)&&0<l&&H(n).height()>=2*l-10&&e(t,n,H.extend({},r,{buttons:r.buttons-2}))}(e,r.children(),t)}var r=H("<div/>").addClass(e.oClasses.paging.container+(t.type?" paging_"+t.type:"")).append(H("<nav>").attr("aria-label","pagination").addClass(e.oClasses.paging.nav));return e.aoDrawCallback.push(n),H(e.nTable).on("column-sizing.dt.DT",n),r},"p");var Xt=0;return B.feature.register("pageLength",function(r,e){var t=r.oFeatures;if(!t.bPaginate||!t.bLengthChange)return null;e=H.extend({menu:r.aLengthMenu,text:r.oLanguage.sLengthMenu},e);var t=r.oClasses.length,n=r.sTableId,a=e.menu,o=[],i=[];if(Array.isArray(a[0]))o=a[0],i=a[1];else for(p=0;p<a.length;p++)H.isPlainObject(a[p])?(o.push(a[p].value),i.push(a[p].label)):(o.push(a[p]),i.push(a[p]));for(var l=e.text.match(/_MENU_$/),s=e.text.match(/^_MENU_/),u=e.text.replace(/_MENU_/,""),e="<label>"+e.text+"</label>",s=(s?e="_MENU_<label>"+u+"</label>":l&&(e="<label>"+u+"</label>_MENU_"),"tmp-"+ +new Date),c=H("<div/>").addClass(t.container).append(e.replace("_MENU_",'<span id="'+s+'"></span>')),d=[],f=(Array.prototype.slice.call(c.find("label")[0].childNodes).forEach(function(e){e.nodeType===Node.TEXT_NODE&&d.push({el:e,text:e.textContent})}),function(t){d.forEach(function(e){e.el.textContent=at(r,e.text,t)})}),h=H("<select/>",{"aria-controls":n,class:t.select}),p=0;p<o.length;p++)h[0][p]=new Option("number"==typeof i[p]?r.fnFormatNumber(i[p]):i[p],o[p]);return c.find("label").attr("for","dt-length-"+Xt),h.attr("id","dt-length-"+Xt),Xt++,c.find("#"+s).replaceWith(h),H("select",c).val(r._iDisplayLength).on("change.DT",function(){We(r,H(this).val()),S(r)}),H(r.nTable).on("length.dt.DT",function(e,t,n){r===t&&(H("select",c).val(n),f(n))}),f(r._iDisplayLength),c},"l"),((H.fn.dataTable=B).$=H).fn.dataTableSettings=B.settings,H.fn.dataTableExt=B.ext,H.fn.DataTable=function(e){return H(this).dataTable(e).api()},H.each(B,function(e,t){H.fn.DataTable[e]=t}),B});
\ No newline at end of file
diff --git a/dist/assets/js/jquery-3.7.1.js b/dist/assets/js/jquery-3.7.1.js
deleted file mode 100644
index 1a86433..0000000
--- a/dist/assets/js/jquery-3.7.1.js
+++ /dev/null
@@ -1,10716 +0,0 @@
-/*!
- * jQuery JavaScript Library v3.7.1
- * https://jquery.com/
- *
- * Copyright OpenJS Foundation and other contributors
- * Released under the MIT license
- * https://jquery.org/license
- *
- * Date: 2023-08-28T13:37Z
- */
-( function( global, factory ) {
-
-	"use strict";
-
-	if ( typeof module === "object" && typeof module.exports === "object" ) {
-
-		// For CommonJS and CommonJS-like environments where a proper `window`
-		// is present, execute the factory and get jQuery.
-		// For environments that do not have a `window` with a `document`
-		// (such as Node.js), expose a factory as module.exports.
-		// This accentuates the need for the creation of a real `window`.
-		// e.g. var jQuery = require("jquery")(window);
-		// See ticket trac-14549 for more info.
-		module.exports = global.document ?
-			factory( global, true ) :
-			function( w ) {
-				if ( !w.document ) {
-					throw new Error( "jQuery requires a window with a document" );
-				}
-				return factory( w );
-			};
-	} else {
-		factory( global );
-	}
-
-// Pass this if window is not defined yet
-} )( typeof window !== "undefined" ? window : this, function( window, noGlobal ) {
-
-// Edge <= 12 - 13+, Firefox <=18 - 45+, IE 10 - 11, Safari 5.1 - 9+, iOS 6 - 9.1
-// throw exceptions when non-strict code (e.g., ASP.NET 4.5) accesses strict mode
-// arguments.callee.caller (trac-13335). But as of jQuery 3.0 (2016), strict mode should be common
-// enough that all such attempts are guarded in a try block.
-"use strict";
-
-var arr = [];
-
-var getProto = Object.getPrototypeOf;
-
-var slice = arr.slice;
-
-var flat = arr.flat ? function( array ) {
-	return arr.flat.call( array );
-} : function( array ) {
-	return arr.concat.apply( [], array );
-};
-
-
-var push = arr.push;
-
-var indexOf = arr.indexOf;
-
-var class2type = {};
-
-var toString = class2type.toString;
-
-var hasOwn = class2type.hasOwnProperty;
-
-var fnToString = hasOwn.toString;
-
-var ObjectFunctionString = fnToString.call( Object );
-
-var support = {};
-
-var isFunction = function isFunction( obj ) {
-
-		// Support: Chrome <=57, Firefox <=52
-		// In some browsers, typeof returns "function" for HTML <object> elements
-		// (i.e., `typeof document.createElement( "object" ) === "function"`).
-		// We don't want to classify *any* DOM node as a function.
-		// Support: QtWeb <=3.8.5, WebKit <=534.34, wkhtmltopdf tool <=0.12.5
-		// Plus for old WebKit, typeof returns "function" for HTML collections
-		// (e.g., `typeof document.getElementsByTagName("div") === "function"`). (gh-4756)
-		return typeof obj === "function" && typeof obj.nodeType !== "number" &&
-			typeof obj.item !== "function";
-	};
-
-
-var isWindow = function isWindow( obj ) {
-		return obj != null && obj === obj.window;
-	};
-
-
-var document = window.document;
-
-
-
-	var preservedScriptAttributes = {
-		type: true,
-		src: true,
-		nonce: true,
-		noModule: true
-	};
-
-	function DOMEval( code, node, doc ) {
-		doc = doc || document;
-
-		var i, val,
-			script = doc.createElement( "script" );
-
-		script.text = code;
-		if ( node ) {
-			for ( i in preservedScriptAttributes ) {
-
-				// Support: Firefox 64+, Edge 18+
-				// Some browsers don't support the "nonce" property on scripts.
-				// On the other hand, just using `getAttribute` is not enough as
-				// the `nonce` attribute is reset to an empty string whenever it
-				// becomes browsing-context connected.
-				// See https://github.com/whatwg/html/issues/2369
-				// See https://html.spec.whatwg.org/#nonce-attributes
-				// The `node.getAttribute` check was added for the sake of
-				// `jQuery.globalEval` so that it can fake a nonce-containing node
-				// via an object.
-				val = node[ i ] || node.getAttribute && node.getAttribute( i );
-				if ( val ) {
-					script.setAttribute( i, val );
-				}
-			}
-		}
-		doc.head.appendChild( script ).parentNode.removeChild( script );
-	}
-
-
-function toType( obj ) {
-	if ( obj == null ) {
-		return obj + "";
-	}
-
-	// Support: Android <=2.3 only (functionish RegExp)
-	return typeof obj === "object" || typeof obj === "function" ?
-		class2type[ toString.call( obj ) ] || "object" :
-		typeof obj;
-}
-/* global Symbol */
-// Defining this global in .eslintrc.json would create a danger of using the global
-// unguarded in another place, it seems safer to define global only for this module
-
-
-
-var version = "3.7.1",
-
-	rhtmlSuffix = /HTML$/i,
-
-	// Define a local copy of jQuery
-	jQuery = function( selector, context ) {
-
-		// The jQuery object is actually just the init constructor 'enhanced'
-		// Need init if jQuery is called (just allow error to be thrown if not included)
-		return new jQuery.fn.init( selector, context );
-	};
-
-jQuery.fn = jQuery.prototype = {
-
-	// The current version of jQuery being used
-	jquery: version,
-
-	constructor: jQuery,
-
-	// The default length of a jQuery object is 0
-	length: 0,
-
-	toArray: function() {
-		return slice.call( this );
-	},
-
-	// Get the Nth element in the matched element set OR
-	// Get the whole matched element set as a clean array
-	get: function( num ) {
-
-		// Return all the elements in a clean array
-		if ( num == null ) {
-			return slice.call( this );
-		}
-
-		// Return just the one element from the set
-		return num < 0 ? this[ num + this.length ] : this[ num ];
-	},
-
-	// Take an array of elements and push it onto the stack
-	// (returning the new matched element set)
-	pushStack: function( elems ) {
-
-		// Build a new jQuery matched element set
-		var ret = jQuery.merge( this.constructor(), elems );
-
-		// Add the old object onto the stack (as a reference)
-		ret.prevObject = this;
-
-		// Return the newly-formed element set
-		return ret;
-	},
-
-	// Execute a callback for every element in the matched set.
-	each: function( callback ) {
-		return jQuery.each( this, callback );
-	},
-
-	map: function( callback ) {
-		return this.pushStack( jQuery.map( this, function( elem, i ) {
-			return callback.call( elem, i, elem );
-		} ) );
-	},
-
-	slice: function() {
-		return this.pushStack( slice.apply( this, arguments ) );
-	},
-
-	first: function() {
-		return this.eq( 0 );
-	},
-
-	last: function() {
-		return this.eq( -1 );
-	},
-
-	even: function() {
-		return this.pushStack( jQuery.grep( this, function( _elem, i ) {
-			return ( i + 1 ) % 2;
-		} ) );
-	},
-
-	odd: function() {
-		return this.pushStack( jQuery.grep( this, function( _elem, i ) {
-			return i % 2;
-		} ) );
-	},
-
-	eq: function( i ) {
-		var len = this.length,
-			j = +i + ( i < 0 ? len : 0 );
-		return this.pushStack( j >= 0 && j < len ? [ this[ j ] ] : [] );
-	},
-
-	end: function() {
-		return this.prevObject || this.constructor();
-	},
-
-	// For internal use only.
-	// Behaves like an Array's method, not like a jQuery method.
-	push: push,
-	sort: arr.sort,
-	splice: arr.splice
-};
-
-jQuery.extend = jQuery.fn.extend = function() {
-	var options, name, src, copy, copyIsArray, clone,
-		target = arguments[ 0 ] || {},
-		i = 1,
-		length = arguments.length,
-		deep = false;
-
-	// Handle a deep copy situation
-	if ( typeof target === "boolean" ) {
-		deep = target;
-
-		// Skip the boolean and the target
-		target = arguments[ i ] || {};
-		i++;
-	}
-
-	// Handle case when target is a string or something (possible in deep copy)
-	if ( typeof target !== "object" && !isFunction( target ) ) {
-		target = {};
-	}
-
-	// Extend jQuery itself if only one argument is passed
-	if ( i === length ) {
-		target = this;
-		i--;
-	}
-
-	for ( ; i < length; i++ ) {
-
-		// Only deal with non-null/undefined values
-		if ( ( options = arguments[ i ] ) != null ) {
-
-			// Extend the base object
-			for ( name in options ) {
-				copy = options[ name ];
-
-				// Prevent Object.prototype pollution
-				// Prevent never-ending loop
-				if ( name === "__proto__" || target === copy ) {
-					continue;
-				}
-
-				// Recurse if we're merging plain objects or arrays
-				if ( deep && copy && ( jQuery.isPlainObject( copy ) ||
-					( copyIsArray = Array.isArray( copy ) ) ) ) {
-					src = target[ name ];
-
-					// Ensure proper type for the source value
-					if ( copyIsArray && !Array.isArray( src ) ) {
-						clone = [];
-					} else if ( !copyIsArray && !jQuery.isPlainObject( src ) ) {
-						clone = {};
-					} else {
-						clone = src;
-					}
-					copyIsArray = false;
-
-					// Never move original objects, clone them
-					target[ name ] = jQuery.extend( deep, clone, copy );
-
-				// Don't bring in undefined values
-				} else if ( copy !== undefined ) {
-					target[ name ] = copy;
-				}
-			}
-		}
-	}
-
-	// Return the modified object
-	return target;
-};
-
-jQuery.extend( {
-
-	// Unique for each copy of jQuery on the page
-	expando: "jQuery" + ( version + Math.random() ).replace( /\D/g, "" ),
-
-	// Assume jQuery is ready without the ready module
-	isReady: true,
-
-	error: function( msg ) {
-		throw new Error( msg );
-	},
-
-	noop: function() {},
-
-	isPlainObject: function( obj ) {
-		var proto, Ctor;
-
-		// Detect obvious negatives
-		// Use toString instead of jQuery.type to catch host objects
-		if ( !obj || toString.call( obj ) !== "[object Object]" ) {
-			return false;
-		}
-
-		proto = getProto( obj );
-
-		// Objects with no prototype (e.g., `Object.create( null )`) are plain
-		if ( !proto ) {
-			return true;
-		}
-
-		// Objects with prototype are plain iff they were constructed by a global Object function
-		Ctor = hasOwn.call( proto, "constructor" ) && proto.constructor;
-		return typeof Ctor === "function" && fnToString.call( Ctor ) === ObjectFunctionString;
-	},
-
-	isEmptyObject: function( obj ) {
-		var name;
-
-		for ( name in obj ) {
-			return false;
-		}
-		return true;
-	},
-
-	// Evaluates a script in a provided context; falls back to the global one
-	// if not specified.
-	globalEval: function( code, options, doc ) {
-		DOMEval( code, { nonce: options && options.nonce }, doc );
-	},
-
-	each: function( obj, callback ) {
-		var length, i = 0;
-
-		if ( isArrayLike( obj ) ) {
-			length = obj.length;
-			for ( ; i < length; i++ ) {
-				if ( callback.call( obj[ i ], i, obj[ i ] ) === false ) {
-					break;
-				}
-			}
-		} else {
-			for ( i in obj ) {
-				if ( callback.call( obj[ i ], i, obj[ i ] ) === false ) {
-					break;
-				}
-			}
-		}
-
-		return obj;
-	},
-
-
-	// Retrieve the text value of an array of DOM nodes
-	text: function( elem ) {
-		var node,
-			ret = "",
-			i = 0,
-			nodeType = elem.nodeType;
-
-		if ( !nodeType ) {
-
-			// If no nodeType, this is expected to be an array
-			while ( ( node = elem[ i++ ] ) ) {
-
-				// Do not traverse comment nodes
-				ret += jQuery.text( node );
-			}
-		}
-		if ( nodeType === 1 || nodeType === 11 ) {
-			return elem.textContent;
-		}
-		if ( nodeType === 9 ) {
-			return elem.documentElement.textContent;
-		}
-		if ( nodeType === 3 || nodeType === 4 ) {
-			return elem.nodeValue;
-		}
-
-		// Do not include comment or processing instruction nodes
-
-		return ret;
-	},
-
-	// results is for internal usage only
-	makeArray: function( arr, results ) {
-		var ret = results || [];
-
-		if ( arr != null ) {
-			if ( isArrayLike( Object( arr ) ) ) {
-				jQuery.merge( ret,
-					typeof arr === "string" ?
-						[ arr ] : arr
-				);
-			} else {
-				push.call( ret, arr );
-			}
-		}
-
-		return ret;
-	},
-
-	inArray: function( elem, arr, i ) {
-		return arr == null ? -1 : indexOf.call( arr, elem, i );
-	},
-
-	isXMLDoc: function( elem ) {
-		var namespace = elem && elem.namespaceURI,
-			docElem = elem && ( elem.ownerDocument || elem ).documentElement;
-
-		// Assume HTML when documentElement doesn't yet exist, such as inside
-		// document fragments.
-		return !rhtmlSuffix.test( namespace || docElem && docElem.nodeName || "HTML" );
-	},
-
-	// Support: Android <=4.0 only, PhantomJS 1 only
-	// push.apply(_, arraylike) throws on ancient WebKit
-	merge: function( first, second ) {
-		var len = +second.length,
-			j = 0,
-			i = first.length;
-
-		for ( ; j < len; j++ ) {
-			first[ i++ ] = second[ j ];
-		}
-
-		first.length = i;
-
-		return first;
-	},
-
-	grep: function( elems, callback, invert ) {
-		var callbackInverse,
-			matches = [],
-			i = 0,
-			length = elems.length,
-			callbackExpect = !invert;
-
-		// Go through the array, only saving the items
-		// that pass the validator function
-		for ( ; i < length; i++ ) {
-			callbackInverse = !callback( elems[ i ], i );
-			if ( callbackInverse !== callbackExpect ) {
-				matches.push( elems[ i ] );
-			}
-		}
-
-		return matches;
-	},
-
-	// arg is for internal usage only
-	map: function( elems, callback, arg ) {
-		var length, value,
-			i = 0,
-			ret = [];
-
-		// Go through the array, translating each of the items to their new values
-		if ( isArrayLike( elems ) ) {
-			length = elems.length;
-			for ( ; i < length; i++ ) {
-				value = callback( elems[ i ], i, arg );
-
-				if ( value != null ) {
-					ret.push( value );
-				}
-			}
-
-		// Go through every key on the object,
-		} else {
-			for ( i in elems ) {
-				value = callback( elems[ i ], i, arg );
-
-				if ( value != null ) {
-					ret.push( value );
-				}
-			}
-		}
-
-		// Flatten any nested arrays
-		return flat( ret );
-	},
-
-	// A global GUID counter for objects
-	guid: 1,
-
-	// jQuery.support is not used in Core but other projects attach their
-	// properties to it so it needs to exist.
-	support: support
-} );
-
-if ( typeof Symbol === "function" ) {
-	jQuery.fn[ Symbol.iterator ] = arr[ Symbol.iterator ];
-}
-
-// Populate the class2type map
-jQuery.each( "Boolean Number String Function Array Date RegExp Object Error Symbol".split( " " ),
-	function( _i, name ) {
-		class2type[ "[object " + name + "]" ] = name.toLowerCase();
-	} );
-
-function isArrayLike( obj ) {
-
-	// Support: real iOS 8.2 only (not reproducible in simulator)
-	// `in` check used to prevent JIT error (gh-2145)
-	// hasOwn isn't used here due to false negatives
-	// regarding Nodelist length in IE
-	var length = !!obj && "length" in obj && obj.length,
-		type = toType( obj );
-
-	if ( isFunction( obj ) || isWindow( obj ) ) {
-		return false;
-	}
-
-	return type === "array" || length === 0 ||
-		typeof length === "number" && length > 0 && ( length - 1 ) in obj;
-}
-
-
-function nodeName( elem, name ) {
-
-	return elem.nodeName && elem.nodeName.toLowerCase() === name.toLowerCase();
-
-}
-var pop = arr.pop;
-
-
-var sort = arr.sort;
-
-
-var splice = arr.splice;
-
-
-var whitespace = "[\\x20\\t\\r\\n\\f]";
-
-
-var rtrimCSS = new RegExp(
-	"^" + whitespace + "+|((?:^|[^\\\\])(?:\\\\.)*)" + whitespace + "+$",
-	"g"
-);
-
-
-
-
-// Note: an element does not contain itself
-jQuery.contains = function( a, b ) {
-	var bup = b && b.parentNode;
-
-	return a === bup || !!( bup && bup.nodeType === 1 && (
-
-		// Support: IE 9 - 11+
-		// IE doesn't have `contains` on SVG.
-		a.contains ?
-			a.contains( bup ) :
-			a.compareDocumentPosition && a.compareDocumentPosition( bup ) & 16
-	) );
-};
-
-
-
-
-// CSS string/identifier serialization
-// https://drafts.csswg.org/cssom/#common-serializing-idioms
-var rcssescape = /([\0-\x1f\x7f]|^-?\d)|^-$|[^\x80-\uFFFF\w-]/g;
-
-function fcssescape( ch, asCodePoint ) {
-	if ( asCodePoint ) {
-
-		// U+0000 NULL becomes U+FFFD REPLACEMENT CHARACTER
-		if ( ch === "\0" ) {
-			return "\uFFFD";
-		}
-
-		// Control characters and (dependent upon position) numbers get escaped as code points
-		return ch.slice( 0, -1 ) + "\\" + ch.charCodeAt( ch.length - 1 ).toString( 16 ) + " ";
-	}
-
-	// Other potentially-special ASCII characters get backslash-escaped
-	return "\\" + ch;
-}
-
-jQuery.escapeSelector = function( sel ) {
-	return ( sel + "" ).replace( rcssescape, fcssescape );
-};
-
-
-
-
-var preferredDoc = document,
-	pushNative = push;
-
-( function() {
-
-var i,
-	Expr,
-	outermostContext,
-	sortInput,
-	hasDuplicate,
-	push = pushNative,
-
-	// Local document vars
-	document,
-	documentElement,
-	documentIsHTML,
-	rbuggyQSA,
-	matches,
-
-	// Instance-specific data
-	expando = jQuery.expando,
-	dirruns = 0,
-	done = 0,
-	classCache = createCache(),
-	tokenCache = createCache(),
-	compilerCache = createCache(),
-	nonnativeSelectorCache = createCache(),
-	sortOrder = function( a, b ) {
-		if ( a === b ) {
-			hasDuplicate = true;
-		}
-		return 0;
-	},
-
-	booleans = "checked|selected|async|autofocus|autoplay|controls|defer|disabled|hidden|ismap|" +
-		"loop|multiple|open|readonly|required|scoped",
-
-	// Regular expressions
-
-	// https://www.w3.org/TR/css-syntax-3/#ident-token-diagram
-	identifier = "(?:\\\\[\\da-fA-F]{1,6}" + whitespace +
-		"?|\\\\[^\\r\\n\\f]|[\\w-]|[^\0-\\x7f])+",
-
-	// Attribute selectors: https://www.w3.org/TR/selectors/#attribute-selectors
-	attributes = "\\[" + whitespace + "*(" + identifier + ")(?:" + whitespace +
-
-		// Operator (capture 2)
-		"*([*^$|!~]?=)" + whitespace +
-
-		// "Attribute values must be CSS identifiers [capture 5] or strings [capture 3 or capture 4]"
-		"*(?:'((?:\\\\.|[^\\\\'])*)'|\"((?:\\\\.|[^\\\\\"])*)\"|(" + identifier + "))|)" +
-		whitespace + "*\\]",
-
-	pseudos = ":(" + identifier + ")(?:\\((" +
-
-		// To reduce the number of selectors needing tokenize in the preFilter, prefer arguments:
-		// 1. quoted (capture 3; capture 4 or capture 5)
-		"('((?:\\\\.|[^\\\\'])*)'|\"((?:\\\\.|[^\\\\\"])*)\")|" +
-
-		// 2. simple (capture 6)
-		"((?:\\\\.|[^\\\\()[\\]]|" + attributes + ")*)|" +
-
-		// 3. anything else (capture 2)
-		".*" +
-		")\\)|)",
-
-	// Leading and non-escaped trailing whitespace, capturing some non-whitespace characters preceding the latter
-	rwhitespace = new RegExp( whitespace + "+", "g" ),
-
-	rcomma = new RegExp( "^" + whitespace + "*," + whitespace + "*" ),
-	rleadingCombinator = new RegExp( "^" + whitespace + "*([>+~]|" + whitespace + ")" +
-		whitespace + "*" ),
-	rdescend = new RegExp( whitespace + "|>" ),
-
-	rpseudo = new RegExp( pseudos ),
-	ridentifier = new RegExp( "^" + identifier + "$" ),
-
-	matchExpr = {
-		ID: new RegExp( "^#(" + identifier + ")" ),
-		CLASS: new RegExp( "^\\.(" + identifier + ")" ),
-		TAG: new RegExp( "^(" + identifier + "|[*])" ),
-		ATTR: new RegExp( "^" + attributes ),
-		PSEUDO: new RegExp( "^" + pseudos ),
-		CHILD: new RegExp(
-			"^:(only|first|last|nth|nth-last)-(child|of-type)(?:\\(" +
-				whitespace + "*(even|odd|(([+-]|)(\\d*)n|)" + whitespace + "*(?:([+-]|)" +
-				whitespace + "*(\\d+)|))" + whitespace + "*\\)|)", "i" ),
-		bool: new RegExp( "^(?:" + booleans + ")$", "i" ),
-
-		// For use in libraries implementing .is()
-		// We use this for POS matching in `select`
-		needsContext: new RegExp( "^" + whitespace +
-			"*[>+~]|:(even|odd|eq|gt|lt|nth|first|last)(?:\\(" + whitespace +
-			"*((?:-\\d)?\\d*)" + whitespace + "*\\)|)(?=[^-]|$)", "i" )
-	},
-
-	rinputs = /^(?:input|select|textarea|button)$/i,
-	rheader = /^h\d$/i,
-
-	// Easily-parseable/retrievable ID or TAG or CLASS selectors
-	rquickExpr = /^(?:#([\w-]+)|(\w+)|\.([\w-]+))$/,
-
-	rsibling = /[+~]/,
-
-	// CSS escapes
-	// https://www.w3.org/TR/CSS21/syndata.html#escaped-characters
-	runescape = new RegExp( "\\\\[\\da-fA-F]{1,6}" + whitespace +
-		"?|\\\\([^\\r\\n\\f])", "g" ),
-	funescape = function( escape, nonHex ) {
-		var high = "0x" + escape.slice( 1 ) - 0x10000;
-
-		if ( nonHex ) {
-
-			// Strip the backslash prefix from a non-hex escape sequence
-			return nonHex;
-		}
-
-		// Replace a hexadecimal escape sequence with the encoded Unicode code point
-		// Support: IE <=11+
-		// For values outside the Basic Multilingual Plane (BMP), manually construct a
-		// surrogate pair
-		return high < 0 ?
-			String.fromCharCode( high + 0x10000 ) :
-			String.fromCharCode( high >> 10 | 0xD800, high & 0x3FF | 0xDC00 );
-	},
-
-	// Used for iframes; see `setDocument`.
-	// Support: IE 9 - 11+, Edge 12 - 18+
-	// Removing the function wrapper causes a "Permission Denied"
-	// error in IE/Edge.
-	unloadHandler = function() {
-		setDocument();
-	},
-
-	inDisabledFieldset = addCombinator(
-		function( elem ) {
-			return elem.disabled === true && nodeName( elem, "fieldset" );
-		},
-		{ dir: "parentNode", next: "legend" }
-	);
-
-// Support: IE <=9 only
-// Accessing document.activeElement can throw unexpectedly
-// https://bugs.jquery.com/ticket/13393
-function safeActiveElement() {
-	try {
-		return document.activeElement;
-	} catch ( err ) { }
-}
-
-// Optimize for push.apply( _, NodeList )
-try {
-	push.apply(
-		( arr = slice.call( preferredDoc.childNodes ) ),
-		preferredDoc.childNodes
-	);
-
-	// Support: Android <=4.0
-	// Detect silently failing push.apply
-	// eslint-disable-next-line no-unused-expressions
-	arr[ preferredDoc.childNodes.length ].nodeType;
-} catch ( e ) {
-	push = {
-		apply: function( target, els ) {
-			pushNative.apply( target, slice.call( els ) );
-		},
-		call: function( target ) {
-			pushNative.apply( target, slice.call( arguments, 1 ) );
-		}
-	};
-}
-
-function find( selector, context, results, seed ) {
-	var m, i, elem, nid, match, groups, newSelector,
-		newContext = context && context.ownerDocument,
-
-		// nodeType defaults to 9, since context defaults to document
-		nodeType = context ? context.nodeType : 9;
-
-	results = results || [];
-
-	// Return early from calls with invalid selector or context
-	if ( typeof selector !== "string" || !selector ||
-		nodeType !== 1 && nodeType !== 9 && nodeType !== 11 ) {
-
-		return results;
-	}
-
-	// Try to shortcut find operations (as opposed to filters) in HTML documents
-	if ( !seed ) {
-		setDocument( context );
-		context = context || document;
-
-		if ( documentIsHTML ) {
-
-			// If the selector is sufficiently simple, try using a "get*By*" DOM method
-			// (excepting DocumentFragment context, where the methods don't exist)
-			if ( nodeType !== 11 && ( match = rquickExpr.exec( selector ) ) ) {
-
-				// ID selector
-				if ( ( m = match[ 1 ] ) ) {
-
-					// Document context
-					if ( nodeType === 9 ) {
-						if ( ( elem = context.getElementById( m ) ) ) {
-
-							// Support: IE 9 only
-							// getElementById can match elements by name instead of ID
-							if ( elem.id === m ) {
-								push.call( results, elem );
-								return results;
-							}
-						} else {
-							return results;
-						}
-
-					// Element context
-					} else {
-
-						// Support: IE 9 only
-						// getElementById can match elements by name instead of ID
-						if ( newContext && ( elem = newContext.getElementById( m ) ) &&
-							find.contains( context, elem ) &&
-							elem.id === m ) {
-
-							push.call( results, elem );
-							return results;
-						}
-					}
-
-				// Type selector
-				} else if ( match[ 2 ] ) {
-					push.apply( results, context.getElementsByTagName( selector ) );
-					return results;
-
-				// Class selector
-				} else if ( ( m = match[ 3 ] ) && context.getElementsByClassName ) {
-					push.apply( results, context.getElementsByClassName( m ) );
-					return results;
-				}
-			}
-
-			// Take advantage of querySelectorAll
-			if ( !nonnativeSelectorCache[ selector + " " ] &&
-				( !rbuggyQSA || !rbuggyQSA.test( selector ) ) ) {
-
-				newSelector = selector;
-				newContext = context;
-
-				// qSA considers elements outside a scoping root when evaluating child or
-				// descendant combinators, which is not what we want.
-				// In such cases, we work around the behavior by prefixing every selector in the
-				// list with an ID selector referencing the scope context.
-				// The technique has to be used as well when a leading combinator is used
-				// as such selectors are not recognized by querySelectorAll.
-				// Thanks to Andrew Dupont for this technique.
-				if ( nodeType === 1 &&
-					( rdescend.test( selector ) || rleadingCombinator.test( selector ) ) ) {
-
-					// Expand context for sibling selectors
-					newContext = rsibling.test( selector ) && testContext( context.parentNode ) ||
-						context;
-
-					// We can use :scope instead of the ID hack if the browser
-					// supports it & if we're not changing the context.
-					// Support: IE 11+, Edge 17 - 18+
-					// IE/Edge sometimes throw a "Permission denied" error when
-					// strict-comparing two documents; shallow comparisons work.
-					// eslint-disable-next-line eqeqeq
-					if ( newContext != context || !support.scope ) {
-
-						// Capture the context ID, setting it first if necessary
-						if ( ( nid = context.getAttribute( "id" ) ) ) {
-							nid = jQuery.escapeSelector( nid );
-						} else {
-							context.setAttribute( "id", ( nid = expando ) );
-						}
-					}
-
-					// Prefix every selector in the list
-					groups = tokenize( selector );
-					i = groups.length;
-					while ( i-- ) {
-						groups[ i ] = ( nid ? "#" + nid : ":scope" ) + " " +
-							toSelector( groups[ i ] );
-					}
-					newSelector = groups.join( "," );
-				}
-
-				try {
-					push.apply( results,
-						newContext.querySelectorAll( newSelector )
-					);
-					return results;
-				} catch ( qsaError ) {
-					nonnativeSelectorCache( selector, true );
-				} finally {
-					if ( nid === expando ) {
-						context.removeAttribute( "id" );
-					}
-				}
-			}
-		}
-	}
-
-	// All others
-	return select( selector.replace( rtrimCSS, "$1" ), context, results, seed );
-}
-
-/**
- * Create key-value caches of limited size
- * @returns {function(string, object)} Returns the Object data after storing it on itself with
- *	property name the (space-suffixed) string and (if the cache is larger than Expr.cacheLength)
- *	deleting the oldest entry
- */
-function createCache() {
-	var keys = [];
-
-	function cache( key, value ) {
-
-		// Use (key + " ") to avoid collision with native prototype properties
-		// (see https://github.com/jquery/sizzle/issues/157)
-		if ( keys.push( key + " " ) > Expr.cacheLength ) {
-
-			// Only keep the most recent entries
-			delete cache[ keys.shift() ];
-		}
-		return ( cache[ key + " " ] = value );
-	}
-	return cache;
-}
-
-/**
- * Mark a function for special use by jQuery selector module
- * @param {Function} fn The function to mark
- */
-function markFunction( fn ) {
-	fn[ expando ] = true;
-	return fn;
-}
-
-/**
- * Support testing using an element
- * @param {Function} fn Passed the created element and returns a boolean result
- */
-function assert( fn ) {
-	var el = document.createElement( "fieldset" );
-
-	try {
-		return !!fn( el );
-	} catch ( e ) {
-		return false;
-	} finally {
-
-		// Remove from its parent by default
-		if ( el.parentNode ) {
-			el.parentNode.removeChild( el );
-		}
-
-		// release memory in IE
-		el = null;
-	}
-}
-
-/**
- * Returns a function to use in pseudos for input types
- * @param {String} type
- */
-function createInputPseudo( type ) {
-	return function( elem ) {
-		return nodeName( elem, "input" ) && elem.type === type;
-	};
-}
-
-/**
- * Returns a function to use in pseudos for buttons
- * @param {String} type
- */
-function createButtonPseudo( type ) {
-	return function( elem ) {
-		return ( nodeName( elem, "input" ) || nodeName( elem, "button" ) ) &&
-			elem.type === type;
-	};
-}
-
-/**
- * Returns a function to use in pseudos for :enabled/:disabled
- * @param {Boolean} disabled true for :disabled; false for :enabled
- */
-function createDisabledPseudo( disabled ) {
-
-	// Known :disabled false positives: fieldset[disabled] > legend:nth-of-type(n+2) :can-disable
-	return function( elem ) {
-
-		// Only certain elements can match :enabled or :disabled
-		// https://html.spec.whatwg.org/multipage/scripting.html#selector-enabled
-		// https://html.spec.whatwg.org/multipage/scripting.html#selector-disabled
-		if ( "form" in elem ) {
-
-			// Check for inherited disabledness on relevant non-disabled elements:
-			// * listed form-associated elements in a disabled fieldset
-			//   https://html.spec.whatwg.org/multipage/forms.html#category-listed
-			//   https://html.spec.whatwg.org/multipage/forms.html#concept-fe-disabled
-			// * option elements in a disabled optgroup
-			//   https://html.spec.whatwg.org/multipage/forms.html#concept-option-disabled
-			// All such elements have a "form" property.
-			if ( elem.parentNode && elem.disabled === false ) {
-
-				// Option elements defer to a parent optgroup if present
-				if ( "label" in elem ) {
-					if ( "label" in elem.parentNode ) {
-						return elem.parentNode.disabled === disabled;
-					} else {
-						return elem.disabled === disabled;
-					}
-				}
-
-				// Support: IE 6 - 11+
-				// Use the isDisabled shortcut property to check for disabled fieldset ancestors
-				return elem.isDisabled === disabled ||
-
-					// Where there is no isDisabled, check manually
-					elem.isDisabled !== !disabled &&
-						inDisabledFieldset( elem ) === disabled;
-			}
-
-			return elem.disabled === disabled;
-
-		// Try to winnow out elements that can't be disabled before trusting the disabled property.
-		// Some victims get caught in our net (label, legend, menu, track), but it shouldn't
-		// even exist on them, let alone have a boolean value.
-		} else if ( "label" in elem ) {
-			return elem.disabled === disabled;
-		}
-
-		// Remaining elements are neither :enabled nor :disabled
-		return false;
-	};
-}
-
-/**
- * Returns a function to use in pseudos for positionals
- * @param {Function} fn
- */
-function createPositionalPseudo( fn ) {
-	return markFunction( function( argument ) {
-		argument = +argument;
-		return markFunction( function( seed, matches ) {
-			var j,
-				matchIndexes = fn( [], seed.length, argument ),
-				i = matchIndexes.length;
-
-			// Match elements found at the specified indexes
-			while ( i-- ) {
-				if ( seed[ ( j = matchIndexes[ i ] ) ] ) {
-					seed[ j ] = !( matches[ j ] = seed[ j ] );
-				}
-			}
-		} );
-	} );
-}
-
-/**
- * Checks a node for validity as a jQuery selector context
- * @param {Element|Object=} context
- * @returns {Element|Object|Boolean} The input node if acceptable, otherwise a falsy value
- */
-function testContext( context ) {
-	return context && typeof context.getElementsByTagName !== "undefined" && context;
-}
-
-/**
- * Sets document-related variables once based on the current document
- * @param {Element|Object} [node] An element or document object to use to set the document
- * @returns {Object} Returns the current document
- */
-function setDocument( node ) {
-	var subWindow,
-		doc = node ? node.ownerDocument || node : preferredDoc;
-
-	// Return early if doc is invalid or already selected
-	// Support: IE 11+, Edge 17 - 18+
-	// IE/Edge sometimes throw a "Permission denied" error when strict-comparing
-	// two documents; shallow comparisons work.
-	// eslint-disable-next-line eqeqeq
-	if ( doc == document || doc.nodeType !== 9 || !doc.documentElement ) {
-		return document;
-	}
-
-	// Update global variables
-	document = doc;
-	documentElement = document.documentElement;
-	documentIsHTML = !jQuery.isXMLDoc( document );
-
-	// Support: iOS 7 only, IE 9 - 11+
-	// Older browsers didn't support unprefixed `matches`.
-	matches = documentElement.matches ||
-		documentElement.webkitMatchesSelector ||
-		documentElement.msMatchesSelector;
-
-	// Support: IE 9 - 11+, Edge 12 - 18+
-	// Accessing iframe documents after unload throws "permission denied" errors
-	// (see trac-13936).
-	// Limit the fix to IE & Edge Legacy; despite Edge 15+ implementing `matches`,
-	// all IE 9+ and Edge Legacy versions implement `msMatchesSelector` as well.
-	if ( documentElement.msMatchesSelector &&
-
-		// Support: IE 11+, Edge 17 - 18+
-		// IE/Edge sometimes throw a "Permission denied" error when strict-comparing
-		// two documents; shallow comparisons work.
-		// eslint-disable-next-line eqeqeq
-		preferredDoc != document &&
-		( subWindow = document.defaultView ) && subWindow.top !== subWindow ) {
-
-		// Support: IE 9 - 11+, Edge 12 - 18+
-		subWindow.addEventListener( "unload", unloadHandler );
-	}
-
-	// Support: IE <10
-	// Check if getElementById returns elements by name
-	// The broken getElementById methods don't pick up programmatically-set names,
-	// so use a roundabout getElementsByName test
-	support.getById = assert( function( el ) {
-		documentElement.appendChild( el ).id = jQuery.expando;
-		return !document.getElementsByName ||
-			!document.getElementsByName( jQuery.expando ).length;
-	} );
-
-	// Support: IE 9 only
-	// Check to see if it's possible to do matchesSelector
-	// on a disconnected node.
-	support.disconnectedMatch = assert( function( el ) {
-		return matches.call( el, "*" );
-	} );
-
-	// Support: IE 9 - 11+, Edge 12 - 18+
-	// IE/Edge don't support the :scope pseudo-class.
-	support.scope = assert( function() {
-		return document.querySelectorAll( ":scope" );
-	} );
-
-	// Support: Chrome 105 - 111 only, Safari 15.4 - 16.3 only
-	// Make sure the `:has()` argument is parsed unforgivingly.
-	// We include `*` in the test to detect buggy implementations that are
-	// _selectively_ forgiving (specifically when the list includes at least
-	// one valid selector).
-	// Note that we treat complete lack of support for `:has()` as if it were
-	// spec-compliant support, which is fine because use of `:has()` in such
-	// environments will fail in the qSA path and fall back to jQuery traversal
-	// anyway.
-	support.cssHas = assert( function() {
-		try {
-			document.querySelector( ":has(*,:jqfake)" );
-			return false;
-		} catch ( e ) {
-			return true;
-		}
-	} );
-
-	// ID filter and find
-	if ( support.getById ) {
-		Expr.filter.ID = function( id ) {
-			var attrId = id.replace( runescape, funescape );
-			return function( elem ) {
-				return elem.getAttribute( "id" ) === attrId;
-			};
-		};
-		Expr.find.ID = function( id, context ) {
-			if ( typeof context.getElementById !== "undefined" && documentIsHTML ) {
-				var elem = context.getElementById( id );
-				return elem ? [ elem ] : [];
-			}
-		};
-	} else {
-		Expr.filter.ID =  function( id ) {
-			var attrId = id.replace( runescape, funescape );
-			return function( elem ) {
-				var node = typeof elem.getAttributeNode !== "undefined" &&
-					elem.getAttributeNode( "id" );
-				return node && node.value === attrId;
-			};
-		};
-
-		// Support: IE 6 - 7 only
-		// getElementById is not reliable as a find shortcut
-		Expr.find.ID = function( id, context ) {
-			if ( typeof context.getElementById !== "undefined" && documentIsHTML ) {
-				var node, i, elems,
-					elem = context.getElementById( id );
-
-				if ( elem ) {
-
-					// Verify the id attribute
-					node = elem.getAttributeNode( "id" );
-					if ( node && node.value === id ) {
-						return [ elem ];
-					}
-
-					// Fall back on getElementsByName
-					elems = context.getElementsByName( id );
-					i = 0;
-					while ( ( elem = elems[ i++ ] ) ) {
-						node = elem.getAttributeNode( "id" );
-						if ( node && node.value === id ) {
-							return [ elem ];
-						}
-					}
-				}
-
-				return [];
-			}
-		};
-	}
-
-	// Tag
-	Expr.find.TAG = function( tag, context ) {
-		if ( typeof context.getElementsByTagName !== "undefined" ) {
-			return context.getElementsByTagName( tag );
-
-		// DocumentFragment nodes don't have gEBTN
-		} else {
-			return context.querySelectorAll( tag );
-		}
-	};
-
-	// Class
-	Expr.find.CLASS = function( className, context ) {
-		if ( typeof context.getElementsByClassName !== "undefined" && documentIsHTML ) {
-			return context.getElementsByClassName( className );
-		}
-	};
-
-	/* QSA/matchesSelector
-	---------------------------------------------------------------------- */
-
-	// QSA and matchesSelector support
-
-	rbuggyQSA = [];
-
-	// Build QSA regex
-	// Regex strategy adopted from Diego Perini
-	assert( function( el ) {
-
-		var input;
-
-		documentElement.appendChild( el ).innerHTML =
-			"<a id='" + expando + "' href='' disabled='disabled'></a>" +
-			"<select id='" + expando + "-\r\\' disabled='disabled'>" +
-			"<option selected=''></option></select>";
-
-		// Support: iOS <=7 - 8 only
-		// Boolean attributes and "value" are not treated correctly in some XML documents
-		if ( !el.querySelectorAll( "[selected]" ).length ) {
-			rbuggyQSA.push( "\\[" + whitespace + "*(?:value|" + booleans + ")" );
-		}
-
-		// Support: iOS <=7 - 8 only
-		if ( !el.querySelectorAll( "[id~=" + expando + "-]" ).length ) {
-			rbuggyQSA.push( "~=" );
-		}
-
-		// Support: iOS 8 only
-		// https://bugs.webkit.org/show_bug.cgi?id=136851
-		// In-page `selector#id sibling-combinator selector` fails
-		if ( !el.querySelectorAll( "a#" + expando + "+*" ).length ) {
-			rbuggyQSA.push( ".#.+[+~]" );
-		}
-
-		// Support: Chrome <=105+, Firefox <=104+, Safari <=15.4+
-		// In some of the document kinds, these selectors wouldn't work natively.
-		// This is probably OK but for backwards compatibility we want to maintain
-		// handling them through jQuery traversal in jQuery 3.x.
-		if ( !el.querySelectorAll( ":checked" ).length ) {
-			rbuggyQSA.push( ":checked" );
-		}
-
-		// Support: Windows 8 Native Apps
-		// The type and name attributes are restricted during .innerHTML assignment
-		input = document.createElement( "input" );
-		input.setAttribute( "type", "hidden" );
-		el.appendChild( input ).setAttribute( "name", "D" );
-
-		// Support: IE 9 - 11+
-		// IE's :disabled selector does not pick up the children of disabled fieldsets
-		// Support: Chrome <=105+, Firefox <=104+, Safari <=15.4+
-		// In some of the document kinds, these selectors wouldn't work natively.
-		// This is probably OK but for backwards compatibility we want to maintain
-		// handling them through jQuery traversal in jQuery 3.x.
-		documentElement.appendChild( el ).disabled = true;
-		if ( el.querySelectorAll( ":disabled" ).length !== 2 ) {
-			rbuggyQSA.push( ":enabled", ":disabled" );
-		}
-
-		// Support: IE 11+, Edge 15 - 18+
-		// IE 11/Edge don't find elements on a `[name='']` query in some cases.
-		// Adding a temporary attribute to the document before the selection works
-		// around the issue.
-		// Interestingly, IE 10 & older don't seem to have the issue.
-		input = document.createElement( "input" );
-		input.setAttribute( "name", "" );
-		el.appendChild( input );
-		if ( !el.querySelectorAll( "[name='']" ).length ) {
-			rbuggyQSA.push( "\\[" + whitespace + "*name" + whitespace + "*=" +
-				whitespace + "*(?:''|\"\")" );
-		}
-	} );
-
-	if ( !support.cssHas ) {
-
-		// Support: Chrome 105 - 110+, Safari 15.4 - 16.3+
-		// Our regular `try-catch` mechanism fails to detect natively-unsupported
-		// pseudo-classes inside `:has()` (such as `:has(:contains("Foo"))`)
-		// in browsers that parse the `:has()` argument as a forgiving selector list.
-		// https://drafts.csswg.org/selectors/#relational now requires the argument
-		// to be parsed unforgivingly, but browsers have not yet fully adjusted.
-		rbuggyQSA.push( ":has" );
-	}
-
-	rbuggyQSA = rbuggyQSA.length && new RegExp( rbuggyQSA.join( "|" ) );
-
-	/* Sorting
-	---------------------------------------------------------------------- */
-
-	// Document order sorting
-	sortOrder = function( a, b ) {
-
-		// Flag for duplicate removal
-		if ( a === b ) {
-			hasDuplicate = true;
-			return 0;
-		}
-
-		// Sort on method existence if only one input has compareDocumentPosition
-		var compare = !a.compareDocumentPosition - !b.compareDocumentPosition;
-		if ( compare ) {
-			return compare;
-		}
-
-		// Calculate position if both inputs belong to the same document
-		// Support: IE 11+, Edge 17 - 18+
-		// IE/Edge sometimes throw a "Permission denied" error when strict-comparing
-		// two documents; shallow comparisons work.
-		// eslint-disable-next-line eqeqeq
-		compare = ( a.ownerDocument || a ) == ( b.ownerDocument || b ) ?
-			a.compareDocumentPosition( b ) :
-
-			// Otherwise we know they are disconnected
-			1;
-
-		// Disconnected nodes
-		if ( compare & 1 ||
-			( !support.sortDetached && b.compareDocumentPosition( a ) === compare ) ) {
-
-			// Choose the first element that is related to our preferred document
-			// Support: IE 11+, Edge 17 - 18+
-			// IE/Edge sometimes throw a "Permission denied" error when strict-comparing
-			// two documents; shallow comparisons work.
-			// eslint-disable-next-line eqeqeq
-			if ( a === document || a.ownerDocument == preferredDoc &&
-				find.contains( preferredDoc, a ) ) {
-				return -1;
-			}
-
-			// Support: IE 11+, Edge 17 - 18+
-			// IE/Edge sometimes throw a "Permission denied" error when strict-comparing
-			// two documents; shallow comparisons work.
-			// eslint-disable-next-line eqeqeq
-			if ( b === document || b.ownerDocument == preferredDoc &&
-				find.contains( preferredDoc, b ) ) {
-				return 1;
-			}
-
-			// Maintain original order
-			return sortInput ?
-				( indexOf.call( sortInput, a ) - indexOf.call( sortInput, b ) ) :
-				0;
-		}
-
-		return compare & 4 ? -1 : 1;
-	};
-
-	return document;
-}
-
-find.matches = function( expr, elements ) {
-	return find( expr, null, null, elements );
-};
-
-find.matchesSelector = function( elem, expr ) {
-	setDocument( elem );
-
-	if ( documentIsHTML &&
-		!nonnativeSelectorCache[ expr + " " ] &&
-		( !rbuggyQSA || !rbuggyQSA.test( expr ) ) ) {
-
-		try {
-			var ret = matches.call( elem, expr );
-
-			// IE 9's matchesSelector returns false on disconnected nodes
-			if ( ret || support.disconnectedMatch ||
-
-					// As well, disconnected nodes are said to be in a document
-					// fragment in IE 9
-					elem.document && elem.document.nodeType !== 11 ) {
-				return ret;
-			}
-		} catch ( e ) {
-			nonnativeSelectorCache( expr, true );
-		}
-	}
-
-	return find( expr, document, null, [ elem ] ).length > 0;
-};
-
-find.contains = function( context, elem ) {
-
-	// Set document vars if needed
-	// Support: IE 11+, Edge 17 - 18+
-	// IE/Edge sometimes throw a "Permission denied" error when strict-comparing
-	// two documents; shallow comparisons work.
-	// eslint-disable-next-line eqeqeq
-	if ( ( context.ownerDocument || context ) != document ) {
-		setDocument( context );
-	}
-	return jQuery.contains( context, elem );
-};
-
-
-find.attr = function( elem, name ) {
-
-	// Set document vars if needed
-	// Support: IE 11+, Edge 17 - 18+
-	// IE/Edge sometimes throw a "Permission denied" error when strict-comparing
-	// two documents; shallow comparisons work.
-	// eslint-disable-next-line eqeqeq
-	if ( ( elem.ownerDocument || elem ) != document ) {
-		setDocument( elem );
-	}
-
-	var fn = Expr.attrHandle[ name.toLowerCase() ],
-
-		// Don't get fooled by Object.prototype properties (see trac-13807)
-		val = fn && hasOwn.call( Expr.attrHandle, name.toLowerCase() ) ?
-			fn( elem, name, !documentIsHTML ) :
-			undefined;
-
-	if ( val !== undefined ) {
-		return val;
-	}
-
-	return elem.getAttribute( name );
-};
-
-find.error = function( msg ) {
-	throw new Error( "Syntax error, unrecognized expression: " + msg );
-};
-
-/**
- * Document sorting and removing duplicates
- * @param {ArrayLike} results
- */
-jQuery.uniqueSort = function( results ) {
-	var elem,
-		duplicates = [],
-		j = 0,
-		i = 0;
-
-	// Unless we *know* we can detect duplicates, assume their presence
-	//
-	// Support: Android <=4.0+
-	// Testing for detecting duplicates is unpredictable so instead assume we can't
-	// depend on duplicate detection in all browsers without a stable sort.
-	hasDuplicate = !support.sortStable;
-	sortInput = !support.sortStable && slice.call( results, 0 );
-	sort.call( results, sortOrder );
-
-	if ( hasDuplicate ) {
-		while ( ( elem = results[ i++ ] ) ) {
-			if ( elem === results[ i ] ) {
-				j = duplicates.push( i );
-			}
-		}
-		while ( j-- ) {
-			splice.call( results, duplicates[ j ], 1 );
-		}
-	}
-
-	// Clear input after sorting to release objects
-	// See https://github.com/jquery/sizzle/pull/225
-	sortInput = null;
-
-	return results;
-};
-
-jQuery.fn.uniqueSort = function() {
-	return this.pushStack( jQuery.uniqueSort( slice.apply( this ) ) );
-};
-
-Expr = jQuery.expr = {
-
-	// Can be adjusted by the user
-	cacheLength: 50,
-
-	createPseudo: markFunction,
-
-	match: matchExpr,
-
-	attrHandle: {},
-
-	find: {},
-
-	relative: {
-		">": { dir: "parentNode", first: true },
-		" ": { dir: "parentNode" },
-		"+": { dir: "previousSibling", first: true },
-		"~": { dir: "previousSibling" }
-	},
-
-	preFilter: {
-		ATTR: function( match ) {
-			match[ 1 ] = match[ 1 ].replace( runescape, funescape );
-
-			// Move the given value to match[3] whether quoted or unquoted
-			match[ 3 ] = ( match[ 3 ] || match[ 4 ] || match[ 5 ] || "" )
-				.replace( runescape, funescape );
-
-			if ( match[ 2 ] === "~=" ) {
-				match[ 3 ] = " " + match[ 3 ] + " ";
-			}
-
-			return match.slice( 0, 4 );
-		},
-
-		CHILD: function( match ) {
-
-			/* matches from matchExpr["CHILD"]
-				1 type (only|nth|...)
-				2 what (child|of-type)
-				3 argument (even|odd|\d*|\d*n([+-]\d+)?|...)
-				4 xn-component of xn+y argument ([+-]?\d*n|)
-				5 sign of xn-component
-				6 x of xn-component
-				7 sign of y-component
-				8 y of y-component
-			*/
-			match[ 1 ] = match[ 1 ].toLowerCase();
-
-			if ( match[ 1 ].slice( 0, 3 ) === "nth" ) {
-
-				// nth-* requires argument
-				if ( !match[ 3 ] ) {
-					find.error( match[ 0 ] );
-				}
-
-				// numeric x and y parameters for Expr.filter.CHILD
-				// remember that false/true cast respectively to 0/1
-				match[ 4 ] = +( match[ 4 ] ?
-					match[ 5 ] + ( match[ 6 ] || 1 ) :
-					2 * ( match[ 3 ] === "even" || match[ 3 ] === "odd" )
-				);
-				match[ 5 ] = +( ( match[ 7 ] + match[ 8 ] ) || match[ 3 ] === "odd" );
-
-			// other types prohibit arguments
-			} else if ( match[ 3 ] ) {
-				find.error( match[ 0 ] );
-			}
-
-			return match;
-		},
-
-		PSEUDO: function( match ) {
-			var excess,
-				unquoted = !match[ 6 ] && match[ 2 ];
-
-			if ( matchExpr.CHILD.test( match[ 0 ] ) ) {
-				return null;
-			}
-
-			// Accept quoted arguments as-is
-			if ( match[ 3 ] ) {
-				match[ 2 ] = match[ 4 ] || match[ 5 ] || "";
-
-			// Strip excess characters from unquoted arguments
-			} else if ( unquoted && rpseudo.test( unquoted ) &&
-
-				// Get excess from tokenize (recursively)
-				( excess = tokenize( unquoted, true ) ) &&
-
-				// advance to the next closing parenthesis
-				( excess = unquoted.indexOf( ")", unquoted.length - excess ) - unquoted.length ) ) {
-
-				// excess is a negative index
-				match[ 0 ] = match[ 0 ].slice( 0, excess );
-				match[ 2 ] = unquoted.slice( 0, excess );
-			}
-
-			// Return only captures needed by the pseudo filter method (type and argument)
-			return match.slice( 0, 3 );
-		}
-	},
-
-	filter: {
-
-		TAG: function( nodeNameSelector ) {
-			var expectedNodeName = nodeNameSelector.replace( runescape, funescape ).toLowerCase();
-			return nodeNameSelector === "*" ?
-				function() {
-					return true;
-				} :
-				function( elem ) {
-					return nodeName( elem, expectedNodeName );
-				};
-		},
-
-		CLASS: function( className ) {
-			var pattern = classCache[ className + " " ];
-
-			return pattern ||
-				( pattern = new RegExp( "(^|" + whitespace + ")" + className +
-					"(" + whitespace + "|$)" ) ) &&
-				classCache( className, function( elem ) {
-					return pattern.test(
-						typeof elem.className === "string" && elem.className ||
-							typeof elem.getAttribute !== "undefined" &&
-								elem.getAttribute( "class" ) ||
-							""
-					);
-				} );
-		},
-
-		ATTR: function( name, operator, check ) {
-			return function( elem ) {
-				var result = find.attr( elem, name );
-
-				if ( result == null ) {
-					return operator === "!=";
-				}
-				if ( !operator ) {
-					return true;
-				}
-
-				result += "";
-
-				if ( operator === "=" ) {
-					return result === check;
-				}
-				if ( operator === "!=" ) {
-					return result !== check;
-				}
-				if ( operator === "^=" ) {
-					return check && result.indexOf( check ) === 0;
-				}
-				if ( operator === "*=" ) {
-					return check && result.indexOf( check ) > -1;
-				}
-				if ( operator === "$=" ) {
-					return check && result.slice( -check.length ) === check;
-				}
-				if ( operator === "~=" ) {
-					return ( " " + result.replace( rwhitespace, " " ) + " " )
-						.indexOf( check ) > -1;
-				}
-				if ( operator === "|=" ) {
-					return result === check || result.slice( 0, check.length + 1 ) === check + "-";
-				}
-
-				return false;
-			};
-		},
-
-		CHILD: function( type, what, _argument, first, last ) {
-			var simple = type.slice( 0, 3 ) !== "nth",
-				forward = type.slice( -4 ) !== "last",
-				ofType = what === "of-type";
-
-			return first === 1 && last === 0 ?
-
-				// Shortcut for :nth-*(n)
-				function( elem ) {
-					return !!elem.parentNode;
-				} :
-
-				function( elem, _context, xml ) {
-					var cache, outerCache, node, nodeIndex, start,
-						dir = simple !== forward ? "nextSibling" : "previousSibling",
-						parent = elem.parentNode,
-						name = ofType && elem.nodeName.toLowerCase(),
-						useCache = !xml && !ofType,
-						diff = false;
-
-					if ( parent ) {
-
-						// :(first|last|only)-(child|of-type)
-						if ( simple ) {
-							while ( dir ) {
-								node = elem;
-								while ( ( node = node[ dir ] ) ) {
-									if ( ofType ?
-										nodeName( node, name ) :
-										node.nodeType === 1 ) {
-
-										return false;
-									}
-								}
-
-								// Reverse direction for :only-* (if we haven't yet done so)
-								start = dir = type === "only" && !start && "nextSibling";
-							}
-							return true;
-						}
-
-						start = [ forward ? parent.firstChild : parent.lastChild ];
-
-						// non-xml :nth-child(...) stores cache data on `parent`
-						if ( forward && useCache ) {
-
-							// Seek `elem` from a previously-cached index
-							outerCache = parent[ expando ] || ( parent[ expando ] = {} );
-							cache = outerCache[ type ] || [];
-							nodeIndex = cache[ 0 ] === dirruns && cache[ 1 ];
-							diff = nodeIndex && cache[ 2 ];
-							node = nodeIndex && parent.childNodes[ nodeIndex ];
-
-							while ( ( node = ++nodeIndex && node && node[ dir ] ||
-
-								// Fallback to seeking `elem` from the start
-								( diff = nodeIndex = 0 ) || start.pop() ) ) {
-
-								// When found, cache indexes on `parent` and break
-								if ( node.nodeType === 1 && ++diff && node === elem ) {
-									outerCache[ type ] = [ dirruns, nodeIndex, diff ];
-									break;
-								}
-							}
-
-						} else {
-
-							// Use previously-cached element index if available
-							if ( useCache ) {
-								outerCache = elem[ expando ] || ( elem[ expando ] = {} );
-								cache = outerCache[ type ] || [];
-								nodeIndex = cache[ 0 ] === dirruns && cache[ 1 ];
-								diff = nodeIndex;
-							}
-
-							// xml :nth-child(...)
-							// or :nth-last-child(...) or :nth(-last)?-of-type(...)
-							if ( diff === false ) {
-
-								// Use the same loop as above to seek `elem` from the start
-								while ( ( node = ++nodeIndex && node && node[ dir ] ||
-									( diff = nodeIndex = 0 ) || start.pop() ) ) {
-
-									if ( ( ofType ?
-										nodeName( node, name ) :
-										node.nodeType === 1 ) &&
-										++diff ) {
-
-										// Cache the index of each encountered element
-										if ( useCache ) {
-											outerCache = node[ expando ] ||
-												( node[ expando ] = {} );
-											outerCache[ type ] = [ dirruns, diff ];
-										}
-
-										if ( node === elem ) {
-											break;
-										}
-									}
-								}
-							}
-						}
-
-						// Incorporate the offset, then check against cycle size
-						diff -= last;
-						return diff === first || ( diff % first === 0 && diff / first >= 0 );
-					}
-				};
-		},
-
-		PSEUDO: function( pseudo, argument ) {
-
-			// pseudo-class names are case-insensitive
-			// https://www.w3.org/TR/selectors/#pseudo-classes
-			// Prioritize by case sensitivity in case custom pseudos are added with uppercase letters
-			// Remember that setFilters inherits from pseudos
-			var args,
-				fn = Expr.pseudos[ pseudo ] || Expr.setFilters[ pseudo.toLowerCase() ] ||
-					find.error( "unsupported pseudo: " + pseudo );
-
-			// The user may use createPseudo to indicate that
-			// arguments are needed to create the filter function
-			// just as jQuery does
-			if ( fn[ expando ] ) {
-				return fn( argument );
-			}
-
-			// But maintain support for old signatures
-			if ( fn.length > 1 ) {
-				args = [ pseudo, pseudo, "", argument ];
-				return Expr.setFilters.hasOwnProperty( pseudo.toLowerCase() ) ?
-					markFunction( function( seed, matches ) {
-						var idx,
-							matched = fn( seed, argument ),
-							i = matched.length;
-						while ( i-- ) {
-							idx = indexOf.call( seed, matched[ i ] );
-							seed[ idx ] = !( matches[ idx ] = matched[ i ] );
-						}
-					} ) :
-					function( elem ) {
-						return fn( elem, 0, args );
-					};
-			}
-
-			return fn;
-		}
-	},
-
-	pseudos: {
-
-		// Potentially complex pseudos
-		not: markFunction( function( selector ) {
-
-			// Trim the selector passed to compile
-			// to avoid treating leading and trailing
-			// spaces as combinators
-			var input = [],
-				results = [],
-				matcher = compile( selector.replace( rtrimCSS, "$1" ) );
-
-			return matcher[ expando ] ?
-				markFunction( function( seed, matches, _context, xml ) {
-					var elem,
-						unmatched = matcher( seed, null, xml, [] ),
-						i = seed.length;
-
-					// Match elements unmatched by `matcher`
-					while ( i-- ) {
-						if ( ( elem = unmatched[ i ] ) ) {
-							seed[ i ] = !( matches[ i ] = elem );
-						}
-					}
-				} ) :
-				function( elem, _context, xml ) {
-					input[ 0 ] = elem;
-					matcher( input, null, xml, results );
-
-					// Don't keep the element
-					// (see https://github.com/jquery/sizzle/issues/299)
-					input[ 0 ] = null;
-					return !results.pop();
-				};
-		} ),
-
-		has: markFunction( function( selector ) {
-			return function( elem ) {
-				return find( selector, elem ).length > 0;
-			};
-		} ),
-
-		contains: markFunction( function( text ) {
-			text = text.replace( runescape, funescape );
-			return function( elem ) {
-				return ( elem.textContent || jQuery.text( elem ) ).indexOf( text ) > -1;
-			};
-		} ),
-
-		// "Whether an element is represented by a :lang() selector
-		// is based solely on the element's language value
-		// being equal to the identifier C,
-		// or beginning with the identifier C immediately followed by "-".
-		// The matching of C against the element's language value is performed case-insensitively.
-		// The identifier C does not have to be a valid language name."
-		// https://www.w3.org/TR/selectors/#lang-pseudo
-		lang: markFunction( function( lang ) {
-
-			// lang value must be a valid identifier
-			if ( !ridentifier.test( lang || "" ) ) {
-				find.error( "unsupported lang: " + lang );
-			}
-			lang = lang.replace( runescape, funescape ).toLowerCase();
-			return function( elem ) {
-				var elemLang;
-				do {
-					if ( ( elemLang = documentIsHTML ?
-						elem.lang :
-						elem.getAttribute( "xml:lang" ) || elem.getAttribute( "lang" ) ) ) {
-
-						elemLang = elemLang.toLowerCase();
-						return elemLang === lang || elemLang.indexOf( lang + "-" ) === 0;
-					}
-				} while ( ( elem = elem.parentNode ) && elem.nodeType === 1 );
-				return false;
-			};
-		} ),
-
-		// Miscellaneous
-		target: function( elem ) {
-			var hash = window.location && window.location.hash;
-			return hash && hash.slice( 1 ) === elem.id;
-		},
-
-		root: function( elem ) {
-			return elem === documentElement;
-		},
-
-		focus: function( elem ) {
-			return elem === safeActiveElement() &&
-				document.hasFocus() &&
-				!!( elem.type || elem.href || ~elem.tabIndex );
-		},
-
-		// Boolean properties
-		enabled: createDisabledPseudo( false ),
-		disabled: createDisabledPseudo( true ),
-
-		checked: function( elem ) {
-
-			// In CSS3, :checked should return both checked and selected elements
-			// https://www.w3.org/TR/2011/REC-css3-selectors-20110929/#checked
-			return ( nodeName( elem, "input" ) && !!elem.checked ) ||
-				( nodeName( elem, "option" ) && !!elem.selected );
-		},
-
-		selected: function( elem ) {
-
-			// Support: IE <=11+
-			// Accessing the selectedIndex property
-			// forces the browser to treat the default option as
-			// selected when in an optgroup.
-			if ( elem.parentNode ) {
-				// eslint-disable-next-line no-unused-expressions
-				elem.parentNode.selectedIndex;
-			}
-
-			return elem.selected === true;
-		},
-
-		// Contents
-		empty: function( elem ) {
-
-			// https://www.w3.org/TR/selectors/#empty-pseudo
-			// :empty is negated by element (1) or content nodes (text: 3; cdata: 4; entity ref: 5),
-			//   but not by others (comment: 8; processing instruction: 7; etc.)
-			// nodeType < 6 works because attributes (2) do not appear as children
-			for ( elem = elem.firstChild; elem; elem = elem.nextSibling ) {
-				if ( elem.nodeType < 6 ) {
-					return false;
-				}
-			}
-			return true;
-		},
-
-		parent: function( elem ) {
-			return !Expr.pseudos.empty( elem );
-		},
-
-		// Element/input types
-		header: function( elem ) {
-			return rheader.test( elem.nodeName );
-		},
-
-		input: function( elem ) {
-			return rinputs.test( elem.nodeName );
-		},
-
-		button: function( elem ) {
-			return nodeName( elem, "input" ) && elem.type === "button" ||
-				nodeName( elem, "button" );
-		},
-
-		text: function( elem ) {
-			var attr;
-			return nodeName( elem, "input" ) && elem.type === "text" &&
-
-				// Support: IE <10 only
-				// New HTML5 attribute values (e.g., "search") appear
-				// with elem.type === "text"
-				( ( attr = elem.getAttribute( "type" ) ) == null ||
-					attr.toLowerCase() === "text" );
-		},
-
-		// Position-in-collection
-		first: createPositionalPseudo( function() {
-			return [ 0 ];
-		} ),
-
-		last: createPositionalPseudo( function( _matchIndexes, length ) {
-			return [ length - 1 ];
-		} ),
-
-		eq: createPositionalPseudo( function( _matchIndexes, length, argument ) {
-			return [ argument < 0 ? argument + length : argument ];
-		} ),
-
-		even: createPositionalPseudo( function( matchIndexes, length ) {
-			var i = 0;
-			for ( ; i < length; i += 2 ) {
-				matchIndexes.push( i );
-			}
-			return matchIndexes;
-		} ),
-
-		odd: createPositionalPseudo( function( matchIndexes, length ) {
-			var i = 1;
-			for ( ; i < length; i += 2 ) {
-				matchIndexes.push( i );
-			}
-			return matchIndexes;
-		} ),
-
-		lt: createPositionalPseudo( function( matchIndexes, length, argument ) {
-			var i;
-
-			if ( argument < 0 ) {
-				i = argument + length;
-			} else if ( argument > length ) {
-				i = length;
-			} else {
-				i = argument;
-			}
-
-			for ( ; --i >= 0; ) {
-				matchIndexes.push( i );
-			}
-			return matchIndexes;
-		} ),
-
-		gt: createPositionalPseudo( function( matchIndexes, length, argument ) {
-			var i = argument < 0 ? argument + length : argument;
-			for ( ; ++i < length; ) {
-				matchIndexes.push( i );
-			}
-			return matchIndexes;
-		} )
-	}
-};
-
-Expr.pseudos.nth = Expr.pseudos.eq;
-
-// Add button/input type pseudos
-for ( i in { radio: true, checkbox: true, file: true, password: true, image: true } ) {
-	Expr.pseudos[ i ] = createInputPseudo( i );
-}
-for ( i in { submit: true, reset: true } ) {
-	Expr.pseudos[ i ] = createButtonPseudo( i );
-}
-
-// Easy API for creating new setFilters
-function setFilters() {}
-setFilters.prototype = Expr.filters = Expr.pseudos;
-Expr.setFilters = new setFilters();
-
-function tokenize( selector, parseOnly ) {
-	var matched, match, tokens, type,
-		soFar, groups, preFilters,
-		cached = tokenCache[ selector + " " ];
-
-	if ( cached ) {
-		return parseOnly ? 0 : cached.slice( 0 );
-	}
-
-	soFar = selector;
-	groups = [];
-	preFilters = Expr.preFilter;
-
-	while ( soFar ) {
-
-		// Comma and first run
-		if ( !matched || ( match = rcomma.exec( soFar ) ) ) {
-			if ( match ) {
-
-				// Don't consume trailing commas as valid
-				soFar = soFar.slice( match[ 0 ].length ) || soFar;
-			}
-			groups.push( ( tokens = [] ) );
-		}
-
-		matched = false;
-
-		// Combinators
-		if ( ( match = rleadingCombinator.exec( soFar ) ) ) {
-			matched = match.shift();
-			tokens.push( {
-				value: matched,
-
-				// Cast descendant combinators to space
-				type: match[ 0 ].replace( rtrimCSS, " " )
-			} );
-			soFar = soFar.slice( matched.length );
-		}
-
-		// Filters
-		for ( type in Expr.filter ) {
-			if ( ( match = matchExpr[ type ].exec( soFar ) ) && ( !preFilters[ type ] ||
-				( match = preFilters[ type ]( match ) ) ) ) {
-				matched = match.shift();
-				tokens.push( {
-					value: matched,
-					type: type,
-					matches: match
-				} );
-				soFar = soFar.slice( matched.length );
-			}
-		}
-
-		if ( !matched ) {
-			break;
-		}
-	}
-
-	// Return the length of the invalid excess
-	// if we're just parsing
-	// Otherwise, throw an error or return tokens
-	if ( parseOnly ) {
-		return soFar.length;
-	}
-
-	return soFar ?
-		find.error( selector ) :
-
-		// Cache the tokens
-		tokenCache( selector, groups ).slice( 0 );
-}
-
-function toSelector( tokens ) {
-	var i = 0,
-		len = tokens.length,
-		selector = "";
-	for ( ; i < len; i++ ) {
-		selector += tokens[ i ].value;
-	}
-	return selector;
-}
-
-function addCombinator( matcher, combinator, base ) {
-	var dir = combinator.dir,
-		skip = combinator.next,
-		key = skip || dir,
-		checkNonElements = base && key === "parentNode",
-		doneName = done++;
-
-	return combinator.first ?
-
-		// Check against closest ancestor/preceding element
-		function( elem, context, xml ) {
-			while ( ( elem = elem[ dir ] ) ) {
-				if ( elem.nodeType === 1 || checkNonElements ) {
-					return matcher( elem, context, xml );
-				}
-			}
-			return false;
-		} :
-
-		// Check against all ancestor/preceding elements
-		function( elem, context, xml ) {
-			var oldCache, outerCache,
-				newCache = [ dirruns, doneName ];
-
-			// We can't set arbitrary data on XML nodes, so they don't benefit from combinator caching
-			if ( xml ) {
-				while ( ( elem = elem[ dir ] ) ) {
-					if ( elem.nodeType === 1 || checkNonElements ) {
-						if ( matcher( elem, context, xml ) ) {
-							return true;
-						}
-					}
-				}
-			} else {
-				while ( ( elem = elem[ dir ] ) ) {
-					if ( elem.nodeType === 1 || checkNonElements ) {
-						outerCache = elem[ expando ] || ( elem[ expando ] = {} );
-
-						if ( skip && nodeName( elem, skip ) ) {
-							elem = elem[ dir ] || elem;
-						} else if ( ( oldCache = outerCache[ key ] ) &&
-							oldCache[ 0 ] === dirruns && oldCache[ 1 ] === doneName ) {
-
-							// Assign to newCache so results back-propagate to previous elements
-							return ( newCache[ 2 ] = oldCache[ 2 ] );
-						} else {
-
-							// Reuse newcache so results back-propagate to previous elements
-							outerCache[ key ] = newCache;
-
-							// A match means we're done; a fail means we have to keep checking
-							if ( ( newCache[ 2 ] = matcher( elem, context, xml ) ) ) {
-								return true;
-							}
-						}
-					}
-				}
-			}
-			return false;
-		};
-}
-
-function elementMatcher( matchers ) {
-	return matchers.length > 1 ?
-		function( elem, context, xml ) {
-			var i = matchers.length;
-			while ( i-- ) {
-				if ( !matchers[ i ]( elem, context, xml ) ) {
-					return false;
-				}
-			}
-			return true;
-		} :
-		matchers[ 0 ];
-}
-
-function multipleContexts( selector, contexts, results ) {
-	var i = 0,
-		len = contexts.length;
-	for ( ; i < len; i++ ) {
-		find( selector, contexts[ i ], results );
-	}
-	return results;
-}
-
-function condense( unmatched, map, filter, context, xml ) {
-	var elem,
-		newUnmatched = [],
-		i = 0,
-		len = unmatched.length,
-		mapped = map != null;
-
-	for ( ; i < len; i++ ) {
-		if ( ( elem = unmatched[ i ] ) ) {
-			if ( !filter || filter( elem, context, xml ) ) {
-				newUnmatched.push( elem );
-				if ( mapped ) {
-					map.push( i );
-				}
-			}
-		}
-	}
-
-	return newUnmatched;
-}
-
-function setMatcher( preFilter, selector, matcher, postFilter, postFinder, postSelector ) {
-	if ( postFilter && !postFilter[ expando ] ) {
-		postFilter = setMatcher( postFilter );
-	}
-	if ( postFinder && !postFinder[ expando ] ) {
-		postFinder = setMatcher( postFinder, postSelector );
-	}
-	return markFunction( function( seed, results, context, xml ) {
-		var temp, i, elem, matcherOut,
-			preMap = [],
-			postMap = [],
-			preexisting = results.length,
-
-			// Get initial elements from seed or context
-			elems = seed ||
-				multipleContexts( selector || "*",
-					context.nodeType ? [ context ] : context, [] ),
-
-			// Prefilter to get matcher input, preserving a map for seed-results synchronization
-			matcherIn = preFilter && ( seed || !selector ) ?
-				condense( elems, preMap, preFilter, context, xml ) :
-				elems;
-
-		if ( matcher ) {
-
-			// If we have a postFinder, or filtered seed, or non-seed postFilter
-			// or preexisting results,
-			matcherOut = postFinder || ( seed ? preFilter : preexisting || postFilter ) ?
-
-				// ...intermediate processing is necessary
-				[] :
-
-				// ...otherwise use results directly
-				results;
-
-			// Find primary matches
-			matcher( matcherIn, matcherOut, context, xml );
-		} else {
-			matcherOut = matcherIn;
-		}
-
-		// Apply postFilter
-		if ( postFilter ) {
-			temp = condense( matcherOut, postMap );
-			postFilter( temp, [], context, xml );
-
-			// Un-match failing elements by moving them back to matcherIn
-			i = temp.length;
-			while ( i-- ) {
-				if ( ( elem = temp[ i ] ) ) {
-					matcherOut[ postMap[ i ] ] = !( matcherIn[ postMap[ i ] ] = elem );
-				}
-			}
-		}
-
-		if ( seed ) {
-			if ( postFinder || preFilter ) {
-				if ( postFinder ) {
-
-					// Get the final matcherOut by condensing this intermediate into postFinder contexts
-					temp = [];
-					i = matcherOut.length;
-					while ( i-- ) {
-						if ( ( elem = matcherOut[ i ] ) ) {
-
-							// Restore matcherIn since elem is not yet a final match
-							temp.push( ( matcherIn[ i ] = elem ) );
-						}
-					}
-					postFinder( null, ( matcherOut = [] ), temp, xml );
-				}
-
-				// Move matched elements from seed to results to keep them synchronized
-				i = matcherOut.length;
-				while ( i-- ) {
-					if ( ( elem = matcherOut[ i ] ) &&
-						( temp = postFinder ? indexOf.call( seed, elem ) : preMap[ i ] ) > -1 ) {
-
-						seed[ temp ] = !( results[ temp ] = elem );
-					}
-				}
-			}
-
-		// Add elements to results, through postFinder if defined
-		} else {
-			matcherOut = condense(
-				matcherOut === results ?
-					matcherOut.splice( preexisting, matcherOut.length ) :
-					matcherOut
-			);
-			if ( postFinder ) {
-				postFinder( null, results, matcherOut, xml );
-			} else {
-				push.apply( results, matcherOut );
-			}
-		}
-	} );
-}
-
-function matcherFromTokens( tokens ) {
-	var checkContext, matcher, j,
-		len = tokens.length,
-		leadingRelative = Expr.relative[ tokens[ 0 ].type ],
-		implicitRelative = leadingRelative || Expr.relative[ " " ],
-		i = leadingRelative ? 1 : 0,
-
-		// The foundational matcher ensures that elements are reachable from top-level context(s)
-		matchContext = addCombinator( function( elem ) {
-			return elem === checkContext;
-		}, implicitRelative, true ),
-		matchAnyContext = addCombinator( function( elem ) {
-			return indexOf.call( checkContext, elem ) > -1;
-		}, implicitRelative, true ),
-		matchers = [ function( elem, context, xml ) {
-
-			// Support: IE 11+, Edge 17 - 18+
-			// IE/Edge sometimes throw a "Permission denied" error when strict-comparing
-			// two documents; shallow comparisons work.
-			// eslint-disable-next-line eqeqeq
-			var ret = ( !leadingRelative && ( xml || context != outermostContext ) ) || (
-				( checkContext = context ).nodeType ?
-					matchContext( elem, context, xml ) :
-					matchAnyContext( elem, context, xml ) );
-
-			// Avoid hanging onto element
-			// (see https://github.com/jquery/sizzle/issues/299)
-			checkContext = null;
-			return ret;
-		} ];
-
-	for ( ; i < len; i++ ) {
-		if ( ( matcher = Expr.relative[ tokens[ i ].type ] ) ) {
-			matchers = [ addCombinator( elementMatcher( matchers ), matcher ) ];
-		} else {
-			matcher = Expr.filter[ tokens[ i ].type ].apply( null, tokens[ i ].matches );
-
-			// Return special upon seeing a positional matcher
-			if ( matcher[ expando ] ) {
-
-				// Find the next relative operator (if any) for proper handling
-				j = ++i;
-				for ( ; j < len; j++ ) {
-					if ( Expr.relative[ tokens[ j ].type ] ) {
-						break;
-					}
-				}
-				return setMatcher(
-					i > 1 && elementMatcher( matchers ),
-					i > 1 && toSelector(
-
-						// If the preceding token was a descendant combinator, insert an implicit any-element `*`
-						tokens.slice( 0, i - 1 )
-							.concat( { value: tokens[ i - 2 ].type === " " ? "*" : "" } )
-					).replace( rtrimCSS, "$1" ),
-					matcher,
-					i < j && matcherFromTokens( tokens.slice( i, j ) ),
-					j < len && matcherFromTokens( ( tokens = tokens.slice( j ) ) ),
-					j < len && toSelector( tokens )
-				);
-			}
-			matchers.push( matcher );
-		}
-	}
-
-	return elementMatcher( matchers );
-}
-
-function matcherFromGroupMatchers( elementMatchers, setMatchers ) {
-	var bySet = setMatchers.length > 0,
-		byElement = elementMatchers.length > 0,
-		superMatcher = function( seed, context, xml, results, outermost ) {
-			var elem, j, matcher,
-				matchedCount = 0,
-				i = "0",
-				unmatched = seed && [],
-				setMatched = [],
-				contextBackup = outermostContext,
-
-				// We must always have either seed elements or outermost context
-				elems = seed || byElement && Expr.find.TAG( "*", outermost ),
-
-				// Use integer dirruns iff this is the outermost matcher
-				dirrunsUnique = ( dirruns += contextBackup == null ? 1 : Math.random() || 0.1 ),
-				len = elems.length;
-
-			if ( outermost ) {
-
-				// Support: IE 11+, Edge 17 - 18+
-				// IE/Edge sometimes throw a "Permission denied" error when strict-comparing
-				// two documents; shallow comparisons work.
-				// eslint-disable-next-line eqeqeq
-				outermostContext = context == document || context || outermost;
-			}
-
-			// Add elements passing elementMatchers directly to results
-			// Support: iOS <=7 - 9 only
-			// Tolerate NodeList properties (IE: "length"; Safari: <number>) matching
-			// elements by id. (see trac-14142)
-			for ( ; i !== len && ( elem = elems[ i ] ) != null; i++ ) {
-				if ( byElement && elem ) {
-					j = 0;
-
-					// Support: IE 11+, Edge 17 - 18+
-					// IE/Edge sometimes throw a "Permission denied" error when strict-comparing
-					// two documents; shallow comparisons work.
-					// eslint-disable-next-line eqeqeq
-					if ( !context && elem.ownerDocument != document ) {
-						setDocument( elem );
-						xml = !documentIsHTML;
-					}
-					while ( ( matcher = elementMatchers[ j++ ] ) ) {
-						if ( matcher( elem, context || document, xml ) ) {
-							push.call( results, elem );
-							break;
-						}
-					}
-					if ( outermost ) {
-						dirruns = dirrunsUnique;
-					}
-				}
-
-				// Track unmatched elements for set filters
-				if ( bySet ) {
-
-					// They will have gone through all possible matchers
-					if ( ( elem = !matcher && elem ) ) {
-						matchedCount--;
-					}
-
-					// Lengthen the array for every element, matched or not
-					if ( seed ) {
-						unmatched.push( elem );
-					}
-				}
-			}
-
-			// `i` is now the count of elements visited above, and adding it to `matchedCount`
-			// makes the latter nonnegative.
-			matchedCount += i;
-
-			// Apply set filters to unmatched elements
-			// NOTE: This can be skipped if there are no unmatched elements (i.e., `matchedCount`
-			// equals `i`), unless we didn't visit _any_ elements in the above loop because we have
-			// no element matchers and no seed.
-			// Incrementing an initially-string "0" `i` allows `i` to remain a string only in that
-			// case, which will result in a "00" `matchedCount` that differs from `i` but is also
-			// numerically zero.
-			if ( bySet && i !== matchedCount ) {
-				j = 0;
-				while ( ( matcher = setMatchers[ j++ ] ) ) {
-					matcher( unmatched, setMatched, context, xml );
-				}
-
-				if ( seed ) {
-
-					// Reintegrate element matches to eliminate the need for sorting
-					if ( matchedCount > 0 ) {
-						while ( i-- ) {
-							if ( !( unmatched[ i ] || setMatched[ i ] ) ) {
-								setMatched[ i ] = pop.call( results );
-							}
-						}
-					}
-
-					// Discard index placeholder values to get only actual matches
-					setMatched = condense( setMatched );
-				}
-
-				// Add matches to results
-				push.apply( results, setMatched );
-
-				// Seedless set matches succeeding multiple successful matchers stipulate sorting
-				if ( outermost && !seed && setMatched.length > 0 &&
-					( matchedCount + setMatchers.length ) > 1 ) {
-
-					jQuery.uniqueSort( results );
-				}
-			}
-
-			// Override manipulation of globals by nested matchers
-			if ( outermost ) {
-				dirruns = dirrunsUnique;
-				outermostContext = contextBackup;
-			}
-
-			return unmatched;
-		};
-
-	return bySet ?
-		markFunction( superMatcher ) :
-		superMatcher;
-}
-
-function compile( selector, match /* Internal Use Only */ ) {
-	var i,
-		setMatchers = [],
-		elementMatchers = [],
-		cached = compilerCache[ selector + " " ];
-
-	if ( !cached ) {
-
-		// Generate a function of recursive functions that can be used to check each element
-		if ( !match ) {
-			match = tokenize( selector );
-		}
-		i = match.length;
-		while ( i-- ) {
-			cached = matcherFromTokens( match[ i ] );
-			if ( cached[ expando ] ) {
-				setMatchers.push( cached );
-			} else {
-				elementMatchers.push( cached );
-			}
-		}
-
-		// Cache the compiled function
-		cached = compilerCache( selector,
-			matcherFromGroupMatchers( elementMatchers, setMatchers ) );
-
-		// Save selector and tokenization
-		cached.selector = selector;
-	}
-	return cached;
-}
-
-/**
- * A low-level selection function that works with jQuery's compiled
- *  selector functions
- * @param {String|Function} selector A selector or a pre-compiled
- *  selector function built with jQuery selector compile
- * @param {Element} context
- * @param {Array} [results]
- * @param {Array} [seed] A set of elements to match against
- */
-function select( selector, context, results, seed ) {
-	var i, tokens, token, type, find,
-		compiled = typeof selector === "function" && selector,
-		match = !seed && tokenize( ( selector = compiled.selector || selector ) );
-
-	results = results || [];
-
-	// Try to minimize operations if there is only one selector in the list and no seed
-	// (the latter of which guarantees us context)
-	if ( match.length === 1 ) {
-
-		// Reduce context if the leading compound selector is an ID
-		tokens = match[ 0 ] = match[ 0 ].slice( 0 );
-		if ( tokens.length > 2 && ( token = tokens[ 0 ] ).type === "ID" &&
-				context.nodeType === 9 && documentIsHTML && Expr.relative[ tokens[ 1 ].type ] ) {
-
-			context = ( Expr.find.ID(
-				token.matches[ 0 ].replace( runescape, funescape ),
-				context
-			) || [] )[ 0 ];
-			if ( !context ) {
-				return results;
-
-			// Precompiled matchers will still verify ancestry, so step up a level
-			} else if ( compiled ) {
-				context = context.parentNode;
-			}
-
-			selector = selector.slice( tokens.shift().value.length );
-		}
-
-		// Fetch a seed set for right-to-left matching
-		i = matchExpr.needsContext.test( selector ) ? 0 : tokens.length;
-		while ( i-- ) {
-			token = tokens[ i ];
-
-			// Abort if we hit a combinator
-			if ( Expr.relative[ ( type = token.type ) ] ) {
-				break;
-			}
-			if ( ( find = Expr.find[ type ] ) ) {
-
-				// Search, expanding context for leading sibling combinators
-				if ( ( seed = find(
-					token.matches[ 0 ].replace( runescape, funescape ),
-					rsibling.test( tokens[ 0 ].type ) &&
-						testContext( context.parentNode ) || context
-				) ) ) {
-
-					// If seed is empty or no tokens remain, we can return early
-					tokens.splice( i, 1 );
-					selector = seed.length && toSelector( tokens );
-					if ( !selector ) {
-						push.apply( results, seed );
-						return results;
-					}
-
-					break;
-				}
-			}
-		}
-	}
-
-	// Compile and execute a filtering function if one is not provided
-	// Provide `match` to avoid retokenization if we modified the selector above
-	( compiled || compile( selector, match ) )(
-		seed,
-		context,
-		!documentIsHTML,
-		results,
-		!context || rsibling.test( selector ) && testContext( context.parentNode ) || context
-	);
-	return results;
-}
-
-// One-time assignments
-
-// Support: Android <=4.0 - 4.1+
-// Sort stability
-support.sortStable = expando.split( "" ).sort( sortOrder ).join( "" ) === expando;
-
-// Initialize against the default document
-setDocument();
-
-// Support: Android <=4.0 - 4.1+
-// Detached nodes confoundingly follow *each other*
-support.sortDetached = assert( function( el ) {
-
-	// Should return 1, but returns 4 (following)
-	return el.compareDocumentPosition( document.createElement( "fieldset" ) ) & 1;
-} );
-
-jQuery.find = find;
-
-// Deprecated
-jQuery.expr[ ":" ] = jQuery.expr.pseudos;
-jQuery.unique = jQuery.uniqueSort;
-
-// These have always been private, but they used to be documented as part of
-// Sizzle so let's maintain them for now for backwards compatibility purposes.
-find.compile = compile;
-find.select = select;
-find.setDocument = setDocument;
-find.tokenize = tokenize;
-
-find.escape = jQuery.escapeSelector;
-find.getText = jQuery.text;
-find.isXML = jQuery.isXMLDoc;
-find.selectors = jQuery.expr;
-find.support = jQuery.support;
-find.uniqueSort = jQuery.uniqueSort;
-
-	/* eslint-enable */
-
-} )();
-
-
-var dir = function( elem, dir, until ) {
-	var matched = [],
-		truncate = until !== undefined;
-
-	while ( ( elem = elem[ dir ] ) && elem.nodeType !== 9 ) {
-		if ( elem.nodeType === 1 ) {
-			if ( truncate && jQuery( elem ).is( until ) ) {
-				break;
-			}
-			matched.push( elem );
-		}
-	}
-	return matched;
-};
-
-
-var siblings = function( n, elem ) {
-	var matched = [];
-
-	for ( ; n; n = n.nextSibling ) {
-		if ( n.nodeType === 1 && n !== elem ) {
-			matched.push( n );
-		}
-	}
-
-	return matched;
-};
-
-
-var rneedsContext = jQuery.expr.match.needsContext;
-
-var rsingleTag = ( /^<([a-z][^\/\0>:\x20\t\r\n\f]*)[\x20\t\r\n\f]*\/?>(?:<\/\1>|)$/i );
-
-
-
-// Implement the identical functionality for filter and not
-function winnow( elements, qualifier, not ) {
-	if ( isFunction( qualifier ) ) {
-		return jQuery.grep( elements, function( elem, i ) {
-			return !!qualifier.call( elem, i, elem ) !== not;
-		} );
-	}
-
-	// Single element
-	if ( qualifier.nodeType ) {
-		return jQuery.grep( elements, function( elem ) {
-			return ( elem === qualifier ) !== not;
-		} );
-	}
-
-	// Arraylike of elements (jQuery, arguments, Array)
-	if ( typeof qualifier !== "string" ) {
-		return jQuery.grep( elements, function( elem ) {
-			return ( indexOf.call( qualifier, elem ) > -1 ) !== not;
-		} );
-	}
-
-	// Filtered directly for both simple and complex selectors
-	return jQuery.filter( qualifier, elements, not );
-}
-
-jQuery.filter = function( expr, elems, not ) {
-	var elem = elems[ 0 ];
-
-	if ( not ) {
-		expr = ":not(" + expr + ")";
-	}
-
-	if ( elems.length === 1 && elem.nodeType === 1 ) {
-		return jQuery.find.matchesSelector( elem, expr ) ? [ elem ] : [];
-	}
-
-	return jQuery.find.matches( expr, jQuery.grep( elems, function( elem ) {
-		return elem.nodeType === 1;
-	} ) );
-};
-
-jQuery.fn.extend( {
-	find: function( selector ) {
-		var i, ret,
-			len = this.length,
-			self = this;
-
-		if ( typeof selector !== "string" ) {
-			return this.pushStack( jQuery( selector ).filter( function() {
-				for ( i = 0; i < len; i++ ) {
-					if ( jQuery.contains( self[ i ], this ) ) {
-						return true;
-					}
-				}
-			} ) );
-		}
-
-		ret = this.pushStack( [] );
-
-		for ( i = 0; i < len; i++ ) {
-			jQuery.find( selector, self[ i ], ret );
-		}
-
-		return len > 1 ? jQuery.uniqueSort( ret ) : ret;
-	},
-	filter: function( selector ) {
-		return this.pushStack( winnow( this, selector || [], false ) );
-	},
-	not: function( selector ) {
-		return this.pushStack( winnow( this, selector || [], true ) );
-	},
-	is: function( selector ) {
-		return !!winnow(
-			this,
-
-			// If this is a positional/relative selector, check membership in the returned set
-			// so $("p:first").is("p:last") won't return true for a doc with two "p".
-			typeof selector === "string" && rneedsContext.test( selector ) ?
-				jQuery( selector ) :
-				selector || [],
-			false
-		).length;
-	}
-} );
-
-
-// Initialize a jQuery object
-
-
-// A central reference to the root jQuery(document)
-var rootjQuery,
-
-	// A simple way to check for HTML strings
-	// Prioritize #id over <tag> to avoid XSS via location.hash (trac-9521)
-	// Strict HTML recognition (trac-11290: must start with <)
-	// Shortcut simple #id case for speed
-	rquickExpr = /^(?:\s*(<[\w\W]+>)[^>]*|#([\w-]+))$/,
-
-	init = jQuery.fn.init = function( selector, context, root ) {
-		var match, elem;
-
-		// HANDLE: $(""), $(null), $(undefined), $(false)
-		if ( !selector ) {
-			return this;
-		}
-
-		// Method init() accepts an alternate rootjQuery
-		// so migrate can support jQuery.sub (gh-2101)
-		root = root || rootjQuery;
-
-		// Handle HTML strings
-		if ( typeof selector === "string" ) {
-			if ( selector[ 0 ] === "<" &&
-				selector[ selector.length - 1 ] === ">" &&
-				selector.length >= 3 ) {
-
-				// Assume that strings that start and end with <> are HTML and skip the regex check
-				match = [ null, selector, null ];
-
-			} else {
-				match = rquickExpr.exec( selector );
-			}
-
-			// Match html or make sure no context is specified for #id
-			if ( match && ( match[ 1 ] || !context ) ) {
-
-				// HANDLE: $(html) -> $(array)
-				if ( match[ 1 ] ) {
-					context = context instanceof jQuery ? context[ 0 ] : context;
-
-					// Option to run scripts is true for back-compat
-					// Intentionally let the error be thrown if parseHTML is not present
-					jQuery.merge( this, jQuery.parseHTML(
-						match[ 1 ],
-						context && context.nodeType ? context.ownerDocument || context : document,
-						true
-					) );
-
-					// HANDLE: $(html, props)
-					if ( rsingleTag.test( match[ 1 ] ) && jQuery.isPlainObject( context ) ) {
-						for ( match in context ) {
-
-							// Properties of context are called as methods if possible
-							if ( isFunction( this[ match ] ) ) {
-								this[ match ]( context[ match ] );
-
-							// ...and otherwise set as attributes
-							} else {
-								this.attr( match, context[ match ] );
-							}
-						}
-					}
-
-					return this;
-
-				// HANDLE: $(#id)
-				} else {
-					elem = document.getElementById( match[ 2 ] );
-
-					if ( elem ) {
-
-						// Inject the element directly into the jQuery object
-						this[ 0 ] = elem;
-						this.length = 1;
-					}
-					return this;
-				}
-
-			// HANDLE: $(expr, $(...))
-			} else if ( !context || context.jquery ) {
-				return ( context || root ).find( selector );
-
-			// HANDLE: $(expr, context)
-			// (which is just equivalent to: $(context).find(expr)
-			} else {
-				return this.constructor( context ).find( selector );
-			}
-
-		// HANDLE: $(DOMElement)
-		} else if ( selector.nodeType ) {
-			this[ 0 ] = selector;
-			this.length = 1;
-			return this;
-
-		// HANDLE: $(function)
-		// Shortcut for document ready
-		} else if ( isFunction( selector ) ) {
-			return root.ready !== undefined ?
-				root.ready( selector ) :
-
-				// Execute immediately if ready is not present
-				selector( jQuery );
-		}
-
-		return jQuery.makeArray( selector, this );
-	};
-
-// Give the init function the jQuery prototype for later instantiation
-init.prototype = jQuery.fn;
-
-// Initialize central reference
-rootjQuery = jQuery( document );
-
-
-var rparentsprev = /^(?:parents|prev(?:Until|All))/,
-
-	// Methods guaranteed to produce a unique set when starting from a unique set
-	guaranteedUnique = {
-		children: true,
-		contents: true,
-		next: true,
-		prev: true
-	};
-
-jQuery.fn.extend( {
-	has: function( target ) {
-		var targets = jQuery( target, this ),
-			l = targets.length;
-
-		return this.filter( function() {
-			var i = 0;
-			for ( ; i < l; i++ ) {
-				if ( jQuery.contains( this, targets[ i ] ) ) {
-					return true;
-				}
-			}
-		} );
-	},
-
-	closest: function( selectors, context ) {
-		var cur,
-			i = 0,
-			l = this.length,
-			matched = [],
-			targets = typeof selectors !== "string" && jQuery( selectors );
-
-		// Positional selectors never match, since there's no _selection_ context
-		if ( !rneedsContext.test( selectors ) ) {
-			for ( ; i < l; i++ ) {
-				for ( cur = this[ i ]; cur && cur !== context; cur = cur.parentNode ) {
-
-					// Always skip document fragments
-					if ( cur.nodeType < 11 && ( targets ?
-						targets.index( cur ) > -1 :
-
-						// Don't pass non-elements to jQuery#find
-						cur.nodeType === 1 &&
-							jQuery.find.matchesSelector( cur, selectors ) ) ) {
-
-						matched.push( cur );
-						break;
-					}
-				}
-			}
-		}
-
-		return this.pushStack( matched.length > 1 ? jQuery.uniqueSort( matched ) : matched );
-	},
-
-	// Determine the position of an element within the set
-	index: function( elem ) {
-
-		// No argument, return index in parent
-		if ( !elem ) {
-			return ( this[ 0 ] && this[ 0 ].parentNode ) ? this.first().prevAll().length : -1;
-		}
-
-		// Index in selector
-		if ( typeof elem === "string" ) {
-			return indexOf.call( jQuery( elem ), this[ 0 ] );
-		}
-
-		// Locate the position of the desired element
-		return indexOf.call( this,
-
-			// If it receives a jQuery object, the first element is used
-			elem.jquery ? elem[ 0 ] : elem
-		);
-	},
-
-	add: function( selector, context ) {
-		return this.pushStack(
-			jQuery.uniqueSort(
-				jQuery.merge( this.get(), jQuery( selector, context ) )
-			)
-		);
-	},
-
-	addBack: function( selector ) {
-		return this.add( selector == null ?
-			this.prevObject : this.prevObject.filter( selector )
-		);
-	}
-} );
-
-function sibling( cur, dir ) {
-	while ( ( cur = cur[ dir ] ) && cur.nodeType !== 1 ) {}
-	return cur;
-}
-
-jQuery.each( {
-	parent: function( elem ) {
-		var parent = elem.parentNode;
-		return parent && parent.nodeType !== 11 ? parent : null;
-	},
-	parents: function( elem ) {
-		return dir( elem, "parentNode" );
-	},
-	parentsUntil: function( elem, _i, until ) {
-		return dir( elem, "parentNode", until );
-	},
-	next: function( elem ) {
-		return sibling( elem, "nextSibling" );
-	},
-	prev: function( elem ) {
-		return sibling( elem, "previousSibling" );
-	},
-	nextAll: function( elem ) {
-		return dir( elem, "nextSibling" );
-	},
-	prevAll: function( elem ) {
-		return dir( elem, "previousSibling" );
-	},
-	nextUntil: function( elem, _i, until ) {
-		return dir( elem, "nextSibling", until );
-	},
-	prevUntil: function( elem, _i, until ) {
-		return dir( elem, "previousSibling", until );
-	},
-	siblings: function( elem ) {
-		return siblings( ( elem.parentNode || {} ).firstChild, elem );
-	},
-	children: function( elem ) {
-		return siblings( elem.firstChild );
-	},
-	contents: function( elem ) {
-		if ( elem.contentDocument != null &&
-
-			// Support: IE 11+
-			// <object> elements with no `data` attribute has an object
-			// `contentDocument` with a `null` prototype.
-			getProto( elem.contentDocument ) ) {
-
-			return elem.contentDocument;
-		}
-
-		// Support: IE 9 - 11 only, iOS 7 only, Android Browser <=4.3 only
-		// Treat the template element as a regular one in browsers that
-		// don't support it.
-		if ( nodeName( elem, "template" ) ) {
-			elem = elem.content || elem;
-		}
-
-		return jQuery.merge( [], elem.childNodes );
-	}
-}, function( name, fn ) {
-	jQuery.fn[ name ] = function( until, selector ) {
-		var matched = jQuery.map( this, fn, until );
-
-		if ( name.slice( -5 ) !== "Until" ) {
-			selector = until;
-		}
-
-		if ( selector && typeof selector === "string" ) {
-			matched = jQuery.filter( selector, matched );
-		}
-
-		if ( this.length > 1 ) {
-
-			// Remove duplicates
-			if ( !guaranteedUnique[ name ] ) {
-				jQuery.uniqueSort( matched );
-			}
-
-			// Reverse order for parents* and prev-derivatives
-			if ( rparentsprev.test( name ) ) {
-				matched.reverse();
-			}
-		}
-
-		return this.pushStack( matched );
-	};
-} );
-var rnothtmlwhite = ( /[^\x20\t\r\n\f]+/g );
-
-
-
-// Convert String-formatted options into Object-formatted ones
-function createOptions( options ) {
-	var object = {};
-	jQuery.each( options.match( rnothtmlwhite ) || [], function( _, flag ) {
-		object[ flag ] = true;
-	} );
-	return object;
-}
-
-/*
- * Create a callback list using the following parameters:
- *
- *	options: an optional list of space-separated options that will change how
- *			the callback list behaves or a more traditional option object
- *
- * By default a callback list will act like an event callback list and can be
- * "fired" multiple times.
- *
- * Possible options:
- *
- *	once:			will ensure the callback list can only be fired once (like a Deferred)
- *
- *	memory:			will keep track of previous values and will call any callback added
- *					after the list has been fired right away with the latest "memorized"
- *					values (like a Deferred)
- *
- *	unique:			will ensure a callback can only be added once (no duplicate in the list)
- *
- *	stopOnFalse:	interrupt callings when a callback returns false
- *
- */
-jQuery.Callbacks = function( options ) {
-
-	// Convert options from String-formatted to Object-formatted if needed
-	// (we check in cache first)
-	options = typeof options === "string" ?
-		createOptions( options ) :
-		jQuery.extend( {}, options );
-
-	var // Flag to know if list is currently firing
-		firing,
-
-		// Last fire value for non-forgettable lists
-		memory,
-
-		// Flag to know if list was already fired
-		fired,
-
-		// Flag to prevent firing
-		locked,
-
-		// Actual callback list
-		list = [],
-
-		// Queue of execution data for repeatable lists
-		queue = [],
-
-		// Index of currently firing callback (modified by add/remove as needed)
-		firingIndex = -1,
-
-		// Fire callbacks
-		fire = function() {
-
-			// Enforce single-firing
-			locked = locked || options.once;
-
-			// Execute callbacks for all pending executions,
-			// respecting firingIndex overrides and runtime changes
-			fired = firing = true;
-			for ( ; queue.length; firingIndex = -1 ) {
-				memory = queue.shift();
-				while ( ++firingIndex < list.length ) {
-
-					// Run callback and check for early termination
-					if ( list[ firingIndex ].apply( memory[ 0 ], memory[ 1 ] ) === false &&
-						options.stopOnFalse ) {
-
-						// Jump to end and forget the data so .add doesn't re-fire
-						firingIndex = list.length;
-						memory = false;
-					}
-				}
-			}
-
-			// Forget the data if we're done with it
-			if ( !options.memory ) {
-				memory = false;
-			}
-
-			firing = false;
-
-			// Clean up if we're done firing for good
-			if ( locked ) {
-
-				// Keep an empty list if we have data for future add calls
-				if ( memory ) {
-					list = [];
-
-				// Otherwise, this object is spent
-				} else {
-					list = "";
-				}
-			}
-		},
-
-		// Actual Callbacks object
-		self = {
-
-			// Add a callback or a collection of callbacks to the list
-			add: function() {
-				if ( list ) {
-
-					// If we have memory from a past run, we should fire after adding
-					if ( memory && !firing ) {
-						firingIndex = list.length - 1;
-						queue.push( memory );
-					}
-
-					( function add( args ) {
-						jQuery.each( args, function( _, arg ) {
-							if ( isFunction( arg ) ) {
-								if ( !options.unique || !self.has( arg ) ) {
-									list.push( arg );
-								}
-							} else if ( arg && arg.length && toType( arg ) !== "string" ) {
-
-								// Inspect recursively
-								add( arg );
-							}
-						} );
-					} )( arguments );
-
-					if ( memory && !firing ) {
-						fire();
-					}
-				}
-				return this;
-			},
-
-			// Remove a callback from the list
-			remove: function() {
-				jQuery.each( arguments, function( _, arg ) {
-					var index;
-					while ( ( index = jQuery.inArray( arg, list, index ) ) > -1 ) {
-						list.splice( index, 1 );
-
-						// Handle firing indexes
-						if ( index <= firingIndex ) {
-							firingIndex--;
-						}
-					}
-				} );
-				return this;
-			},
-
-			// Check if a given callback is in the list.
-			// If no argument is given, return whether or not list has callbacks attached.
-			has: function( fn ) {
-				return fn ?
-					jQuery.inArray( fn, list ) > -1 :
-					list.length > 0;
-			},
-
-			// Remove all callbacks from the list
-			empty: function() {
-				if ( list ) {
-					list = [];
-				}
-				return this;
-			},
-
-			// Disable .fire and .add
-			// Abort any current/pending executions
-			// Clear all callbacks and values
-			disable: function() {
-				locked = queue = [];
-				list = memory = "";
-				return this;
-			},
-			disabled: function() {
-				return !list;
-			},
-
-			// Disable .fire
-			// Also disable .add unless we have memory (since it would have no effect)
-			// Abort any pending executions
-			lock: function() {
-				locked = queue = [];
-				if ( !memory && !firing ) {
-					list = memory = "";
-				}
-				return this;
-			},
-			locked: function() {
-				return !!locked;
-			},
-
-			// Call all callbacks with the given context and arguments
-			fireWith: function( context, args ) {
-				if ( !locked ) {
-					args = args || [];
-					args = [ context, args.slice ? args.slice() : args ];
-					queue.push( args );
-					if ( !firing ) {
-						fire();
-					}
-				}
-				return this;
-			},
-
-			// Call all the callbacks with the given arguments
-			fire: function() {
-				self.fireWith( this, arguments );
-				return this;
-			},
-
-			// To know if the callbacks have already been called at least once
-			fired: function() {
-				return !!fired;
-			}
-		};
-
-	return self;
-};
-
-
-function Identity( v ) {
-	return v;
-}
-function Thrower( ex ) {
-	throw ex;
-}
-
-function adoptValue( value, resolve, reject, noValue ) {
-	var method;
-
-	try {
-
-		// Check for promise aspect first to privilege synchronous behavior
-		if ( value && isFunction( ( method = value.promise ) ) ) {
-			method.call( value ).done( resolve ).fail( reject );
-
-		// Other thenables
-		} else if ( value && isFunction( ( method = value.then ) ) ) {
-			method.call( value, resolve, reject );
-
-		// Other non-thenables
-		} else {
-
-			// Control `resolve` arguments by letting Array#slice cast boolean `noValue` to integer:
-			// * false: [ value ].slice( 0 ) => resolve( value )
-			// * true: [ value ].slice( 1 ) => resolve()
-			resolve.apply( undefined, [ value ].slice( noValue ) );
-		}
-
-	// For Promises/A+, convert exceptions into rejections
-	// Since jQuery.when doesn't unwrap thenables, we can skip the extra checks appearing in
-	// Deferred#then to conditionally suppress rejection.
-	} catch ( value ) {
-
-		// Support: Android 4.0 only
-		// Strict mode functions invoked without .call/.apply get global-object context
-		reject.apply( undefined, [ value ] );
-	}
-}
-
-jQuery.extend( {
-
-	Deferred: function( func ) {
-		var tuples = [
-
-				// action, add listener, callbacks,
-				// ... .then handlers, argument index, [final state]
-				[ "notify", "progress", jQuery.Callbacks( "memory" ),
-					jQuery.Callbacks( "memory" ), 2 ],
-				[ "resolve", "done", jQuery.Callbacks( "once memory" ),
-					jQuery.Callbacks( "once memory" ), 0, "resolved" ],
-				[ "reject", "fail", jQuery.Callbacks( "once memory" ),
-					jQuery.Callbacks( "once memory" ), 1, "rejected" ]
-			],
-			state = "pending",
-			promise = {
-				state: function() {
-					return state;
-				},
-				always: function() {
-					deferred.done( arguments ).fail( arguments );
-					return this;
-				},
-				"catch": function( fn ) {
-					return promise.then( null, fn );
-				},
-
-				// Keep pipe for back-compat
-				pipe: function( /* fnDone, fnFail, fnProgress */ ) {
-					var fns = arguments;
-
-					return jQuery.Deferred( function( newDefer ) {
-						jQuery.each( tuples, function( _i, tuple ) {
-
-							// Map tuples (progress, done, fail) to arguments (done, fail, progress)
-							var fn = isFunction( fns[ tuple[ 4 ] ] ) && fns[ tuple[ 4 ] ];
-
-							// deferred.progress(function() { bind to newDefer or newDefer.notify })
-							// deferred.done(function() { bind to newDefer or newDefer.resolve })
-							// deferred.fail(function() { bind to newDefer or newDefer.reject })
-							deferred[ tuple[ 1 ] ]( function() {
-								var returned = fn && fn.apply( this, arguments );
-								if ( returned && isFunction( returned.promise ) ) {
-									returned.promise()
-										.progress( newDefer.notify )
-										.done( newDefer.resolve )
-										.fail( newDefer.reject );
-								} else {
-									newDefer[ tuple[ 0 ] + "With" ](
-										this,
-										fn ? [ returned ] : arguments
-									);
-								}
-							} );
-						} );
-						fns = null;
-					} ).promise();
-				},
-				then: function( onFulfilled, onRejected, onProgress ) {
-					var maxDepth = 0;
-					function resolve( depth, deferred, handler, special ) {
-						return function() {
-							var that = this,
-								args = arguments,
-								mightThrow = function() {
-									var returned, then;
-
-									// Support: Promises/A+ section 2.3.3.3.3
-									// https://promisesaplus.com/#point-59
-									// Ignore double-resolution attempts
-									if ( depth < maxDepth ) {
-										return;
-									}
-
-									returned = handler.apply( that, args );
-
-									// Support: Promises/A+ section 2.3.1
-									// https://promisesaplus.com/#point-48
-									if ( returned === deferred.promise() ) {
-										throw new TypeError( "Thenable self-resolution" );
-									}
-
-									// Support: Promises/A+ sections 2.3.3.1, 3.5
-									// https://promisesaplus.com/#point-54
-									// https://promisesaplus.com/#point-75
-									// Retrieve `then` only once
-									then = returned &&
-
-										// Support: Promises/A+ section 2.3.4
-										// https://promisesaplus.com/#point-64
-										// Only check objects and functions for thenability
-										( typeof returned === "object" ||
-											typeof returned === "function" ) &&
-										returned.then;
-
-									// Handle a returned thenable
-									if ( isFunction( then ) ) {
-
-										// Special processors (notify) just wait for resolution
-										if ( special ) {
-											then.call(
-												returned,
-												resolve( maxDepth, deferred, Identity, special ),
-												resolve( maxDepth, deferred, Thrower, special )
-											);
-
-										// Normal processors (resolve) also hook into progress
-										} else {
-
-											// ...and disregard older resolution values
-											maxDepth++;
-
-											then.call(
-												returned,
-												resolve( maxDepth, deferred, Identity, special ),
-												resolve( maxDepth, deferred, Thrower, special ),
-												resolve( maxDepth, deferred, Identity,
-													deferred.notifyWith )
-											);
-										}
-
-									// Handle all other returned values
-									} else {
-
-										// Only substitute handlers pass on context
-										// and multiple values (non-spec behavior)
-										if ( handler !== Identity ) {
-											that = undefined;
-											args = [ returned ];
-										}
-
-										// Process the value(s)
-										// Default process is resolve
-										( special || deferred.resolveWith )( that, args );
-									}
-								},
-
-								// Only normal processors (resolve) catch and reject exceptions
-								process = special ?
-									mightThrow :
-									function() {
-										try {
-											mightThrow();
-										} catch ( e ) {
-
-											if ( jQuery.Deferred.exceptionHook ) {
-												jQuery.Deferred.exceptionHook( e,
-													process.error );
-											}
-
-											// Support: Promises/A+ section 2.3.3.3.4.1
-											// https://promisesaplus.com/#point-61
-											// Ignore post-resolution exceptions
-											if ( depth + 1 >= maxDepth ) {
-
-												// Only substitute handlers pass on context
-												// and multiple values (non-spec behavior)
-												if ( handler !== Thrower ) {
-													that = undefined;
-													args = [ e ];
-												}
-
-												deferred.rejectWith( that, args );
-											}
-										}
-									};
-
-							// Support: Promises/A+ section 2.3.3.3.1
-							// https://promisesaplus.com/#point-57
-							// Re-resolve promises immediately to dodge false rejection from
-							// subsequent errors
-							if ( depth ) {
-								process();
-							} else {
-
-								// Call an optional hook to record the error, in case of exception
-								// since it's otherwise lost when execution goes async
-								if ( jQuery.Deferred.getErrorHook ) {
-									process.error = jQuery.Deferred.getErrorHook();
-
-								// The deprecated alias of the above. While the name suggests
-								// returning the stack, not an error instance, jQuery just passes
-								// it directly to `console.warn` so both will work; an instance
-								// just better cooperates with source maps.
-								} else if ( jQuery.Deferred.getStackHook ) {
-									process.error = jQuery.Deferred.getStackHook();
-								}
-								window.setTimeout( process );
-							}
-						};
-					}
-
-					return jQuery.Deferred( function( newDefer ) {
-
-						// progress_handlers.add( ... )
-						tuples[ 0 ][ 3 ].add(
-							resolve(
-								0,
-								newDefer,
-								isFunction( onProgress ) ?
-									onProgress :
-									Identity,
-								newDefer.notifyWith
-							)
-						);
-
-						// fulfilled_handlers.add( ... )
-						tuples[ 1 ][ 3 ].add(
-							resolve(
-								0,
-								newDefer,
-								isFunction( onFulfilled ) ?
-									onFulfilled :
-									Identity
-							)
-						);
-
-						// rejected_handlers.add( ... )
-						tuples[ 2 ][ 3 ].add(
-							resolve(
-								0,
-								newDefer,
-								isFunction( onRejected ) ?
-									onRejected :
-									Thrower
-							)
-						);
-					} ).promise();
-				},
-
-				// Get a promise for this deferred
-				// If obj is provided, the promise aspect is added to the object
-				promise: function( obj ) {
-					return obj != null ? jQuery.extend( obj, promise ) : promise;
-				}
-			},
-			deferred = {};
-
-		// Add list-specific methods
-		jQuery.each( tuples, function( i, tuple ) {
-			var list = tuple[ 2 ],
-				stateString = tuple[ 5 ];
-
-			// promise.progress = list.add
-			// promise.done = list.add
-			// promise.fail = list.add
-			promise[ tuple[ 1 ] ] = list.add;
-
-			// Handle state
-			if ( stateString ) {
-				list.add(
-					function() {
-
-						// state = "resolved" (i.e., fulfilled)
-						// state = "rejected"
-						state = stateString;
-					},
-
-					// rejected_callbacks.disable
-					// fulfilled_callbacks.disable
-					tuples[ 3 - i ][ 2 ].disable,
-
-					// rejected_handlers.disable
-					// fulfilled_handlers.disable
-					tuples[ 3 - i ][ 3 ].disable,
-
-					// progress_callbacks.lock
-					tuples[ 0 ][ 2 ].lock,
-
-					// progress_handlers.lock
-					tuples[ 0 ][ 3 ].lock
-				);
-			}
-
-			// progress_handlers.fire
-			// fulfilled_handlers.fire
-			// rejected_handlers.fire
-			list.add( tuple[ 3 ].fire );
-
-			// deferred.notify = function() { deferred.notifyWith(...) }
-			// deferred.resolve = function() { deferred.resolveWith(...) }
-			// deferred.reject = function() { deferred.rejectWith(...) }
-			deferred[ tuple[ 0 ] ] = function() {
-				deferred[ tuple[ 0 ] + "With" ]( this === deferred ? undefined : this, arguments );
-				return this;
-			};
-
-			// deferred.notifyWith = list.fireWith
-			// deferred.resolveWith = list.fireWith
-			// deferred.rejectWith = list.fireWith
-			deferred[ tuple[ 0 ] + "With" ] = list.fireWith;
-		} );
-
-		// Make the deferred a promise
-		promise.promise( deferred );
-
-		// Call given func if any
-		if ( func ) {
-			func.call( deferred, deferred );
-		}
-
-		// All done!
-		return deferred;
-	},
-
-	// Deferred helper
-	when: function( singleValue ) {
-		var
-
-			// count of uncompleted subordinates
-			remaining = arguments.length,
-
-			// count of unprocessed arguments
-			i = remaining,
-
-			// subordinate fulfillment data
-			resolveContexts = Array( i ),
-			resolveValues = slice.call( arguments ),
-
-			// the primary Deferred
-			primary = jQuery.Deferred(),
-
-			// subordinate callback factory
-			updateFunc = function( i ) {
-				return function( value ) {
-					resolveContexts[ i ] = this;
-					resolveValues[ i ] = arguments.length > 1 ? slice.call( arguments ) : value;
-					if ( !( --remaining ) ) {
-						primary.resolveWith( resolveContexts, resolveValues );
-					}
-				};
-			};
-
-		// Single- and empty arguments are adopted like Promise.resolve
-		if ( remaining <= 1 ) {
-			adoptValue( singleValue, primary.done( updateFunc( i ) ).resolve, primary.reject,
-				!remaining );
-
-			// Use .then() to unwrap secondary thenables (cf. gh-3000)
-			if ( primary.state() === "pending" ||
-				isFunction( resolveValues[ i ] && resolveValues[ i ].then ) ) {
-
-				return primary.then();
-			}
-		}
-
-		// Multiple arguments are aggregated like Promise.all array elements
-		while ( i-- ) {
-			adoptValue( resolveValues[ i ], updateFunc( i ), primary.reject );
-		}
-
-		return primary.promise();
-	}
-} );
-
-
-// These usually indicate a programmer mistake during development,
-// warn about them ASAP rather than swallowing them by default.
-var rerrorNames = /^(Eval|Internal|Range|Reference|Syntax|Type|URI)Error$/;
-
-// If `jQuery.Deferred.getErrorHook` is defined, `asyncError` is an error
-// captured before the async barrier to get the original error cause
-// which may otherwise be hidden.
-jQuery.Deferred.exceptionHook = function( error, asyncError ) {
-
-	// Support: IE 8 - 9 only
-	// Console exists when dev tools are open, which can happen at any time
-	if ( window.console && window.console.warn && error && rerrorNames.test( error.name ) ) {
-		window.console.warn( "jQuery.Deferred exception: " + error.message,
-			error.stack, asyncError );
-	}
-};
-
-
-
-
-jQuery.readyException = function( error ) {
-	window.setTimeout( function() {
-		throw error;
-	} );
-};
-
-
-
-
-// The deferred used on DOM ready
-var readyList = jQuery.Deferred();
-
-jQuery.fn.ready = function( fn ) {
-
-	readyList
-		.then( fn )
-
-		// Wrap jQuery.readyException in a function so that the lookup
-		// happens at the time of error handling instead of callback
-		// registration.
-		.catch( function( error ) {
-			jQuery.readyException( error );
-		} );
-
-	return this;
-};
-
-jQuery.extend( {
-
-	// Is the DOM ready to be used? Set to true once it occurs.
-	isReady: false,
-
-	// A counter to track how many items to wait for before
-	// the ready event fires. See trac-6781
-	readyWait: 1,
-
-	// Handle when the DOM is ready
-	ready: function( wait ) {
-
-		// Abort if there are pending holds or we're already ready
-		if ( wait === true ? --jQuery.readyWait : jQuery.isReady ) {
-			return;
-		}
-
-		// Remember that the DOM is ready
-		jQuery.isReady = true;
-
-		// If a normal DOM Ready event fired, decrement, and wait if need be
-		if ( wait !== true && --jQuery.readyWait > 0 ) {
-			return;
-		}
-
-		// If there are functions bound, to execute
-		readyList.resolveWith( document, [ jQuery ] );
-	}
-} );
-
-jQuery.ready.then = readyList.then;
-
-// The ready event handler and self cleanup method
-function completed() {
-	document.removeEventListener( "DOMContentLoaded", completed );
-	window.removeEventListener( "load", completed );
-	jQuery.ready();
-}
-
-// Catch cases where $(document).ready() is called
-// after the browser event has already occurred.
-// Support: IE <=9 - 10 only
-// Older IE sometimes signals "interactive" too soon
-if ( document.readyState === "complete" ||
-	( document.readyState !== "loading" && !document.documentElement.doScroll ) ) {
-
-	// Handle it asynchronously to allow scripts the opportunity to delay ready
-	window.setTimeout( jQuery.ready );
-
-} else {
-
-	// Use the handy event callback
-	document.addEventListener( "DOMContentLoaded", completed );
-
-	// A fallback to window.onload, that will always work
-	window.addEventListener( "load", completed );
-}
-
-
-
-
-// Multifunctional method to get and set values of a collection
-// The value/s can optionally be executed if it's a function
-var access = function( elems, fn, key, value, chainable, emptyGet, raw ) {
-	var i = 0,
-		len = elems.length,
-		bulk = key == null;
-
-	// Sets many values
-	if ( toType( key ) === "object" ) {
-		chainable = true;
-		for ( i in key ) {
-			access( elems, fn, i, key[ i ], true, emptyGet, raw );
-		}
-
-	// Sets one value
-	} else if ( value !== undefined ) {
-		chainable = true;
-
-		if ( !isFunction( value ) ) {
-			raw = true;
-		}
-
-		if ( bulk ) {
-
-			// Bulk operations run against the entire set
-			if ( raw ) {
-				fn.call( elems, value );
-				fn = null;
-
-			// ...except when executing function values
-			} else {
-				bulk = fn;
-				fn = function( elem, _key, value ) {
-					return bulk.call( jQuery( elem ), value );
-				};
-			}
-		}
-
-		if ( fn ) {
-			for ( ; i < len; i++ ) {
-				fn(
-					elems[ i ], key, raw ?
-						value :
-						value.call( elems[ i ], i, fn( elems[ i ], key ) )
-				);
-			}
-		}
-	}
-
-	if ( chainable ) {
-		return elems;
-	}
-
-	// Gets
-	if ( bulk ) {
-		return fn.call( elems );
-	}
-
-	return len ? fn( elems[ 0 ], key ) : emptyGet;
-};
-
-
-// Matches dashed string for camelizing
-var rmsPrefix = /^-ms-/,
-	rdashAlpha = /-([a-z])/g;
-
-// Used by camelCase as callback to replace()
-function fcamelCase( _all, letter ) {
-	return letter.toUpperCase();
-}
-
-// Convert dashed to camelCase; used by the css and data modules
-// Support: IE <=9 - 11, Edge 12 - 15
-// Microsoft forgot to hump their vendor prefix (trac-9572)
-function camelCase( string ) {
-	return string.replace( rmsPrefix, "ms-" ).replace( rdashAlpha, fcamelCase );
-}
-var acceptData = function( owner ) {
-
-	// Accepts only:
-	//  - Node
-	//    - Node.ELEMENT_NODE
-	//    - Node.DOCUMENT_NODE
-	//  - Object
-	//    - Any
-	return owner.nodeType === 1 || owner.nodeType === 9 || !( +owner.nodeType );
-};
-
-
-
-
-function Data() {
-	this.expando = jQuery.expando + Data.uid++;
-}
-
-Data.uid = 1;
-
-Data.prototype = {
-
-	cache: function( owner ) {
-
-		// Check if the owner object already has a cache
-		var value = owner[ this.expando ];
-
-		// If not, create one
-		if ( !value ) {
-			value = {};
-
-			// We can accept data for non-element nodes in modern browsers,
-			// but we should not, see trac-8335.
-			// Always return an empty object.
-			if ( acceptData( owner ) ) {
-
-				// If it is a node unlikely to be stringify-ed or looped over
-				// use plain assignment
-				if ( owner.nodeType ) {
-					owner[ this.expando ] = value;
-
-				// Otherwise secure it in a non-enumerable property
-				// configurable must be true to allow the property to be
-				// deleted when data is removed
-				} else {
-					Object.defineProperty( owner, this.expando, {
-						value: value,
-						configurable: true
-					} );
-				}
-			}
-		}
-
-		return value;
-	},
-	set: function( owner, data, value ) {
-		var prop,
-			cache = this.cache( owner );
-
-		// Handle: [ owner, key, value ] args
-		// Always use camelCase key (gh-2257)
-		if ( typeof data === "string" ) {
-			cache[ camelCase( data ) ] = value;
-
-		// Handle: [ owner, { properties } ] args
-		} else {
-
-			// Copy the properties one-by-one to the cache object
-			for ( prop in data ) {
-				cache[ camelCase( prop ) ] = data[ prop ];
-			}
-		}
-		return cache;
-	},
-	get: function( owner, key ) {
-		return key === undefined ?
-			this.cache( owner ) :
-
-			// Always use camelCase key (gh-2257)
-			owner[ this.expando ] && owner[ this.expando ][ camelCase( key ) ];
-	},
-	access: function( owner, key, value ) {
-
-		// In cases where either:
-		//
-		//   1. No key was specified
-		//   2. A string key was specified, but no value provided
-		//
-		// Take the "read" path and allow the get method to determine
-		// which value to return, respectively either:
-		//
-		//   1. The entire cache object
-		//   2. The data stored at the key
-		//
-		if ( key === undefined ||
-				( ( key && typeof key === "string" ) && value === undefined ) ) {
-
-			return this.get( owner, key );
-		}
-
-		// When the key is not a string, or both a key and value
-		// are specified, set or extend (existing objects) with either:
-		//
-		//   1. An object of properties
-		//   2. A key and value
-		//
-		this.set( owner, key, value );
-
-		// Since the "set" path can have two possible entry points
-		// return the expected data based on which path was taken[*]
-		return value !== undefined ? value : key;
-	},
-	remove: function( owner, key ) {
-		var i,
-			cache = owner[ this.expando ];
-
-		if ( cache === undefined ) {
-			return;
-		}
-
-		if ( key !== undefined ) {
-
-			// Support array or space separated string of keys
-			if ( Array.isArray( key ) ) {
-
-				// If key is an array of keys...
-				// We always set camelCase keys, so remove that.
-				key = key.map( camelCase );
-			} else {
-				key = camelCase( key );
-
-				// If a key with the spaces exists, use it.
-				// Otherwise, create an array by matching non-whitespace
-				key = key in cache ?
-					[ key ] :
-					( key.match( rnothtmlwhite ) || [] );
-			}
-
-			i = key.length;
-
-			while ( i-- ) {
-				delete cache[ key[ i ] ];
-			}
-		}
-
-		// Remove the expando if there's no more data
-		if ( key === undefined || jQuery.isEmptyObject( cache ) ) {
-
-			// Support: Chrome <=35 - 45
-			// Webkit & Blink performance suffers when deleting properties
-			// from DOM nodes, so set to undefined instead
-			// https://bugs.chromium.org/p/chromium/issues/detail?id=378607 (bug restricted)
-			if ( owner.nodeType ) {
-				owner[ this.expando ] = undefined;
-			} else {
-				delete owner[ this.expando ];
-			}
-		}
-	},
-	hasData: function( owner ) {
-		var cache = owner[ this.expando ];
-		return cache !== undefined && !jQuery.isEmptyObject( cache );
-	}
-};
-var dataPriv = new Data();
-
-var dataUser = new Data();
-
-
-
-//	Implementation Summary
-//
-//	1. Enforce API surface and semantic compatibility with 1.9.x branch
-//	2. Improve the module's maintainability by reducing the storage
-//		paths to a single mechanism.
-//	3. Use the same single mechanism to support "private" and "user" data.
-//	4. _Never_ expose "private" data to user code (TODO: Drop _data, _removeData)
-//	5. Avoid exposing implementation details on user objects (eg. expando properties)
-//	6. Provide a clear path for implementation upgrade to WeakMap in 2014
-
-var rbrace = /^(?:\{[\w\W]*\}|\[[\w\W]*\])$/,
-	rmultiDash = /[A-Z]/g;
-
-function getData( data ) {
-	if ( data === "true" ) {
-		return true;
-	}
-
-	if ( data === "false" ) {
-		return false;
-	}
-
-	if ( data === "null" ) {
-		return null;
-	}
-
-	// Only convert to a number if it doesn't change the string
-	if ( data === +data + "" ) {
-		return +data;
-	}
-
-	if ( rbrace.test( data ) ) {
-		return JSON.parse( data );
-	}
-
-	return data;
-}
-
-function dataAttr( elem, key, data ) {
-	var name;
-
-	// If nothing was found internally, try to fetch any
-	// data from the HTML5 data-* attribute
-	if ( data === undefined && elem.nodeType === 1 ) {
-		name = "data-" + key.replace( rmultiDash, "-$&" ).toLowerCase();
-		data = elem.getAttribute( name );
-
-		if ( typeof data === "string" ) {
-			try {
-				data = getData( data );
-			} catch ( e ) {}
-
-			// Make sure we set the data so it isn't changed later
-			dataUser.set( elem, key, data );
-		} else {
-			data = undefined;
-		}
-	}
-	return data;
-}
-
-jQuery.extend( {
-	hasData: function( elem ) {
-		return dataUser.hasData( elem ) || dataPriv.hasData( elem );
-	},
-
-	data: function( elem, name, data ) {
-		return dataUser.access( elem, name, data );
-	},
-
-	removeData: function( elem, name ) {
-		dataUser.remove( elem, name );
-	},
-
-	// TODO: Now that all calls to _data and _removeData have been replaced
-	// with direct calls to dataPriv methods, these can be deprecated.
-	_data: function( elem, name, data ) {
-		return dataPriv.access( elem, name, data );
-	},
-
-	_removeData: function( elem, name ) {
-		dataPriv.remove( elem, name );
-	}
-} );
-
-jQuery.fn.extend( {
-	data: function( key, value ) {
-		var i, name, data,
-			elem = this[ 0 ],
-			attrs = elem && elem.attributes;
-
-		// Gets all values
-		if ( key === undefined ) {
-			if ( this.length ) {
-				data = dataUser.get( elem );
-
-				if ( elem.nodeType === 1 && !dataPriv.get( elem, "hasDataAttrs" ) ) {
-					i = attrs.length;
-					while ( i-- ) {
-
-						// Support: IE 11 only
-						// The attrs elements can be null (trac-14894)
-						if ( attrs[ i ] ) {
-							name = attrs[ i ].name;
-							if ( name.indexOf( "data-" ) === 0 ) {
-								name = camelCase( name.slice( 5 ) );
-								dataAttr( elem, name, data[ name ] );
-							}
-						}
-					}
-					dataPriv.set( elem, "hasDataAttrs", true );
-				}
-			}
-
-			return data;
-		}
-
-		// Sets multiple values
-		if ( typeof key === "object" ) {
-			return this.each( function() {
-				dataUser.set( this, key );
-			} );
-		}
-
-		return access( this, function( value ) {
-			var data;
-
-			// The calling jQuery object (element matches) is not empty
-			// (and therefore has an element appears at this[ 0 ]) and the
-			// `value` parameter was not undefined. An empty jQuery object
-			// will result in `undefined` for elem = this[ 0 ] which will
-			// throw an exception if an attempt to read a data cache is made.
-			if ( elem && value === undefined ) {
-
-				// Attempt to get data from the cache
-				// The key will always be camelCased in Data
-				data = dataUser.get( elem, key );
-				if ( data !== undefined ) {
-					return data;
-				}
-
-				// Attempt to "discover" the data in
-				// HTML5 custom data-* attrs
-				data = dataAttr( elem, key );
-				if ( data !== undefined ) {
-					return data;
-				}
-
-				// We tried really hard, but the data doesn't exist.
-				return;
-			}
-
-			// Set the data...
-			this.each( function() {
-
-				// We always store the camelCased key
-				dataUser.set( this, key, value );
-			} );
-		}, null, value, arguments.length > 1, null, true );
-	},
-
-	removeData: function( key ) {
-		return this.each( function() {
-			dataUser.remove( this, key );
-		} );
-	}
-} );
-
-
-jQuery.extend( {
-	queue: function( elem, type, data ) {
-		var queue;
-
-		if ( elem ) {
-			type = ( type || "fx" ) + "queue";
-			queue = dataPriv.get( elem, type );
-
-			// Speed up dequeue by getting out quickly if this is just a lookup
-			if ( data ) {
-				if ( !queue || Array.isArray( data ) ) {
-					queue = dataPriv.access( elem, type, jQuery.makeArray( data ) );
-				} else {
-					queue.push( data );
-				}
-			}
-			return queue || [];
-		}
-	},
-
-	dequeue: function( elem, type ) {
-		type = type || "fx";
-
-		var queue = jQuery.queue( elem, type ),
-			startLength = queue.length,
-			fn = queue.shift(),
-			hooks = jQuery._queueHooks( elem, type ),
-			next = function() {
-				jQuery.dequeue( elem, type );
-			};
-
-		// If the fx queue is dequeued, always remove the progress sentinel
-		if ( fn === "inprogress" ) {
-			fn = queue.shift();
-			startLength--;
-		}
-
-		if ( fn ) {
-
-			// Add a progress sentinel to prevent the fx queue from being
-			// automatically dequeued
-			if ( type === "fx" ) {
-				queue.unshift( "inprogress" );
-			}
-
-			// Clear up the last queue stop function
-			delete hooks.stop;
-			fn.call( elem, next, hooks );
-		}
-
-		if ( !startLength && hooks ) {
-			hooks.empty.fire();
-		}
-	},
-
-	// Not public - generate a queueHooks object, or return the current one
-	_queueHooks: function( elem, type ) {
-		var key = type + "queueHooks";
-		return dataPriv.get( elem, key ) || dataPriv.access( elem, key, {
-			empty: jQuery.Callbacks( "once memory" ).add( function() {
-				dataPriv.remove( elem, [ type + "queue", key ] );
-			} )
-		} );
-	}
-} );
-
-jQuery.fn.extend( {
-	queue: function( type, data ) {
-		var setter = 2;
-
-		if ( typeof type !== "string" ) {
-			data = type;
-			type = "fx";
-			setter--;
-		}
-
-		if ( arguments.length < setter ) {
-			return jQuery.queue( this[ 0 ], type );
-		}
-
-		return data === undefined ?
-			this :
-			this.each( function() {
-				var queue = jQuery.queue( this, type, data );
-
-				// Ensure a hooks for this queue
-				jQuery._queueHooks( this, type );
-
-				if ( type === "fx" && queue[ 0 ] !== "inprogress" ) {
-					jQuery.dequeue( this, type );
-				}
-			} );
-	},
-	dequeue: function( type ) {
-		return this.each( function() {
-			jQuery.dequeue( this, type );
-		} );
-	},
-	clearQueue: function( type ) {
-		return this.queue( type || "fx", [] );
-	},
-
-	// Get a promise resolved when queues of a certain type
-	// are emptied (fx is the type by default)
-	promise: function( type, obj ) {
-		var tmp,
-			count = 1,
-			defer = jQuery.Deferred(),
-			elements = this,
-			i = this.length,
-			resolve = function() {
-				if ( !( --count ) ) {
-					defer.resolveWith( elements, [ elements ] );
-				}
-			};
-
-		if ( typeof type !== "string" ) {
-			obj = type;
-			type = undefined;
-		}
-		type = type || "fx";
-
-		while ( i-- ) {
-			tmp = dataPriv.get( elements[ i ], type + "queueHooks" );
-			if ( tmp && tmp.empty ) {
-				count++;
-				tmp.empty.add( resolve );
-			}
-		}
-		resolve();
-		return defer.promise( obj );
-	}
-} );
-var pnum = ( /[+-]?(?:\d*\.|)\d+(?:[eE][+-]?\d+|)/ ).source;
-
-var rcssNum = new RegExp( "^(?:([+-])=|)(" + pnum + ")([a-z%]*)$", "i" );
-
-
-var cssExpand = [ "Top", "Right", "Bottom", "Left" ];
-
-var documentElement = document.documentElement;
-
-
-
-	var isAttached = function( elem ) {
-			return jQuery.contains( elem.ownerDocument, elem );
-		},
-		composed = { composed: true };
-
-	// Support: IE 9 - 11+, Edge 12 - 18+, iOS 10.0 - 10.2 only
-	// Check attachment across shadow DOM boundaries when possible (gh-3504)
-	// Support: iOS 10.0-10.2 only
-	// Early iOS 10 versions support `attachShadow` but not `getRootNode`,
-	// leading to errors. We need to check for `getRootNode`.
-	if ( documentElement.getRootNode ) {
-		isAttached = function( elem ) {
-			return jQuery.contains( elem.ownerDocument, elem ) ||
-				elem.getRootNode( composed ) === elem.ownerDocument;
-		};
-	}
-var isHiddenWithinTree = function( elem, el ) {
-
-		// isHiddenWithinTree might be called from jQuery#filter function;
-		// in that case, element will be second argument
-		elem = el || elem;
-
-		// Inline style trumps all
-		return elem.style.display === "none" ||
-			elem.style.display === "" &&
-
-			// Otherwise, check computed style
-			// Support: Firefox <=43 - 45
-			// Disconnected elements can have computed display: none, so first confirm that elem is
-			// in the document.
-			isAttached( elem ) &&
-
-			jQuery.css( elem, "display" ) === "none";
-	};
-
-
-
-function adjustCSS( elem, prop, valueParts, tween ) {
-	var adjusted, scale,
-		maxIterations = 20,
-		currentValue = tween ?
-			function() {
-				return tween.cur();
-			} :
-			function() {
-				return jQuery.css( elem, prop, "" );
-			},
-		initial = currentValue(),
-		unit = valueParts && valueParts[ 3 ] || ( jQuery.cssNumber[ prop ] ? "" : "px" ),
-
-		// Starting value computation is required for potential unit mismatches
-		initialInUnit = elem.nodeType &&
-			( jQuery.cssNumber[ prop ] || unit !== "px" && +initial ) &&
-			rcssNum.exec( jQuery.css( elem, prop ) );
-
-	if ( initialInUnit && initialInUnit[ 3 ] !== unit ) {
-
-		// Support: Firefox <=54
-		// Halve the iteration target value to prevent interference from CSS upper bounds (gh-2144)
-		initial = initial / 2;
-
-		// Trust units reported by jQuery.css
-		unit = unit || initialInUnit[ 3 ];
-
-		// Iteratively approximate from a nonzero starting point
-		initialInUnit = +initial || 1;
-
-		while ( maxIterations-- ) {
-
-			// Evaluate and update our best guess (doubling guesses that zero out).
-			// Finish if the scale equals or crosses 1 (making the old*new product non-positive).
-			jQuery.style( elem, prop, initialInUnit + unit );
-			if ( ( 1 - scale ) * ( 1 - ( scale = currentValue() / initial || 0.5 ) ) <= 0 ) {
-				maxIterations = 0;
-			}
-			initialInUnit = initialInUnit / scale;
-
-		}
-
-		initialInUnit = initialInUnit * 2;
-		jQuery.style( elem, prop, initialInUnit + unit );
-
-		// Make sure we update the tween properties later on
-		valueParts = valueParts || [];
-	}
-
-	if ( valueParts ) {
-		initialInUnit = +initialInUnit || +initial || 0;
-
-		// Apply relative offset (+=/-=) if specified
-		adjusted = valueParts[ 1 ] ?
-			initialInUnit + ( valueParts[ 1 ] + 1 ) * valueParts[ 2 ] :
-			+valueParts[ 2 ];
-		if ( tween ) {
-			tween.unit = unit;
-			tween.start = initialInUnit;
-			tween.end = adjusted;
-		}
-	}
-	return adjusted;
-}
-
-
-var defaultDisplayMap = {};
-
-function getDefaultDisplay( elem ) {
-	var temp,
-		doc = elem.ownerDocument,
-		nodeName = elem.nodeName,
-		display = defaultDisplayMap[ nodeName ];
-
-	if ( display ) {
-		return display;
-	}
-
-	temp = doc.body.appendChild( doc.createElement( nodeName ) );
-	display = jQuery.css( temp, "display" );
-
-	temp.parentNode.removeChild( temp );
-
-	if ( display === "none" ) {
-		display = "block";
-	}
-	defaultDisplayMap[ nodeName ] = display;
-
-	return display;
-}
-
-function showHide( elements, show ) {
-	var display, elem,
-		values = [],
-		index = 0,
-		length = elements.length;
-
-	// Determine new display value for elements that need to change
-	for ( ; index < length; index++ ) {
-		elem = elements[ index ];
-		if ( !elem.style ) {
-			continue;
-		}
-
-		display = elem.style.display;
-		if ( show ) {
-
-			// Since we force visibility upon cascade-hidden elements, an immediate (and slow)
-			// check is required in this first loop unless we have a nonempty display value (either
-			// inline or about-to-be-restored)
-			if ( display === "none" ) {
-				values[ index ] = dataPriv.get( elem, "display" ) || null;
-				if ( !values[ index ] ) {
-					elem.style.display = "";
-				}
-			}
-			if ( elem.style.display === "" && isHiddenWithinTree( elem ) ) {
-				values[ index ] = getDefaultDisplay( elem );
-			}
-		} else {
-			if ( display !== "none" ) {
-				values[ index ] = "none";
-
-				// Remember what we're overwriting
-				dataPriv.set( elem, "display", display );
-			}
-		}
-	}
-
-	// Set the display of the elements in a second loop to avoid constant reflow
-	for ( index = 0; index < length; index++ ) {
-		if ( values[ index ] != null ) {
-			elements[ index ].style.display = values[ index ];
-		}
-	}
-
-	return elements;
-}
-
-jQuery.fn.extend( {
-	show: function() {
-		return showHide( this, true );
-	},
-	hide: function() {
-		return showHide( this );
-	},
-	toggle: function( state ) {
-		if ( typeof state === "boolean" ) {
-			return state ? this.show() : this.hide();
-		}
-
-		return this.each( function() {
-			if ( isHiddenWithinTree( this ) ) {
-				jQuery( this ).show();
-			} else {
-				jQuery( this ).hide();
-			}
-		} );
-	}
-} );
-var rcheckableType = ( /^(?:checkbox|radio)$/i );
-
-var rtagName = ( /<([a-z][^\/\0>\x20\t\r\n\f]*)/i );
-
-var rscriptType = ( /^$|^module$|\/(?:java|ecma)script/i );
-
-
-
-( function() {
-	var fragment = document.createDocumentFragment(),
-		div = fragment.appendChild( document.createElement( "div" ) ),
-		input = document.createElement( "input" );
-
-	// Support: Android 4.0 - 4.3 only
-	// Check state lost if the name is set (trac-11217)
-	// Support: Windows Web Apps (WWA)
-	// `name` and `type` must use .setAttribute for WWA (trac-14901)
-	input.setAttribute( "type", "radio" );
-	input.setAttribute( "checked", "checked" );
-	input.setAttribute( "name", "t" );
-
-	div.appendChild( input );
-
-	// Support: Android <=4.1 only
-	// Older WebKit doesn't clone checked state correctly in fragments
-	support.checkClone = div.cloneNode( true ).cloneNode( true ).lastChild.checked;
-
-	// Support: IE <=11 only
-	// Make sure textarea (and checkbox) defaultValue is properly cloned
-	div.innerHTML = "<textarea>x</textarea>";
-	support.noCloneChecked = !!div.cloneNode( true ).lastChild.defaultValue;
-
-	// Support: IE <=9 only
-	// IE <=9 replaces <option> tags with their contents when inserted outside of
-	// the select element.
-	div.innerHTML = "<option></option>";
-	support.option = !!div.lastChild;
-} )();
-
-
-// We have to close these tags to support XHTML (trac-13200)
-var wrapMap = {
-
-	// XHTML parsers do not magically insert elements in the
-	// same way that tag soup parsers do. So we cannot shorten
-	// this by omitting <tbody> or other required elements.
-	thead: [ 1, "<table>", "</table>" ],
-	col: [ 2, "<table><colgroup>", "</colgroup></table>" ],
-	tr: [ 2, "<table><tbody>", "</tbody></table>" ],
-	td: [ 3, "<table><tbody><tr>", "</tr></tbody></table>" ],
-
-	_default: [ 0, "", "" ]
-};
-
-wrapMap.tbody = wrapMap.tfoot = wrapMap.colgroup = wrapMap.caption = wrapMap.thead;
-wrapMap.th = wrapMap.td;
-
-// Support: IE <=9 only
-if ( !support.option ) {
-	wrapMap.optgroup = wrapMap.option = [ 1, "<select multiple='multiple'>", "</select>" ];
-}
-
-
-function getAll( context, tag ) {
-
-	// Support: IE <=9 - 11 only
-	// Use typeof to avoid zero-argument method invocation on host objects (trac-15151)
-	var ret;
-
-	if ( typeof context.getElementsByTagName !== "undefined" ) {
-		ret = context.getElementsByTagName( tag || "*" );
-
-	} else if ( typeof context.querySelectorAll !== "undefined" ) {
-		ret = context.querySelectorAll( tag || "*" );
-
-	} else {
-		ret = [];
-	}
-
-	if ( tag === undefined || tag && nodeName( context, tag ) ) {
-		return jQuery.merge( [ context ], ret );
-	}
-
-	return ret;
-}
-
-
-// Mark scripts as having already been evaluated
-function setGlobalEval( elems, refElements ) {
-	var i = 0,
-		l = elems.length;
-
-	for ( ; i < l; i++ ) {
-		dataPriv.set(
-			elems[ i ],
-			"globalEval",
-			!refElements || dataPriv.get( refElements[ i ], "globalEval" )
-		);
-	}
-}
-
-
-var rhtml = /<|&#?\w+;/;
-
-function buildFragment( elems, context, scripts, selection, ignored ) {
-	var elem, tmp, tag, wrap, attached, j,
-		fragment = context.createDocumentFragment(),
-		nodes = [],
-		i = 0,
-		l = elems.length;
-
-	for ( ; i < l; i++ ) {
-		elem = elems[ i ];
-
-		if ( elem || elem === 0 ) {
-
-			// Add nodes directly
-			if ( toType( elem ) === "object" ) {
-
-				// Support: Android <=4.0 only, PhantomJS 1 only
-				// push.apply(_, arraylike) throws on ancient WebKit
-				jQuery.merge( nodes, elem.nodeType ? [ elem ] : elem );
-
-			// Convert non-html into a text node
-			} else if ( !rhtml.test( elem ) ) {
-				nodes.push( context.createTextNode( elem ) );
-
-			// Convert html into DOM nodes
-			} else {
-				tmp = tmp || fragment.appendChild( context.createElement( "div" ) );
-
-				// Deserialize a standard representation
-				tag = ( rtagName.exec( elem ) || [ "", "" ] )[ 1 ].toLowerCase();
-				wrap = wrapMap[ tag ] || wrapMap._default;
-				tmp.innerHTML = wrap[ 1 ] + jQuery.htmlPrefilter( elem ) + wrap[ 2 ];
-
-				// Descend through wrappers to the right content
-				j = wrap[ 0 ];
-				while ( j-- ) {
-					tmp = tmp.lastChild;
-				}
-
-				// Support: Android <=4.0 only, PhantomJS 1 only
-				// push.apply(_, arraylike) throws on ancient WebKit
-				jQuery.merge( nodes, tmp.childNodes );
-
-				// Remember the top-level container
-				tmp = fragment.firstChild;
-
-				// Ensure the created nodes are orphaned (trac-12392)
-				tmp.textContent = "";
-			}
-		}
-	}
-
-	// Remove wrapper from fragment
-	fragment.textContent = "";
-
-	i = 0;
-	while ( ( elem = nodes[ i++ ] ) ) {
-
-		// Skip elements already in the context collection (trac-4087)
-		if ( selection && jQuery.inArray( elem, selection ) > -1 ) {
-			if ( ignored ) {
-				ignored.push( elem );
-			}
-			continue;
-		}
-
-		attached = isAttached( elem );
-
-		// Append to fragment
-		tmp = getAll( fragment.appendChild( elem ), "script" );
-
-		// Preserve script evaluation history
-		if ( attached ) {
-			setGlobalEval( tmp );
-		}
-
-		// Capture executables
-		if ( scripts ) {
-			j = 0;
-			while ( ( elem = tmp[ j++ ] ) ) {
-				if ( rscriptType.test( elem.type || "" ) ) {
-					scripts.push( elem );
-				}
-			}
-		}
-	}
-
-	return fragment;
-}
-
-
-var rtypenamespace = /^([^.]*)(?:\.(.+)|)/;
-
-function returnTrue() {
-	return true;
-}
-
-function returnFalse() {
-	return false;
-}
-
-function on( elem, types, selector, data, fn, one ) {
-	var origFn, type;
-
-	// Types can be a map of types/handlers
-	if ( typeof types === "object" ) {
-
-		// ( types-Object, selector, data )
-		if ( typeof selector !== "string" ) {
-
-			// ( types-Object, data )
-			data = data || selector;
-			selector = undefined;
-		}
-		for ( type in types ) {
-			on( elem, type, selector, data, types[ type ], one );
-		}
-		return elem;
-	}
-
-	if ( data == null && fn == null ) {
-
-		// ( types, fn )
-		fn = selector;
-		data = selector = undefined;
-	} else if ( fn == null ) {
-		if ( typeof selector === "string" ) {
-
-			// ( types, selector, fn )
-			fn = data;
-			data = undefined;
-		} else {
-
-			// ( types, data, fn )
-			fn = data;
-			data = selector;
-			selector = undefined;
-		}
-	}
-	if ( fn === false ) {
-		fn = returnFalse;
-	} else if ( !fn ) {
-		return elem;
-	}
-
-	if ( one === 1 ) {
-		origFn = fn;
-		fn = function( event ) {
-
-			// Can use an empty set, since event contains the info
-			jQuery().off( event );
-			return origFn.apply( this, arguments );
-		};
-
-		// Use same guid so caller can remove using origFn
-		fn.guid = origFn.guid || ( origFn.guid = jQuery.guid++ );
-	}
-	return elem.each( function() {
-		jQuery.event.add( this, types, fn, data, selector );
-	} );
-}
-
-/*
- * Helper functions for managing events -- not part of the public interface.
- * Props to Dean Edwards' addEvent library for many of the ideas.
- */
-jQuery.event = {
-
-	global: {},
-
-	add: function( elem, types, handler, data, selector ) {
-
-		var handleObjIn, eventHandle, tmp,
-			events, t, handleObj,
-			special, handlers, type, namespaces, origType,
-			elemData = dataPriv.get( elem );
-
-		// Only attach events to objects that accept data
-		if ( !acceptData( elem ) ) {
-			return;
-		}
-
-		// Caller can pass in an object of custom data in lieu of the handler
-		if ( handler.handler ) {
-			handleObjIn = handler;
-			handler = handleObjIn.handler;
-			selector = handleObjIn.selector;
-		}
-
-		// Ensure that invalid selectors throw exceptions at attach time
-		// Evaluate against documentElement in case elem is a non-element node (e.g., document)
-		if ( selector ) {
-			jQuery.find.matchesSelector( documentElement, selector );
-		}
-
-		// Make sure that the handler has a unique ID, used to find/remove it later
-		if ( !handler.guid ) {
-			handler.guid = jQuery.guid++;
-		}
-
-		// Init the element's event structure and main handler, if this is the first
-		if ( !( events = elemData.events ) ) {
-			events = elemData.events = Object.create( null );
-		}
-		if ( !( eventHandle = elemData.handle ) ) {
-			eventHandle = elemData.handle = function( e ) {
-
-				// Discard the second event of a jQuery.event.trigger() and
-				// when an event is called after a page has unloaded
-				return typeof jQuery !== "undefined" && jQuery.event.triggered !== e.type ?
-					jQuery.event.dispatch.apply( elem, arguments ) : undefined;
-			};
-		}
-
-		// Handle multiple events separated by a space
-		types = ( types || "" ).match( rnothtmlwhite ) || [ "" ];
-		t = types.length;
-		while ( t-- ) {
-			tmp = rtypenamespace.exec( types[ t ] ) || [];
-			type = origType = tmp[ 1 ];
-			namespaces = ( tmp[ 2 ] || "" ).split( "." ).sort();
-
-			// There *must* be a type, no attaching namespace-only handlers
-			if ( !type ) {
-				continue;
-			}
-
-			// If event changes its type, use the special event handlers for the changed type
-			special = jQuery.event.special[ type ] || {};
-
-			// If selector defined, determine special event api type, otherwise given type
-			type = ( selector ? special.delegateType : special.bindType ) || type;
-
-			// Update special based on newly reset type
-			special = jQuery.event.special[ type ] || {};
-
-			// handleObj is passed to all event handlers
-			handleObj = jQuery.extend( {
-				type: type,
-				origType: origType,
-				data: data,
-				handler: handler,
-				guid: handler.guid,
-				selector: selector,
-				needsContext: selector && jQuery.expr.match.needsContext.test( selector ),
-				namespace: namespaces.join( "." )
-			}, handleObjIn );
-
-			// Init the event handler queue if we're the first
-			if ( !( handlers = events[ type ] ) ) {
-				handlers = events[ type ] = [];
-				handlers.delegateCount = 0;
-
-				// Only use addEventListener if the special events handler returns false
-				if ( !special.setup ||
-					special.setup.call( elem, data, namespaces, eventHandle ) === false ) {
-
-					if ( elem.addEventListener ) {
-						elem.addEventListener( type, eventHandle );
-					}
-				}
-			}
-
-			if ( special.add ) {
-				special.add.call( elem, handleObj );
-
-				if ( !handleObj.handler.guid ) {
-					handleObj.handler.guid = handler.guid;
-				}
-			}
-
-			// Add to the element's handler list, delegates in front
-			if ( selector ) {
-				handlers.splice( handlers.delegateCount++, 0, handleObj );
-			} else {
-				handlers.push( handleObj );
-			}
-
-			// Keep track of which events have ever been used, for event optimization
-			jQuery.event.global[ type ] = true;
-		}
-
-	},
-
-	// Detach an event or set of events from an element
-	remove: function( elem, types, handler, selector, mappedTypes ) {
-
-		var j, origCount, tmp,
-			events, t, handleObj,
-			special, handlers, type, namespaces, origType,
-			elemData = dataPriv.hasData( elem ) && dataPriv.get( elem );
-
-		if ( !elemData || !( events = elemData.events ) ) {
-			return;
-		}
-
-		// Once for each type.namespace in types; type may be omitted
-		types = ( types || "" ).match( rnothtmlwhite ) || [ "" ];
-		t = types.length;
-		while ( t-- ) {
-			tmp = rtypenamespace.exec( types[ t ] ) || [];
-			type = origType = tmp[ 1 ];
-			namespaces = ( tmp[ 2 ] || "" ).split( "." ).sort();
-
-			// Unbind all events (on this namespace, if provided) for the element
-			if ( !type ) {
-				for ( type in events ) {
-					jQuery.event.remove( elem, type + types[ t ], handler, selector, true );
-				}
-				continue;
-			}
-
-			special = jQuery.event.special[ type ] || {};
-			type = ( selector ? special.delegateType : special.bindType ) || type;
-			handlers = events[ type ] || [];
-			tmp = tmp[ 2 ] &&
-				new RegExp( "(^|\\.)" + namespaces.join( "\\.(?:.*\\.|)" ) + "(\\.|$)" );
-
-			// Remove matching events
-			origCount = j = handlers.length;
-			while ( j-- ) {
-				handleObj = handlers[ j ];
-
-				if ( ( mappedTypes || origType === handleObj.origType ) &&
-					( !handler || handler.guid === handleObj.guid ) &&
-					( !tmp || tmp.test( handleObj.namespace ) ) &&
-					( !selector || selector === handleObj.selector ||
-						selector === "**" && handleObj.selector ) ) {
-					handlers.splice( j, 1 );
-
-					if ( handleObj.selector ) {
-						handlers.delegateCount--;
-					}
-					if ( special.remove ) {
-						special.remove.call( elem, handleObj );
-					}
-				}
-			}
-
-			// Remove generic event handler if we removed something and no more handlers exist
-			// (avoids potential for endless recursion during removal of special event handlers)
-			if ( origCount && !handlers.length ) {
-				if ( !special.teardown ||
-					special.teardown.call( elem, namespaces, elemData.handle ) === false ) {
-
-					jQuery.removeEvent( elem, type, elemData.handle );
-				}
-
-				delete events[ type ];
-			}
-		}
-
-		// Remove data and the expando if it's no longer used
-		if ( jQuery.isEmptyObject( events ) ) {
-			dataPriv.remove( elem, "handle events" );
-		}
-	},
-
-	dispatch: function( nativeEvent ) {
-
-		var i, j, ret, matched, handleObj, handlerQueue,
-			args = new Array( arguments.length ),
-
-			// Make a writable jQuery.Event from the native event object
-			event = jQuery.event.fix( nativeEvent ),
-
-			handlers = (
-				dataPriv.get( this, "events" ) || Object.create( null )
-			)[ event.type ] || [],
-			special = jQuery.event.special[ event.type ] || {};
-
-		// Use the fix-ed jQuery.Event rather than the (read-only) native event
-		args[ 0 ] = event;
-
-		for ( i = 1; i < arguments.length; i++ ) {
-			args[ i ] = arguments[ i ];
-		}
-
-		event.delegateTarget = this;
-
-		// Call the preDispatch hook for the mapped type, and let it bail if desired
-		if ( special.preDispatch && special.preDispatch.call( this, event ) === false ) {
-			return;
-		}
-
-		// Determine handlers
-		handlerQueue = jQuery.event.handlers.call( this, event, handlers );
-
-		// Run delegates first; they may want to stop propagation beneath us
-		i = 0;
-		while ( ( matched = handlerQueue[ i++ ] ) && !event.isPropagationStopped() ) {
-			event.currentTarget = matched.elem;
-
-			j = 0;
-			while ( ( handleObj = matched.handlers[ j++ ] ) &&
-				!event.isImmediatePropagationStopped() ) {
-
-				// If the event is namespaced, then each handler is only invoked if it is
-				// specially universal or its namespaces are a superset of the event's.
-				if ( !event.rnamespace || handleObj.namespace === false ||
-					event.rnamespace.test( handleObj.namespace ) ) {
-
-					event.handleObj = handleObj;
-					event.data = handleObj.data;
-
-					ret = ( ( jQuery.event.special[ handleObj.origType ] || {} ).handle ||
-						handleObj.handler ).apply( matched.elem, args );
-
-					if ( ret !== undefined ) {
-						if ( ( event.result = ret ) === false ) {
-							event.preventDefault();
-							event.stopPropagation();
-						}
-					}
-				}
-			}
-		}
-
-		// Call the postDispatch hook for the mapped type
-		if ( special.postDispatch ) {
-			special.postDispatch.call( this, event );
-		}
-
-		return event.result;
-	},
-
-	handlers: function( event, handlers ) {
-		var i, handleObj, sel, matchedHandlers, matchedSelectors,
-			handlerQueue = [],
-			delegateCount = handlers.delegateCount,
-			cur = event.target;
-
-		// Find delegate handlers
-		if ( delegateCount &&
-
-			// Support: IE <=9
-			// Black-hole SVG <use> instance trees (trac-13180)
-			cur.nodeType &&
-
-			// Support: Firefox <=42
-			// Suppress spec-violating clicks indicating a non-primary pointer button (trac-3861)
-			// https://www.w3.org/TR/DOM-Level-3-Events/#event-type-click
-			// Support: IE 11 only
-			// ...but not arrow key "clicks" of radio inputs, which can have `button` -1 (gh-2343)
-			!( event.type === "click" && event.button >= 1 ) ) {
-
-			for ( ; cur !== this; cur = cur.parentNode || this ) {
-
-				// Don't check non-elements (trac-13208)
-				// Don't process clicks on disabled elements (trac-6911, trac-8165, trac-11382, trac-11764)
-				if ( cur.nodeType === 1 && !( event.type === "click" && cur.disabled === true ) ) {
-					matchedHandlers = [];
-					matchedSelectors = {};
-					for ( i = 0; i < delegateCount; i++ ) {
-						handleObj = handlers[ i ];
-
-						// Don't conflict with Object.prototype properties (trac-13203)
-						sel = handleObj.selector + " ";
-
-						if ( matchedSelectors[ sel ] === undefined ) {
-							matchedSelectors[ sel ] = handleObj.needsContext ?
-								jQuery( sel, this ).index( cur ) > -1 :
-								jQuery.find( sel, this, null, [ cur ] ).length;
-						}
-						if ( matchedSelectors[ sel ] ) {
-							matchedHandlers.push( handleObj );
-						}
-					}
-					if ( matchedHandlers.length ) {
-						handlerQueue.push( { elem: cur, handlers: matchedHandlers } );
-					}
-				}
-			}
-		}
-
-		// Add the remaining (directly-bound) handlers
-		cur = this;
-		if ( delegateCount < handlers.length ) {
-			handlerQueue.push( { elem: cur, handlers: handlers.slice( delegateCount ) } );
-		}
-
-		return handlerQueue;
-	},
-
-	addProp: function( name, hook ) {
-		Object.defineProperty( jQuery.Event.prototype, name, {
-			enumerable: true,
-			configurable: true,
-
-			get: isFunction( hook ) ?
-				function() {
-					if ( this.originalEvent ) {
-						return hook( this.originalEvent );
-					}
-				} :
-				function() {
-					if ( this.originalEvent ) {
-						return this.originalEvent[ name ];
-					}
-				},
-
-			set: function( value ) {
-				Object.defineProperty( this, name, {
-					enumerable: true,
-					configurable: true,
-					writable: true,
-					value: value
-				} );
-			}
-		} );
-	},
-
-	fix: function( originalEvent ) {
-		return originalEvent[ jQuery.expando ] ?
-			originalEvent :
-			new jQuery.Event( originalEvent );
-	},
-
-	special: {
-		load: {
-
-			// Prevent triggered image.load events from bubbling to window.load
-			noBubble: true
-		},
-		click: {
-
-			// Utilize native event to ensure correct state for checkable inputs
-			setup: function( data ) {
-
-				// For mutual compressibility with _default, replace `this` access with a local var.
-				// `|| data` is dead code meant only to preserve the variable through minification.
-				var el = this || data;
-
-				// Claim the first handler
-				if ( rcheckableType.test( el.type ) &&
-					el.click && nodeName( el, "input" ) ) {
-
-					// dataPriv.set( el, "click", ... )
-					leverageNative( el, "click", true );
-				}
-
-				// Return false to allow normal processing in the caller
-				return false;
-			},
-			trigger: function( data ) {
-
-				// For mutual compressibility with _default, replace `this` access with a local var.
-				// `|| data` is dead code meant only to preserve the variable through minification.
-				var el = this || data;
-
-				// Force setup before triggering a click
-				if ( rcheckableType.test( el.type ) &&
-					el.click && nodeName( el, "input" ) ) {
-
-					leverageNative( el, "click" );
-				}
-
-				// Return non-false to allow normal event-path propagation
-				return true;
-			},
-
-			// For cross-browser consistency, suppress native .click() on links
-			// Also prevent it if we're currently inside a leveraged native-event stack
-			_default: function( event ) {
-				var target = event.target;
-				return rcheckableType.test( target.type ) &&
-					target.click && nodeName( target, "input" ) &&
-					dataPriv.get( target, "click" ) ||
-					nodeName( target, "a" );
-			}
-		},
-
-		beforeunload: {
-			postDispatch: function( event ) {
-
-				// Support: Firefox 20+
-				// Firefox doesn't alert if the returnValue field is not set.
-				if ( event.result !== undefined && event.originalEvent ) {
-					event.originalEvent.returnValue = event.result;
-				}
-			}
-		}
-	}
-};
-
-// Ensure the presence of an event listener that handles manually-triggered
-// synthetic events by interrupting progress until reinvoked in response to
-// *native* events that it fires directly, ensuring that state changes have
-// already occurred before other listeners are invoked.
-function leverageNative( el, type, isSetup ) {
-
-	// Missing `isSetup` indicates a trigger call, which must force setup through jQuery.event.add
-	if ( !isSetup ) {
-		if ( dataPriv.get( el, type ) === undefined ) {
-			jQuery.event.add( el, type, returnTrue );
-		}
-		return;
-	}
-
-	// Register the controller as a special universal handler for all event namespaces
-	dataPriv.set( el, type, false );
-	jQuery.event.add( el, type, {
-		namespace: false,
-		handler: function( event ) {
-			var result,
-				saved = dataPriv.get( this, type );
-
-			if ( ( event.isTrigger & 1 ) && this[ type ] ) {
-
-				// Interrupt processing of the outer synthetic .trigger()ed event
-				if ( !saved ) {
-
-					// Store arguments for use when handling the inner native event
-					// There will always be at least one argument (an event object), so this array
-					// will not be confused with a leftover capture object.
-					saved = slice.call( arguments );
-					dataPriv.set( this, type, saved );
-
-					// Trigger the native event and capture its result
-					this[ type ]();
-					result = dataPriv.get( this, type );
-					dataPriv.set( this, type, false );
-
-					if ( saved !== result ) {
-
-						// Cancel the outer synthetic event
-						event.stopImmediatePropagation();
-						event.preventDefault();
-
-						return result;
-					}
-
-				// If this is an inner synthetic event for an event with a bubbling surrogate
-				// (focus or blur), assume that the surrogate already propagated from triggering
-				// the native event and prevent that from happening again here.
-				// This technically gets the ordering wrong w.r.t. to `.trigger()` (in which the
-				// bubbling surrogate propagates *after* the non-bubbling base), but that seems
-				// less bad than duplication.
-				} else if ( ( jQuery.event.special[ type ] || {} ).delegateType ) {
-					event.stopPropagation();
-				}
-
-			// If this is a native event triggered above, everything is now in order
-			// Fire an inner synthetic event with the original arguments
-			} else if ( saved ) {
-
-				// ...and capture the result
-				dataPriv.set( this, type, jQuery.event.trigger(
-					saved[ 0 ],
-					saved.slice( 1 ),
-					this
-				) );
-
-				// Abort handling of the native event by all jQuery handlers while allowing
-				// native handlers on the same element to run. On target, this is achieved
-				// by stopping immediate propagation just on the jQuery event. However,
-				// the native event is re-wrapped by a jQuery one on each level of the
-				// propagation so the only way to stop it for jQuery is to stop it for
-				// everyone via native `stopPropagation()`. This is not a problem for
-				// focus/blur which don't bubble, but it does also stop click on checkboxes
-				// and radios. We accept this limitation.
-				event.stopPropagation();
-				event.isImmediatePropagationStopped = returnTrue;
-			}
-		}
-	} );
-}
-
-jQuery.removeEvent = function( elem, type, handle ) {
-
-	// This "if" is needed for plain objects
-	if ( elem.removeEventListener ) {
-		elem.removeEventListener( type, handle );
-	}
-};
-
-jQuery.Event = function( src, props ) {
-
-	// Allow instantiation without the 'new' keyword
-	if ( !( this instanceof jQuery.Event ) ) {
-		return new jQuery.Event( src, props );
-	}
-
-	// Event object
-	if ( src && src.type ) {
-		this.originalEvent = src;
-		this.type = src.type;
-
-		// Events bubbling up the document may have been marked as prevented
-		// by a handler lower down the tree; reflect the correct value.
-		this.isDefaultPrevented = src.defaultPrevented ||
-				src.defaultPrevented === undefined &&
-
-				// Support: Android <=2.3 only
-				src.returnValue === false ?
-			returnTrue :
-			returnFalse;
-
-		// Create target properties
-		// Support: Safari <=6 - 7 only
-		// Target should not be a text node (trac-504, trac-13143)
-		this.target = ( src.target && src.target.nodeType === 3 ) ?
-			src.target.parentNode :
-			src.target;
-
-		this.currentTarget = src.currentTarget;
-		this.relatedTarget = src.relatedTarget;
-
-	// Event type
-	} else {
-		this.type = src;
-	}
-
-	// Put explicitly provided properties onto the event object
-	if ( props ) {
-		jQuery.extend( this, props );
-	}
-
-	// Create a timestamp if incoming event doesn't have one
-	this.timeStamp = src && src.timeStamp || Date.now();
-
-	// Mark it as fixed
-	this[ jQuery.expando ] = true;
-};
-
-// jQuery.Event is based on DOM3 Events as specified by the ECMAScript Language Binding
-// https://www.w3.org/TR/2003/WD-DOM-Level-3-Events-20030331/ecma-script-binding.html
-jQuery.Event.prototype = {
-	constructor: jQuery.Event,
-	isDefaultPrevented: returnFalse,
-	isPropagationStopped: returnFalse,
-	isImmediatePropagationStopped: returnFalse,
-	isSimulated: false,
-
-	preventDefault: function() {
-		var e = this.originalEvent;
-
-		this.isDefaultPrevented = returnTrue;
-
-		if ( e && !this.isSimulated ) {
-			e.preventDefault();
-		}
-	},
-	stopPropagation: function() {
-		var e = this.originalEvent;
-
-		this.isPropagationStopped = returnTrue;
-
-		if ( e && !this.isSimulated ) {
-			e.stopPropagation();
-		}
-	},
-	stopImmediatePropagation: function() {
-		var e = this.originalEvent;
-
-		this.isImmediatePropagationStopped = returnTrue;
-
-		if ( e && !this.isSimulated ) {
-			e.stopImmediatePropagation();
-		}
-
-		this.stopPropagation();
-	}
-};
-
-// Includes all common event props including KeyEvent and MouseEvent specific props
-jQuery.each( {
-	altKey: true,
-	bubbles: true,
-	cancelable: true,
-	changedTouches: true,
-	ctrlKey: true,
-	detail: true,
-	eventPhase: true,
-	metaKey: true,
-	pageX: true,
-	pageY: true,
-	shiftKey: true,
-	view: true,
-	"char": true,
-	code: true,
-	charCode: true,
-	key: true,
-	keyCode: true,
-	button: true,
-	buttons: true,
-	clientX: true,
-	clientY: true,
-	offsetX: true,
-	offsetY: true,
-	pointerId: true,
-	pointerType: true,
-	screenX: true,
-	screenY: true,
-	targetTouches: true,
-	toElement: true,
-	touches: true,
-	which: true
-}, jQuery.event.addProp );
-
-jQuery.each( { focus: "focusin", blur: "focusout" }, function( type, delegateType ) {
-
-	function focusMappedHandler( nativeEvent ) {
-		if ( document.documentMode ) {
-
-			// Support: IE 11+
-			// Attach a single focusin/focusout handler on the document while someone wants
-			// focus/blur. This is because the former are synchronous in IE while the latter
-			// are async. In other browsers, all those handlers are invoked synchronously.
-
-			// `handle` from private data would already wrap the event, but we need
-			// to change the `type` here.
-			var handle = dataPriv.get( this, "handle" ),
-				event = jQuery.event.fix( nativeEvent );
-			event.type = nativeEvent.type === "focusin" ? "focus" : "blur";
-			event.isSimulated = true;
-
-			// First, handle focusin/focusout
-			handle( nativeEvent );
-
-			// ...then, handle focus/blur
-			//
-			// focus/blur don't bubble while focusin/focusout do; simulate the former by only
-			// invoking the handler at the lower level.
-			if ( event.target === event.currentTarget ) {
-
-				// The setup part calls `leverageNative`, which, in turn, calls
-				// `jQuery.event.add`, so event handle will already have been set
-				// by this point.
-				handle( event );
-			}
-		} else {
-
-			// For non-IE browsers, attach a single capturing handler on the document
-			// while someone wants focusin/focusout.
-			jQuery.event.simulate( delegateType, nativeEvent.target,
-				jQuery.event.fix( nativeEvent ) );
-		}
-	}
-
-	jQuery.event.special[ type ] = {
-
-		// Utilize native event if possible so blur/focus sequence is correct
-		setup: function() {
-
-			var attaches;
-
-			// Claim the first handler
-			// dataPriv.set( this, "focus", ... )
-			// dataPriv.set( this, "blur", ... )
-			leverageNative( this, type, true );
-
-			if ( document.documentMode ) {
-
-				// Support: IE 9 - 11+
-				// We use the same native handler for focusin & focus (and focusout & blur)
-				// so we need to coordinate setup & teardown parts between those events.
-				// Use `delegateType` as the key as `type` is already used by `leverageNative`.
-				attaches = dataPriv.get( this, delegateType );
-				if ( !attaches ) {
-					this.addEventListener( delegateType, focusMappedHandler );
-				}
-				dataPriv.set( this, delegateType, ( attaches || 0 ) + 1 );
-			} else {
-
-				// Return false to allow normal processing in the caller
-				return false;
-			}
-		},
-		trigger: function() {
-
-			// Force setup before trigger
-			leverageNative( this, type );
-
-			// Return non-false to allow normal event-path propagation
-			return true;
-		},
-
-		teardown: function() {
-			var attaches;
-
-			if ( document.documentMode ) {
-				attaches = dataPriv.get( this, delegateType ) - 1;
-				if ( !attaches ) {
-					this.removeEventListener( delegateType, focusMappedHandler );
-					dataPriv.remove( this, delegateType );
-				} else {
-					dataPriv.set( this, delegateType, attaches );
-				}
-			} else {
-
-				// Return false to indicate standard teardown should be applied
-				return false;
-			}
-		},
-
-		// Suppress native focus or blur if we're currently inside
-		// a leveraged native-event stack
-		_default: function( event ) {
-			return dataPriv.get( event.target, type );
-		},
-
-		delegateType: delegateType
-	};
-
-	// Support: Firefox <=44
-	// Firefox doesn't have focus(in | out) events
-	// Related ticket - https://bugzilla.mozilla.org/show_bug.cgi?id=687787
-	//
-	// Support: Chrome <=48 - 49, Safari <=9.0 - 9.1
-	// focus(in | out) events fire after focus & blur events,
-	// which is spec violation - http://www.w3.org/TR/DOM-Level-3-Events/#events-focusevent-event-order
-	// Related ticket - https://bugs.chromium.org/p/chromium/issues/detail?id=449857
-	//
-	// Support: IE 9 - 11+
-	// To preserve relative focusin/focus & focusout/blur event order guaranteed on the 3.x branch,
-	// attach a single handler for both events in IE.
-	jQuery.event.special[ delegateType ] = {
-		setup: function() {
-
-			// Handle: regular nodes (via `this.ownerDocument`), window
-			// (via `this.document`) & document (via `this`).
-			var doc = this.ownerDocument || this.document || this,
-				dataHolder = document.documentMode ? this : doc,
-				attaches = dataPriv.get( dataHolder, delegateType );
-
-			// Support: IE 9 - 11+
-			// We use the same native handler for focusin & focus (and focusout & blur)
-			// so we need to coordinate setup & teardown parts between those events.
-			// Use `delegateType` as the key as `type` is already used by `leverageNative`.
-			if ( !attaches ) {
-				if ( document.documentMode ) {
-					this.addEventListener( delegateType, focusMappedHandler );
-				} else {
-					doc.addEventListener( type, focusMappedHandler, true );
-				}
-			}
-			dataPriv.set( dataHolder, delegateType, ( attaches || 0 ) + 1 );
-		},
-		teardown: function() {
-			var doc = this.ownerDocument || this.document || this,
-				dataHolder = document.documentMode ? this : doc,
-				attaches = dataPriv.get( dataHolder, delegateType ) - 1;
-
-			if ( !attaches ) {
-				if ( document.documentMode ) {
-					this.removeEventListener( delegateType, focusMappedHandler );
-				} else {
-					doc.removeEventListener( type, focusMappedHandler, true );
-				}
-				dataPriv.remove( dataHolder, delegateType );
-			} else {
-				dataPriv.set( dataHolder, delegateType, attaches );
-			}
-		}
-	};
-} );
-
-// Create mouseenter/leave events using mouseover/out and event-time checks
-// so that event delegation works in jQuery.
-// Do the same for pointerenter/pointerleave and pointerover/pointerout
-//
-// Support: Safari 7 only
-// Safari sends mouseenter too often; see:
-// https://bugs.chromium.org/p/chromium/issues/detail?id=470258
-// for the description of the bug (it existed in older Chrome versions as well).
-jQuery.each( {
-	mouseenter: "mouseover",
-	mouseleave: "mouseout",
-	pointerenter: "pointerover",
-	pointerleave: "pointerout"
-}, function( orig, fix ) {
-	jQuery.event.special[ orig ] = {
-		delegateType: fix,
-		bindType: fix,
-
-		handle: function( event ) {
-			var ret,
-				target = this,
-				related = event.relatedTarget,
-				handleObj = event.handleObj;
-
-			// For mouseenter/leave call the handler if related is outside the target.
-			// NB: No relatedTarget if the mouse left/entered the browser window
-			if ( !related || ( related !== target && !jQuery.contains( target, related ) ) ) {
-				event.type = handleObj.origType;
-				ret = handleObj.handler.apply( this, arguments );
-				event.type = fix;
-			}
-			return ret;
-		}
-	};
-} );
-
-jQuery.fn.extend( {
-
-	on: function( types, selector, data, fn ) {
-		return on( this, types, selector, data, fn );
-	},
-	one: function( types, selector, data, fn ) {
-		return on( this, types, selector, data, fn, 1 );
-	},
-	off: function( types, selector, fn ) {
-		var handleObj, type;
-		if ( types && types.preventDefault && types.handleObj ) {
-
-			// ( event )  dispatched jQuery.Event
-			handleObj = types.handleObj;
-			jQuery( types.delegateTarget ).off(
-				handleObj.namespace ?
-					handleObj.origType + "." + handleObj.namespace :
-					handleObj.origType,
-				handleObj.selector,
-				handleObj.handler
-			);
-			return this;
-		}
-		if ( typeof types === "object" ) {
-
-			// ( types-object [, selector] )
-			for ( type in types ) {
-				this.off( type, selector, types[ type ] );
-			}
-			return this;
-		}
-		if ( selector === false || typeof selector === "function" ) {
-
-			// ( types [, fn] )
-			fn = selector;
-			selector = undefined;
-		}
-		if ( fn === false ) {
-			fn = returnFalse;
-		}
-		return this.each( function() {
-			jQuery.event.remove( this, types, fn, selector );
-		} );
-	}
-} );
-
-
-var
-
-	// Support: IE <=10 - 11, Edge 12 - 13 only
-	// In IE/Edge using regex groups here causes severe slowdowns.
-	// See https://connect.microsoft.com/IE/feedback/details/1736512/
-	rnoInnerhtml = /<script|<style|<link/i,
-
-	// checked="checked" or checked
-	rchecked = /checked\s*(?:[^=]|=\s*.checked.)/i,
-
-	rcleanScript = /^\s*<!\[CDATA\[|\]\]>\s*$/g;
-
-// Prefer a tbody over its parent table for containing new rows
-function manipulationTarget( elem, content ) {
-	if ( nodeName( elem, "table" ) &&
-		nodeName( content.nodeType !== 11 ? content : content.firstChild, "tr" ) ) {
-
-		return jQuery( elem ).children( "tbody" )[ 0 ] || elem;
-	}
-
-	return elem;
-}
-
-// Replace/restore the type attribute of script elements for safe DOM manipulation
-function disableScript( elem ) {
-	elem.type = ( elem.getAttribute( "type" ) !== null ) + "/" + elem.type;
-	return elem;
-}
-function restoreScript( elem ) {
-	if ( ( elem.type || "" ).slice( 0, 5 ) === "true/" ) {
-		elem.type = elem.type.slice( 5 );
-	} else {
-		elem.removeAttribute( "type" );
-	}
-
-	return elem;
-}
-
-function cloneCopyEvent( src, dest ) {
-	var i, l, type, pdataOld, udataOld, udataCur, events;
-
-	if ( dest.nodeType !== 1 ) {
-		return;
-	}
-
-	// 1. Copy private data: events, handlers, etc.
-	if ( dataPriv.hasData( src ) ) {
-		pdataOld = dataPriv.get( src );
-		events = pdataOld.events;
-
-		if ( events ) {
-			dataPriv.remove( dest, "handle events" );
-
-			for ( type in events ) {
-				for ( i = 0, l = events[ type ].length; i < l; i++ ) {
-					jQuery.event.add( dest, type, events[ type ][ i ] );
-				}
-			}
-		}
-	}
-
-	// 2. Copy user data
-	if ( dataUser.hasData( src ) ) {
-		udataOld = dataUser.access( src );
-		udataCur = jQuery.extend( {}, udataOld );
-
-		dataUser.set( dest, udataCur );
-	}
-}
-
-// Fix IE bugs, see support tests
-function fixInput( src, dest ) {
-	var nodeName = dest.nodeName.toLowerCase();
-
-	// Fails to persist the checked state of a cloned checkbox or radio button.
-	if ( nodeName === "input" && rcheckableType.test( src.type ) ) {
-		dest.checked = src.checked;
-
-	// Fails to return the selected option to the default selected state when cloning options
-	} else if ( nodeName === "input" || nodeName === "textarea" ) {
-		dest.defaultValue = src.defaultValue;
-	}
-}
-
-function domManip( collection, args, callback, ignored ) {
-
-	// Flatten any nested arrays
-	args = flat( args );
-
-	var fragment, first, scripts, hasScripts, node, doc,
-		i = 0,
-		l = collection.length,
-		iNoClone = l - 1,
-		value = args[ 0 ],
-		valueIsFunction = isFunction( value );
-
-	// We can't cloneNode fragments that contain checked, in WebKit
-	if ( valueIsFunction ||
-			( l > 1 && typeof value === "string" &&
-				!support.checkClone && rchecked.test( value ) ) ) {
-		return collection.each( function( index ) {
-			var self = collection.eq( index );
-			if ( valueIsFunction ) {
-				args[ 0 ] = value.call( this, index, self.html() );
-			}
-			domManip( self, args, callback, ignored );
-		} );
-	}
-
-	if ( l ) {
-		fragment = buildFragment( args, collection[ 0 ].ownerDocument, false, collection, ignored );
-		first = fragment.firstChild;
-
-		if ( fragment.childNodes.length === 1 ) {
-			fragment = first;
-		}
-
-		// Require either new content or an interest in ignored elements to invoke the callback
-		if ( first || ignored ) {
-			scripts = jQuery.map( getAll( fragment, "script" ), disableScript );
-			hasScripts = scripts.length;
-
-			// Use the original fragment for the last item
-			// instead of the first because it can end up
-			// being emptied incorrectly in certain situations (trac-8070).
-			for ( ; i < l; i++ ) {
-				node = fragment;
-
-				if ( i !== iNoClone ) {
-					node = jQuery.clone( node, true, true );
-
-					// Keep references to cloned scripts for later restoration
-					if ( hasScripts ) {
-
-						// Support: Android <=4.0 only, PhantomJS 1 only
-						// push.apply(_, arraylike) throws on ancient WebKit
-						jQuery.merge( scripts, getAll( node, "script" ) );
-					}
-				}
-
-				callback.call( collection[ i ], node, i );
-			}
-
-			if ( hasScripts ) {
-				doc = scripts[ scripts.length - 1 ].ownerDocument;
-
-				// Re-enable scripts
-				jQuery.map( scripts, restoreScript );
-
-				// Evaluate executable scripts on first document insertion
-				for ( i = 0; i < hasScripts; i++ ) {
-					node = scripts[ i ];
-					if ( rscriptType.test( node.type || "" ) &&
-						!dataPriv.access( node, "globalEval" ) &&
-						jQuery.contains( doc, node ) ) {
-
-						if ( node.src && ( node.type || "" ).toLowerCase()  !== "module" ) {
-
-							// Optional AJAX dependency, but won't run scripts if not present
-							if ( jQuery._evalUrl && !node.noModule ) {
-								jQuery._evalUrl( node.src, {
-									nonce: node.nonce || node.getAttribute( "nonce" )
-								}, doc );
-							}
-						} else {
-
-							// Unwrap a CDATA section containing script contents. This shouldn't be
-							// needed as in XML documents they're already not visible when
-							// inspecting element contents and in HTML documents they have no
-							// meaning but we're preserving that logic for backwards compatibility.
-							// This will be removed completely in 4.0. See gh-4904.
-							DOMEval( node.textContent.replace( rcleanScript, "" ), node, doc );
-						}
-					}
-				}
-			}
-		}
-	}
-
-	return collection;
-}
-
-function remove( elem, selector, keepData ) {
-	var node,
-		nodes = selector ? jQuery.filter( selector, elem ) : elem,
-		i = 0;
-
-	for ( ; ( node = nodes[ i ] ) != null; i++ ) {
-		if ( !keepData && node.nodeType === 1 ) {
-			jQuery.cleanData( getAll( node ) );
-		}
-
-		if ( node.parentNode ) {
-			if ( keepData && isAttached( node ) ) {
-				setGlobalEval( getAll( node, "script" ) );
-			}
-			node.parentNode.removeChild( node );
-		}
-	}
-
-	return elem;
-}
-
-jQuery.extend( {
-	htmlPrefilter: function( html ) {
-		return html;
-	},
-
-	clone: function( elem, dataAndEvents, deepDataAndEvents ) {
-		var i, l, srcElements, destElements,
-			clone = elem.cloneNode( true ),
-			inPage = isAttached( elem );
-
-		// Fix IE cloning issues
-		if ( !support.noCloneChecked && ( elem.nodeType === 1 || elem.nodeType === 11 ) &&
-				!jQuery.isXMLDoc( elem ) ) {
-
-			// We eschew jQuery#find here for performance reasons:
-			// https://jsperf.com/getall-vs-sizzle/2
-			destElements = getAll( clone );
-			srcElements = getAll( elem );
-
-			for ( i = 0, l = srcElements.length; i < l; i++ ) {
-				fixInput( srcElements[ i ], destElements[ i ] );
-			}
-		}
-
-		// Copy the events from the original to the clone
-		if ( dataAndEvents ) {
-			if ( deepDataAndEvents ) {
-				srcElements = srcElements || getAll( elem );
-				destElements = destElements || getAll( clone );
-
-				for ( i = 0, l = srcElements.length; i < l; i++ ) {
-					cloneCopyEvent( srcElements[ i ], destElements[ i ] );
-				}
-			} else {
-				cloneCopyEvent( elem, clone );
-			}
-		}
-
-		// Preserve script evaluation history
-		destElements = getAll( clone, "script" );
-		if ( destElements.length > 0 ) {
-			setGlobalEval( destElements, !inPage && getAll( elem, "script" ) );
-		}
-
-		// Return the cloned set
-		return clone;
-	},
-
-	cleanData: function( elems ) {
-		var data, elem, type,
-			special = jQuery.event.special,
-			i = 0;
-
-		for ( ; ( elem = elems[ i ] ) !== undefined; i++ ) {
-			if ( acceptData( elem ) ) {
-				if ( ( data = elem[ dataPriv.expando ] ) ) {
-					if ( data.events ) {
-						for ( type in data.events ) {
-							if ( special[ type ] ) {
-								jQuery.event.remove( elem, type );
-
-							// This is a shortcut to avoid jQuery.event.remove's overhead
-							} else {
-								jQuery.removeEvent( elem, type, data.handle );
-							}
-						}
-					}
-
-					// Support: Chrome <=35 - 45+
-					// Assign undefined instead of using delete, see Data#remove
-					elem[ dataPriv.expando ] = undefined;
-				}
-				if ( elem[ dataUser.expando ] ) {
-
-					// Support: Chrome <=35 - 45+
-					// Assign undefined instead of using delete, see Data#remove
-					elem[ dataUser.expando ] = undefined;
-				}
-			}
-		}
-	}
-} );
-
-jQuery.fn.extend( {
-	detach: function( selector ) {
-		return remove( this, selector, true );
-	},
-
-	remove: function( selector ) {
-		return remove( this, selector );
-	},
-
-	text: function( value ) {
-		return access( this, function( value ) {
-			return value === undefined ?
-				jQuery.text( this ) :
-				this.empty().each( function() {
-					if ( this.nodeType === 1 || this.nodeType === 11 || this.nodeType === 9 ) {
-						this.textContent = value;
-					}
-				} );
-		}, null, value, arguments.length );
-	},
-
-	append: function() {
-		return domManip( this, arguments, function( elem ) {
-			if ( this.nodeType === 1 || this.nodeType === 11 || this.nodeType === 9 ) {
-				var target = manipulationTarget( this, elem );
-				target.appendChild( elem );
-			}
-		} );
-	},
-
-	prepend: function() {
-		return domManip( this, arguments, function( elem ) {
-			if ( this.nodeType === 1 || this.nodeType === 11 || this.nodeType === 9 ) {
-				var target = manipulationTarget( this, elem );
-				target.insertBefore( elem, target.firstChild );
-			}
-		} );
-	},
-
-	before: function() {
-		return domManip( this, arguments, function( elem ) {
-			if ( this.parentNode ) {
-				this.parentNode.insertBefore( elem, this );
-			}
-		} );
-	},
-
-	after: function() {
-		return domManip( this, arguments, function( elem ) {
-			if ( this.parentNode ) {
-				this.parentNode.insertBefore( elem, this.nextSibling );
-			}
-		} );
-	},
-
-	empty: function() {
-		var elem,
-			i = 0;
-
-		for ( ; ( elem = this[ i ] ) != null; i++ ) {
-			if ( elem.nodeType === 1 ) {
-
-				// Prevent memory leaks
-				jQuery.cleanData( getAll( elem, false ) );
-
-				// Remove any remaining nodes
-				elem.textContent = "";
-			}
-		}
-
-		return this;
-	},
-
-	clone: function( dataAndEvents, deepDataAndEvents ) {
-		dataAndEvents = dataAndEvents == null ? false : dataAndEvents;
-		deepDataAndEvents = deepDataAndEvents == null ? dataAndEvents : deepDataAndEvents;
-
-		return this.map( function() {
-			return jQuery.clone( this, dataAndEvents, deepDataAndEvents );
-		} );
-	},
-
-	html: function( value ) {
-		return access( this, function( value ) {
-			var elem = this[ 0 ] || {},
-				i = 0,
-				l = this.length;
-
-			if ( value === undefined && elem.nodeType === 1 ) {
-				return elem.innerHTML;
-			}
-
-			// See if we can take a shortcut and just use innerHTML
-			if ( typeof value === "string" && !rnoInnerhtml.test( value ) &&
-				!wrapMap[ ( rtagName.exec( value ) || [ "", "" ] )[ 1 ].toLowerCase() ] ) {
-
-				value = jQuery.htmlPrefilter( value );
-
-				try {
-					for ( ; i < l; i++ ) {
-						elem = this[ i ] || {};
-
-						// Remove element nodes and prevent memory leaks
-						if ( elem.nodeType === 1 ) {
-							jQuery.cleanData( getAll( elem, false ) );
-							elem.innerHTML = value;
-						}
-					}
-
-					elem = 0;
-
-				// If using innerHTML throws an exception, use the fallback method
-				} catch ( e ) {}
-			}
-
-			if ( elem ) {
-				this.empty().append( value );
-			}
-		}, null, value, arguments.length );
-	},
-
-	replaceWith: function() {
-		var ignored = [];
-
-		// Make the changes, replacing each non-ignored context element with the new content
-		return domManip( this, arguments, function( elem ) {
-			var parent = this.parentNode;
-
-			if ( jQuery.inArray( this, ignored ) < 0 ) {
-				jQuery.cleanData( getAll( this ) );
-				if ( parent ) {
-					parent.replaceChild( elem, this );
-				}
-			}
-
-		// Force callback invocation
-		}, ignored );
-	}
-} );
-
-jQuery.each( {
-	appendTo: "append",
-	prependTo: "prepend",
-	insertBefore: "before",
-	insertAfter: "after",
-	replaceAll: "replaceWith"
-}, function( name, original ) {
-	jQuery.fn[ name ] = function( selector ) {
-		var elems,
-			ret = [],
-			insert = jQuery( selector ),
-			last = insert.length - 1,
-			i = 0;
-
-		for ( ; i <= last; i++ ) {
-			elems = i === last ? this : this.clone( true );
-			jQuery( insert[ i ] )[ original ]( elems );
-
-			// Support: Android <=4.0 only, PhantomJS 1 only
-			// .get() because push.apply(_, arraylike) throws on ancient WebKit
-			push.apply( ret, elems.get() );
-		}
-
-		return this.pushStack( ret );
-	};
-} );
-var rnumnonpx = new RegExp( "^(" + pnum + ")(?!px)[a-z%]+$", "i" );
-
-var rcustomProp = /^--/;
-
-
-var getStyles = function( elem ) {
-
-		// Support: IE <=11 only, Firefox <=30 (trac-15098, trac-14150)
-		// IE throws on elements created in popups
-		// FF meanwhile throws on frame elements through "defaultView.getComputedStyle"
-		var view = elem.ownerDocument.defaultView;
-
-		if ( !view || !view.opener ) {
-			view = window;
-		}
-
-		return view.getComputedStyle( elem );
-	};
-
-var swap = function( elem, options, callback ) {
-	var ret, name,
-		old = {};
-
-	// Remember the old values, and insert the new ones
-	for ( name in options ) {
-		old[ name ] = elem.style[ name ];
-		elem.style[ name ] = options[ name ];
-	}
-
-	ret = callback.call( elem );
-
-	// Revert the old values
-	for ( name in options ) {
-		elem.style[ name ] = old[ name ];
-	}
-
-	return ret;
-};
-
-
-var rboxStyle = new RegExp( cssExpand.join( "|" ), "i" );
-
-
-
-( function() {
-
-	// Executing both pixelPosition & boxSizingReliable tests require only one layout
-	// so they're executed at the same time to save the second computation.
-	function computeStyleTests() {
-
-		// This is a singleton, we need to execute it only once
-		if ( !div ) {
-			return;
-		}
-
-		container.style.cssText = "position:absolute;left:-11111px;width:60px;" +
-			"margin-top:1px;padding:0;border:0";
-		div.style.cssText =
-			"position:relative;display:block;box-sizing:border-box;overflow:scroll;" +
-			"margin:auto;border:1px;padding:1px;" +
-			"width:60%;top:1%";
-		documentElement.appendChild( container ).appendChild( div );
-
-		var divStyle = window.getComputedStyle( div );
-		pixelPositionVal = divStyle.top !== "1%";
-
-		// Support: Android 4.0 - 4.3 only, Firefox <=3 - 44
-		reliableMarginLeftVal = roundPixelMeasures( divStyle.marginLeft ) === 12;
-
-		// Support: Android 4.0 - 4.3 only, Safari <=9.1 - 10.1, iOS <=7.0 - 9.3
-		// Some styles come back with percentage values, even though they shouldn't
-		div.style.right = "60%";
-		pixelBoxStylesVal = roundPixelMeasures( divStyle.right ) === 36;
-
-		// Support: IE 9 - 11 only
-		// Detect misreporting of content dimensions for box-sizing:border-box elements
-		boxSizingReliableVal = roundPixelMeasures( divStyle.width ) === 36;
-
-		// Support: IE 9 only
-		// Detect overflow:scroll screwiness (gh-3699)
-		// Support: Chrome <=64
-		// Don't get tricked when zoom affects offsetWidth (gh-4029)
-		div.style.position = "absolute";
-		scrollboxSizeVal = roundPixelMeasures( div.offsetWidth / 3 ) === 12;
-
-		documentElement.removeChild( container );
-
-		// Nullify the div so it wouldn't be stored in the memory and
-		// it will also be a sign that checks already performed
-		div = null;
-	}
-
-	function roundPixelMeasures( measure ) {
-		return Math.round( parseFloat( measure ) );
-	}
-
-	var pixelPositionVal, boxSizingReliableVal, scrollboxSizeVal, pixelBoxStylesVal,
-		reliableTrDimensionsVal, reliableMarginLeftVal,
-		container = document.createElement( "div" ),
-		div = document.createElement( "div" );
-
-	// Finish early in limited (non-browser) environments
-	if ( !div.style ) {
-		return;
-	}
-
-	// Support: IE <=9 - 11 only
-	// Style of cloned element affects source element cloned (trac-8908)
-	div.style.backgroundClip = "content-box";
-	div.cloneNode( true ).style.backgroundClip = "";
-	support.clearCloneStyle = div.style.backgroundClip === "content-box";
-
-	jQuery.extend( support, {
-		boxSizingReliable: function() {
-			computeStyleTests();
-			return boxSizingReliableVal;
-		},
-		pixelBoxStyles: function() {
-			computeStyleTests();
-			return pixelBoxStylesVal;
-		},
-		pixelPosition: function() {
-			computeStyleTests();
-			return pixelPositionVal;
-		},
-		reliableMarginLeft: function() {
-			computeStyleTests();
-			return reliableMarginLeftVal;
-		},
-		scrollboxSize: function() {
-			computeStyleTests();
-			return scrollboxSizeVal;
-		},
-
-		// Support: IE 9 - 11+, Edge 15 - 18+
-		// IE/Edge misreport `getComputedStyle` of table rows with width/height
-		// set in CSS while `offset*` properties report correct values.
-		// Behavior in IE 9 is more subtle than in newer versions & it passes
-		// some versions of this test; make sure not to make it pass there!
-		//
-		// Support: Firefox 70+
-		// Only Firefox includes border widths
-		// in computed dimensions. (gh-4529)
-		reliableTrDimensions: function() {
-			var table, tr, trChild, trStyle;
-			if ( reliableTrDimensionsVal == null ) {
-				table = document.createElement( "table" );
-				tr = document.createElement( "tr" );
-				trChild = document.createElement( "div" );
-
-				table.style.cssText = "position:absolute;left:-11111px;border-collapse:separate";
-				tr.style.cssText = "box-sizing:content-box;border:1px solid";
-
-				// Support: Chrome 86+
-				// Height set through cssText does not get applied.
-				// Computed height then comes back as 0.
-				tr.style.height = "1px";
-				trChild.style.height = "9px";
-
-				// Support: Android 8 Chrome 86+
-				// In our bodyBackground.html iframe,
-				// display for all div elements is set to "inline",
-				// which causes a problem only in Android 8 Chrome 86.
-				// Ensuring the div is `display: block`
-				// gets around this issue.
-				trChild.style.display = "block";
-
-				documentElement
-					.appendChild( table )
-					.appendChild( tr )
-					.appendChild( trChild );
-
-				trStyle = window.getComputedStyle( tr );
-				reliableTrDimensionsVal = ( parseInt( trStyle.height, 10 ) +
-					parseInt( trStyle.borderTopWidth, 10 ) +
-					parseInt( trStyle.borderBottomWidth, 10 ) ) === tr.offsetHeight;
-
-				documentElement.removeChild( table );
-			}
-			return reliableTrDimensionsVal;
-		}
-	} );
-} )();
-
-
-function curCSS( elem, name, computed ) {
-	var width, minWidth, maxWidth, ret,
-		isCustomProp = rcustomProp.test( name ),
-
-		// Support: Firefox 51+
-		// Retrieving style before computed somehow
-		// fixes an issue with getting wrong values
-		// on detached elements
-		style = elem.style;
-
-	computed = computed || getStyles( elem );
-
-	// getPropertyValue is needed for:
-	//   .css('filter') (IE 9 only, trac-12537)
-	//   .css('--customProperty) (gh-3144)
-	if ( computed ) {
-
-		// Support: IE <=9 - 11+
-		// IE only supports `"float"` in `getPropertyValue`; in computed styles
-		// it's only available as `"cssFloat"`. We no longer modify properties
-		// sent to `.css()` apart from camelCasing, so we need to check both.
-		// Normally, this would create difference in behavior: if
-		// `getPropertyValue` returns an empty string, the value returned
-		// by `.css()` would be `undefined`. This is usually the case for
-		// disconnected elements. However, in IE even disconnected elements
-		// with no styles return `"none"` for `getPropertyValue( "float" )`
-		ret = computed.getPropertyValue( name ) || computed[ name ];
-
-		if ( isCustomProp && ret ) {
-
-			// Support: Firefox 105+, Chrome <=105+
-			// Spec requires trimming whitespace for custom properties (gh-4926).
-			// Firefox only trims leading whitespace. Chrome just collapses
-			// both leading & trailing whitespace to a single space.
-			//
-			// Fall back to `undefined` if empty string returned.
-			// This collapses a missing definition with property defined
-			// and set to an empty string but there's no standard API
-			// allowing us to differentiate them without a performance penalty
-			// and returning `undefined` aligns with older jQuery.
-			//
-			// rtrimCSS treats U+000D CARRIAGE RETURN and U+000C FORM FEED
-			// as whitespace while CSS does not, but this is not a problem
-			// because CSS preprocessing replaces them with U+000A LINE FEED
-			// (which *is* CSS whitespace)
-			// https://www.w3.org/TR/css-syntax-3/#input-preprocessing
-			ret = ret.replace( rtrimCSS, "$1" ) || undefined;
-		}
-
-		if ( ret === "" && !isAttached( elem ) ) {
-			ret = jQuery.style( elem, name );
-		}
-
-		// A tribute to the "awesome hack by Dean Edwards"
-		// Android Browser returns percentage for some values,
-		// but width seems to be reliably pixels.
-		// This is against the CSSOM draft spec:
-		// https://drafts.csswg.org/cssom/#resolved-values
-		if ( !support.pixelBoxStyles() && rnumnonpx.test( ret ) && rboxStyle.test( name ) ) {
-
-			// Remember the original values
-			width = style.width;
-			minWidth = style.minWidth;
-			maxWidth = style.maxWidth;
-
-			// Put in the new values to get a computed value out
-			style.minWidth = style.maxWidth = style.width = ret;
-			ret = computed.width;
-
-			// Revert the changed values
-			style.width = width;
-			style.minWidth = minWidth;
-			style.maxWidth = maxWidth;
-		}
-	}
-
-	return ret !== undefined ?
-
-		// Support: IE <=9 - 11 only
-		// IE returns zIndex value as an integer.
-		ret + "" :
-		ret;
-}
-
-
-function addGetHookIf( conditionFn, hookFn ) {
-
-	// Define the hook, we'll check on the first run if it's really needed.
-	return {
-		get: function() {
-			if ( conditionFn() ) {
-
-				// Hook not needed (or it's not possible to use it due
-				// to missing dependency), remove it.
-				delete this.get;
-				return;
-			}
-
-			// Hook needed; redefine it so that the support test is not executed again.
-			return ( this.get = hookFn ).apply( this, arguments );
-		}
-	};
-}
-
-
-var cssPrefixes = [ "Webkit", "Moz", "ms" ],
-	emptyStyle = document.createElement( "div" ).style,
-	vendorProps = {};
-
-// Return a vendor-prefixed property or undefined
-function vendorPropName( name ) {
-
-	// Check for vendor prefixed names
-	var capName = name[ 0 ].toUpperCase() + name.slice( 1 ),
-		i = cssPrefixes.length;
-
-	while ( i-- ) {
-		name = cssPrefixes[ i ] + capName;
-		if ( name in emptyStyle ) {
-			return name;
-		}
-	}
-}
-
-// Return a potentially-mapped jQuery.cssProps or vendor prefixed property
-function finalPropName( name ) {
-	var final = jQuery.cssProps[ name ] || vendorProps[ name ];
-
-	if ( final ) {
-		return final;
-	}
-	if ( name in emptyStyle ) {
-		return name;
-	}
-	return vendorProps[ name ] = vendorPropName( name ) || name;
-}
-
-
-var
-
-	// Swappable if display is none or starts with table
-	// except "table", "table-cell", or "table-caption"
-	// See here for display values: https://developer.mozilla.org/en-US/docs/CSS/display
-	rdisplayswap = /^(none|table(?!-c[ea]).+)/,
-	cssShow = { position: "absolute", visibility: "hidden", display: "block" },
-	cssNormalTransform = {
-		letterSpacing: "0",
-		fontWeight: "400"
-	};
-
-function setPositiveNumber( _elem, value, subtract ) {
-
-	// Any relative (+/-) values have already been
-	// normalized at this point
-	var matches = rcssNum.exec( value );
-	return matches ?
-
-		// Guard against undefined "subtract", e.g., when used as in cssHooks
-		Math.max( 0, matches[ 2 ] - ( subtract || 0 ) ) + ( matches[ 3 ] || "px" ) :
-		value;
-}
-
-function boxModelAdjustment( elem, dimension, box, isBorderBox, styles, computedVal ) {
-	var i = dimension === "width" ? 1 : 0,
-		extra = 0,
-		delta = 0,
-		marginDelta = 0;
-
-	// Adjustment may not be necessary
-	if ( box === ( isBorderBox ? "border" : "content" ) ) {
-		return 0;
-	}
-
-	for ( ; i < 4; i += 2 ) {
-
-		// Both box models exclude margin
-		// Count margin delta separately to only add it after scroll gutter adjustment.
-		// This is needed to make negative margins work with `outerHeight( true )` (gh-3982).
-		if ( box === "margin" ) {
-			marginDelta += jQuery.css( elem, box + cssExpand[ i ], true, styles );
-		}
-
-		// If we get here with a content-box, we're seeking "padding" or "border" or "margin"
-		if ( !isBorderBox ) {
-
-			// Add padding
-			delta += jQuery.css( elem, "padding" + cssExpand[ i ], true, styles );
-
-			// For "border" or "margin", add border
-			if ( box !== "padding" ) {
-				delta += jQuery.css( elem, "border" + cssExpand[ i ] + "Width", true, styles );
-
-			// But still keep track of it otherwise
-			} else {
-				extra += jQuery.css( elem, "border" + cssExpand[ i ] + "Width", true, styles );
-			}
-
-		// If we get here with a border-box (content + padding + border), we're seeking "content" or
-		// "padding" or "margin"
-		} else {
-
-			// For "content", subtract padding
-			if ( box === "content" ) {
-				delta -= jQuery.css( elem, "padding" + cssExpand[ i ], true, styles );
-			}
-
-			// For "content" or "padding", subtract border
-			if ( box !== "margin" ) {
-				delta -= jQuery.css( elem, "border" + cssExpand[ i ] + "Width", true, styles );
-			}
-		}
-	}
-
-	// Account for positive content-box scroll gutter when requested by providing computedVal
-	if ( !isBorderBox && computedVal >= 0 ) {
-
-		// offsetWidth/offsetHeight is a rounded sum of content, padding, scroll gutter, and border
-		// Assuming integer scroll gutter, subtract the rest and round down
-		delta += Math.max( 0, Math.ceil(
-			elem[ "offset" + dimension[ 0 ].toUpperCase() + dimension.slice( 1 ) ] -
-			computedVal -
-			delta -
-			extra -
-			0.5
-
-		// If offsetWidth/offsetHeight is unknown, then we can't determine content-box scroll gutter
-		// Use an explicit zero to avoid NaN (gh-3964)
-		) ) || 0;
-	}
-
-	return delta + marginDelta;
-}
-
-function getWidthOrHeight( elem, dimension, extra ) {
-
-	// Start with computed style
-	var styles = getStyles( elem ),
-
-		// To avoid forcing a reflow, only fetch boxSizing if we need it (gh-4322).
-		// Fake content-box until we know it's needed to know the true value.
-		boxSizingNeeded = !support.boxSizingReliable() || extra,
-		isBorderBox = boxSizingNeeded &&
-			jQuery.css( elem, "boxSizing", false, styles ) === "border-box",
-		valueIsBorderBox = isBorderBox,
-
-		val = curCSS( elem, dimension, styles ),
-		offsetProp = "offset" + dimension[ 0 ].toUpperCase() + dimension.slice( 1 );
-
-	// Support: Firefox <=54
-	// Return a confounding non-pixel value or feign ignorance, as appropriate.
-	if ( rnumnonpx.test( val ) ) {
-		if ( !extra ) {
-			return val;
-		}
-		val = "auto";
-	}
-
-
-	// Support: IE 9 - 11 only
-	// Use offsetWidth/offsetHeight for when box sizing is unreliable.
-	// In those cases, the computed value can be trusted to be border-box.
-	if ( ( !support.boxSizingReliable() && isBorderBox ||
-
-		// Support: IE 10 - 11+, Edge 15 - 18+
-		// IE/Edge misreport `getComputedStyle` of table rows with width/height
-		// set in CSS while `offset*` properties report correct values.
-		// Interestingly, in some cases IE 9 doesn't suffer from this issue.
-		!support.reliableTrDimensions() && nodeName( elem, "tr" ) ||
-
-		// Fall back to offsetWidth/offsetHeight when value is "auto"
-		// This happens for inline elements with no explicit setting (gh-3571)
-		val === "auto" ||
-
-		// Support: Android <=4.1 - 4.3 only
-		// Also use offsetWidth/offsetHeight for misreported inline dimensions (gh-3602)
-		!parseFloat( val ) && jQuery.css( elem, "display", false, styles ) === "inline" ) &&
-
-		// Make sure the element is visible & connected
-		elem.getClientRects().length ) {
-
-		isBorderBox = jQuery.css( elem, "boxSizing", false, styles ) === "border-box";
-
-		// Where available, offsetWidth/offsetHeight approximate border box dimensions.
-		// Where not available (e.g., SVG), assume unreliable box-sizing and interpret the
-		// retrieved value as a content box dimension.
-		valueIsBorderBox = offsetProp in elem;
-		if ( valueIsBorderBox ) {
-			val = elem[ offsetProp ];
-		}
-	}
-
-	// Normalize "" and auto
-	val = parseFloat( val ) || 0;
-
-	// Adjust for the element's box model
-	return ( val +
-		boxModelAdjustment(
-			elem,
-			dimension,
-			extra || ( isBorderBox ? "border" : "content" ),
-			valueIsBorderBox,
-			styles,
-
-			// Provide the current computed size to request scroll gutter calculation (gh-3589)
-			val
-		)
-	) + "px";
-}
-
-jQuery.extend( {
-
-	// Add in style property hooks for overriding the default
-	// behavior of getting and setting a style property
-	cssHooks: {
-		opacity: {
-			get: function( elem, computed ) {
-				if ( computed ) {
-
-					// We should always get a number back from opacity
-					var ret = curCSS( elem, "opacity" );
-					return ret === "" ? "1" : ret;
-				}
-			}
-		}
-	},
-
-	// Don't automatically add "px" to these possibly-unitless properties
-	cssNumber: {
-		animationIterationCount: true,
-		aspectRatio: true,
-		borderImageSlice: true,
-		columnCount: true,
-		flexGrow: true,
-		flexShrink: true,
-		fontWeight: true,
-		gridArea: true,
-		gridColumn: true,
-		gridColumnEnd: true,
-		gridColumnStart: true,
-		gridRow: true,
-		gridRowEnd: true,
-		gridRowStart: true,
-		lineHeight: true,
-		opacity: true,
-		order: true,
-		orphans: true,
-		scale: true,
-		widows: true,
-		zIndex: true,
-		zoom: true,
-
-		// SVG-related
-		fillOpacity: true,
-		floodOpacity: true,
-		stopOpacity: true,
-		strokeMiterlimit: true,
-		strokeOpacity: true
-	},
-
-	// Add in properties whose names you wish to fix before
-	// setting or getting the value
-	cssProps: {},
-
-	// Get and set the style property on a DOM Node
-	style: function( elem, name, value, extra ) {
-
-		// Don't set styles on text and comment nodes
-		if ( !elem || elem.nodeType === 3 || elem.nodeType === 8 || !elem.style ) {
-			return;
-		}
-
-		// Make sure that we're working with the right name
-		var ret, type, hooks,
-			origName = camelCase( name ),
-			isCustomProp = rcustomProp.test( name ),
-			style = elem.style;
-
-		// Make sure that we're working with the right name. We don't
-		// want to query the value if it is a CSS custom property
-		// since they are user-defined.
-		if ( !isCustomProp ) {
-			name = finalPropName( origName );
-		}
-
-		// Gets hook for the prefixed version, then unprefixed version
-		hooks = jQuery.cssHooks[ name ] || jQuery.cssHooks[ origName ];
-
-		// Check if we're setting a value
-		if ( value !== undefined ) {
-			type = typeof value;
-
-			// Convert "+=" or "-=" to relative numbers (trac-7345)
-			if ( type === "string" && ( ret = rcssNum.exec( value ) ) && ret[ 1 ] ) {
-				value = adjustCSS( elem, name, ret );
-
-				// Fixes bug trac-9237
-				type = "number";
-			}
-
-			// Make sure that null and NaN values aren't set (trac-7116)
-			if ( value == null || value !== value ) {
-				return;
-			}
-
-			// If a number was passed in, add the unit (except for certain CSS properties)
-			// The isCustomProp check can be removed in jQuery 4.0 when we only auto-append
-			// "px" to a few hardcoded values.
-			if ( type === "number" && !isCustomProp ) {
-				value += ret && ret[ 3 ] || ( jQuery.cssNumber[ origName ] ? "" : "px" );
-			}
-
-			// background-* props affect original clone's values
-			if ( !support.clearCloneStyle && value === "" && name.indexOf( "background" ) === 0 ) {
-				style[ name ] = "inherit";
-			}
-
-			// If a hook was provided, use that value, otherwise just set the specified value
-			if ( !hooks || !( "set" in hooks ) ||
-				( value = hooks.set( elem, value, extra ) ) !== undefined ) {
-
-				if ( isCustomProp ) {
-					style.setProperty( name, value );
-				} else {
-					style[ name ] = value;
-				}
-			}
-
-		} else {
-
-			// If a hook was provided get the non-computed value from there
-			if ( hooks && "get" in hooks &&
-				( ret = hooks.get( elem, false, extra ) ) !== undefined ) {
-
-				return ret;
-			}
-
-			// Otherwise just get the value from the style object
-			return style[ name ];
-		}
-	},
-
-	css: function( elem, name, extra, styles ) {
-		var val, num, hooks,
-			origName = camelCase( name ),
-			isCustomProp = rcustomProp.test( name );
-
-		// Make sure that we're working with the right name. We don't
-		// want to modify the value if it is a CSS custom property
-		// since they are user-defined.
-		if ( !isCustomProp ) {
-			name = finalPropName( origName );
-		}
-
-		// Try prefixed name followed by the unprefixed name
-		hooks = jQuery.cssHooks[ name ] || jQuery.cssHooks[ origName ];
-
-		// If a hook was provided get the computed value from there
-		if ( hooks && "get" in hooks ) {
-			val = hooks.get( elem, true, extra );
-		}
-
-		// Otherwise, if a way to get the computed value exists, use that
-		if ( val === undefined ) {
-			val = curCSS( elem, name, styles );
-		}
-
-		// Convert "normal" to computed value
-		if ( val === "normal" && name in cssNormalTransform ) {
-			val = cssNormalTransform[ name ];
-		}
-
-		// Make numeric if forced or a qualifier was provided and val looks numeric
-		if ( extra === "" || extra ) {
-			num = parseFloat( val );
-			return extra === true || isFinite( num ) ? num || 0 : val;
-		}
-
-		return val;
-	}
-} );
-
-jQuery.each( [ "height", "width" ], function( _i, dimension ) {
-	jQuery.cssHooks[ dimension ] = {
-		get: function( elem, computed, extra ) {
-			if ( computed ) {
-
-				// Certain elements can have dimension info if we invisibly show them
-				// but it must have a current display style that would benefit
-				return rdisplayswap.test( jQuery.css( elem, "display" ) ) &&
-
-					// Support: Safari 8+
-					// Table columns in Safari have non-zero offsetWidth & zero
-					// getBoundingClientRect().width unless display is changed.
-					// Support: IE <=11 only
-					// Running getBoundingClientRect on a disconnected node
-					// in IE throws an error.
-					( !elem.getClientRects().length || !elem.getBoundingClientRect().width ) ?
-					swap( elem, cssShow, function() {
-						return getWidthOrHeight( elem, dimension, extra );
-					} ) :
-					getWidthOrHeight( elem, dimension, extra );
-			}
-		},
-
-		set: function( elem, value, extra ) {
-			var matches,
-				styles = getStyles( elem ),
-
-				// Only read styles.position if the test has a chance to fail
-				// to avoid forcing a reflow.
-				scrollboxSizeBuggy = !support.scrollboxSize() &&
-					styles.position === "absolute",
-
-				// To avoid forcing a reflow, only fetch boxSizing if we need it (gh-3991)
-				boxSizingNeeded = scrollboxSizeBuggy || extra,
-				isBorderBox = boxSizingNeeded &&
-					jQuery.css( elem, "boxSizing", false, styles ) === "border-box",
-				subtract = extra ?
-					boxModelAdjustment(
-						elem,
-						dimension,
-						extra,
-						isBorderBox,
-						styles
-					) :
-					0;
-
-			// Account for unreliable border-box dimensions by comparing offset* to computed and
-			// faking a content-box to get border and padding (gh-3699)
-			if ( isBorderBox && scrollboxSizeBuggy ) {
-				subtract -= Math.ceil(
-					elem[ "offset" + dimension[ 0 ].toUpperCase() + dimension.slice( 1 ) ] -
-					parseFloat( styles[ dimension ] ) -
-					boxModelAdjustment( elem, dimension, "border", false, styles ) -
-					0.5
-				);
-			}
-
-			// Convert to pixels if value adjustment is needed
-			if ( subtract && ( matches = rcssNum.exec( value ) ) &&
-				( matches[ 3 ] || "px" ) !== "px" ) {
-
-				elem.style[ dimension ] = value;
-				value = jQuery.css( elem, dimension );
-			}
-
-			return setPositiveNumber( elem, value, subtract );
-		}
-	};
-} );
-
-jQuery.cssHooks.marginLeft = addGetHookIf( support.reliableMarginLeft,
-	function( elem, computed ) {
-		if ( computed ) {
-			return ( parseFloat( curCSS( elem, "marginLeft" ) ) ||
-				elem.getBoundingClientRect().left -
-					swap( elem, { marginLeft: 0 }, function() {
-						return elem.getBoundingClientRect().left;
-					} )
-			) + "px";
-		}
-	}
-);
-
-// These hooks are used by animate to expand properties
-jQuery.each( {
-	margin: "",
-	padding: "",
-	border: "Width"
-}, function( prefix, suffix ) {
-	jQuery.cssHooks[ prefix + suffix ] = {
-		expand: function( value ) {
-			var i = 0,
-				expanded = {},
-
-				// Assumes a single number if not a string
-				parts = typeof value === "string" ? value.split( " " ) : [ value ];
-
-			for ( ; i < 4; i++ ) {
-				expanded[ prefix + cssExpand[ i ] + suffix ] =
-					parts[ i ] || parts[ i - 2 ] || parts[ 0 ];
-			}
-
-			return expanded;
-		}
-	};
-
-	if ( prefix !== "margin" ) {
-		jQuery.cssHooks[ prefix + suffix ].set = setPositiveNumber;
-	}
-} );
-
-jQuery.fn.extend( {
-	css: function( name, value ) {
-		return access( this, function( elem, name, value ) {
-			var styles, len,
-				map = {},
-				i = 0;
-
-			if ( Array.isArray( name ) ) {
-				styles = getStyles( elem );
-				len = name.length;
-
-				for ( ; i < len; i++ ) {
-					map[ name[ i ] ] = jQuery.css( elem, name[ i ], false, styles );
-				}
-
-				return map;
-			}
-
-			return value !== undefined ?
-				jQuery.style( elem, name, value ) :
-				jQuery.css( elem, name );
-		}, name, value, arguments.length > 1 );
-	}
-} );
-
-
-function Tween( elem, options, prop, end, easing ) {
-	return new Tween.prototype.init( elem, options, prop, end, easing );
-}
-jQuery.Tween = Tween;
-
-Tween.prototype = {
-	constructor: Tween,
-	init: function( elem, options, prop, end, easing, unit ) {
-		this.elem = elem;
-		this.prop = prop;
-		this.easing = easing || jQuery.easing._default;
-		this.options = options;
-		this.start = this.now = this.cur();
-		this.end = end;
-		this.unit = unit || ( jQuery.cssNumber[ prop ] ? "" : "px" );
-	},
-	cur: function() {
-		var hooks = Tween.propHooks[ this.prop ];
-
-		return hooks && hooks.get ?
-			hooks.get( this ) :
-			Tween.propHooks._default.get( this );
-	},
-	run: function( percent ) {
-		var eased,
-			hooks = Tween.propHooks[ this.prop ];
-
-		if ( this.options.duration ) {
-			this.pos = eased = jQuery.easing[ this.easing ](
-				percent, this.options.duration * percent, 0, 1, this.options.duration
-			);
-		} else {
-			this.pos = eased = percent;
-		}
-		this.now = ( this.end - this.start ) * eased + this.start;
-
-		if ( this.options.step ) {
-			this.options.step.call( this.elem, this.now, this );
-		}
-
-		if ( hooks && hooks.set ) {
-			hooks.set( this );
-		} else {
-			Tween.propHooks._default.set( this );
-		}
-		return this;
-	}
-};
-
-Tween.prototype.init.prototype = Tween.prototype;
-
-Tween.propHooks = {
-	_default: {
-		get: function( tween ) {
-			var result;
-
-			// Use a property on the element directly when it is not a DOM element,
-			// or when there is no matching style property that exists.
-			if ( tween.elem.nodeType !== 1 ||
-				tween.elem[ tween.prop ] != null && tween.elem.style[ tween.prop ] == null ) {
-				return tween.elem[ tween.prop ];
-			}
-
-			// Passing an empty string as a 3rd parameter to .css will automatically
-			// attempt a parseFloat and fallback to a string if the parse fails.
-			// Simple values such as "10px" are parsed to Float;
-			// complex values such as "rotate(1rad)" are returned as-is.
-			result = jQuery.css( tween.elem, tween.prop, "" );
-
-			// Empty strings, null, undefined and "auto" are converted to 0.
-			return !result || result === "auto" ? 0 : result;
-		},
-		set: function( tween ) {
-
-			// Use step hook for back compat.
-			// Use cssHook if its there.
-			// Use .style if available and use plain properties where available.
-			if ( jQuery.fx.step[ tween.prop ] ) {
-				jQuery.fx.step[ tween.prop ]( tween );
-			} else if ( tween.elem.nodeType === 1 && (
-				jQuery.cssHooks[ tween.prop ] ||
-					tween.elem.style[ finalPropName( tween.prop ) ] != null ) ) {
-				jQuery.style( tween.elem, tween.prop, tween.now + tween.unit );
-			} else {
-				tween.elem[ tween.prop ] = tween.now;
-			}
-		}
-	}
-};
-
-// Support: IE <=9 only
-// Panic based approach to setting things on disconnected nodes
-Tween.propHooks.scrollTop = Tween.propHooks.scrollLeft = {
-	set: function( tween ) {
-		if ( tween.elem.nodeType && tween.elem.parentNode ) {
-			tween.elem[ tween.prop ] = tween.now;
-		}
-	}
-};
-
-jQuery.easing = {
-	linear: function( p ) {
-		return p;
-	},
-	swing: function( p ) {
-		return 0.5 - Math.cos( p * Math.PI ) / 2;
-	},
-	_default: "swing"
-};
-
-jQuery.fx = Tween.prototype.init;
-
-// Back compat <1.8 extension point
-jQuery.fx.step = {};
-
-
-
-
-var
-	fxNow, inProgress,
-	rfxtypes = /^(?:toggle|show|hide)$/,
-	rrun = /queueHooks$/;
-
-function schedule() {
-	if ( inProgress ) {
-		if ( document.hidden === false && window.requestAnimationFrame ) {
-			window.requestAnimationFrame( schedule );
-		} else {
-			window.setTimeout( schedule, jQuery.fx.interval );
-		}
-
-		jQuery.fx.tick();
-	}
-}
-
-// Animations created synchronously will run synchronously
-function createFxNow() {
-	window.setTimeout( function() {
-		fxNow = undefined;
-	} );
-	return ( fxNow = Date.now() );
-}
-
-// Generate parameters to create a standard animation
-function genFx( type, includeWidth ) {
-	var which,
-		i = 0,
-		attrs = { height: type };
-
-	// If we include width, step value is 1 to do all cssExpand values,
-	// otherwise step value is 2 to skip over Left and Right
-	includeWidth = includeWidth ? 1 : 0;
-	for ( ; i < 4; i += 2 - includeWidth ) {
-		which = cssExpand[ i ];
-		attrs[ "margin" + which ] = attrs[ "padding" + which ] = type;
-	}
-
-	if ( includeWidth ) {
-		attrs.opacity = attrs.width = type;
-	}
-
-	return attrs;
-}
-
-function createTween( value, prop, animation ) {
-	var tween,
-		collection = ( Animation.tweeners[ prop ] || [] ).concat( Animation.tweeners[ "*" ] ),
-		index = 0,
-		length = collection.length;
-	for ( ; index < length; index++ ) {
-		if ( ( tween = collection[ index ].call( animation, prop, value ) ) ) {
-
-			// We're done with this property
-			return tween;
-		}
-	}
-}
-
-function defaultPrefilter( elem, props, opts ) {
-	var prop, value, toggle, hooks, oldfire, propTween, restoreDisplay, display,
-		isBox = "width" in props || "height" in props,
-		anim = this,
-		orig = {},
-		style = elem.style,
-		hidden = elem.nodeType && isHiddenWithinTree( elem ),
-		dataShow = dataPriv.get( elem, "fxshow" );
-
-	// Queue-skipping animations hijack the fx hooks
-	if ( !opts.queue ) {
-		hooks = jQuery._queueHooks( elem, "fx" );
-		if ( hooks.unqueued == null ) {
-			hooks.unqueued = 0;
-			oldfire = hooks.empty.fire;
-			hooks.empty.fire = function() {
-				if ( !hooks.unqueued ) {
-					oldfire();
-				}
-			};
-		}
-		hooks.unqueued++;
-
-		anim.always( function() {
-
-			// Ensure the complete handler is called before this completes
-			anim.always( function() {
-				hooks.unqueued--;
-				if ( !jQuery.queue( elem, "fx" ).length ) {
-					hooks.empty.fire();
-				}
-			} );
-		} );
-	}
-
-	// Detect show/hide animations
-	for ( prop in props ) {
-		value = props[ prop ];
-		if ( rfxtypes.test( value ) ) {
-			delete props[ prop ];
-			toggle = toggle || value === "toggle";
-			if ( value === ( hidden ? "hide" : "show" ) ) {
-
-				// Pretend to be hidden if this is a "show" and
-				// there is still data from a stopped show/hide
-				if ( value === "show" && dataShow && dataShow[ prop ] !== undefined ) {
-					hidden = true;
-
-				// Ignore all other no-op show/hide data
-				} else {
-					continue;
-				}
-			}
-			orig[ prop ] = dataShow && dataShow[ prop ] || jQuery.style( elem, prop );
-		}
-	}
-
-	// Bail out if this is a no-op like .hide().hide()
-	propTween = !jQuery.isEmptyObject( props );
-	if ( !propTween && jQuery.isEmptyObject( orig ) ) {
-		return;
-	}
-
-	// Restrict "overflow" and "display" styles during box animations
-	if ( isBox && elem.nodeType === 1 ) {
-
-		// Support: IE <=9 - 11, Edge 12 - 15
-		// Record all 3 overflow attributes because IE does not infer the shorthand
-		// from identically-valued overflowX and overflowY and Edge just mirrors
-		// the overflowX value there.
-		opts.overflow = [ style.overflow, style.overflowX, style.overflowY ];
-
-		// Identify a display type, preferring old show/hide data over the CSS cascade
-		restoreDisplay = dataShow && dataShow.display;
-		if ( restoreDisplay == null ) {
-			restoreDisplay = dataPriv.get( elem, "display" );
-		}
-		display = jQuery.css( elem, "display" );
-		if ( display === "none" ) {
-			if ( restoreDisplay ) {
-				display = restoreDisplay;
-			} else {
-
-				// Get nonempty value(s) by temporarily forcing visibility
-				showHide( [ elem ], true );
-				restoreDisplay = elem.style.display || restoreDisplay;
-				display = jQuery.css( elem, "display" );
-				showHide( [ elem ] );
-			}
-		}
-
-		// Animate inline elements as inline-block
-		if ( display === "inline" || display === "inline-block" && restoreDisplay != null ) {
-			if ( jQuery.css( elem, "float" ) === "none" ) {
-
-				// Restore the original display value at the end of pure show/hide animations
-				if ( !propTween ) {
-					anim.done( function() {
-						style.display = restoreDisplay;
-					} );
-					if ( restoreDisplay == null ) {
-						display = style.display;
-						restoreDisplay = display === "none" ? "" : display;
-					}
-				}
-				style.display = "inline-block";
-			}
-		}
-	}
-
-	if ( opts.overflow ) {
-		style.overflow = "hidden";
-		anim.always( function() {
-			style.overflow = opts.overflow[ 0 ];
-			style.overflowX = opts.overflow[ 1 ];
-			style.overflowY = opts.overflow[ 2 ];
-		} );
-	}
-
-	// Implement show/hide animations
-	propTween = false;
-	for ( prop in orig ) {
-
-		// General show/hide setup for this element animation
-		if ( !propTween ) {
-			if ( dataShow ) {
-				if ( "hidden" in dataShow ) {
-					hidden = dataShow.hidden;
-				}
-			} else {
-				dataShow = dataPriv.access( elem, "fxshow", { display: restoreDisplay } );
-			}
-
-			// Store hidden/visible for toggle so `.stop().toggle()` "reverses"
-			if ( toggle ) {
-				dataShow.hidden = !hidden;
-			}
-
-			// Show elements before animating them
-			if ( hidden ) {
-				showHide( [ elem ], true );
-			}
-
-			/* eslint-disable no-loop-func */
-
-			anim.done( function() {
-
-				/* eslint-enable no-loop-func */
-
-				// The final step of a "hide" animation is actually hiding the element
-				if ( !hidden ) {
-					showHide( [ elem ] );
-				}
-				dataPriv.remove( elem, "fxshow" );
-				for ( prop in orig ) {
-					jQuery.style( elem, prop, orig[ prop ] );
-				}
-			} );
-		}
-
-		// Per-property setup
-		propTween = createTween( hidden ? dataShow[ prop ] : 0, prop, anim );
-		if ( !( prop in dataShow ) ) {
-			dataShow[ prop ] = propTween.start;
-			if ( hidden ) {
-				propTween.end = propTween.start;
-				propTween.start = 0;
-			}
-		}
-	}
-}
-
-function propFilter( props, specialEasing ) {
-	var index, name, easing, value, hooks;
-
-	// camelCase, specialEasing and expand cssHook pass
-	for ( index in props ) {
-		name = camelCase( index );
-		easing = specialEasing[ name ];
-		value = props[ index ];
-		if ( Array.isArray( value ) ) {
-			easing = value[ 1 ];
-			value = props[ index ] = value[ 0 ];
-		}
-
-		if ( index !== name ) {
-			props[ name ] = value;
-			delete props[ index ];
-		}
-
-		hooks = jQuery.cssHooks[ name ];
-		if ( hooks && "expand" in hooks ) {
-			value = hooks.expand( value );
-			delete props[ name ];
-
-			// Not quite $.extend, this won't overwrite existing keys.
-			// Reusing 'index' because we have the correct "name"
-			for ( index in value ) {
-				if ( !( index in props ) ) {
-					props[ index ] = value[ index ];
-					specialEasing[ index ] = easing;
-				}
-			}
-		} else {
-			specialEasing[ name ] = easing;
-		}
-	}
-}
-
-function Animation( elem, properties, options ) {
-	var result,
-		stopped,
-		index = 0,
-		length = Animation.prefilters.length,
-		deferred = jQuery.Deferred().always( function() {
-
-			// Don't match elem in the :animated selector
-			delete tick.elem;
-		} ),
-		tick = function() {
-			if ( stopped ) {
-				return false;
-			}
-			var currentTime = fxNow || createFxNow(),
-				remaining = Math.max( 0, animation.startTime + animation.duration - currentTime ),
-
-				// Support: Android 2.3 only
-				// Archaic crash bug won't allow us to use `1 - ( 0.5 || 0 )` (trac-12497)
-				temp = remaining / animation.duration || 0,
-				percent = 1 - temp,
-				index = 0,
-				length = animation.tweens.length;
-
-			for ( ; index < length; index++ ) {
-				animation.tweens[ index ].run( percent );
-			}
-
-			deferred.notifyWith( elem, [ animation, percent, remaining ] );
-
-			// If there's more to do, yield
-			if ( percent < 1 && length ) {
-				return remaining;
-			}
-
-			// If this was an empty animation, synthesize a final progress notification
-			if ( !length ) {
-				deferred.notifyWith( elem, [ animation, 1, 0 ] );
-			}
-
-			// Resolve the animation and report its conclusion
-			deferred.resolveWith( elem, [ animation ] );
-			return false;
-		},
-		animation = deferred.promise( {
-			elem: elem,
-			props: jQuery.extend( {}, properties ),
-			opts: jQuery.extend( true, {
-				specialEasing: {},
-				easing: jQuery.easing._default
-			}, options ),
-			originalProperties: properties,
-			originalOptions: options,
-			startTime: fxNow || createFxNow(),
-			duration: options.duration,
-			tweens: [],
-			createTween: function( prop, end ) {
-				var tween = jQuery.Tween( elem, animation.opts, prop, end,
-					animation.opts.specialEasing[ prop ] || animation.opts.easing );
-				animation.tweens.push( tween );
-				return tween;
-			},
-			stop: function( gotoEnd ) {
-				var index = 0,
-
-					// If we are going to the end, we want to run all the tweens
-					// otherwise we skip this part
-					length = gotoEnd ? animation.tweens.length : 0;
-				if ( stopped ) {
-					return this;
-				}
-				stopped = true;
-				for ( ; index < length; index++ ) {
-					animation.tweens[ index ].run( 1 );
-				}
-
-				// Resolve when we played the last frame; otherwise, reject
-				if ( gotoEnd ) {
-					deferred.notifyWith( elem, [ animation, 1, 0 ] );
-					deferred.resolveWith( elem, [ animation, gotoEnd ] );
-				} else {
-					deferred.rejectWith( elem, [ animation, gotoEnd ] );
-				}
-				return this;
-			}
-		} ),
-		props = animation.props;
-
-	propFilter( props, animation.opts.specialEasing );
-
-	for ( ; index < length; index++ ) {
-		result = Animation.prefilters[ index ].call( animation, elem, props, animation.opts );
-		if ( result ) {
-			if ( isFunction( result.stop ) ) {
-				jQuery._queueHooks( animation.elem, animation.opts.queue ).stop =
-					result.stop.bind( result );
-			}
-			return result;
-		}
-	}
-
-	jQuery.map( props, createTween, animation );
-
-	if ( isFunction( animation.opts.start ) ) {
-		animation.opts.start.call( elem, animation );
-	}
-
-	// Attach callbacks from options
-	animation
-		.progress( animation.opts.progress )
-		.done( animation.opts.done, animation.opts.complete )
-		.fail( animation.opts.fail )
-		.always( animation.opts.always );
-
-	jQuery.fx.timer(
-		jQuery.extend( tick, {
-			elem: elem,
-			anim: animation,
-			queue: animation.opts.queue
-		} )
-	);
-
-	return animation;
-}
-
-jQuery.Animation = jQuery.extend( Animation, {
-
-	tweeners: {
-		"*": [ function( prop, value ) {
-			var tween = this.createTween( prop, value );
-			adjustCSS( tween.elem, prop, rcssNum.exec( value ), tween );
-			return tween;
-		} ]
-	},
-
-	tweener: function( props, callback ) {
-		if ( isFunction( props ) ) {
-			callback = props;
-			props = [ "*" ];
-		} else {
-			props = props.match( rnothtmlwhite );
-		}
-
-		var prop,
-			index = 0,
-			length = props.length;
-
-		for ( ; index < length; index++ ) {
-			prop = props[ index ];
-			Animation.tweeners[ prop ] = Animation.tweeners[ prop ] || [];
-			Animation.tweeners[ prop ].unshift( callback );
-		}
-	},
-
-	prefilters: [ defaultPrefilter ],
-
-	prefilter: function( callback, prepend ) {
-		if ( prepend ) {
-			Animation.prefilters.unshift( callback );
-		} else {
-			Animation.prefilters.push( callback );
-		}
-	}
-} );
-
-jQuery.speed = function( speed, easing, fn ) {
-	var opt = speed && typeof speed === "object" ? jQuery.extend( {}, speed ) : {
-		complete: fn || !fn && easing ||
-			isFunction( speed ) && speed,
-		duration: speed,
-		easing: fn && easing || easing && !isFunction( easing ) && easing
-	};
-
-	// Go to the end state if fx are off
-	if ( jQuery.fx.off ) {
-		opt.duration = 0;
-
-	} else {
-		if ( typeof opt.duration !== "number" ) {
-			if ( opt.duration in jQuery.fx.speeds ) {
-				opt.duration = jQuery.fx.speeds[ opt.duration ];
-
-			} else {
-				opt.duration = jQuery.fx.speeds._default;
-			}
-		}
-	}
-
-	// Normalize opt.queue - true/undefined/null -> "fx"
-	if ( opt.queue == null || opt.queue === true ) {
-		opt.queue = "fx";
-	}
-
-	// Queueing
-	opt.old = opt.complete;
-
-	opt.complete = function() {
-		if ( isFunction( opt.old ) ) {
-			opt.old.call( this );
-		}
-
-		if ( opt.queue ) {
-			jQuery.dequeue( this, opt.queue );
-		}
-	};
-
-	return opt;
-};
-
-jQuery.fn.extend( {
-	fadeTo: function( speed, to, easing, callback ) {
-
-		// Show any hidden elements after setting opacity to 0
-		return this.filter( isHiddenWithinTree ).css( "opacity", 0 ).show()
-
-			// Animate to the value specified
-			.end().animate( { opacity: to }, speed, easing, callback );
-	},
-	animate: function( prop, speed, easing, callback ) {
-		var empty = jQuery.isEmptyObject( prop ),
-			optall = jQuery.speed( speed, easing, callback ),
-			doAnimation = function() {
-
-				// Operate on a copy of prop so per-property easing won't be lost
-				var anim = Animation( this, jQuery.extend( {}, prop ), optall );
-
-				// Empty animations, or finishing resolves immediately
-				if ( empty || dataPriv.get( this, "finish" ) ) {
-					anim.stop( true );
-				}
-			};
-
-		doAnimation.finish = doAnimation;
-
-		return empty || optall.queue === false ?
-			this.each( doAnimation ) :
-			this.queue( optall.queue, doAnimation );
-	},
-	stop: function( type, clearQueue, gotoEnd ) {
-		var stopQueue = function( hooks ) {
-			var stop = hooks.stop;
-			delete hooks.stop;
-			stop( gotoEnd );
-		};
-
-		if ( typeof type !== "string" ) {
-			gotoEnd = clearQueue;
-			clearQueue = type;
-			type = undefined;
-		}
-		if ( clearQueue ) {
-			this.queue( type || "fx", [] );
-		}
-
-		return this.each( function() {
-			var dequeue = true,
-				index = type != null && type + "queueHooks",
-				timers = jQuery.timers,
-				data = dataPriv.get( this );
-
-			if ( index ) {
-				if ( data[ index ] && data[ index ].stop ) {
-					stopQueue( data[ index ] );
-				}
-			} else {
-				for ( index in data ) {
-					if ( data[ index ] && data[ index ].stop && rrun.test( index ) ) {
-						stopQueue( data[ index ] );
-					}
-				}
-			}
-
-			for ( index = timers.length; index--; ) {
-				if ( timers[ index ].elem === this &&
-					( type == null || timers[ index ].queue === type ) ) {
-
-					timers[ index ].anim.stop( gotoEnd );
-					dequeue = false;
-					timers.splice( index, 1 );
-				}
-			}
-
-			// Start the next in the queue if the last step wasn't forced.
-			// Timers currently will call their complete callbacks, which
-			// will dequeue but only if they were gotoEnd.
-			if ( dequeue || !gotoEnd ) {
-				jQuery.dequeue( this, type );
-			}
-		} );
-	},
-	finish: function( type ) {
-		if ( type !== false ) {
-			type = type || "fx";
-		}
-		return this.each( function() {
-			var index,
-				data = dataPriv.get( this ),
-				queue = data[ type + "queue" ],
-				hooks = data[ type + "queueHooks" ],
-				timers = jQuery.timers,
-				length = queue ? queue.length : 0;
-
-			// Enable finishing flag on private data
-			data.finish = true;
-
-			// Empty the queue first
-			jQuery.queue( this, type, [] );
-
-			if ( hooks && hooks.stop ) {
-				hooks.stop.call( this, true );
-			}
-
-			// Look for any active animations, and finish them
-			for ( index = timers.length; index--; ) {
-				if ( timers[ index ].elem === this && timers[ index ].queue === type ) {
-					timers[ index ].anim.stop( true );
-					timers.splice( index, 1 );
-				}
-			}
-
-			// Look for any animations in the old queue and finish them
-			for ( index = 0; index < length; index++ ) {
-				if ( queue[ index ] && queue[ index ].finish ) {
-					queue[ index ].finish.call( this );
-				}
-			}
-
-			// Turn off finishing flag
-			delete data.finish;
-		} );
-	}
-} );
-
-jQuery.each( [ "toggle", "show", "hide" ], function( _i, name ) {
-	var cssFn = jQuery.fn[ name ];
-	jQuery.fn[ name ] = function( speed, easing, callback ) {
-		return speed == null || typeof speed === "boolean" ?
-			cssFn.apply( this, arguments ) :
-			this.animate( genFx( name, true ), speed, easing, callback );
-	};
-} );
-
-// Generate shortcuts for custom animations
-jQuery.each( {
-	slideDown: genFx( "show" ),
-	slideUp: genFx( "hide" ),
-	slideToggle: genFx( "toggle" ),
-	fadeIn: { opacity: "show" },
-	fadeOut: { opacity: "hide" },
-	fadeToggle: { opacity: "toggle" }
-}, function( name, props ) {
-	jQuery.fn[ name ] = function( speed, easing, callback ) {
-		return this.animate( props, speed, easing, callback );
-	};
-} );
-
-jQuery.timers = [];
-jQuery.fx.tick = function() {
-	var timer,
-		i = 0,
-		timers = jQuery.timers;
-
-	fxNow = Date.now();
-
-	for ( ; i < timers.length; i++ ) {
-		timer = timers[ i ];
-
-		// Run the timer and safely remove it when done (allowing for external removal)
-		if ( !timer() && timers[ i ] === timer ) {
-			timers.splice( i--, 1 );
-		}
-	}
-
-	if ( !timers.length ) {
-		jQuery.fx.stop();
-	}
-	fxNow = undefined;
-};
-
-jQuery.fx.timer = function( timer ) {
-	jQuery.timers.push( timer );
-	jQuery.fx.start();
-};
-
-jQuery.fx.interval = 13;
-jQuery.fx.start = function() {
-	if ( inProgress ) {
-		return;
-	}
-
-	inProgress = true;
-	schedule();
-};
-
-jQuery.fx.stop = function() {
-	inProgress = null;
-};
-
-jQuery.fx.speeds = {
-	slow: 600,
-	fast: 200,
-
-	// Default speed
-	_default: 400
-};
-
-
-// Based off of the plugin by Clint Helfers, with permission.
-jQuery.fn.delay = function( time, type ) {
-	time = jQuery.fx ? jQuery.fx.speeds[ time ] || time : time;
-	type = type || "fx";
-
-	return this.queue( type, function( next, hooks ) {
-		var timeout = window.setTimeout( next, time );
-		hooks.stop = function() {
-			window.clearTimeout( timeout );
-		};
-	} );
-};
-
-
-( function() {
-	var input = document.createElement( "input" ),
-		select = document.createElement( "select" ),
-		opt = select.appendChild( document.createElement( "option" ) );
-
-	input.type = "checkbox";
-
-	// Support: Android <=4.3 only
-	// Default value for a checkbox should be "on"
-	support.checkOn = input.value !== "";
-
-	// Support: IE <=11 only
-	// Must access selectedIndex to make default options select
-	support.optSelected = opt.selected;
-
-	// Support: IE <=11 only
-	// An input loses its value after becoming a radio
-	input = document.createElement( "input" );
-	input.value = "t";
-	input.type = "radio";
-	support.radioValue = input.value === "t";
-} )();
-
-
-var boolHook,
-	attrHandle = jQuery.expr.attrHandle;
-
-jQuery.fn.extend( {
-	attr: function( name, value ) {
-		return access( this, jQuery.attr, name, value, arguments.length > 1 );
-	},
-
-	removeAttr: function( name ) {
-		return this.each( function() {
-			jQuery.removeAttr( this, name );
-		} );
-	}
-} );
-
-jQuery.extend( {
-	attr: function( elem, name, value ) {
-		var ret, hooks,
-			nType = elem.nodeType;
-
-		// Don't get/set attributes on text, comment and attribute nodes
-		if ( nType === 3 || nType === 8 || nType === 2 ) {
-			return;
-		}
-
-		// Fallback to prop when attributes are not supported
-		if ( typeof elem.getAttribute === "undefined" ) {
-			return jQuery.prop( elem, name, value );
-		}
-
-		// Attribute hooks are determined by the lowercase version
-		// Grab necessary hook if one is defined
-		if ( nType !== 1 || !jQuery.isXMLDoc( elem ) ) {
-			hooks = jQuery.attrHooks[ name.toLowerCase() ] ||
-				( jQuery.expr.match.bool.test( name ) ? boolHook : undefined );
-		}
-
-		if ( value !== undefined ) {
-			if ( value === null ) {
-				jQuery.removeAttr( elem, name );
-				return;
-			}
-
-			if ( hooks && "set" in hooks &&
-				( ret = hooks.set( elem, value, name ) ) !== undefined ) {
-				return ret;
-			}
-
-			elem.setAttribute( name, value + "" );
-			return value;
-		}
-
-		if ( hooks && "get" in hooks && ( ret = hooks.get( elem, name ) ) !== null ) {
-			return ret;
-		}
-
-		ret = jQuery.find.attr( elem, name );
-
-		// Non-existent attributes return null, we normalize to undefined
-		return ret == null ? undefined : ret;
-	},
-
-	attrHooks: {
-		type: {
-			set: function( elem, value ) {
-				if ( !support.radioValue && value === "radio" &&
-					nodeName( elem, "input" ) ) {
-					var val = elem.value;
-					elem.setAttribute( "type", value );
-					if ( val ) {
-						elem.value = val;
-					}
-					return value;
-				}
-			}
-		}
-	},
-
-	removeAttr: function( elem, value ) {
-		var name,
-			i = 0,
-
-			// Attribute names can contain non-HTML whitespace characters
-			// https://html.spec.whatwg.org/multipage/syntax.html#attributes-2
-			attrNames = value && value.match( rnothtmlwhite );
-
-		if ( attrNames && elem.nodeType === 1 ) {
-			while ( ( name = attrNames[ i++ ] ) ) {
-				elem.removeAttribute( name );
-			}
-		}
-	}
-} );
-
-// Hooks for boolean attributes
-boolHook = {
-	set: function( elem, value, name ) {
-		if ( value === false ) {
-
-			// Remove boolean attributes when set to false
-			jQuery.removeAttr( elem, name );
-		} else {
-			elem.setAttribute( name, name );
-		}
-		return name;
-	}
-};
-
-jQuery.each( jQuery.expr.match.bool.source.match( /\w+/g ), function( _i, name ) {
-	var getter = attrHandle[ name ] || jQuery.find.attr;
-
-	attrHandle[ name ] = function( elem, name, isXML ) {
-		var ret, handle,
-			lowercaseName = name.toLowerCase();
-
-		if ( !isXML ) {
-
-			// Avoid an infinite loop by temporarily removing this function from the getter
-			handle = attrHandle[ lowercaseName ];
-			attrHandle[ lowercaseName ] = ret;
-			ret = getter( elem, name, isXML ) != null ?
-				lowercaseName :
-				null;
-			attrHandle[ lowercaseName ] = handle;
-		}
-		return ret;
-	};
-} );
-
-
-
-
-var rfocusable = /^(?:input|select|textarea|button)$/i,
-	rclickable = /^(?:a|area)$/i;
-
-jQuery.fn.extend( {
-	prop: function( name, value ) {
-		return access( this, jQuery.prop, name, value, arguments.length > 1 );
-	},
-
-	removeProp: function( name ) {
-		return this.each( function() {
-			delete this[ jQuery.propFix[ name ] || name ];
-		} );
-	}
-} );
-
-jQuery.extend( {
-	prop: function( elem, name, value ) {
-		var ret, hooks,
-			nType = elem.nodeType;
-
-		// Don't get/set properties on text, comment and attribute nodes
-		if ( nType === 3 || nType === 8 || nType === 2 ) {
-			return;
-		}
-
-		if ( nType !== 1 || !jQuery.isXMLDoc( elem ) ) {
-
-			// Fix name and attach hooks
-			name = jQuery.propFix[ name ] || name;
-			hooks = jQuery.propHooks[ name ];
-		}
-
-		if ( value !== undefined ) {
-			if ( hooks && "set" in hooks &&
-				( ret = hooks.set( elem, value, name ) ) !== undefined ) {
-				return ret;
-			}
-
-			return ( elem[ name ] = value );
-		}
-
-		if ( hooks && "get" in hooks && ( ret = hooks.get( elem, name ) ) !== null ) {
-			return ret;
-		}
-
-		return elem[ name ];
-	},
-
-	propHooks: {
-		tabIndex: {
-			get: function( elem ) {
-
-				// Support: IE <=9 - 11 only
-				// elem.tabIndex doesn't always return the
-				// correct value when it hasn't been explicitly set
-				// Use proper attribute retrieval (trac-12072)
-				var tabindex = jQuery.find.attr( elem, "tabindex" );
-
-				if ( tabindex ) {
-					return parseInt( tabindex, 10 );
-				}
-
-				if (
-					rfocusable.test( elem.nodeName ) ||
-					rclickable.test( elem.nodeName ) &&
-					elem.href
-				) {
-					return 0;
-				}
-
-				return -1;
-			}
-		}
-	},
-
-	propFix: {
-		"for": "htmlFor",
-		"class": "className"
-	}
-} );
-
-// Support: IE <=11 only
-// Accessing the selectedIndex property
-// forces the browser to respect setting selected
-// on the option
-// The getter ensures a default option is selected
-// when in an optgroup
-// eslint rule "no-unused-expressions" is disabled for this code
-// since it considers such accessions noop
-if ( !support.optSelected ) {
-	jQuery.propHooks.selected = {
-		get: function( elem ) {
-
-			/* eslint no-unused-expressions: "off" */
-
-			var parent = elem.parentNode;
-			if ( parent && parent.parentNode ) {
-				parent.parentNode.selectedIndex;
-			}
-			return null;
-		},
-		set: function( elem ) {
-
-			/* eslint no-unused-expressions: "off" */
-
-			var parent = elem.parentNode;
-			if ( parent ) {
-				parent.selectedIndex;
-
-				if ( parent.parentNode ) {
-					parent.parentNode.selectedIndex;
-				}
-			}
-		}
-	};
-}
-
-jQuery.each( [
-	"tabIndex",
-	"readOnly",
-	"maxLength",
-	"cellSpacing",
-	"cellPadding",
-	"rowSpan",
-	"colSpan",
-	"useMap",
-	"frameBorder",
-	"contentEditable"
-], function() {
-	jQuery.propFix[ this.toLowerCase() ] = this;
-} );
-
-
-
-
-	// Strip and collapse whitespace according to HTML spec
-	// https://infra.spec.whatwg.org/#strip-and-collapse-ascii-whitespace
-	function stripAndCollapse( value ) {
-		var tokens = value.match( rnothtmlwhite ) || [];
-		return tokens.join( " " );
-	}
-
-
-function getClass( elem ) {
-	return elem.getAttribute && elem.getAttribute( "class" ) || "";
-}
-
-function classesToArray( value ) {
-	if ( Array.isArray( value ) ) {
-		return value;
-	}
-	if ( typeof value === "string" ) {
-		return value.match( rnothtmlwhite ) || [];
-	}
-	return [];
-}
-
-jQuery.fn.extend( {
-	addClass: function( value ) {
-		var classNames, cur, curValue, className, i, finalValue;
-
-		if ( isFunction( value ) ) {
-			return this.each( function( j ) {
-				jQuery( this ).addClass( value.call( this, j, getClass( this ) ) );
-			} );
-		}
-
-		classNames = classesToArray( value );
-
-		if ( classNames.length ) {
-			return this.each( function() {
-				curValue = getClass( this );
-				cur = this.nodeType === 1 && ( " " + stripAndCollapse( curValue ) + " " );
-
-				if ( cur ) {
-					for ( i = 0; i < classNames.length; i++ ) {
-						className = classNames[ i ];
-						if ( cur.indexOf( " " + className + " " ) < 0 ) {
-							cur += className + " ";
-						}
-					}
-
-					// Only assign if different to avoid unneeded rendering.
-					finalValue = stripAndCollapse( cur );
-					if ( curValue !== finalValue ) {
-						this.setAttribute( "class", finalValue );
-					}
-				}
-			} );
-		}
-
-		return this;
-	},
-
-	removeClass: function( value ) {
-		var classNames, cur, curValue, className, i, finalValue;
-
-		if ( isFunction( value ) ) {
-			return this.each( function( j ) {
-				jQuery( this ).removeClass( value.call( this, j, getClass( this ) ) );
-			} );
-		}
-
-		if ( !arguments.length ) {
-			return this.attr( "class", "" );
-		}
-
-		classNames = classesToArray( value );
-
-		if ( classNames.length ) {
-			return this.each( function() {
-				curValue = getClass( this );
-
-				// This expression is here for better compressibility (see addClass)
-				cur = this.nodeType === 1 && ( " " + stripAndCollapse( curValue ) + " " );
-
-				if ( cur ) {
-					for ( i = 0; i < classNames.length; i++ ) {
-						className = classNames[ i ];
-
-						// Remove *all* instances
-						while ( cur.indexOf( " " + className + " " ) > -1 ) {
-							cur = cur.replace( " " + className + " ", " " );
-						}
-					}
-
-					// Only assign if different to avoid unneeded rendering.
-					finalValue = stripAndCollapse( cur );
-					if ( curValue !== finalValue ) {
-						this.setAttribute( "class", finalValue );
-					}
-				}
-			} );
-		}
-
-		return this;
-	},
-
-	toggleClass: function( value, stateVal ) {
-		var classNames, className, i, self,
-			type = typeof value,
-			isValidValue = type === "string" || Array.isArray( value );
-
-		if ( isFunction( value ) ) {
-			return this.each( function( i ) {
-				jQuery( this ).toggleClass(
-					value.call( this, i, getClass( this ), stateVal ),
-					stateVal
-				);
-			} );
-		}
-
-		if ( typeof stateVal === "boolean" && isValidValue ) {
-			return stateVal ? this.addClass( value ) : this.removeClass( value );
-		}
-
-		classNames = classesToArray( value );
-
-		return this.each( function() {
-			if ( isValidValue ) {
-
-				// Toggle individual class names
-				self = jQuery( this );
-
-				for ( i = 0; i < classNames.length; i++ ) {
-					className = classNames[ i ];
-
-					// Check each className given, space separated list
-					if ( self.hasClass( className ) ) {
-						self.removeClass( className );
-					} else {
-						self.addClass( className );
-					}
-				}
-
-			// Toggle whole class name
-			} else if ( value === undefined || type === "boolean" ) {
-				className = getClass( this );
-				if ( className ) {
-
-					// Store className if set
-					dataPriv.set( this, "__className__", className );
-				}
-
-				// If the element has a class name or if we're passed `false`,
-				// then remove the whole classname (if there was one, the above saved it).
-				// Otherwise bring back whatever was previously saved (if anything),
-				// falling back to the empty string if nothing was stored.
-				if ( this.setAttribute ) {
-					this.setAttribute( "class",
-						className || value === false ?
-							"" :
-							dataPriv.get( this, "__className__" ) || ""
-					);
-				}
-			}
-		} );
-	},
-
-	hasClass: function( selector ) {
-		var className, elem,
-			i = 0;
-
-		className = " " + selector + " ";
-		while ( ( elem = this[ i++ ] ) ) {
-			if ( elem.nodeType === 1 &&
-				( " " + stripAndCollapse( getClass( elem ) ) + " " ).indexOf( className ) > -1 ) {
-				return true;
-			}
-		}
-
-		return false;
-	}
-} );
-
-
-
-
-var rreturn = /\r/g;
-
-jQuery.fn.extend( {
-	val: function( value ) {
-		var hooks, ret, valueIsFunction,
-			elem = this[ 0 ];
-
-		if ( !arguments.length ) {
-			if ( elem ) {
-				hooks = jQuery.valHooks[ elem.type ] ||
-					jQuery.valHooks[ elem.nodeName.toLowerCase() ];
-
-				if ( hooks &&
-					"get" in hooks &&
-					( ret = hooks.get( elem, "value" ) ) !== undefined
-				) {
-					return ret;
-				}
-
-				ret = elem.value;
-
-				// Handle most common string cases
-				if ( typeof ret === "string" ) {
-					return ret.replace( rreturn, "" );
-				}
-
-				// Handle cases where value is null/undef or number
-				return ret == null ? "" : ret;
-			}
-
-			return;
-		}
-
-		valueIsFunction = isFunction( value );
-
-		return this.each( function( i ) {
-			var val;
-
-			if ( this.nodeType !== 1 ) {
-				return;
-			}
-
-			if ( valueIsFunction ) {
-				val = value.call( this, i, jQuery( this ).val() );
-			} else {
-				val = value;
-			}
-
-			// Treat null/undefined as ""; convert numbers to string
-			if ( val == null ) {
-				val = "";
-
-			} else if ( typeof val === "number" ) {
-				val += "";
-
-			} else if ( Array.isArray( val ) ) {
-				val = jQuery.map( val, function( value ) {
-					return value == null ? "" : value + "";
-				} );
-			}
-
-			hooks = jQuery.valHooks[ this.type ] || jQuery.valHooks[ this.nodeName.toLowerCase() ];
-
-			// If set returns undefined, fall back to normal setting
-			if ( !hooks || !( "set" in hooks ) || hooks.set( this, val, "value" ) === undefined ) {
-				this.value = val;
-			}
-		} );
-	}
-} );
-
-jQuery.extend( {
-	valHooks: {
-		option: {
-			get: function( elem ) {
-
-				var val = jQuery.find.attr( elem, "value" );
-				return val != null ?
-					val :
-
-					// Support: IE <=10 - 11 only
-					// option.text throws exceptions (trac-14686, trac-14858)
-					// Strip and collapse whitespace
-					// https://html.spec.whatwg.org/#strip-and-collapse-whitespace
-					stripAndCollapse( jQuery.text( elem ) );
-			}
-		},
-		select: {
-			get: function( elem ) {
-				var value, option, i,
-					options = elem.options,
-					index = elem.selectedIndex,
-					one = elem.type === "select-one",
-					values = one ? null : [],
-					max = one ? index + 1 : options.length;
-
-				if ( index < 0 ) {
-					i = max;
-
-				} else {
-					i = one ? index : 0;
-				}
-
-				// Loop through all the selected options
-				for ( ; i < max; i++ ) {
-					option = options[ i ];
-
-					// Support: IE <=9 only
-					// IE8-9 doesn't update selected after form reset (trac-2551)
-					if ( ( option.selected || i === index ) &&
-
-							// Don't return options that are disabled or in a disabled optgroup
-							!option.disabled &&
-							( !option.parentNode.disabled ||
-								!nodeName( option.parentNode, "optgroup" ) ) ) {
-
-						// Get the specific value for the option
-						value = jQuery( option ).val();
-
-						// We don't need an array for one selects
-						if ( one ) {
-							return value;
-						}
-
-						// Multi-Selects return an array
-						values.push( value );
-					}
-				}
-
-				return values;
-			},
-
-			set: function( elem, value ) {
-				var optionSet, option,
-					options = elem.options,
-					values = jQuery.makeArray( value ),
-					i = options.length;
-
-				while ( i-- ) {
-					option = options[ i ];
-
-					/* eslint-disable no-cond-assign */
-
-					if ( option.selected =
-						jQuery.inArray( jQuery.valHooks.option.get( option ), values ) > -1
-					) {
-						optionSet = true;
-					}
-
-					/* eslint-enable no-cond-assign */
-				}
-
-				// Force browsers to behave consistently when non-matching value is set
-				if ( !optionSet ) {
-					elem.selectedIndex = -1;
-				}
-				return values;
-			}
-		}
-	}
-} );
-
-// Radios and checkboxes getter/setter
-jQuery.each( [ "radio", "checkbox" ], function() {
-	jQuery.valHooks[ this ] = {
-		set: function( elem, value ) {
-			if ( Array.isArray( value ) ) {
-				return ( elem.checked = jQuery.inArray( jQuery( elem ).val(), value ) > -1 );
-			}
-		}
-	};
-	if ( !support.checkOn ) {
-		jQuery.valHooks[ this ].get = function( elem ) {
-			return elem.getAttribute( "value" ) === null ? "on" : elem.value;
-		};
-	}
-} );
-
-
-
-
-// Return jQuery for attributes-only inclusion
-var location = window.location;
-
-var nonce = { guid: Date.now() };
-
-var rquery = ( /\?/ );
-
-
-
-// Cross-browser xml parsing
-jQuery.parseXML = function( data ) {
-	var xml, parserErrorElem;
-	if ( !data || typeof data !== "string" ) {
-		return null;
-	}
-
-	// Support: IE 9 - 11 only
-	// IE throws on parseFromString with invalid input.
-	try {
-		xml = ( new window.DOMParser() ).parseFromString( data, "text/xml" );
-	} catch ( e ) {}
-
-	parserErrorElem = xml && xml.getElementsByTagName( "parsererror" )[ 0 ];
-	if ( !xml || parserErrorElem ) {
-		jQuery.error( "Invalid XML: " + (
-			parserErrorElem ?
-				jQuery.map( parserErrorElem.childNodes, function( el ) {
-					return el.textContent;
-				} ).join( "\n" ) :
-				data
-		) );
-	}
-	return xml;
-};
-
-
-var rfocusMorph = /^(?:focusinfocus|focusoutblur)$/,
-	stopPropagationCallback = function( e ) {
-		e.stopPropagation();
-	};
-
-jQuery.extend( jQuery.event, {
-
-	trigger: function( event, data, elem, onlyHandlers ) {
-
-		var i, cur, tmp, bubbleType, ontype, handle, special, lastElement,
-			eventPath = [ elem || document ],
-			type = hasOwn.call( event, "type" ) ? event.type : event,
-			namespaces = hasOwn.call( event, "namespace" ) ? event.namespace.split( "." ) : [];
-
-		cur = lastElement = tmp = elem = elem || document;
-
-		// Don't do events on text and comment nodes
-		if ( elem.nodeType === 3 || elem.nodeType === 8 ) {
-			return;
-		}
-
-		// focus/blur morphs to focusin/out; ensure we're not firing them right now
-		if ( rfocusMorph.test( type + jQuery.event.triggered ) ) {
-			return;
-		}
-
-		if ( type.indexOf( "." ) > -1 ) {
-
-			// Namespaced trigger; create a regexp to match event type in handle()
-			namespaces = type.split( "." );
-			type = namespaces.shift();
-			namespaces.sort();
-		}
-		ontype = type.indexOf( ":" ) < 0 && "on" + type;
-
-		// Caller can pass in a jQuery.Event object, Object, or just an event type string
-		event = event[ jQuery.expando ] ?
-			event :
-			new jQuery.Event( type, typeof event === "object" && event );
-
-		// Trigger bitmask: & 1 for native handlers; & 2 for jQuery (always true)
-		event.isTrigger = onlyHandlers ? 2 : 3;
-		event.namespace = namespaces.join( "." );
-		event.rnamespace = event.namespace ?
-			new RegExp( "(^|\\.)" + namespaces.join( "\\.(?:.*\\.|)" ) + "(\\.|$)" ) :
-			null;
-
-		// Clean up the event in case it is being reused
-		event.result = undefined;
-		if ( !event.target ) {
-			event.target = elem;
-		}
-
-		// Clone any incoming data and prepend the event, creating the handler arg list
-		data = data == null ?
-			[ event ] :
-			jQuery.makeArray( data, [ event ] );
-
-		// Allow special events to draw outside the lines
-		special = jQuery.event.special[ type ] || {};
-		if ( !onlyHandlers && special.trigger && special.trigger.apply( elem, data ) === false ) {
-			return;
-		}
-
-		// Determine event propagation path in advance, per W3C events spec (trac-9951)
-		// Bubble up to document, then to window; watch for a global ownerDocument var (trac-9724)
-		if ( !onlyHandlers && !special.noBubble && !isWindow( elem ) ) {
-
-			bubbleType = special.delegateType || type;
-			if ( !rfocusMorph.test( bubbleType + type ) ) {
-				cur = cur.parentNode;
-			}
-			for ( ; cur; cur = cur.parentNode ) {
-				eventPath.push( cur );
-				tmp = cur;
-			}
-
-			// Only add window if we got to document (e.g., not plain obj or detached DOM)
-			if ( tmp === ( elem.ownerDocument || document ) ) {
-				eventPath.push( tmp.defaultView || tmp.parentWindow || window );
-			}
-		}
-
-		// Fire handlers on the event path
-		i = 0;
-		while ( ( cur = eventPath[ i++ ] ) && !event.isPropagationStopped() ) {
-			lastElement = cur;
-			event.type = i > 1 ?
-				bubbleType :
-				special.bindType || type;
-
-			// jQuery handler
-			handle = ( dataPriv.get( cur, "events" ) || Object.create( null ) )[ event.type ] &&
-				dataPriv.get( cur, "handle" );
-			if ( handle ) {
-				handle.apply( cur, data );
-			}
-
-			// Native handler
-			handle = ontype && cur[ ontype ];
-			if ( handle && handle.apply && acceptData( cur ) ) {
-				event.result = handle.apply( cur, data );
-				if ( event.result === false ) {
-					event.preventDefault();
-				}
-			}
-		}
-		event.type = type;
-
-		// If nobody prevented the default action, do it now
-		if ( !onlyHandlers && !event.isDefaultPrevented() ) {
-
-			if ( ( !special._default ||
-				special._default.apply( eventPath.pop(), data ) === false ) &&
-				acceptData( elem ) ) {
-
-				// Call a native DOM method on the target with the same name as the event.
-				// Don't do default actions on window, that's where global variables be (trac-6170)
-				if ( ontype && isFunction( elem[ type ] ) && !isWindow( elem ) ) {
-
-					// Don't re-trigger an onFOO event when we call its FOO() method
-					tmp = elem[ ontype ];
-
-					if ( tmp ) {
-						elem[ ontype ] = null;
-					}
-
-					// Prevent re-triggering of the same event, since we already bubbled it above
-					jQuery.event.triggered = type;
-
-					if ( event.isPropagationStopped() ) {
-						lastElement.addEventListener( type, stopPropagationCallback );
-					}
-
-					elem[ type ]();
-
-					if ( event.isPropagationStopped() ) {
-						lastElement.removeEventListener( type, stopPropagationCallback );
-					}
-
-					jQuery.event.triggered = undefined;
-
-					if ( tmp ) {
-						elem[ ontype ] = tmp;
-					}
-				}
-			}
-		}
-
-		return event.result;
-	},
-
-	// Piggyback on a donor event to simulate a different one
-	// Used only for `focus(in | out)` events
-	simulate: function( type, elem, event ) {
-		var e = jQuery.extend(
-			new jQuery.Event(),
-			event,
-			{
-				type: type,
-				isSimulated: true
-			}
-		);
-
-		jQuery.event.trigger( e, null, elem );
-	}
-
-} );
-
-jQuery.fn.extend( {
-
-	trigger: function( type, data ) {
-		return this.each( function() {
-			jQuery.event.trigger( type, data, this );
-		} );
-	},
-	triggerHandler: function( type, data ) {
-		var elem = this[ 0 ];
-		if ( elem ) {
-			return jQuery.event.trigger( type, data, elem, true );
-		}
-	}
-} );
-
-
-var
-	rbracket = /\[\]$/,
-	rCRLF = /\r?\n/g,
-	rsubmitterTypes = /^(?:submit|button|image|reset|file)$/i,
-	rsubmittable = /^(?:input|select|textarea|keygen)/i;
-
-function buildParams( prefix, obj, traditional, add ) {
-	var name;
-
-	if ( Array.isArray( obj ) ) {
-
-		// Serialize array item.
-		jQuery.each( obj, function( i, v ) {
-			if ( traditional || rbracket.test( prefix ) ) {
-
-				// Treat each array item as a scalar.
-				add( prefix, v );
-
-			} else {
-
-				// Item is non-scalar (array or object), encode its numeric index.
-				buildParams(
-					prefix + "[" + ( typeof v === "object" && v != null ? i : "" ) + "]",
-					v,
-					traditional,
-					add
-				);
-			}
-		} );
-
-	} else if ( !traditional && toType( obj ) === "object" ) {
-
-		// Serialize object item.
-		for ( name in obj ) {
-			buildParams( prefix + "[" + name + "]", obj[ name ], traditional, add );
-		}
-
-	} else {
-
-		// Serialize scalar item.
-		add( prefix, obj );
-	}
-}
-
-// Serialize an array of form elements or a set of
-// key/values into a query string
-jQuery.param = function( a, traditional ) {
-	var prefix,
-		s = [],
-		add = function( key, valueOrFunction ) {
-
-			// If value is a function, invoke it and use its return value
-			var value = isFunction( valueOrFunction ) ?
-				valueOrFunction() :
-				valueOrFunction;
-
-			s[ s.length ] = encodeURIComponent( key ) + "=" +
-				encodeURIComponent( value == null ? "" : value );
-		};
-
-	if ( a == null ) {
-		return "";
-	}
-
-	// If an array was passed in, assume that it is an array of form elements.
-	if ( Array.isArray( a ) || ( a.jquery && !jQuery.isPlainObject( a ) ) ) {
-
-		// Serialize the form elements
-		jQuery.each( a, function() {
-			add( this.name, this.value );
-		} );
-
-	} else {
-
-		// If traditional, encode the "old" way (the way 1.3.2 or older
-		// did it), otherwise encode params recursively.
-		for ( prefix in a ) {
-			buildParams( prefix, a[ prefix ], traditional, add );
-		}
-	}
-
-	// Return the resulting serialization
-	return s.join( "&" );
-};
-
-jQuery.fn.extend( {
-	serialize: function() {
-		return jQuery.param( this.serializeArray() );
-	},
-	serializeArray: function() {
-		return this.map( function() {
-
-			// Can add propHook for "elements" to filter or add form elements
-			var elements = jQuery.prop( this, "elements" );
-			return elements ? jQuery.makeArray( elements ) : this;
-		} ).filter( function() {
-			var type = this.type;
-
-			// Use .is( ":disabled" ) so that fieldset[disabled] works
-			return this.name && !jQuery( this ).is( ":disabled" ) &&
-				rsubmittable.test( this.nodeName ) && !rsubmitterTypes.test( type ) &&
-				( this.checked || !rcheckableType.test( type ) );
-		} ).map( function( _i, elem ) {
-			var val = jQuery( this ).val();
-
-			if ( val == null ) {
-				return null;
-			}
-
-			if ( Array.isArray( val ) ) {
-				return jQuery.map( val, function( val ) {
-					return { name: elem.name, value: val.replace( rCRLF, "\r\n" ) };
-				} );
-			}
-
-			return { name: elem.name, value: val.replace( rCRLF, "\r\n" ) };
-		} ).get();
-	}
-} );
-
-
-var
-	r20 = /%20/g,
-	rhash = /#.*$/,
-	rantiCache = /([?&])_=[^&]*/,
-	rheaders = /^(.*?):[ \t]*([^\r\n]*)$/mg,
-
-	// trac-7653, trac-8125, trac-8152: local protocol detection
-	rlocalProtocol = /^(?:about|app|app-storage|.+-extension|file|res|widget):$/,
-	rnoContent = /^(?:GET|HEAD)$/,
-	rprotocol = /^\/\//,
-
-	/* Prefilters
-	 * 1) They are useful to introduce custom dataTypes (see ajax/jsonp.js for an example)
-	 * 2) These are called:
-	 *    - BEFORE asking for a transport
-	 *    - AFTER param serialization (s.data is a string if s.processData is true)
-	 * 3) key is the dataType
-	 * 4) the catchall symbol "*" can be used
-	 * 5) execution will start with transport dataType and THEN continue down to "*" if needed
-	 */
-	prefilters = {},
-
-	/* Transports bindings
-	 * 1) key is the dataType
-	 * 2) the catchall symbol "*" can be used
-	 * 3) selection will start with transport dataType and THEN go to "*" if needed
-	 */
-	transports = {},
-
-	// Avoid comment-prolog char sequence (trac-10098); must appease lint and evade compression
-	allTypes = "*/".concat( "*" ),
-
-	// Anchor tag for parsing the document origin
-	originAnchor = document.createElement( "a" );
-
-originAnchor.href = location.href;
-
-// Base "constructor" for jQuery.ajaxPrefilter and jQuery.ajaxTransport
-function addToPrefiltersOrTransports( structure ) {
-
-	// dataTypeExpression is optional and defaults to "*"
-	return function( dataTypeExpression, func ) {
-
-		if ( typeof dataTypeExpression !== "string" ) {
-			func = dataTypeExpression;
-			dataTypeExpression = "*";
-		}
-
-		var dataType,
-			i = 0,
-			dataTypes = dataTypeExpression.toLowerCase().match( rnothtmlwhite ) || [];
-
-		if ( isFunction( func ) ) {
-
-			// For each dataType in the dataTypeExpression
-			while ( ( dataType = dataTypes[ i++ ] ) ) {
-
-				// Prepend if requested
-				if ( dataType[ 0 ] === "+" ) {
-					dataType = dataType.slice( 1 ) || "*";
-					( structure[ dataType ] = structure[ dataType ] || [] ).unshift( func );
-
-				// Otherwise append
-				} else {
-					( structure[ dataType ] = structure[ dataType ] || [] ).push( func );
-				}
-			}
-		}
-	};
-}
-
-// Base inspection function for prefilters and transports
-function inspectPrefiltersOrTransports( structure, options, originalOptions, jqXHR ) {
-
-	var inspected = {},
-		seekingTransport = ( structure === transports );
-
-	function inspect( dataType ) {
-		var selected;
-		inspected[ dataType ] = true;
-		jQuery.each( structure[ dataType ] || [], function( _, prefilterOrFactory ) {
-			var dataTypeOrTransport = prefilterOrFactory( options, originalOptions, jqXHR );
-			if ( typeof dataTypeOrTransport === "string" &&
-				!seekingTransport && !inspected[ dataTypeOrTransport ] ) {
-
-				options.dataTypes.unshift( dataTypeOrTransport );
-				inspect( dataTypeOrTransport );
-				return false;
-			} else if ( seekingTransport ) {
-				return !( selected = dataTypeOrTransport );
-			}
-		} );
-		return selected;
-	}
-
-	return inspect( options.dataTypes[ 0 ] ) || !inspected[ "*" ] && inspect( "*" );
-}
-
-// A special extend for ajax options
-// that takes "flat" options (not to be deep extended)
-// Fixes trac-9887
-function ajaxExtend( target, src ) {
-	var key, deep,
-		flatOptions = jQuery.ajaxSettings.flatOptions || {};
-
-	for ( key in src ) {
-		if ( src[ key ] !== undefined ) {
-			( flatOptions[ key ] ? target : ( deep || ( deep = {} ) ) )[ key ] = src[ key ];
-		}
-	}
-	if ( deep ) {
-		jQuery.extend( true, target, deep );
-	}
-
-	return target;
-}
-
-/* Handles responses to an ajax request:
- * - finds the right dataType (mediates between content-type and expected dataType)
- * - returns the corresponding response
- */
-function ajaxHandleResponses( s, jqXHR, responses ) {
-
-	var ct, type, finalDataType, firstDataType,
-		contents = s.contents,
-		dataTypes = s.dataTypes;
-
-	// Remove auto dataType and get content-type in the process
-	while ( dataTypes[ 0 ] === "*" ) {
-		dataTypes.shift();
-		if ( ct === undefined ) {
-			ct = s.mimeType || jqXHR.getResponseHeader( "Content-Type" );
-		}
-	}
-
-	// Check if we're dealing with a known content-type
-	if ( ct ) {
-		for ( type in contents ) {
-			if ( contents[ type ] && contents[ type ].test( ct ) ) {
-				dataTypes.unshift( type );
-				break;
-			}
-		}
-	}
-
-	// Check to see if we have a response for the expected dataType
-	if ( dataTypes[ 0 ] in responses ) {
-		finalDataType = dataTypes[ 0 ];
-	} else {
-
-		// Try convertible dataTypes
-		for ( type in responses ) {
-			if ( !dataTypes[ 0 ] || s.converters[ type + " " + dataTypes[ 0 ] ] ) {
-				finalDataType = type;
-				break;
-			}
-			if ( !firstDataType ) {
-				firstDataType = type;
-			}
-		}
-
-		// Or just use first one
-		finalDataType = finalDataType || firstDataType;
-	}
-
-	// If we found a dataType
-	// We add the dataType to the list if needed
-	// and return the corresponding response
-	if ( finalDataType ) {
-		if ( finalDataType !== dataTypes[ 0 ] ) {
-			dataTypes.unshift( finalDataType );
-		}
-		return responses[ finalDataType ];
-	}
-}
-
-/* Chain conversions given the request and the original response
- * Also sets the responseXXX fields on the jqXHR instance
- */
-function ajaxConvert( s, response, jqXHR, isSuccess ) {
-	var conv2, current, conv, tmp, prev,
-		converters = {},
-
-		// Work with a copy of dataTypes in case we need to modify it for conversion
-		dataTypes = s.dataTypes.slice();
-
-	// Create converters map with lowercased keys
-	if ( dataTypes[ 1 ] ) {
-		for ( conv in s.converters ) {
-			converters[ conv.toLowerCase() ] = s.converters[ conv ];
-		}
-	}
-
-	current = dataTypes.shift();
-
-	// Convert to each sequential dataType
-	while ( current ) {
-
-		if ( s.responseFields[ current ] ) {
-			jqXHR[ s.responseFields[ current ] ] = response;
-		}
-
-		// Apply the dataFilter if provided
-		if ( !prev && isSuccess && s.dataFilter ) {
-			response = s.dataFilter( response, s.dataType );
-		}
-
-		prev = current;
-		current = dataTypes.shift();
-
-		if ( current ) {
-
-			// There's only work to do if current dataType is non-auto
-			if ( current === "*" ) {
-
-				current = prev;
-
-			// Convert response if prev dataType is non-auto and differs from current
-			} else if ( prev !== "*" && prev !== current ) {
-
-				// Seek a direct converter
-				conv = converters[ prev + " " + current ] || converters[ "* " + current ];
-
-				// If none found, seek a pair
-				if ( !conv ) {
-					for ( conv2 in converters ) {
-
-						// If conv2 outputs current
-						tmp = conv2.split( " " );
-						if ( tmp[ 1 ] === current ) {
-
-							// If prev can be converted to accepted input
-							conv = converters[ prev + " " + tmp[ 0 ] ] ||
-								converters[ "* " + tmp[ 0 ] ];
-							if ( conv ) {
-
-								// Condense equivalence converters
-								if ( conv === true ) {
-									conv = converters[ conv2 ];
-
-								// Otherwise, insert the intermediate dataType
-								} else if ( converters[ conv2 ] !== true ) {
-									current = tmp[ 0 ];
-									dataTypes.unshift( tmp[ 1 ] );
-								}
-								break;
-							}
-						}
-					}
-				}
-
-				// Apply converter (if not an equivalence)
-				if ( conv !== true ) {
-
-					// Unless errors are allowed to bubble, catch and return them
-					if ( conv && s.throws ) {
-						response = conv( response );
-					} else {
-						try {
-							response = conv( response );
-						} catch ( e ) {
-							return {
-								state: "parsererror",
-								error: conv ? e : "No conversion from " + prev + " to " + current
-							};
-						}
-					}
-				}
-			}
-		}
-	}
-
-	return { state: "success", data: response };
-}
-
-jQuery.extend( {
-
-	// Counter for holding the number of active queries
-	active: 0,
-
-	// Last-Modified header cache for next request
-	lastModified: {},
-	etag: {},
-
-	ajaxSettings: {
-		url: location.href,
-		type: "GET",
-		isLocal: rlocalProtocol.test( location.protocol ),
-		global: true,
-		processData: true,
-		async: true,
-		contentType: "application/x-www-form-urlencoded; charset=UTF-8",
-
-		/*
-		timeout: 0,
-		data: null,
-		dataType: null,
-		username: null,
-		password: null,
-		cache: null,
-		throws: false,
-		traditional: false,
-		headers: {},
-		*/
-
-		accepts: {
-			"*": allTypes,
-			text: "text/plain",
-			html: "text/html",
-			xml: "application/xml, text/xml",
-			json: "application/json, text/javascript"
-		},
-
-		contents: {
-			xml: /\bxml\b/,
-			html: /\bhtml/,
-			json: /\bjson\b/
-		},
-
-		responseFields: {
-			xml: "responseXML",
-			text: "responseText",
-			json: "responseJSON"
-		},
-
-		// Data converters
-		// Keys separate source (or catchall "*") and destination types with a single space
-		converters: {
-
-			// Convert anything to text
-			"* text": String,
-
-			// Text to html (true = no transformation)
-			"text html": true,
-
-			// Evaluate text as a json expression
-			"text json": JSON.parse,
-
-			// Parse text as xml
-			"text xml": jQuery.parseXML
-		},
-
-		// For options that shouldn't be deep extended:
-		// you can add your own custom options here if
-		// and when you create one that shouldn't be
-		// deep extended (see ajaxExtend)
-		flatOptions: {
-			url: true,
-			context: true
-		}
-	},
-
-	// Creates a full fledged settings object into target
-	// with both ajaxSettings and settings fields.
-	// If target is omitted, writes into ajaxSettings.
-	ajaxSetup: function( target, settings ) {
-		return settings ?
-
-			// Building a settings object
-			ajaxExtend( ajaxExtend( target, jQuery.ajaxSettings ), settings ) :
-
-			// Extending ajaxSettings
-			ajaxExtend( jQuery.ajaxSettings, target );
-	},
-
-	ajaxPrefilter: addToPrefiltersOrTransports( prefilters ),
-	ajaxTransport: addToPrefiltersOrTransports( transports ),
-
-	// Main method
-	ajax: function( url, options ) {
-
-		// If url is an object, simulate pre-1.5 signature
-		if ( typeof url === "object" ) {
-			options = url;
-			url = undefined;
-		}
-
-		// Force options to be an object
-		options = options || {};
-
-		var transport,
-
-			// URL without anti-cache param
-			cacheURL,
-
-			// Response headers
-			responseHeadersString,
-			responseHeaders,
-
-			// timeout handle
-			timeoutTimer,
-
-			// Url cleanup var
-			urlAnchor,
-
-			// Request state (becomes false upon send and true upon completion)
-			completed,
-
-			// To know if global events are to be dispatched
-			fireGlobals,
-
-			// Loop variable
-			i,
-
-			// uncached part of the url
-			uncached,
-
-			// Create the final options object
-			s = jQuery.ajaxSetup( {}, options ),
-
-			// Callbacks context
-			callbackContext = s.context || s,
-
-			// Context for global events is callbackContext if it is a DOM node or jQuery collection
-			globalEventContext = s.context &&
-				( callbackContext.nodeType || callbackContext.jquery ) ?
-				jQuery( callbackContext ) :
-				jQuery.event,
-
-			// Deferreds
-			deferred = jQuery.Deferred(),
-			completeDeferred = jQuery.Callbacks( "once memory" ),
-
-			// Status-dependent callbacks
-			statusCode = s.statusCode || {},
-
-			// Headers (they are sent all at once)
-			requestHeaders = {},
-			requestHeadersNames = {},
-
-			// Default abort message
-			strAbort = "canceled",
-
-			// Fake xhr
-			jqXHR = {
-				readyState: 0,
-
-				// Builds headers hashtable if needed
-				getResponseHeader: function( key ) {
-					var match;
-					if ( completed ) {
-						if ( !responseHeaders ) {
-							responseHeaders = {};
-							while ( ( match = rheaders.exec( responseHeadersString ) ) ) {
-								responseHeaders[ match[ 1 ].toLowerCase() + " " ] =
-									( responseHeaders[ match[ 1 ].toLowerCase() + " " ] || [] )
-										.concat( match[ 2 ] );
-							}
-						}
-						match = responseHeaders[ key.toLowerCase() + " " ];
-					}
-					return match == null ? null : match.join( ", " );
-				},
-
-				// Raw string
-				getAllResponseHeaders: function() {
-					return completed ? responseHeadersString : null;
-				},
-
-				// Caches the header
-				setRequestHeader: function( name, value ) {
-					if ( completed == null ) {
-						name = requestHeadersNames[ name.toLowerCase() ] =
-							requestHeadersNames[ name.toLowerCase() ] || name;
-						requestHeaders[ name ] = value;
-					}
-					return this;
-				},
-
-				// Overrides response content-type header
-				overrideMimeType: function( type ) {
-					if ( completed == null ) {
-						s.mimeType = type;
-					}
-					return this;
-				},
-
-				// Status-dependent callbacks
-				statusCode: function( map ) {
-					var code;
-					if ( map ) {
-						if ( completed ) {
-
-							// Execute the appropriate callbacks
-							jqXHR.always( map[ jqXHR.status ] );
-						} else {
-
-							// Lazy-add the new callbacks in a way that preserves old ones
-							for ( code in map ) {
-								statusCode[ code ] = [ statusCode[ code ], map[ code ] ];
-							}
-						}
-					}
-					return this;
-				},
-
-				// Cancel the request
-				abort: function( statusText ) {
-					var finalText = statusText || strAbort;
-					if ( transport ) {
-						transport.abort( finalText );
-					}
-					done( 0, finalText );
-					return this;
-				}
-			};
-
-		// Attach deferreds
-		deferred.promise( jqXHR );
-
-		// Add protocol if not provided (prefilters might expect it)
-		// Handle falsy url in the settings object (trac-10093: consistency with old signature)
-		// We also use the url parameter if available
-		s.url = ( ( url || s.url || location.href ) + "" )
-			.replace( rprotocol, location.protocol + "//" );
-
-		// Alias method option to type as per ticket trac-12004
-		s.type = options.method || options.type || s.method || s.type;
-
-		// Extract dataTypes list
-		s.dataTypes = ( s.dataType || "*" ).toLowerCase().match( rnothtmlwhite ) || [ "" ];
-
-		// A cross-domain request is in order when the origin doesn't match the current origin.
-		if ( s.crossDomain == null ) {
-			urlAnchor = document.createElement( "a" );
-
-			// Support: IE <=8 - 11, Edge 12 - 15
-			// IE throws exception on accessing the href property if url is malformed,
-			// e.g. http://example.com:80x/
-			try {
-				urlAnchor.href = s.url;
-
-				// Support: IE <=8 - 11 only
-				// Anchor's host property isn't correctly set when s.url is relative
-				urlAnchor.href = urlAnchor.href;
-				s.crossDomain = originAnchor.protocol + "//" + originAnchor.host !==
-					urlAnchor.protocol + "//" + urlAnchor.host;
-			} catch ( e ) {
-
-				// If there is an error parsing the URL, assume it is crossDomain,
-				// it can be rejected by the transport if it is invalid
-				s.crossDomain = true;
-			}
-		}
-
-		// Convert data if not already a string
-		if ( s.data && s.processData && typeof s.data !== "string" ) {
-			s.data = jQuery.param( s.data, s.traditional );
-		}
-
-		// Apply prefilters
-		inspectPrefiltersOrTransports( prefilters, s, options, jqXHR );
-
-		// If request was aborted inside a prefilter, stop there
-		if ( completed ) {
-			return jqXHR;
-		}
-
-		// We can fire global events as of now if asked to
-		// Don't fire events if jQuery.event is undefined in an AMD-usage scenario (trac-15118)
-		fireGlobals = jQuery.event && s.global;
-
-		// Watch for a new set of requests
-		if ( fireGlobals && jQuery.active++ === 0 ) {
-			jQuery.event.trigger( "ajaxStart" );
-		}
-
-		// Uppercase the type
-		s.type = s.type.toUpperCase();
-
-		// Determine if request has content
-		s.hasContent = !rnoContent.test( s.type );
-
-		// Save the URL in case we're toying with the If-Modified-Since
-		// and/or If-None-Match header later on
-		// Remove hash to simplify url manipulation
-		cacheURL = s.url.replace( rhash, "" );
-
-		// More options handling for requests with no content
-		if ( !s.hasContent ) {
-
-			// Remember the hash so we can put it back
-			uncached = s.url.slice( cacheURL.length );
-
-			// If data is available and should be processed, append data to url
-			if ( s.data && ( s.processData || typeof s.data === "string" ) ) {
-				cacheURL += ( rquery.test( cacheURL ) ? "&" : "?" ) + s.data;
-
-				// trac-9682: remove data so that it's not used in an eventual retry
-				delete s.data;
-			}
-
-			// Add or update anti-cache param if needed
-			if ( s.cache === false ) {
-				cacheURL = cacheURL.replace( rantiCache, "$1" );
-				uncached = ( rquery.test( cacheURL ) ? "&" : "?" ) + "_=" + ( nonce.guid++ ) +
-					uncached;
-			}
-
-			// Put hash and anti-cache on the URL that will be requested (gh-1732)
-			s.url = cacheURL + uncached;
-
-		// Change '%20' to '+' if this is encoded form body content (gh-2658)
-		} else if ( s.data && s.processData &&
-			( s.contentType || "" ).indexOf( "application/x-www-form-urlencoded" ) === 0 ) {
-			s.data = s.data.replace( r20, "+" );
-		}
-
-		// Set the If-Modified-Since and/or If-None-Match header, if in ifModified mode.
-		if ( s.ifModified ) {
-			if ( jQuery.lastModified[ cacheURL ] ) {
-				jqXHR.setRequestHeader( "If-Modified-Since", jQuery.lastModified[ cacheURL ] );
-			}
-			if ( jQuery.etag[ cacheURL ] ) {
-				jqXHR.setRequestHeader( "If-None-Match", jQuery.etag[ cacheURL ] );
-			}
-		}
-
-		// Set the correct header, if data is being sent
-		if ( s.data && s.hasContent && s.contentType !== false || options.contentType ) {
-			jqXHR.setRequestHeader( "Content-Type", s.contentType );
-		}
-
-		// Set the Accepts header for the server, depending on the dataType
-		jqXHR.setRequestHeader(
-			"Accept",
-			s.dataTypes[ 0 ] && s.accepts[ s.dataTypes[ 0 ] ] ?
-				s.accepts[ s.dataTypes[ 0 ] ] +
-					( s.dataTypes[ 0 ] !== "*" ? ", " + allTypes + "; q=0.01" : "" ) :
-				s.accepts[ "*" ]
-		);
-
-		// Check for headers option
-		for ( i in s.headers ) {
-			jqXHR.setRequestHeader( i, s.headers[ i ] );
-		}
-
-		// Allow custom headers/mimetypes and early abort
-		if ( s.beforeSend &&
-			( s.beforeSend.call( callbackContext, jqXHR, s ) === false || completed ) ) {
-
-			// Abort if not done already and return
-			return jqXHR.abort();
-		}
-
-		// Aborting is no longer a cancellation
-		strAbort = "abort";
-
-		// Install callbacks on deferreds
-		completeDeferred.add( s.complete );
-		jqXHR.done( s.success );
-		jqXHR.fail( s.error );
-
-		// Get transport
-		transport = inspectPrefiltersOrTransports( transports, s, options, jqXHR );
-
-		// If no transport, we auto-abort
-		if ( !transport ) {
-			done( -1, "No Transport" );
-		} else {
-			jqXHR.readyState = 1;
-
-			// Send global event
-			if ( fireGlobals ) {
-				globalEventContext.trigger( "ajaxSend", [ jqXHR, s ] );
-			}
-
-			// If request was aborted inside ajaxSend, stop there
-			if ( completed ) {
-				return jqXHR;
-			}
-
-			// Timeout
-			if ( s.async && s.timeout > 0 ) {
-				timeoutTimer = window.setTimeout( function() {
-					jqXHR.abort( "timeout" );
-				}, s.timeout );
-			}
-
-			try {
-				completed = false;
-				transport.send( requestHeaders, done );
-			} catch ( e ) {
-
-				// Rethrow post-completion exceptions
-				if ( completed ) {
-					throw e;
-				}
-
-				// Propagate others as results
-				done( -1, e );
-			}
-		}
-
-		// Callback for when everything is done
-		function done( status, nativeStatusText, responses, headers ) {
-			var isSuccess, success, error, response, modified,
-				statusText = nativeStatusText;
-
-			// Ignore repeat invocations
-			if ( completed ) {
-				return;
-			}
-
-			completed = true;
-
-			// Clear timeout if it exists
-			if ( timeoutTimer ) {
-				window.clearTimeout( timeoutTimer );
-			}
-
-			// Dereference transport for early garbage collection
-			// (no matter how long the jqXHR object will be used)
-			transport = undefined;
-
-			// Cache response headers
-			responseHeadersString = headers || "";
-
-			// Set readyState
-			jqXHR.readyState = status > 0 ? 4 : 0;
-
-			// Determine if successful
-			isSuccess = status >= 200 && status < 300 || status === 304;
-
-			// Get response data
-			if ( responses ) {
-				response = ajaxHandleResponses( s, jqXHR, responses );
-			}
-
-			// Use a noop converter for missing script but not if jsonp
-			if ( !isSuccess &&
-				jQuery.inArray( "script", s.dataTypes ) > -1 &&
-				jQuery.inArray( "json", s.dataTypes ) < 0 ) {
-				s.converters[ "text script" ] = function() {};
-			}
-
-			// Convert no matter what (that way responseXXX fields are always set)
-			response = ajaxConvert( s, response, jqXHR, isSuccess );
-
-			// If successful, handle type chaining
-			if ( isSuccess ) {
-
-				// Set the If-Modified-Since and/or If-None-Match header, if in ifModified mode.
-				if ( s.ifModified ) {
-					modified = jqXHR.getResponseHeader( "Last-Modified" );
-					if ( modified ) {
-						jQuery.lastModified[ cacheURL ] = modified;
-					}
-					modified = jqXHR.getResponseHeader( "etag" );
-					if ( modified ) {
-						jQuery.etag[ cacheURL ] = modified;
-					}
-				}
-
-				// if no content
-				if ( status === 204 || s.type === "HEAD" ) {
-					statusText = "nocontent";
-
-				// if not modified
-				} else if ( status === 304 ) {
-					statusText = "notmodified";
-
-				// If we have data, let's convert it
-				} else {
-					statusText = response.state;
-					success = response.data;
-					error = response.error;
-					isSuccess = !error;
-				}
-			} else {
-
-				// Extract error from statusText and normalize for non-aborts
-				error = statusText;
-				if ( status || !statusText ) {
-					statusText = "error";
-					if ( status < 0 ) {
-						status = 0;
-					}
-				}
-			}
-
-			// Set data for the fake xhr object
-			jqXHR.status = status;
-			jqXHR.statusText = ( nativeStatusText || statusText ) + "";
-
-			// Success/Error
-			if ( isSuccess ) {
-				deferred.resolveWith( callbackContext, [ success, statusText, jqXHR ] );
-			} else {
-				deferred.rejectWith( callbackContext, [ jqXHR, statusText, error ] );
-			}
-
-			// Status-dependent callbacks
-			jqXHR.statusCode( statusCode );
-			statusCode = undefined;
-
-			if ( fireGlobals ) {
-				globalEventContext.trigger( isSuccess ? "ajaxSuccess" : "ajaxError",
-					[ jqXHR, s, isSuccess ? success : error ] );
-			}
-
-			// Complete
-			completeDeferred.fireWith( callbackContext, [ jqXHR, statusText ] );
-
-			if ( fireGlobals ) {
-				globalEventContext.trigger( "ajaxComplete", [ jqXHR, s ] );
-
-				// Handle the global AJAX counter
-				if ( !( --jQuery.active ) ) {
-					jQuery.event.trigger( "ajaxStop" );
-				}
-			}
-		}
-
-		return jqXHR;
-	},
-
-	getJSON: function( url, data, callback ) {
-		return jQuery.get( url, data, callback, "json" );
-	},
-
-	getScript: function( url, callback ) {
-		return jQuery.get( url, undefined, callback, "script" );
-	}
-} );
-
-jQuery.each( [ "get", "post" ], function( _i, method ) {
-	jQuery[ method ] = function( url, data, callback, type ) {
-
-		// Shift arguments if data argument was omitted
-		if ( isFunction( data ) ) {
-			type = type || callback;
-			callback = data;
-			data = undefined;
-		}
-
-		// The url can be an options object (which then must have .url)
-		return jQuery.ajax( jQuery.extend( {
-			url: url,
-			type: method,
-			dataType: type,
-			data: data,
-			success: callback
-		}, jQuery.isPlainObject( url ) && url ) );
-	};
-} );
-
-jQuery.ajaxPrefilter( function( s ) {
-	var i;
-	for ( i in s.headers ) {
-		if ( i.toLowerCase() === "content-type" ) {
-			s.contentType = s.headers[ i ] || "";
-		}
-	}
-} );
-
-
-jQuery._evalUrl = function( url, options, doc ) {
-	return jQuery.ajax( {
-		url: url,
-
-		// Make this explicit, since user can override this through ajaxSetup (trac-11264)
-		type: "GET",
-		dataType: "script",
-		cache: true,
-		async: false,
-		global: false,
-
-		// Only evaluate the response if it is successful (gh-4126)
-		// dataFilter is not invoked for failure responses, so using it instead
-		// of the default converter is kludgy but it works.
-		converters: {
-			"text script": function() {}
-		},
-		dataFilter: function( response ) {
-			jQuery.globalEval( response, options, doc );
-		}
-	} );
-};
-
-
-jQuery.fn.extend( {
-	wrapAll: function( html ) {
-		var wrap;
-
-		if ( this[ 0 ] ) {
-			if ( isFunction( html ) ) {
-				html = html.call( this[ 0 ] );
-			}
-
-			// The elements to wrap the target around
-			wrap = jQuery( html, this[ 0 ].ownerDocument ).eq( 0 ).clone( true );
-
-			if ( this[ 0 ].parentNode ) {
-				wrap.insertBefore( this[ 0 ] );
-			}
-
-			wrap.map( function() {
-				var elem = this;
-
-				while ( elem.firstElementChild ) {
-					elem = elem.firstElementChild;
-				}
-
-				return elem;
-			} ).append( this );
-		}
-
-		return this;
-	},
-
-	wrapInner: function( html ) {
-		if ( isFunction( html ) ) {
-			return this.each( function( i ) {
-				jQuery( this ).wrapInner( html.call( this, i ) );
-			} );
-		}
-
-		return this.each( function() {
-			var self = jQuery( this ),
-				contents = self.contents();
-
-			if ( contents.length ) {
-				contents.wrapAll( html );
-
-			} else {
-				self.append( html );
-			}
-		} );
-	},
-
-	wrap: function( html ) {
-		var htmlIsFunction = isFunction( html );
-
-		return this.each( function( i ) {
-			jQuery( this ).wrapAll( htmlIsFunction ? html.call( this, i ) : html );
-		} );
-	},
-
-	unwrap: function( selector ) {
-		this.parent( selector ).not( "body" ).each( function() {
-			jQuery( this ).replaceWith( this.childNodes );
-		} );
-		return this;
-	}
-} );
-
-
-jQuery.expr.pseudos.hidden = function( elem ) {
-	return !jQuery.expr.pseudos.visible( elem );
-};
-jQuery.expr.pseudos.visible = function( elem ) {
-	return !!( elem.offsetWidth || elem.offsetHeight || elem.getClientRects().length );
-};
-
-
-
-
-jQuery.ajaxSettings.xhr = function() {
-	try {
-		return new window.XMLHttpRequest();
-	} catch ( e ) {}
-};
-
-var xhrSuccessStatus = {
-
-		// File protocol always yields status code 0, assume 200
-		0: 200,
-
-		// Support: IE <=9 only
-		// trac-1450: sometimes IE returns 1223 when it should be 204
-		1223: 204
-	},
-	xhrSupported = jQuery.ajaxSettings.xhr();
-
-support.cors = !!xhrSupported && ( "withCredentials" in xhrSupported );
-support.ajax = xhrSupported = !!xhrSupported;
-
-jQuery.ajaxTransport( function( options ) {
-	var callback, errorCallback;
-
-	// Cross domain only allowed if supported through XMLHttpRequest
-	if ( support.cors || xhrSupported && !options.crossDomain ) {
-		return {
-			send: function( headers, complete ) {
-				var i,
-					xhr = options.xhr();
-
-				xhr.open(
-					options.type,
-					options.url,
-					options.async,
-					options.username,
-					options.password
-				);
-
-				// Apply custom fields if provided
-				if ( options.xhrFields ) {
-					for ( i in options.xhrFields ) {
-						xhr[ i ] = options.xhrFields[ i ];
-					}
-				}
-
-				// Override mime type if needed
-				if ( options.mimeType && xhr.overrideMimeType ) {
-					xhr.overrideMimeType( options.mimeType );
-				}
-
-				// X-Requested-With header
-				// For cross-domain requests, seeing as conditions for a preflight are
-				// akin to a jigsaw puzzle, we simply never set it to be sure.
-				// (it can always be set on a per-request basis or even using ajaxSetup)
-				// For same-domain requests, won't change header if already provided.
-				if ( !options.crossDomain && !headers[ "X-Requested-With" ] ) {
-					headers[ "X-Requested-With" ] = "XMLHttpRequest";
-				}
-
-				// Set headers
-				for ( i in headers ) {
-					xhr.setRequestHeader( i, headers[ i ] );
-				}
-
-				// Callback
-				callback = function( type ) {
-					return function() {
-						if ( callback ) {
-							callback = errorCallback = xhr.onload =
-								xhr.onerror = xhr.onabort = xhr.ontimeout =
-									xhr.onreadystatechange = null;
-
-							if ( type === "abort" ) {
-								xhr.abort();
-							} else if ( type === "error" ) {
-
-								// Support: IE <=9 only
-								// On a manual native abort, IE9 throws
-								// errors on any property access that is not readyState
-								if ( typeof xhr.status !== "number" ) {
-									complete( 0, "error" );
-								} else {
-									complete(
-
-										// File: protocol always yields status 0; see trac-8605, trac-14207
-										xhr.status,
-										xhr.statusText
-									);
-								}
-							} else {
-								complete(
-									xhrSuccessStatus[ xhr.status ] || xhr.status,
-									xhr.statusText,
-
-									// Support: IE <=9 only
-									// IE9 has no XHR2 but throws on binary (trac-11426)
-									// For XHR2 non-text, let the caller handle it (gh-2498)
-									( xhr.responseType || "text" ) !== "text"  ||
-									typeof xhr.responseText !== "string" ?
-										{ binary: xhr.response } :
-										{ text: xhr.responseText },
-									xhr.getAllResponseHeaders()
-								);
-							}
-						}
-					};
-				};
-
-				// Listen to events
-				xhr.onload = callback();
-				errorCallback = xhr.onerror = xhr.ontimeout = callback( "error" );
-
-				// Support: IE 9 only
-				// Use onreadystatechange to replace onabort
-				// to handle uncaught aborts
-				if ( xhr.onabort !== undefined ) {
-					xhr.onabort = errorCallback;
-				} else {
-					xhr.onreadystatechange = function() {
-
-						// Check readyState before timeout as it changes
-						if ( xhr.readyState === 4 ) {
-
-							// Allow onerror to be called first,
-							// but that will not handle a native abort
-							// Also, save errorCallback to a variable
-							// as xhr.onerror cannot be accessed
-							window.setTimeout( function() {
-								if ( callback ) {
-									errorCallback();
-								}
-							} );
-						}
-					};
-				}
-
-				// Create the abort callback
-				callback = callback( "abort" );
-
-				try {
-
-					// Do send the request (this may raise an exception)
-					xhr.send( options.hasContent && options.data || null );
-				} catch ( e ) {
-
-					// trac-14683: Only rethrow if this hasn't been notified as an error yet
-					if ( callback ) {
-						throw e;
-					}
-				}
-			},
-
-			abort: function() {
-				if ( callback ) {
-					callback();
-				}
-			}
-		};
-	}
-} );
-
-
-
-
-// Prevent auto-execution of scripts when no explicit dataType was provided (See gh-2432)
-jQuery.ajaxPrefilter( function( s ) {
-	if ( s.crossDomain ) {
-		s.contents.script = false;
-	}
-} );
-
-// Install script dataType
-jQuery.ajaxSetup( {
-	accepts: {
-		script: "text/javascript, application/javascript, " +
-			"application/ecmascript, application/x-ecmascript"
-	},
-	contents: {
-		script: /\b(?:java|ecma)script\b/
-	},
-	converters: {
-		"text script": function( text ) {
-			jQuery.globalEval( text );
-			return text;
-		}
-	}
-} );
-
-// Handle cache's special case and crossDomain
-jQuery.ajaxPrefilter( "script", function( s ) {
-	if ( s.cache === undefined ) {
-		s.cache = false;
-	}
-	if ( s.crossDomain ) {
-		s.type = "GET";
-	}
-} );
-
-// Bind script tag hack transport
-jQuery.ajaxTransport( "script", function( s ) {
-
-	// This transport only deals with cross domain or forced-by-attrs requests
-	if ( s.crossDomain || s.scriptAttrs ) {
-		var script, callback;
-		return {
-			send: function( _, complete ) {
-				script = jQuery( "<script>" )
-					.attr( s.scriptAttrs || {} )
-					.prop( { charset: s.scriptCharset, src: s.url } )
-					.on( "load error", callback = function( evt ) {
-						script.remove();
-						callback = null;
-						if ( evt ) {
-							complete( evt.type === "error" ? 404 : 200, evt.type );
-						}
-					} );
-
-				// Use native DOM manipulation to avoid our domManip AJAX trickery
-				document.head.appendChild( script[ 0 ] );
-			},
-			abort: function() {
-				if ( callback ) {
-					callback();
-				}
-			}
-		};
-	}
-} );
-
-
-
-
-var oldCallbacks = [],
-	rjsonp = /(=)\?(?=&|$)|\?\?/;
-
-// Default jsonp settings
-jQuery.ajaxSetup( {
-	jsonp: "callback",
-	jsonpCallback: function() {
-		var callback = oldCallbacks.pop() || ( jQuery.expando + "_" + ( nonce.guid++ ) );
-		this[ callback ] = true;
-		return callback;
-	}
-} );
-
-// Detect, normalize options and install callbacks for jsonp requests
-jQuery.ajaxPrefilter( "json jsonp", function( s, originalSettings, jqXHR ) {
-
-	var callbackName, overwritten, responseContainer,
-		jsonProp = s.jsonp !== false && ( rjsonp.test( s.url ) ?
-			"url" :
-			typeof s.data === "string" &&
-				( s.contentType || "" )
-					.indexOf( "application/x-www-form-urlencoded" ) === 0 &&
-				rjsonp.test( s.data ) && "data"
-		);
-
-	// Handle iff the expected data type is "jsonp" or we have a parameter to set
-	if ( jsonProp || s.dataTypes[ 0 ] === "jsonp" ) {
-
-		// Get callback name, remembering preexisting value associated with it
-		callbackName = s.jsonpCallback = isFunction( s.jsonpCallback ) ?
-			s.jsonpCallback() :
-			s.jsonpCallback;
-
-		// Insert callback into url or form data
-		if ( jsonProp ) {
-			s[ jsonProp ] = s[ jsonProp ].replace( rjsonp, "$1" + callbackName );
-		} else if ( s.jsonp !== false ) {
-			s.url += ( rquery.test( s.url ) ? "&" : "?" ) + s.jsonp + "=" + callbackName;
-		}
-
-		// Use data converter to retrieve json after script execution
-		s.converters[ "script json" ] = function() {
-			if ( !responseContainer ) {
-				jQuery.error( callbackName + " was not called" );
-			}
-			return responseContainer[ 0 ];
-		};
-
-		// Force json dataType
-		s.dataTypes[ 0 ] = "json";
-
-		// Install callback
-		overwritten = window[ callbackName ];
-		window[ callbackName ] = function() {
-			responseContainer = arguments;
-		};
-
-		// Clean-up function (fires after converters)
-		jqXHR.always( function() {
-
-			// If previous value didn't exist - remove it
-			if ( overwritten === undefined ) {
-				jQuery( window ).removeProp( callbackName );
-
-			// Otherwise restore preexisting value
-			} else {
-				window[ callbackName ] = overwritten;
-			}
-
-			// Save back as free
-			if ( s[ callbackName ] ) {
-
-				// Make sure that re-using the options doesn't screw things around
-				s.jsonpCallback = originalSettings.jsonpCallback;
-
-				// Save the callback name for future use
-				oldCallbacks.push( callbackName );
-			}
-
-			// Call if it was a function and we have a response
-			if ( responseContainer && isFunction( overwritten ) ) {
-				overwritten( responseContainer[ 0 ] );
-			}
-
-			responseContainer = overwritten = undefined;
-		} );
-
-		// Delegate to script
-		return "script";
-	}
-} );
-
-
-
-
-// Support: Safari 8 only
-// In Safari 8 documents created via document.implementation.createHTMLDocument
-// collapse sibling forms: the second one becomes a child of the first one.
-// Because of that, this security measure has to be disabled in Safari 8.
-// https://bugs.webkit.org/show_bug.cgi?id=137337
-support.createHTMLDocument = ( function() {
-	var body = document.implementation.createHTMLDocument( "" ).body;
-	body.innerHTML = "<form></form><form></form>";
-	return body.childNodes.length === 2;
-} )();
-
-
-// Argument "data" should be string of html
-// context (optional): If specified, the fragment will be created in this context,
-// defaults to document
-// keepScripts (optional): If true, will include scripts passed in the html string
-jQuery.parseHTML = function( data, context, keepScripts ) {
-	if ( typeof data !== "string" ) {
-		return [];
-	}
-	if ( typeof context === "boolean" ) {
-		keepScripts = context;
-		context = false;
-	}
-
-	var base, parsed, scripts;
-
-	if ( !context ) {
-
-		// Stop scripts or inline event handlers from being executed immediately
-		// by using document.implementation
-		if ( support.createHTMLDocument ) {
-			context = document.implementation.createHTMLDocument( "" );
-
-			// Set the base href for the created document
-			// so any parsed elements with URLs
-			// are based on the document's URL (gh-2965)
-			base = context.createElement( "base" );
-			base.href = document.location.href;
-			context.head.appendChild( base );
-		} else {
-			context = document;
-		}
-	}
-
-	parsed = rsingleTag.exec( data );
-	scripts = !keepScripts && [];
-
-	// Single tag
-	if ( parsed ) {
-		return [ context.createElement( parsed[ 1 ] ) ];
-	}
-
-	parsed = buildFragment( [ data ], context, scripts );
-
-	if ( scripts && scripts.length ) {
-		jQuery( scripts ).remove();
-	}
-
-	return jQuery.merge( [], parsed.childNodes );
-};
-
-
-/**
- * Load a url into a page
- */
-jQuery.fn.load = function( url, params, callback ) {
-	var selector, type, response,
-		self = this,
-		off = url.indexOf( " " );
-
-	if ( off > -1 ) {
-		selector = stripAndCollapse( url.slice( off ) );
-		url = url.slice( 0, off );
-	}
-
-	// If it's a function
-	if ( isFunction( params ) ) {
-
-		// We assume that it's the callback
-		callback = params;
-		params = undefined;
-
-	// Otherwise, build a param string
-	} else if ( params && typeof params === "object" ) {
-		type = "POST";
-	}
-
-	// If we have elements to modify, make the request
-	if ( self.length > 0 ) {
-		jQuery.ajax( {
-			url: url,
-
-			// If "type" variable is undefined, then "GET" method will be used.
-			// Make value of this field explicit since
-			// user can override it through ajaxSetup method
-			type: type || "GET",
-			dataType: "html",
-			data: params
-		} ).done( function( responseText ) {
-
-			// Save response for use in complete callback
-			response = arguments;
-
-			self.html( selector ?
-
-				// If a selector was specified, locate the right elements in a dummy div
-				// Exclude scripts to avoid IE 'Permission Denied' errors
-				jQuery( "<div>" ).append( jQuery.parseHTML( responseText ) ).find( selector ) :
-
-				// Otherwise use the full result
-				responseText );
-
-		// If the request succeeds, this function gets "data", "status", "jqXHR"
-		// but they are ignored because response was set above.
-		// If it fails, this function gets "jqXHR", "status", "error"
-		} ).always( callback && function( jqXHR, status ) {
-			self.each( function() {
-				callback.apply( this, response || [ jqXHR.responseText, status, jqXHR ] );
-			} );
-		} );
-	}
-
-	return this;
-};
-
-
-
-
-jQuery.expr.pseudos.animated = function( elem ) {
-	return jQuery.grep( jQuery.timers, function( fn ) {
-		return elem === fn.elem;
-	} ).length;
-};
-
-
-
-
-jQuery.offset = {
-	setOffset: function( elem, options, i ) {
-		var curPosition, curLeft, curCSSTop, curTop, curOffset, curCSSLeft, calculatePosition,
-			position = jQuery.css( elem, "position" ),
-			curElem = jQuery( elem ),
-			props = {};
-
-		// Set position first, in-case top/left are set even on static elem
-		if ( position === "static" ) {
-			elem.style.position = "relative";
-		}
-
-		curOffset = curElem.offset();
-		curCSSTop = jQuery.css( elem, "top" );
-		curCSSLeft = jQuery.css( elem, "left" );
-		calculatePosition = ( position === "absolute" || position === "fixed" ) &&
-			( curCSSTop + curCSSLeft ).indexOf( "auto" ) > -1;
-
-		// Need to be able to calculate position if either
-		// top or left is auto and position is either absolute or fixed
-		if ( calculatePosition ) {
-			curPosition = curElem.position();
-			curTop = curPosition.top;
-			curLeft = curPosition.left;
-
-		} else {
-			curTop = parseFloat( curCSSTop ) || 0;
-			curLeft = parseFloat( curCSSLeft ) || 0;
-		}
-
-		if ( isFunction( options ) ) {
-
-			// Use jQuery.extend here to allow modification of coordinates argument (gh-1848)
-			options = options.call( elem, i, jQuery.extend( {}, curOffset ) );
-		}
-
-		if ( options.top != null ) {
-			props.top = ( options.top - curOffset.top ) + curTop;
-		}
-		if ( options.left != null ) {
-			props.left = ( options.left - curOffset.left ) + curLeft;
-		}
-
-		if ( "using" in options ) {
-			options.using.call( elem, props );
-
-		} else {
-			curElem.css( props );
-		}
-	}
-};
-
-jQuery.fn.extend( {
-
-	// offset() relates an element's border box to the document origin
-	offset: function( options ) {
-
-		// Preserve chaining for setter
-		if ( arguments.length ) {
-			return options === undefined ?
-				this :
-				this.each( function( i ) {
-					jQuery.offset.setOffset( this, options, i );
-				} );
-		}
-
-		var rect, win,
-			elem = this[ 0 ];
-
-		if ( !elem ) {
-			return;
-		}
-
-		// Return zeros for disconnected and hidden (display: none) elements (gh-2310)
-		// Support: IE <=11 only
-		// Running getBoundingClientRect on a
-		// disconnected node in IE throws an error
-		if ( !elem.getClientRects().length ) {
-			return { top: 0, left: 0 };
-		}
-
-		// Get document-relative position by adding viewport scroll to viewport-relative gBCR
-		rect = elem.getBoundingClientRect();
-		win = elem.ownerDocument.defaultView;
-		return {
-			top: rect.top + win.pageYOffset,
-			left: rect.left + win.pageXOffset
-		};
-	},
-
-	// position() relates an element's margin box to its offset parent's padding box
-	// This corresponds to the behavior of CSS absolute positioning
-	position: function() {
-		if ( !this[ 0 ] ) {
-			return;
-		}
-
-		var offsetParent, offset, doc,
-			elem = this[ 0 ],
-			parentOffset = { top: 0, left: 0 };
-
-		// position:fixed elements are offset from the viewport, which itself always has zero offset
-		if ( jQuery.css( elem, "position" ) === "fixed" ) {
-
-			// Assume position:fixed implies availability of getBoundingClientRect
-			offset = elem.getBoundingClientRect();
-
-		} else {
-			offset = this.offset();
-
-			// Account for the *real* offset parent, which can be the document or its root element
-			// when a statically positioned element is identified
-			doc = elem.ownerDocument;
-			offsetParent = elem.offsetParent || doc.documentElement;
-			while ( offsetParent &&
-				( offsetParent === doc.body || offsetParent === doc.documentElement ) &&
-				jQuery.css( offsetParent, "position" ) === "static" ) {
-
-				offsetParent = offsetParent.parentNode;
-			}
-			if ( offsetParent && offsetParent !== elem && offsetParent.nodeType === 1 ) {
-
-				// Incorporate borders into its offset, since they are outside its content origin
-				parentOffset = jQuery( offsetParent ).offset();
-				parentOffset.top += jQuery.css( offsetParent, "borderTopWidth", true );
-				parentOffset.left += jQuery.css( offsetParent, "borderLeftWidth", true );
-			}
-		}
-
-		// Subtract parent offsets and element margins
-		return {
-			top: offset.top - parentOffset.top - jQuery.css( elem, "marginTop", true ),
-			left: offset.left - parentOffset.left - jQuery.css( elem, "marginLeft", true )
-		};
-	},
-
-	// This method will return documentElement in the following cases:
-	// 1) For the element inside the iframe without offsetParent, this method will return
-	//    documentElement of the parent window
-	// 2) For the hidden or detached element
-	// 3) For body or html element, i.e. in case of the html node - it will return itself
-	//
-	// but those exceptions were never presented as a real life use-cases
-	// and might be considered as more preferable results.
-	//
-	// This logic, however, is not guaranteed and can change at any point in the future
-	offsetParent: function() {
-		return this.map( function() {
-			var offsetParent = this.offsetParent;
-
-			while ( offsetParent && jQuery.css( offsetParent, "position" ) === "static" ) {
-				offsetParent = offsetParent.offsetParent;
-			}
-
-			return offsetParent || documentElement;
-		} );
-	}
-} );
-
-// Create scrollLeft and scrollTop methods
-jQuery.each( { scrollLeft: "pageXOffset", scrollTop: "pageYOffset" }, function( method, prop ) {
-	var top = "pageYOffset" === prop;
-
-	jQuery.fn[ method ] = function( val ) {
-		return access( this, function( elem, method, val ) {
-
-			// Coalesce documents and windows
-			var win;
-			if ( isWindow( elem ) ) {
-				win = elem;
-			} else if ( elem.nodeType === 9 ) {
-				win = elem.defaultView;
-			}
-
-			if ( val === undefined ) {
-				return win ? win[ prop ] : elem[ method ];
-			}
-
-			if ( win ) {
-				win.scrollTo(
-					!top ? val : win.pageXOffset,
-					top ? val : win.pageYOffset
-				);
-
-			} else {
-				elem[ method ] = val;
-			}
-		}, method, val, arguments.length );
-	};
-} );
-
-// Support: Safari <=7 - 9.1, Chrome <=37 - 49
-// Add the top/left cssHooks using jQuery.fn.position
-// Webkit bug: https://bugs.webkit.org/show_bug.cgi?id=29084
-// Blink bug: https://bugs.chromium.org/p/chromium/issues/detail?id=589347
-// getComputedStyle returns percent when specified for top/left/bottom/right;
-// rather than make the css module depend on the offset module, just check for it here
-jQuery.each( [ "top", "left" ], function( _i, prop ) {
-	jQuery.cssHooks[ prop ] = addGetHookIf( support.pixelPosition,
-		function( elem, computed ) {
-			if ( computed ) {
-				computed = curCSS( elem, prop );
-
-				// If curCSS returns percentage, fallback to offset
-				return rnumnonpx.test( computed ) ?
-					jQuery( elem ).position()[ prop ] + "px" :
-					computed;
-			}
-		}
-	);
-} );
-
-
-// Create innerHeight, innerWidth, height, width, outerHeight and outerWidth methods
-jQuery.each( { Height: "height", Width: "width" }, function( name, type ) {
-	jQuery.each( {
-		padding: "inner" + name,
-		content: type,
-		"": "outer" + name
-	}, function( defaultExtra, funcName ) {
-
-		// Margin is only for outerHeight, outerWidth
-		jQuery.fn[ funcName ] = function( margin, value ) {
-			var chainable = arguments.length && ( defaultExtra || typeof margin !== "boolean" ),
-				extra = defaultExtra || ( margin === true || value === true ? "margin" : "border" );
-
-			return access( this, function( elem, type, value ) {
-				var doc;
-
-				if ( isWindow( elem ) ) {
-
-					// $( window ).outerWidth/Height return w/h including scrollbars (gh-1729)
-					return funcName.indexOf( "outer" ) === 0 ?
-						elem[ "inner" + name ] :
-						elem.document.documentElement[ "client" + name ];
-				}
-
-				// Get document width or height
-				if ( elem.nodeType === 9 ) {
-					doc = elem.documentElement;
-
-					// Either scroll[Width/Height] or offset[Width/Height] or client[Width/Height],
-					// whichever is greatest
-					return Math.max(
-						elem.body[ "scroll" + name ], doc[ "scroll" + name ],
-						elem.body[ "offset" + name ], doc[ "offset" + name ],
-						doc[ "client" + name ]
-					);
-				}
-
-				return value === undefined ?
-
-					// Get width or height on the element, requesting but not forcing parseFloat
-					jQuery.css( elem, type, extra ) :
-
-					// Set width or height on the element
-					jQuery.style( elem, type, value, extra );
-			}, type, chainable ? margin : undefined, chainable );
-		};
-	} );
-} );
-
-
-jQuery.each( [
-	"ajaxStart",
-	"ajaxStop",
-	"ajaxComplete",
-	"ajaxError",
-	"ajaxSuccess",
-	"ajaxSend"
-], function( _i, type ) {
-	jQuery.fn[ type ] = function( fn ) {
-		return this.on( type, fn );
-	};
-} );
-
-
-
-
-jQuery.fn.extend( {
-
-	bind: function( types, data, fn ) {
-		return this.on( types, null, data, fn );
-	},
-	unbind: function( types, fn ) {
-		return this.off( types, null, fn );
-	},
-
-	delegate: function( selector, types, data, fn ) {
-		return this.on( types, selector, data, fn );
-	},
-	undelegate: function( selector, types, fn ) {
-
-		// ( namespace ) or ( selector, types [, fn] )
-		return arguments.length === 1 ?
-			this.off( selector, "**" ) :
-			this.off( types, selector || "**", fn );
-	},
-
-	hover: function( fnOver, fnOut ) {
-		return this
-			.on( "mouseenter", fnOver )
-			.on( "mouseleave", fnOut || fnOver );
-	}
-} );
-
-jQuery.each(
-	( "blur focus focusin focusout resize scroll click dblclick " +
-	"mousedown mouseup mousemove mouseover mouseout mouseenter mouseleave " +
-	"change select submit keydown keypress keyup contextmenu" ).split( " " ),
-	function( _i, name ) {
-
-		// Handle event binding
-		jQuery.fn[ name ] = function( data, fn ) {
-			return arguments.length > 0 ?
-				this.on( name, null, data, fn ) :
-				this.trigger( name );
-		};
-	}
-);
-
-
-
-
-// Support: Android <=4.0 only
-// Make sure we trim BOM and NBSP
-// Require that the "whitespace run" starts from a non-whitespace
-// to avoid O(N^2) behavior when the engine would try matching "\s+$" at each space position.
-var rtrim = /^[\s\uFEFF\xA0]+|([^\s\uFEFF\xA0])[\s\uFEFF\xA0]+$/g;
-
-// Bind a function to a context, optionally partially applying any
-// arguments.
-// jQuery.proxy is deprecated to promote standards (specifically Function#bind)
-// However, it is not slated for removal any time soon
-jQuery.proxy = function( fn, context ) {
-	var tmp, args, proxy;
-
-	if ( typeof context === "string" ) {
-		tmp = fn[ context ];
-		context = fn;
-		fn = tmp;
-	}
-
-	// Quick check to determine if target is callable, in the spec
-	// this throws a TypeError, but we will just return undefined.
-	if ( !isFunction( fn ) ) {
-		return undefined;
-	}
-
-	// Simulated bind
-	args = slice.call( arguments, 2 );
-	proxy = function() {
-		return fn.apply( context || this, args.concat( slice.call( arguments ) ) );
-	};
-
-	// Set the guid of unique handler to the same of original handler, so it can be removed
-	proxy.guid = fn.guid = fn.guid || jQuery.guid++;
-
-	return proxy;
-};
-
-jQuery.holdReady = function( hold ) {
-	if ( hold ) {
-		jQuery.readyWait++;
-	} else {
-		jQuery.ready( true );
-	}
-};
-jQuery.isArray = Array.isArray;
-jQuery.parseJSON = JSON.parse;
-jQuery.nodeName = nodeName;
-jQuery.isFunction = isFunction;
-jQuery.isWindow = isWindow;
-jQuery.camelCase = camelCase;
-jQuery.type = toType;
-
-jQuery.now = Date.now;
-
-jQuery.isNumeric = function( obj ) {
-
-	// As of jQuery 3.0, isNumeric is limited to
-	// strings and numbers (primitives or objects)
-	// that can be coerced to finite numbers (gh-2662)
-	var type = jQuery.type( obj );
-	return ( type === "number" || type === "string" ) &&
-
-		// parseFloat NaNs numeric-cast false positives ("")
-		// ...but misinterprets leading-number strings, particularly hex literals ("0x...")
-		// subtraction forces infinities to NaN
-		!isNaN( obj - parseFloat( obj ) );
-};
-
-jQuery.trim = function( text ) {
-	return text == null ?
-		"" :
-		( text + "" ).replace( rtrim, "$1" );
-};
-
-
-
-// Register as a named AMD module, since jQuery can be concatenated with other
-// files that may use define, but not via a proper concatenation script that
-// understands anonymous AMD modules. A named AMD is safest and most robust
-// way to register. Lowercase jquery is used because AMD module names are
-// derived from file names, and jQuery is normally delivered in a lowercase
-// file name. Do this after creating the global so that if an AMD module wants
-// to call noConflict to hide this version of jQuery, it will work.
-
-// Note that for maximum portability, libraries that are not jQuery should
-// declare themselves as anonymous modules, and avoid setting a global if an
-// AMD loader is present. jQuery is a special case. For more information, see
-// https://github.com/jrburke/requirejs/wiki/Updating-existing-libraries#wiki-anon
-
-if ( typeof define === "function" && define.amd ) {
-	define( "jquery", [], function() {
-		return jQuery;
-	} );
-}
-
-
-
-
-var
-
-	// Map over jQuery in case of overwrite
-	_jQuery = window.jQuery,
-
-	// Map over the $ in case of overwrite
-	_$ = window.$;
-
-jQuery.noConflict = function( deep ) {
-	if ( window.$ === jQuery ) {
-		window.$ = _$;
-	}
-
-	if ( deep && window.jQuery === jQuery ) {
-		window.jQuery = _jQuery;
-	}
-
-	return jQuery;
-};
-
-// Expose jQuery and $ identifiers, even in AMD
-// (trac-7102#comment:10, https://github.com/jquery/jquery/pull/557)
-// and CommonJS for browser emulators (trac-13566)
-if ( typeof noGlobal === "undefined" ) {
-	window.jQuery = window.$ = jQuery;
-}
-
-
-
-
-return jQuery;
-} );
diff --git a/dist/assets/js/jquery-3.7.1.min.js b/dist/assets/js/jquery-3.7.1.min.js
new file mode 100644
index 0000000..7f37b5d
--- /dev/null
+++ b/dist/assets/js/jquery-3.7.1.min.js
@@ -0,0 +1,2 @@
+/*! jQuery v3.7.1 | (c) OpenJS Foundation and other contributors | jquery.org/license */
+!function(e,t){"use strict";"object"==typeof module&&"object"==typeof module.exports?module.exports=e.document?t(e,!0):function(e){if(!e.document)throw new Error("jQuery requires a window with a document");return t(e)}:t(e)}("undefined"!=typeof window?window:this,function(ie,e){"use strict";var oe=[],r=Object.getPrototypeOf,ae=oe.slice,g=oe.flat?function(e){return oe.flat.call(e)}:function(e){return oe.concat.apply([],e)},s=oe.push,se=oe.indexOf,n={},i=n.toString,ue=n.hasOwnProperty,o=ue.toString,a=o.call(Object),le={},v=function(e){return"function"==typeof e&&"number"!=typeof e.nodeType&&"function"!=typeof e.item},y=function(e){return null!=e&&e===e.window},C=ie.document,u={type:!0,src:!0,nonce:!0,noModule:!0};function m(e,t,n){var r,i,o=(n=n||C).createElement("script");if(o.text=e,t)for(r in u)(i=t[r]||t.getAttribute&&t.getAttribute(r))&&o.setAttribute(r,i);n.head.appendChild(o).parentNode.removeChild(o)}function x(e){return null==e?e+"":"object"==typeof e||"function"==typeof e?n[i.call(e)]||"object":typeof e}var t="3.7.1",l=/HTML$/i,ce=function(e,t){return new ce.fn.init(e,t)};function c(e){var t=!!e&&"length"in e&&e.length,n=x(e);return!v(e)&&!y(e)&&("array"===n||0===t||"number"==typeof t&&0<t&&t-1 in e)}function fe(e,t){return e.nodeName&&e.nodeName.toLowerCase()===t.toLowerCase()}ce.fn=ce.prototype={jquery:t,constructor:ce,length:0,toArray:function(){return ae.call(this)},get:function(e){return null==e?ae.call(this):e<0?this[e+this.length]:this[e]},pushStack:function(e){var t=ce.merge(this.constructor(),e);return t.prevObject=this,t},each:function(e){return ce.each(this,e)},map:function(n){return this.pushStack(ce.map(this,function(e,t){return n.call(e,t,e)}))},slice:function(){return this.pushStack(ae.apply(this,arguments))},first:function(){return this.eq(0)},last:function(){return this.eq(-1)},even:function(){return this.pushStack(ce.grep(this,function(e,t){return(t+1)%2}))},odd:function(){return this.pushStack(ce.grep(this,function(e,t){return t%2}))},eq:function(e){var t=this.length,n=+e+(e<0?t:0);return this.pushStack(0<=n&&n<t?[this[n]]:[])},end:function(){return this.prevObject||this.constructor()},push:s,sort:oe.sort,splice:oe.splice},ce.extend=ce.fn.extend=function(){var e,t,n,r,i,o,a=arguments[0]||{},s=1,u=arguments.length,l=!1;for("boolean"==typeof a&&(l=a,a=arguments[s]||{},s++),"object"==typeof a||v(a)||(a={}),s===u&&(a=this,s--);s<u;s++)if(null!=(e=arguments[s]))for(t in e)r=e[t],"__proto__"!==t&&a!==r&&(l&&r&&(ce.isPlainObject(r)||(i=Array.isArray(r)))?(n=a[t],o=i&&!Array.isArray(n)?[]:i||ce.isPlainObject(n)?n:{},i=!1,a[t]=ce.extend(l,o,r)):void 0!==r&&(a[t]=r));return a},ce.extend({expando:"jQuery"+(t+Math.random()).replace(/\D/g,""),isReady:!0,error:function(e){throw new Error(e)},noop:function(){},isPlainObject:function(e){var t,n;return!(!e||"[object Object]"!==i.call(e))&&(!(t=r(e))||"function"==typeof(n=ue.call(t,"constructor")&&t.constructor)&&o.call(n)===a)},isEmptyObject:function(e){var t;for(t in e)return!1;return!0},globalEval:function(e,t,n){m(e,{nonce:t&&t.nonce},n)},each:function(e,t){var n,r=0;if(c(e)){for(n=e.length;r<n;r++)if(!1===t.call(e[r],r,e[r]))break}else for(r in e)if(!1===t.call(e[r],r,e[r]))break;return e},text:function(e){var t,n="",r=0,i=e.nodeType;if(!i)while(t=e[r++])n+=ce.text(t);return 1===i||11===i?e.textContent:9===i?e.documentElement.textContent:3===i||4===i?e.nodeValue:n},makeArray:function(e,t){var n=t||[];return null!=e&&(c(Object(e))?ce.merge(n,"string"==typeof e?[e]:e):s.call(n,e)),n},inArray:function(e,t,n){return null==t?-1:se.call(t,e,n)},isXMLDoc:function(e){var t=e&&e.namespaceURI,n=e&&(e.ownerDocument||e).documentElement;return!l.test(t||n&&n.nodeName||"HTML")},merge:function(e,t){for(var n=+t.length,r=0,i=e.length;r<n;r++)e[i++]=t[r];return e.length=i,e},grep:function(e,t,n){for(var r=[],i=0,o=e.length,a=!n;i<o;i++)!t(e[i],i)!==a&&r.push(e[i]);return r},map:function(e,t,n){var r,i,o=0,a=[];if(c(e))for(r=e.length;o<r;o++)null!=(i=t(e[o],o,n))&&a.push(i);else for(o in e)null!=(i=t(e[o],o,n))&&a.push(i);return g(a)},guid:1,support:le}),"function"==typeof Symbol&&(ce.fn[Symbol.iterator]=oe[Symbol.iterator]),ce.each("Boolean Number String Function Array Date RegExp Object Error Symbol".split(" "),function(e,t){n["[object "+t+"]"]=t.toLowerCase()});var pe=oe.pop,de=oe.sort,he=oe.splice,ge="[\\x20\\t\\r\\n\\f]",ve=new RegExp("^"+ge+"+|((?:^|[^\\\\])(?:\\\\.)*)"+ge+"+$","g");ce.contains=function(e,t){var n=t&&t.parentNode;return e===n||!(!n||1!==n.nodeType||!(e.contains?e.contains(n):e.compareDocumentPosition&&16&e.compareDocumentPosition(n)))};var f=/([\0-\x1f\x7f]|^-?\d)|^-$|[^\x80-\uFFFF\w-]/g;function p(e,t){return t?"\0"===e?"\ufffd":e.slice(0,-1)+"\\"+e.charCodeAt(e.length-1).toString(16)+" ":"\\"+e}ce.escapeSelector=function(e){return(e+"").replace(f,p)};var ye=C,me=s;!function(){var e,b,w,o,a,T,r,C,d,i,k=me,S=ce.expando,E=0,n=0,s=W(),c=W(),u=W(),h=W(),l=function(e,t){return e===t&&(a=!0),0},f="checked|selected|async|autofocus|autoplay|controls|defer|disabled|hidden|ismap|loop|multiple|open|readonly|required|scoped",t="(?:\\\\[\\da-fA-F]{1,6}"+ge+"?|\\\\[^\\r\\n\\f]|[\\w-]|[^\0-\\x7f])+",p="\\["+ge+"*("+t+")(?:"+ge+"*([*^$|!~]?=)"+ge+"*(?:'((?:\\\\.|[^\\\\'])*)'|\"((?:\\\\.|[^\\\\\"])*)\"|("+t+"))|)"+ge+"*\\]",g=":("+t+")(?:\\((('((?:\\\\.|[^\\\\'])*)'|\"((?:\\\\.|[^\\\\\"])*)\")|((?:\\\\.|[^\\\\()[\\]]|"+p+")*)|.*)\\)|)",v=new RegExp(ge+"+","g"),y=new RegExp("^"+ge+"*,"+ge+"*"),m=new RegExp("^"+ge+"*([>+~]|"+ge+")"+ge+"*"),x=new RegExp(ge+"|>"),j=new RegExp(g),A=new RegExp("^"+t+"$"),D={ID:new RegExp("^#("+t+")"),CLASS:new RegExp("^\\.("+t+")"),TAG:new RegExp("^("+t+"|[*])"),ATTR:new RegExp("^"+p),PSEUDO:new RegExp("^"+g),CHILD:new RegExp("^:(only|first|last|nth|nth-last)-(child|of-type)(?:\\("+ge+"*(even|odd|(([+-]|)(\\d*)n|)"+ge+"*(?:([+-]|)"+ge+"*(\\d+)|))"+ge+"*\\)|)","i"),bool:new RegExp("^(?:"+f+")$","i"),needsContext:new RegExp("^"+ge+"*[>+~]|:(even|odd|eq|gt|lt|nth|first|last)(?:\\("+ge+"*((?:-\\d)?\\d*)"+ge+"*\\)|)(?=[^-]|$)","i")},N=/^(?:input|select|textarea|button)$/i,q=/^h\d$/i,L=/^(?:#([\w-]+)|(\w+)|\.([\w-]+))$/,H=/[+~]/,O=new RegExp("\\\\[\\da-fA-F]{1,6}"+ge+"?|\\\\([^\\r\\n\\f])","g"),P=function(e,t){var n="0x"+e.slice(1)-65536;return t||(n<0?String.fromCharCode(n+65536):String.fromCharCode(n>>10|55296,1023&n|56320))},M=function(){V()},R=J(function(e){return!0===e.disabled&&fe(e,"fieldset")},{dir:"parentNode",next:"legend"});try{k.apply(oe=ae.call(ye.childNodes),ye.childNodes),oe[ye.childNodes.length].nodeType}catch(e){k={apply:function(e,t){me.apply(e,ae.call(t))},call:function(e){me.apply(e,ae.call(arguments,1))}}}function I(t,e,n,r){var i,o,a,s,u,l,c,f=e&&e.ownerDocument,p=e?e.nodeType:9;if(n=n||[],"string"!=typeof t||!t||1!==p&&9!==p&&11!==p)return n;if(!r&&(V(e),e=e||T,C)){if(11!==p&&(u=L.exec(t)))if(i=u[1]){if(9===p){if(!(a=e.getElementById(i)))return n;if(a.id===i)return k.call(n,a),n}else if(f&&(a=f.getElementById(i))&&I.contains(e,a)&&a.id===i)return k.call(n,a),n}else{if(u[2])return k.apply(n,e.getElementsByTagName(t)),n;if((i=u[3])&&e.getElementsByClassName)return k.apply(n,e.getElementsByClassName(i)),n}if(!(h[t+" "]||d&&d.test(t))){if(c=t,f=e,1===p&&(x.test(t)||m.test(t))){(f=H.test(t)&&U(e.parentNode)||e)==e&&le.scope||((s=e.getAttribute("id"))?s=ce.escapeSelector(s):e.setAttribute("id",s=S)),o=(l=Y(t)).length;while(o--)l[o]=(s?"#"+s:":scope")+" "+Q(l[o]);c=l.join(",")}try{return k.apply(n,f.querySelectorAll(c)),n}catch(e){h(t,!0)}finally{s===S&&e.removeAttribute("id")}}}return re(t.replace(ve,"$1"),e,n,r)}function W(){var r=[];return function e(t,n){return r.push(t+" ")>b.cacheLength&&delete e[r.shift()],e[t+" "]=n}}function F(e){return e[S]=!0,e}function $(e){var t=T.createElement("fieldset");try{return!!e(t)}catch(e){return!1}finally{t.parentNode&&t.parentNode.removeChild(t),t=null}}function B(t){return function(e){return fe(e,"input")&&e.type===t}}function _(t){return function(e){return(fe(e,"input")||fe(e,"button"))&&e.type===t}}function z(t){return function(e){return"form"in e?e.parentNode&&!1===e.disabled?"label"in e?"label"in e.parentNode?e.parentNode.disabled===t:e.disabled===t:e.isDisabled===t||e.isDisabled!==!t&&R(e)===t:e.disabled===t:"label"in e&&e.disabled===t}}function X(a){return F(function(o){return o=+o,F(function(e,t){var n,r=a([],e.length,o),i=r.length;while(i--)e[n=r[i]]&&(e[n]=!(t[n]=e[n]))})})}function U(e){return e&&"undefined"!=typeof e.getElementsByTagName&&e}function V(e){var t,n=e?e.ownerDocument||e:ye;return n!=T&&9===n.nodeType&&n.documentElement&&(r=(T=n).documentElement,C=!ce.isXMLDoc(T),i=r.matches||r.webkitMatchesSelector||r.msMatchesSelector,r.msMatchesSelector&&ye!=T&&(t=T.defaultView)&&t.top!==t&&t.addEventListener("unload",M),le.getById=$(function(e){return r.appendChild(e).id=ce.expando,!T.getElementsByName||!T.getElementsByName(ce.expando).length}),le.disconnectedMatch=$(function(e){return i.call(e,"*")}),le.scope=$(function(){return T.querySelectorAll(":scope")}),le.cssHas=$(function(){try{return T.querySelector(":has(*,:jqfake)"),!1}catch(e){return!0}}),le.getById?(b.filter.ID=function(e){var t=e.replace(O,P);return function(e){return e.getAttribute("id")===t}},b.find.ID=function(e,t){if("undefined"!=typeof t.getElementById&&C){var n=t.getElementById(e);return n?[n]:[]}}):(b.filter.ID=function(e){var n=e.replace(O,P);return function(e){var t="undefined"!=typeof e.getAttributeNode&&e.getAttributeNode("id");return t&&t.value===n}},b.find.ID=function(e,t){if("undefined"!=typeof t.getElementById&&C){var n,r,i,o=t.getElementById(e);if(o){if((n=o.getAttributeNode("id"))&&n.value===e)return[o];i=t.getElementsByName(e),r=0;while(o=i[r++])if((n=o.getAttributeNode("id"))&&n.value===e)return[o]}return[]}}),b.find.TAG=function(e,t){return"undefined"!=typeof t.getElementsByTagName?t.getElementsByTagName(e):t.querySelectorAll(e)},b.find.CLASS=function(e,t){if("undefined"!=typeof t.getElementsByClassName&&C)return t.getElementsByClassName(e)},d=[],$(function(e){var t;r.appendChild(e).innerHTML="<a id='"+S+"' href='' disabled='disabled'></a><select id='"+S+"-\r\\' disabled='disabled'><option selected=''></option></select>",e.querySelectorAll("[selected]").length||d.push("\\["+ge+"*(?:value|"+f+")"),e.querySelectorAll("[id~="+S+"-]").length||d.push("~="),e.querySelectorAll("a#"+S+"+*").length||d.push(".#.+[+~]"),e.querySelectorAll(":checked").length||d.push(":checked"),(t=T.createElement("input")).setAttribute("type","hidden"),e.appendChild(t).setAttribute("name","D"),r.appendChild(e).disabled=!0,2!==e.querySelectorAll(":disabled").length&&d.push(":enabled",":disabled"),(t=T.createElement("input")).setAttribute("name",""),e.appendChild(t),e.querySelectorAll("[name='']").length||d.push("\\["+ge+"*name"+ge+"*="+ge+"*(?:''|\"\")")}),le.cssHas||d.push(":has"),d=d.length&&new RegExp(d.join("|")),l=function(e,t){if(e===t)return a=!0,0;var n=!e.compareDocumentPosition-!t.compareDocumentPosition;return n||(1&(n=(e.ownerDocument||e)==(t.ownerDocument||t)?e.compareDocumentPosition(t):1)||!le.sortDetached&&t.compareDocumentPosition(e)===n?e===T||e.ownerDocument==ye&&I.contains(ye,e)?-1:t===T||t.ownerDocument==ye&&I.contains(ye,t)?1:o?se.call(o,e)-se.call(o,t):0:4&n?-1:1)}),T}for(e in I.matches=function(e,t){return I(e,null,null,t)},I.matchesSelector=function(e,t){if(V(e),C&&!h[t+" "]&&(!d||!d.test(t)))try{var n=i.call(e,t);if(n||le.disconnectedMatch||e.document&&11!==e.document.nodeType)return n}catch(e){h(t,!0)}return 0<I(t,T,null,[e]).length},I.contains=function(e,t){return(e.ownerDocument||e)!=T&&V(e),ce.contains(e,t)},I.attr=function(e,t){(e.ownerDocument||e)!=T&&V(e);var n=b.attrHandle[t.toLowerCase()],r=n&&ue.call(b.attrHandle,t.toLowerCase())?n(e,t,!C):void 0;return void 0!==r?r:e.getAttribute(t)},I.error=function(e){throw new Error("Syntax error, unrecognized expression: "+e)},ce.uniqueSort=function(e){var t,n=[],r=0,i=0;if(a=!le.sortStable,o=!le.sortStable&&ae.call(e,0),de.call(e,l),a){while(t=e[i++])t===e[i]&&(r=n.push(i));while(r--)he.call(e,n[r],1)}return o=null,e},ce.fn.uniqueSort=function(){return this.pushStack(ce.uniqueSort(ae.apply(this)))},(b=ce.expr={cacheLength:50,createPseudo:F,match:D,attrHandle:{},find:{},relative:{">":{dir:"parentNode",first:!0}," ":{dir:"parentNode"},"+":{dir:"previousSibling",first:!0},"~":{dir:"previousSibling"}},preFilter:{ATTR:function(e){return e[1]=e[1].replace(O,P),e[3]=(e[3]||e[4]||e[5]||"").replace(O,P),"~="===e[2]&&(e[3]=" "+e[3]+" "),e.slice(0,4)},CHILD:function(e){return e[1]=e[1].toLowerCase(),"nth"===e[1].slice(0,3)?(e[3]||I.error(e[0]),e[4]=+(e[4]?e[5]+(e[6]||1):2*("even"===e[3]||"odd"===e[3])),e[5]=+(e[7]+e[8]||"odd"===e[3])):e[3]&&I.error(e[0]),e},PSEUDO:function(e){var t,n=!e[6]&&e[2];return D.CHILD.test(e[0])?null:(e[3]?e[2]=e[4]||e[5]||"":n&&j.test(n)&&(t=Y(n,!0))&&(t=n.indexOf(")",n.length-t)-n.length)&&(e[0]=e[0].slice(0,t),e[2]=n.slice(0,t)),e.slice(0,3))}},filter:{TAG:function(e){var t=e.replace(O,P).toLowerCase();return"*"===e?function(){return!0}:function(e){return fe(e,t)}},CLASS:function(e){var t=s[e+" "];return t||(t=new RegExp("(^|"+ge+")"+e+"("+ge+"|$)"))&&s(e,function(e){return t.test("string"==typeof e.className&&e.className||"undefined"!=typeof e.getAttribute&&e.getAttribute("class")||"")})},ATTR:function(n,r,i){return function(e){var t=I.attr(e,n);return null==t?"!="===r:!r||(t+="","="===r?t===i:"!="===r?t!==i:"^="===r?i&&0===t.indexOf(i):"*="===r?i&&-1<t.indexOf(i):"$="===r?i&&t.slice(-i.length)===i:"~="===r?-1<(" "+t.replace(v," ")+" ").indexOf(i):"|="===r&&(t===i||t.slice(0,i.length+1)===i+"-"))}},CHILD:function(d,e,t,h,g){var v="nth"!==d.slice(0,3),y="last"!==d.slice(-4),m="of-type"===e;return 1===h&&0===g?function(e){return!!e.parentNode}:function(e,t,n){var r,i,o,a,s,u=v!==y?"nextSibling":"previousSibling",l=e.parentNode,c=m&&e.nodeName.toLowerCase(),f=!n&&!m,p=!1;if(l){if(v){while(u){o=e;while(o=o[u])if(m?fe(o,c):1===o.nodeType)return!1;s=u="only"===d&&!s&&"nextSibling"}return!0}if(s=[y?l.firstChild:l.lastChild],y&&f){p=(a=(r=(i=l[S]||(l[S]={}))[d]||[])[0]===E&&r[1])&&r[2],o=a&&l.childNodes[a];while(o=++a&&o&&o[u]||(p=a=0)||s.pop())if(1===o.nodeType&&++p&&o===e){i[d]=[E,a,p];break}}else if(f&&(p=a=(r=(i=e[S]||(e[S]={}))[d]||[])[0]===E&&r[1]),!1===p)while(o=++a&&o&&o[u]||(p=a=0)||s.pop())if((m?fe(o,c):1===o.nodeType)&&++p&&(f&&((i=o[S]||(o[S]={}))[d]=[E,p]),o===e))break;return(p-=g)===h||p%h==0&&0<=p/h}}},PSEUDO:function(e,o){var t,a=b.pseudos[e]||b.setFilters[e.toLowerCase()]||I.error("unsupported pseudo: "+e);return a[S]?a(o):1<a.length?(t=[e,e,"",o],b.setFilters.hasOwnProperty(e.toLowerCase())?F(function(e,t){var n,r=a(e,o),i=r.length;while(i--)e[n=se.call(e,r[i])]=!(t[n]=r[i])}):function(e){return a(e,0,t)}):a}},pseudos:{not:F(function(e){var r=[],i=[],s=ne(e.replace(ve,"$1"));return s[S]?F(function(e,t,n,r){var i,o=s(e,null,r,[]),a=e.length;while(a--)(i=o[a])&&(e[a]=!(t[a]=i))}):function(e,t,n){return r[0]=e,s(r,null,n,i),r[0]=null,!i.pop()}}),has:F(function(t){return function(e){return 0<I(t,e).length}}),contains:F(function(t){return t=t.replace(O,P),function(e){return-1<(e.textContent||ce.text(e)).indexOf(t)}}),lang:F(function(n){return A.test(n||"")||I.error("unsupported lang: "+n),n=n.replace(O,P).toLowerCase(),function(e){var t;do{if(t=C?e.lang:e.getAttribute("xml:lang")||e.getAttribute("lang"))return(t=t.toLowerCase())===n||0===t.indexOf(n+"-")}while((e=e.parentNode)&&1===e.nodeType);return!1}}),target:function(e){var t=ie.location&&ie.location.hash;return t&&t.slice(1)===e.id},root:function(e){return e===r},focus:function(e){return e===function(){try{return T.activeElement}catch(e){}}()&&T.hasFocus()&&!!(e.type||e.href||~e.tabIndex)},enabled:z(!1),disabled:z(!0),checked:function(e){return fe(e,"input")&&!!e.checked||fe(e,"option")&&!!e.selected},selected:function(e){return e.parentNode&&e.parentNode.selectedIndex,!0===e.selected},empty:function(e){for(e=e.firstChild;e;e=e.nextSibling)if(e.nodeType<6)return!1;return!0},parent:function(e){return!b.pseudos.empty(e)},header:function(e){return q.test(e.nodeName)},input:function(e){return N.test(e.nodeName)},button:function(e){return fe(e,"input")&&"button"===e.type||fe(e,"button")},text:function(e){var t;return fe(e,"input")&&"text"===e.type&&(null==(t=e.getAttribute("type"))||"text"===t.toLowerCase())},first:X(function(){return[0]}),last:X(function(e,t){return[t-1]}),eq:X(function(e,t,n){return[n<0?n+t:n]}),even:X(function(e,t){for(var n=0;n<t;n+=2)e.push(n);return e}),odd:X(function(e,t){for(var n=1;n<t;n+=2)e.push(n);return e}),lt:X(function(e,t,n){var r;for(r=n<0?n+t:t<n?t:n;0<=--r;)e.push(r);return e}),gt:X(function(e,t,n){for(var r=n<0?n+t:n;++r<t;)e.push(r);return e})}}).pseudos.nth=b.pseudos.eq,{radio:!0,checkbox:!0,file:!0,password:!0,image:!0})b.pseudos[e]=B(e);for(e in{submit:!0,reset:!0})b.pseudos[e]=_(e);function G(){}function Y(e,t){var n,r,i,o,a,s,u,l=c[e+" "];if(l)return t?0:l.slice(0);a=e,s=[],u=b.preFilter;while(a){for(o in n&&!(r=y.exec(a))||(r&&(a=a.slice(r[0].length)||a),s.push(i=[])),n=!1,(r=m.exec(a))&&(n=r.shift(),i.push({value:n,type:r[0].replace(ve," ")}),a=a.slice(n.length)),b.filter)!(r=D[o].exec(a))||u[o]&&!(r=u[o](r))||(n=r.shift(),i.push({value:n,type:o,matches:r}),a=a.slice(n.length));if(!n)break}return t?a.length:a?I.error(e):c(e,s).slice(0)}function Q(e){for(var t=0,n=e.length,r="";t<n;t++)r+=e[t].value;return r}function J(a,e,t){var s=e.dir,u=e.next,l=u||s,c=t&&"parentNode"===l,f=n++;return e.first?function(e,t,n){while(e=e[s])if(1===e.nodeType||c)return a(e,t,n);return!1}:function(e,t,n){var r,i,o=[E,f];if(n){while(e=e[s])if((1===e.nodeType||c)&&a(e,t,n))return!0}else while(e=e[s])if(1===e.nodeType||c)if(i=e[S]||(e[S]={}),u&&fe(e,u))e=e[s]||e;else{if((r=i[l])&&r[0]===E&&r[1]===f)return o[2]=r[2];if((i[l]=o)[2]=a(e,t,n))return!0}return!1}}function K(i){return 1<i.length?function(e,t,n){var r=i.length;while(r--)if(!i[r](e,t,n))return!1;return!0}:i[0]}function Z(e,t,n,r,i){for(var o,a=[],s=0,u=e.length,l=null!=t;s<u;s++)(o=e[s])&&(n&&!n(o,r,i)||(a.push(o),l&&t.push(s)));return a}function ee(d,h,g,v,y,e){return v&&!v[S]&&(v=ee(v)),y&&!y[S]&&(y=ee(y,e)),F(function(e,t,n,r){var i,o,a,s,u=[],l=[],c=t.length,f=e||function(e,t,n){for(var r=0,i=t.length;r<i;r++)I(e,t[r],n);return n}(h||"*",n.nodeType?[n]:n,[]),p=!d||!e&&h?f:Z(f,u,d,n,r);if(g?g(p,s=y||(e?d:c||v)?[]:t,n,r):s=p,v){i=Z(s,l),v(i,[],n,r),o=i.length;while(o--)(a=i[o])&&(s[l[o]]=!(p[l[o]]=a))}if(e){if(y||d){if(y){i=[],o=s.length;while(o--)(a=s[o])&&i.push(p[o]=a);y(null,s=[],i,r)}o=s.length;while(o--)(a=s[o])&&-1<(i=y?se.call(e,a):u[o])&&(e[i]=!(t[i]=a))}}else s=Z(s===t?s.splice(c,s.length):s),y?y(null,t,s,r):k.apply(t,s)})}function te(e){for(var i,t,n,r=e.length,o=b.relative[e[0].type],a=o||b.relative[" "],s=o?1:0,u=J(function(e){return e===i},a,!0),l=J(function(e){return-1<se.call(i,e)},a,!0),c=[function(e,t,n){var r=!o&&(n||t!=w)||((i=t).nodeType?u(e,t,n):l(e,t,n));return i=null,r}];s<r;s++)if(t=b.relative[e[s].type])c=[J(K(c),t)];else{if((t=b.filter[e[s].type].apply(null,e[s].matches))[S]){for(n=++s;n<r;n++)if(b.relative[e[n].type])break;return ee(1<s&&K(c),1<s&&Q(e.slice(0,s-1).concat({value:" "===e[s-2].type?"*":""})).replace(ve,"$1"),t,s<n&&te(e.slice(s,n)),n<r&&te(e=e.slice(n)),n<r&&Q(e))}c.push(t)}return K(c)}function ne(e,t){var n,v,y,m,x,r,i=[],o=[],a=u[e+" "];if(!a){t||(t=Y(e)),n=t.length;while(n--)(a=te(t[n]))[S]?i.push(a):o.push(a);(a=u(e,(v=o,m=0<(y=i).length,x=0<v.length,r=function(e,t,n,r,i){var o,a,s,u=0,l="0",c=e&&[],f=[],p=w,d=e||x&&b.find.TAG("*",i),h=E+=null==p?1:Math.random()||.1,g=d.length;for(i&&(w=t==T||t||i);l!==g&&null!=(o=d[l]);l++){if(x&&o){a=0,t||o.ownerDocument==T||(V(o),n=!C);while(s=v[a++])if(s(o,t||T,n)){k.call(r,o);break}i&&(E=h)}m&&((o=!s&&o)&&u--,e&&c.push(o))}if(u+=l,m&&l!==u){a=0;while(s=y[a++])s(c,f,t,n);if(e){if(0<u)while(l--)c[l]||f[l]||(f[l]=pe.call(r));f=Z(f)}k.apply(r,f),i&&!e&&0<f.length&&1<u+y.length&&ce.uniqueSort(r)}return i&&(E=h,w=p),c},m?F(r):r))).selector=e}return a}function re(e,t,n,r){var i,o,a,s,u,l="function"==typeof e&&e,c=!r&&Y(e=l.selector||e);if(n=n||[],1===c.length){if(2<(o=c[0]=c[0].slice(0)).length&&"ID"===(a=o[0]).type&&9===t.nodeType&&C&&b.relative[o[1].type]){if(!(t=(b.find.ID(a.matches[0].replace(O,P),t)||[])[0]))return n;l&&(t=t.parentNode),e=e.slice(o.shift().value.length)}i=D.needsContext.test(e)?0:o.length;while(i--){if(a=o[i],b.relative[s=a.type])break;if((u=b.find[s])&&(r=u(a.matches[0].replace(O,P),H.test(o[0].type)&&U(t.parentNode)||t))){if(o.splice(i,1),!(e=r.length&&Q(o)))return k.apply(n,r),n;break}}}return(l||ne(e,c))(r,t,!C,n,!t||H.test(e)&&U(t.parentNode)||t),n}G.prototype=b.filters=b.pseudos,b.setFilters=new G,le.sortStable=S.split("").sort(l).join("")===S,V(),le.sortDetached=$(function(e){return 1&e.compareDocumentPosition(T.createElement("fieldset"))}),ce.find=I,ce.expr[":"]=ce.expr.pseudos,ce.unique=ce.uniqueSort,I.compile=ne,I.select=re,I.setDocument=V,I.tokenize=Y,I.escape=ce.escapeSelector,I.getText=ce.text,I.isXML=ce.isXMLDoc,I.selectors=ce.expr,I.support=ce.support,I.uniqueSort=ce.uniqueSort}();var d=function(e,t,n){var r=[],i=void 0!==n;while((e=e[t])&&9!==e.nodeType)if(1===e.nodeType){if(i&&ce(e).is(n))break;r.push(e)}return r},h=function(e,t){for(var n=[];e;e=e.nextSibling)1===e.nodeType&&e!==t&&n.push(e);return n},b=ce.expr.match.needsContext,w=/^<([a-z][^\/\0>:\x20\t\r\n\f]*)[\x20\t\r\n\f]*\/?>(?:<\/\1>|)$/i;function T(e,n,r){return v(n)?ce.grep(e,function(e,t){return!!n.call(e,t,e)!==r}):n.nodeType?ce.grep(e,function(e){return e===n!==r}):"string"!=typeof n?ce.grep(e,function(e){return-1<se.call(n,e)!==r}):ce.filter(n,e,r)}ce.filter=function(e,t,n){var r=t[0];return n&&(e=":not("+e+")"),1===t.length&&1===r.nodeType?ce.find.matchesSelector(r,e)?[r]:[]:ce.find.matches(e,ce.grep(t,function(e){return 1===e.nodeType}))},ce.fn.extend({find:function(e){var t,n,r=this.length,i=this;if("string"!=typeof e)return this.pushStack(ce(e).filter(function(){for(t=0;t<r;t++)if(ce.contains(i[t],this))return!0}));for(n=this.pushStack([]),t=0;t<r;t++)ce.find(e,i[t],n);return 1<r?ce.uniqueSort(n):n},filter:function(e){return this.pushStack(T(this,e||[],!1))},not:function(e){return this.pushStack(T(this,e||[],!0))},is:function(e){return!!T(this,"string"==typeof e&&b.test(e)?ce(e):e||[],!1).length}});var k,S=/^(?:\s*(<[\w\W]+>)[^>]*|#([\w-]+))$/;(ce.fn.init=function(e,t,n){var r,i;if(!e)return this;if(n=n||k,"string"==typeof e){if(!(r="<"===e[0]&&">"===e[e.length-1]&&3<=e.length?[null,e,null]:S.exec(e))||!r[1]&&t)return!t||t.jquery?(t||n).find(e):this.constructor(t).find(e);if(r[1]){if(t=t instanceof ce?t[0]:t,ce.merge(this,ce.parseHTML(r[1],t&&t.nodeType?t.ownerDocument||t:C,!0)),w.test(r[1])&&ce.isPlainObject(t))for(r in t)v(this[r])?this[r](t[r]):this.attr(r,t[r]);return this}return(i=C.getElementById(r[2]))&&(this[0]=i,this.length=1),this}return e.nodeType?(this[0]=e,this.length=1,this):v(e)?void 0!==n.ready?n.ready(e):e(ce):ce.makeArray(e,this)}).prototype=ce.fn,k=ce(C);var E=/^(?:parents|prev(?:Until|All))/,j={children:!0,contents:!0,next:!0,prev:!0};function A(e,t){while((e=e[t])&&1!==e.nodeType);return e}ce.fn.extend({has:function(e){var t=ce(e,this),n=t.length;return this.filter(function(){for(var e=0;e<n;e++)if(ce.contains(this,t[e]))return!0})},closest:function(e,t){var n,r=0,i=this.length,o=[],a="string"!=typeof e&&ce(e);if(!b.test(e))for(;r<i;r++)for(n=this[r];n&&n!==t;n=n.parentNode)if(n.nodeType<11&&(a?-1<a.index(n):1===n.nodeType&&ce.find.matchesSelector(n,e))){o.push(n);break}return this.pushStack(1<o.length?ce.uniqueSort(o):o)},index:function(e){return e?"string"==typeof e?se.call(ce(e),this[0]):se.call(this,e.jquery?e[0]:e):this[0]&&this[0].parentNode?this.first().prevAll().length:-1},add:function(e,t){return this.pushStack(ce.uniqueSort(ce.merge(this.get(),ce(e,t))))},addBack:function(e){return this.add(null==e?this.prevObject:this.prevObject.filter(e))}}),ce.each({parent:function(e){var t=e.parentNode;return t&&11!==t.nodeType?t:null},parents:function(e){return d(e,"parentNode")},parentsUntil:function(e,t,n){return d(e,"parentNode",n)},next:function(e){return A(e,"nextSibling")},prev:function(e){return A(e,"previousSibling")},nextAll:function(e){return d(e,"nextSibling")},prevAll:function(e){return d(e,"previousSibling")},nextUntil:function(e,t,n){return d(e,"nextSibling",n)},prevUntil:function(e,t,n){return d(e,"previousSibling",n)},siblings:function(e){return h((e.parentNode||{}).firstChild,e)},children:function(e){return h(e.firstChild)},contents:function(e){return null!=e.contentDocument&&r(e.contentDocument)?e.contentDocument:(fe(e,"template")&&(e=e.content||e),ce.merge([],e.childNodes))}},function(r,i){ce.fn[r]=function(e,t){var n=ce.map(this,i,e);return"Until"!==r.slice(-5)&&(t=e),t&&"string"==typeof t&&(n=ce.filter(t,n)),1<this.length&&(j[r]||ce.uniqueSort(n),E.test(r)&&n.reverse()),this.pushStack(n)}});var D=/[^\x20\t\r\n\f]+/g;function N(e){return e}function q(e){throw e}function L(e,t,n,r){var i;try{e&&v(i=e.promise)?i.call(e).done(t).fail(n):e&&v(i=e.then)?i.call(e,t,n):t.apply(void 0,[e].slice(r))}catch(e){n.apply(void 0,[e])}}ce.Callbacks=function(r){var e,n;r="string"==typeof r?(e=r,n={},ce.each(e.match(D)||[],function(e,t){n[t]=!0}),n):ce.extend({},r);var i,t,o,a,s=[],u=[],l=-1,c=function(){for(a=a||r.once,o=i=!0;u.length;l=-1){t=u.shift();while(++l<s.length)!1===s[l].apply(t[0],t[1])&&r.stopOnFalse&&(l=s.length,t=!1)}r.memory||(t=!1),i=!1,a&&(s=t?[]:"")},f={add:function(){return s&&(t&&!i&&(l=s.length-1,u.push(t)),function n(e){ce.each(e,function(e,t){v(t)?r.unique&&f.has(t)||s.push(t):t&&t.length&&"string"!==x(t)&&n(t)})}(arguments),t&&!i&&c()),this},remove:function(){return ce.each(arguments,function(e,t){var n;while(-1<(n=ce.inArray(t,s,n)))s.splice(n,1),n<=l&&l--}),this},has:function(e){return e?-1<ce.inArray(e,s):0<s.length},empty:function(){return s&&(s=[]),this},disable:function(){return a=u=[],s=t="",this},disabled:function(){return!s},lock:function(){return a=u=[],t||i||(s=t=""),this},locked:function(){return!!a},fireWith:function(e,t){return a||(t=[e,(t=t||[]).slice?t.slice():t],u.push(t),i||c()),this},fire:function(){return f.fireWith(this,arguments),this},fired:function(){return!!o}};return f},ce.extend({Deferred:function(e){var o=[["notify","progress",ce.Callbacks("memory"),ce.Callbacks("memory"),2],["resolve","done",ce.Callbacks("once memory"),ce.Callbacks("once memory"),0,"resolved"],["reject","fail",ce.Callbacks("once memory"),ce.Callbacks("once memory"),1,"rejected"]],i="pending",a={state:function(){return i},always:function(){return s.done(arguments).fail(arguments),this},"catch":function(e){return a.then(null,e)},pipe:function(){var i=arguments;return ce.Deferred(function(r){ce.each(o,function(e,t){var n=v(i[t[4]])&&i[t[4]];s[t[1]](function(){var e=n&&n.apply(this,arguments);e&&v(e.promise)?e.promise().progress(r.notify).done(r.resolve).fail(r.reject):r[t[0]+"With"](this,n?[e]:arguments)})}),i=null}).promise()},then:function(t,n,r){var u=0;function l(i,o,a,s){return function(){var n=this,r=arguments,e=function(){var e,t;if(!(i<u)){if((e=a.apply(n,r))===o.promise())throw new TypeError("Thenable self-resolution");t=e&&("object"==typeof e||"function"==typeof e)&&e.then,v(t)?s?t.call(e,l(u,o,N,s),l(u,o,q,s)):(u++,t.call(e,l(u,o,N,s),l(u,o,q,s),l(u,o,N,o.notifyWith))):(a!==N&&(n=void 0,r=[e]),(s||o.resolveWith)(n,r))}},t=s?e:function(){try{e()}catch(e){ce.Deferred.exceptionHook&&ce.Deferred.exceptionHook(e,t.error),u<=i+1&&(a!==q&&(n=void 0,r=[e]),o.rejectWith(n,r))}};i?t():(ce.Deferred.getErrorHook?t.error=ce.Deferred.getErrorHook():ce.Deferred.getStackHook&&(t.error=ce.Deferred.getStackHook()),ie.setTimeout(t))}}return ce.Deferred(function(e){o[0][3].add(l(0,e,v(r)?r:N,e.notifyWith)),o[1][3].add(l(0,e,v(t)?t:N)),o[2][3].add(l(0,e,v(n)?n:q))}).promise()},promise:function(e){return null!=e?ce.extend(e,a):a}},s={};return ce.each(o,function(e,t){var n=t[2],r=t[5];a[t[1]]=n.add,r&&n.add(function(){i=r},o[3-e][2].disable,o[3-e][3].disable,o[0][2].lock,o[0][3].lock),n.add(t[3].fire),s[t[0]]=function(){return s[t[0]+"With"](this===s?void 0:this,arguments),this},s[t[0]+"With"]=n.fireWith}),a.promise(s),e&&e.call(s,s),s},when:function(e){var n=arguments.length,t=n,r=Array(t),i=ae.call(arguments),o=ce.Deferred(),a=function(t){return function(e){r[t]=this,i[t]=1<arguments.length?ae.call(arguments):e,--n||o.resolveWith(r,i)}};if(n<=1&&(L(e,o.done(a(t)).resolve,o.reject,!n),"pending"===o.state()||v(i[t]&&i[t].then)))return o.then();while(t--)L(i[t],a(t),o.reject);return o.promise()}});var H=/^(Eval|Internal|Range|Reference|Syntax|Type|URI)Error$/;ce.Deferred.exceptionHook=function(e,t){ie.console&&ie.console.warn&&e&&H.test(e.name)&&ie.console.warn("jQuery.Deferred exception: "+e.message,e.stack,t)},ce.readyException=function(e){ie.setTimeout(function(){throw e})};var O=ce.Deferred();function P(){C.removeEventListener("DOMContentLoaded",P),ie.removeEventListener("load",P),ce.ready()}ce.fn.ready=function(e){return O.then(e)["catch"](function(e){ce.readyException(e)}),this},ce.extend({isReady:!1,readyWait:1,ready:function(e){(!0===e?--ce.readyWait:ce.isReady)||(ce.isReady=!0)!==e&&0<--ce.readyWait||O.resolveWith(C,[ce])}}),ce.ready.then=O.then,"complete"===C.readyState||"loading"!==C.readyState&&!C.documentElement.doScroll?ie.setTimeout(ce.ready):(C.addEventListener("DOMContentLoaded",P),ie.addEventListener("load",P));var M=function(e,t,n,r,i,o,a){var s=0,u=e.length,l=null==n;if("object"===x(n))for(s in i=!0,n)M(e,t,s,n[s],!0,o,a);else if(void 0!==r&&(i=!0,v(r)||(a=!0),l&&(a?(t.call(e,r),t=null):(l=t,t=function(e,t,n){return l.call(ce(e),n)})),t))for(;s<u;s++)t(e[s],n,a?r:r.call(e[s],s,t(e[s],n)));return i?e:l?t.call(e):u?t(e[0],n):o},R=/^-ms-/,I=/-([a-z])/g;function W(e,t){return t.toUpperCase()}function F(e){return e.replace(R,"ms-").replace(I,W)}var $=function(e){return 1===e.nodeType||9===e.nodeType||!+e.nodeType};function B(){this.expando=ce.expando+B.uid++}B.uid=1,B.prototype={cache:function(e){var t=e[this.expando];return t||(t={},$(e)&&(e.nodeType?e[this.expando]=t:Object.defineProperty(e,this.expando,{value:t,configurable:!0}))),t},set:function(e,t,n){var r,i=this.cache(e);if("string"==typeof t)i[F(t)]=n;else for(r in t)i[F(r)]=t[r];return i},get:function(e,t){return void 0===t?this.cache(e):e[this.expando]&&e[this.expando][F(t)]},access:function(e,t,n){return void 0===t||t&&"string"==typeof t&&void 0===n?this.get(e,t):(this.set(e,t,n),void 0!==n?n:t)},remove:function(e,t){var n,r=e[this.expando];if(void 0!==r){if(void 0!==t){n=(t=Array.isArray(t)?t.map(F):(t=F(t))in r?[t]:t.match(D)||[]).length;while(n--)delete r[t[n]]}(void 0===t||ce.isEmptyObject(r))&&(e.nodeType?e[this.expando]=void 0:delete e[this.expando])}},hasData:function(e){var t=e[this.expando];return void 0!==t&&!ce.isEmptyObject(t)}};var _=new B,z=new B,X=/^(?:\{[\w\W]*\}|\[[\w\W]*\])$/,U=/[A-Z]/g;function V(e,t,n){var r,i;if(void 0===n&&1===e.nodeType)if(r="data-"+t.replace(U,"-$&").toLowerCase(),"string"==typeof(n=e.getAttribute(r))){try{n="true"===(i=n)||"false"!==i&&("null"===i?null:i===+i+""?+i:X.test(i)?JSON.parse(i):i)}catch(e){}z.set(e,t,n)}else n=void 0;return n}ce.extend({hasData:function(e){return z.hasData(e)||_.hasData(e)},data:function(e,t,n){return z.access(e,t,n)},removeData:function(e,t){z.remove(e,t)},_data:function(e,t,n){return _.access(e,t,n)},_removeData:function(e,t){_.remove(e,t)}}),ce.fn.extend({data:function(n,e){var t,r,i,o=this[0],a=o&&o.attributes;if(void 0===n){if(this.length&&(i=z.get(o),1===o.nodeType&&!_.get(o,"hasDataAttrs"))){t=a.length;while(t--)a[t]&&0===(r=a[t].name).indexOf("data-")&&(r=F(r.slice(5)),V(o,r,i[r]));_.set(o,"hasDataAttrs",!0)}return i}return"object"==typeof n?this.each(function(){z.set(this,n)}):M(this,function(e){var t;if(o&&void 0===e)return void 0!==(t=z.get(o,n))?t:void 0!==(t=V(o,n))?t:void 0;this.each(function(){z.set(this,n,e)})},null,e,1<arguments.length,null,!0)},removeData:function(e){return this.each(function(){z.remove(this,e)})}}),ce.extend({queue:function(e,t,n){var r;if(e)return t=(t||"fx")+"queue",r=_.get(e,t),n&&(!r||Array.isArray(n)?r=_.access(e,t,ce.makeArray(n)):r.push(n)),r||[]},dequeue:function(e,t){t=t||"fx";var n=ce.queue(e,t),r=n.length,i=n.shift(),o=ce._queueHooks(e,t);"inprogress"===i&&(i=n.shift(),r--),i&&("fx"===t&&n.unshift("inprogress"),delete o.stop,i.call(e,function(){ce.dequeue(e,t)},o)),!r&&o&&o.empty.fire()},_queueHooks:function(e,t){var n=t+"queueHooks";return _.get(e,n)||_.access(e,n,{empty:ce.Callbacks("once memory").add(function(){_.remove(e,[t+"queue",n])})})}}),ce.fn.extend({queue:function(t,n){var e=2;return"string"!=typeof t&&(n=t,t="fx",e--),arguments.length<e?ce.queue(this[0],t):void 0===n?this:this.each(function(){var e=ce.queue(this,t,n);ce._queueHooks(this,t),"fx"===t&&"inprogress"!==e[0]&&ce.dequeue(this,t)})},dequeue:function(e){return this.each(function(){ce.dequeue(this,e)})},clearQueue:function(e){return this.queue(e||"fx",[])},promise:function(e,t){var n,r=1,i=ce.Deferred(),o=this,a=this.length,s=function(){--r||i.resolveWith(o,[o])};"string"!=typeof e&&(t=e,e=void 0),e=e||"fx";while(a--)(n=_.get(o[a],e+"queueHooks"))&&n.empty&&(r++,n.empty.add(s));return s(),i.promise(t)}});var G=/[+-]?(?:\d*\.|)\d+(?:[eE][+-]?\d+|)/.source,Y=new RegExp("^(?:([+-])=|)("+G+")([a-z%]*)$","i"),Q=["Top","Right","Bottom","Left"],J=C.documentElement,K=function(e){return ce.contains(e.ownerDocument,e)},Z={composed:!0};J.getRootNode&&(K=function(e){return ce.contains(e.ownerDocument,e)||e.getRootNode(Z)===e.ownerDocument});var ee=function(e,t){return"none"===(e=t||e).style.display||""===e.style.display&&K(e)&&"none"===ce.css(e,"display")};function te(e,t,n,r){var i,o,a=20,s=r?function(){return r.cur()}:function(){return ce.css(e,t,"")},u=s(),l=n&&n[3]||(ce.cssNumber[t]?"":"px"),c=e.nodeType&&(ce.cssNumber[t]||"px"!==l&&+u)&&Y.exec(ce.css(e,t));if(c&&c[3]!==l){u/=2,l=l||c[3],c=+u||1;while(a--)ce.style(e,t,c+l),(1-o)*(1-(o=s()/u||.5))<=0&&(a=0),c/=o;c*=2,ce.style(e,t,c+l),n=n||[]}return n&&(c=+c||+u||0,i=n[1]?c+(n[1]+1)*n[2]:+n[2],r&&(r.unit=l,r.start=c,r.end=i)),i}var ne={};function re(e,t){for(var n,r,i,o,a,s,u,l=[],c=0,f=e.length;c<f;c++)(r=e[c]).style&&(n=r.style.display,t?("none"===n&&(l[c]=_.get(r,"display")||null,l[c]||(r.style.display="")),""===r.style.display&&ee(r)&&(l[c]=(u=a=o=void 0,a=(i=r).ownerDocument,s=i.nodeName,(u=ne[s])||(o=a.body.appendChild(a.createElement(s)),u=ce.css(o,"display"),o.parentNode.removeChild(o),"none"===u&&(u="block"),ne[s]=u)))):"none"!==n&&(l[c]="none",_.set(r,"display",n)));for(c=0;c<f;c++)null!=l[c]&&(e[c].style.display=l[c]);return e}ce.fn.extend({show:function(){return re(this,!0)},hide:function(){return re(this)},toggle:function(e){return"boolean"==typeof e?e?this.show():this.hide():this.each(function(){ee(this)?ce(this).show():ce(this).hide()})}});var xe,be,we=/^(?:checkbox|radio)$/i,Te=/<([a-z][^\/\0>\x20\t\r\n\f]*)/i,Ce=/^$|^module$|\/(?:java|ecma)script/i;xe=C.createDocumentFragment().appendChild(C.createElement("div")),(be=C.createElement("input")).setAttribute("type","radio"),be.setAttribute("checked","checked"),be.setAttribute("name","t"),xe.appendChild(be),le.checkClone=xe.cloneNode(!0).cloneNode(!0).lastChild.checked,xe.innerHTML="<textarea>x</textarea>",le.noCloneChecked=!!xe.cloneNode(!0).lastChild.defaultValue,xe.innerHTML="<option></option>",le.option=!!xe.lastChild;var ke={thead:[1,"<table>","</table>"],col:[2,"<table><colgroup>","</colgroup></table>"],tr:[2,"<table><tbody>","</tbody></table>"],td:[3,"<table><tbody><tr>","</tr></tbody></table>"],_default:[0,"",""]};function Se(e,t){var n;return n="undefined"!=typeof e.getElementsByTagName?e.getElementsByTagName(t||"*"):"undefined"!=typeof e.querySelectorAll?e.querySelectorAll(t||"*"):[],void 0===t||t&&fe(e,t)?ce.merge([e],n):n}function Ee(e,t){for(var n=0,r=e.length;n<r;n++)_.set(e[n],"globalEval",!t||_.get(t[n],"globalEval"))}ke.tbody=ke.tfoot=ke.colgroup=ke.caption=ke.thead,ke.th=ke.td,le.option||(ke.optgroup=ke.option=[1,"<select multiple='multiple'>","</select>"]);var je=/<|&#?\w+;/;function Ae(e,t,n,r,i){for(var o,a,s,u,l,c,f=t.createDocumentFragment(),p=[],d=0,h=e.length;d<h;d++)if((o=e[d])||0===o)if("object"===x(o))ce.merge(p,o.nodeType?[o]:o);else if(je.test(o)){a=a||f.appendChild(t.createElement("div")),s=(Te.exec(o)||["",""])[1].toLowerCase(),u=ke[s]||ke._default,a.innerHTML=u[1]+ce.htmlPrefilter(o)+u[2],c=u[0];while(c--)a=a.lastChild;ce.merge(p,a.childNodes),(a=f.firstChild).textContent=""}else p.push(t.createTextNode(o));f.textContent="",d=0;while(o=p[d++])if(r&&-1<ce.inArray(o,r))i&&i.push(o);else if(l=K(o),a=Se(f.appendChild(o),"script"),l&&Ee(a),n){c=0;while(o=a[c++])Ce.test(o.type||"")&&n.push(o)}return f}var De=/^([^.]*)(?:\.(.+)|)/;function Ne(){return!0}function qe(){return!1}function Le(e,t,n,r,i,o){var a,s;if("object"==typeof t){for(s in"string"!=typeof n&&(r=r||n,n=void 0),t)Le(e,s,n,r,t[s],o);return e}if(null==r&&null==i?(i=n,r=n=void 0):null==i&&("string"==typeof n?(i=r,r=void 0):(i=r,r=n,n=void 0)),!1===i)i=qe;else if(!i)return e;return 1===o&&(a=i,(i=function(e){return ce().off(e),a.apply(this,arguments)}).guid=a.guid||(a.guid=ce.guid++)),e.each(function(){ce.event.add(this,t,i,r,n)})}function He(e,r,t){t?(_.set(e,r,!1),ce.event.add(e,r,{namespace:!1,handler:function(e){var t,n=_.get(this,r);if(1&e.isTrigger&&this[r]){if(n)(ce.event.special[r]||{}).delegateType&&e.stopPropagation();else if(n=ae.call(arguments),_.set(this,r,n),this[r](),t=_.get(this,r),_.set(this,r,!1),n!==t)return e.stopImmediatePropagation(),e.preventDefault(),t}else n&&(_.set(this,r,ce.event.trigger(n[0],n.slice(1),this)),e.stopPropagation(),e.isImmediatePropagationStopped=Ne)}})):void 0===_.get(e,r)&&ce.event.add(e,r,Ne)}ce.event={global:{},add:function(t,e,n,r,i){var o,a,s,u,l,c,f,p,d,h,g,v=_.get(t);if($(t)){n.handler&&(n=(o=n).handler,i=o.selector),i&&ce.find.matchesSelector(J,i),n.guid||(n.guid=ce.guid++),(u=v.events)||(u=v.events=Object.create(null)),(a=v.handle)||(a=v.handle=function(e){return"undefined"!=typeof ce&&ce.event.triggered!==e.type?ce.event.dispatch.apply(t,arguments):void 0}),l=(e=(e||"").match(D)||[""]).length;while(l--)d=g=(s=De.exec(e[l])||[])[1],h=(s[2]||"").split(".").sort(),d&&(f=ce.event.special[d]||{},d=(i?f.delegateType:f.bindType)||d,f=ce.event.special[d]||{},c=ce.extend({type:d,origType:g,data:r,handler:n,guid:n.guid,selector:i,needsContext:i&&ce.expr.match.needsContext.test(i),namespace:h.join(".")},o),(p=u[d])||((p=u[d]=[]).delegateCount=0,f.setup&&!1!==f.setup.call(t,r,h,a)||t.addEventListener&&t.addEventListener(d,a)),f.add&&(f.add.call(t,c),c.handler.guid||(c.handler.guid=n.guid)),i?p.splice(p.delegateCount++,0,c):p.push(c),ce.event.global[d]=!0)}},remove:function(e,t,n,r,i){var o,a,s,u,l,c,f,p,d,h,g,v=_.hasData(e)&&_.get(e);if(v&&(u=v.events)){l=(t=(t||"").match(D)||[""]).length;while(l--)if(d=g=(s=De.exec(t[l])||[])[1],h=(s[2]||"").split(".").sort(),d){f=ce.event.special[d]||{},p=u[d=(r?f.delegateType:f.bindType)||d]||[],s=s[2]&&new RegExp("(^|\\.)"+h.join("\\.(?:.*\\.|)")+"(\\.|$)"),a=o=p.length;while(o--)c=p[o],!i&&g!==c.origType||n&&n.guid!==c.guid||s&&!s.test(c.namespace)||r&&r!==c.selector&&("**"!==r||!c.selector)||(p.splice(o,1),c.selector&&p.delegateCount--,f.remove&&f.remove.call(e,c));a&&!p.length&&(f.teardown&&!1!==f.teardown.call(e,h,v.handle)||ce.removeEvent(e,d,v.handle),delete u[d])}else for(d in u)ce.event.remove(e,d+t[l],n,r,!0);ce.isEmptyObject(u)&&_.remove(e,"handle events")}},dispatch:function(e){var t,n,r,i,o,a,s=new Array(arguments.length),u=ce.event.fix(e),l=(_.get(this,"events")||Object.create(null))[u.type]||[],c=ce.event.special[u.type]||{};for(s[0]=u,t=1;t<arguments.length;t++)s[t]=arguments[t];if(u.delegateTarget=this,!c.preDispatch||!1!==c.preDispatch.call(this,u)){a=ce.event.handlers.call(this,u,l),t=0;while((i=a[t++])&&!u.isPropagationStopped()){u.currentTarget=i.elem,n=0;while((o=i.handlers[n++])&&!u.isImmediatePropagationStopped())u.rnamespace&&!1!==o.namespace&&!u.rnamespace.test(o.namespace)||(u.handleObj=o,u.data=o.data,void 0!==(r=((ce.event.special[o.origType]||{}).handle||o.handler).apply(i.elem,s))&&!1===(u.result=r)&&(u.preventDefault(),u.stopPropagation()))}return c.postDispatch&&c.postDispatch.call(this,u),u.result}},handlers:function(e,t){var n,r,i,o,a,s=[],u=t.delegateCount,l=e.target;if(u&&l.nodeType&&!("click"===e.type&&1<=e.button))for(;l!==this;l=l.parentNode||this)if(1===l.nodeType&&("click"!==e.type||!0!==l.disabled)){for(o=[],a={},n=0;n<u;n++)void 0===a[i=(r=t[n]).selector+" "]&&(a[i]=r.needsContext?-1<ce(i,this).index(l):ce.find(i,this,null,[l]).length),a[i]&&o.push(r);o.length&&s.push({elem:l,handlers:o})}return l=this,u<t.length&&s.push({elem:l,handlers:t.slice(u)}),s},addProp:function(t,e){Object.defineProperty(ce.Event.prototype,t,{enumerable:!0,configurable:!0,get:v(e)?function(){if(this.originalEvent)return e(this.originalEvent)}:function(){if(this.originalEvent)return this.originalEvent[t]},set:function(e){Object.defineProperty(this,t,{enumerable:!0,configurable:!0,writable:!0,value:e})}})},fix:function(e){return e[ce.expando]?e:new ce.Event(e)},special:{load:{noBubble:!0},click:{setup:function(e){var t=this||e;return we.test(t.type)&&t.click&&fe(t,"input")&&He(t,"click",!0),!1},trigger:function(e){var t=this||e;return we.test(t.type)&&t.click&&fe(t,"input")&&He(t,"click"),!0},_default:function(e){var t=e.target;return we.test(t.type)&&t.click&&fe(t,"input")&&_.get(t,"click")||fe(t,"a")}},beforeunload:{postDispatch:function(e){void 0!==e.result&&e.originalEvent&&(e.originalEvent.returnValue=e.result)}}}},ce.removeEvent=function(e,t,n){e.removeEventListener&&e.removeEventListener(t,n)},ce.Event=function(e,t){if(!(this instanceof ce.Event))return new ce.Event(e,t);e&&e.type?(this.originalEvent=e,this.type=e.type,this.isDefaultPrevented=e.defaultPrevented||void 0===e.defaultPrevented&&!1===e.returnValue?Ne:qe,this.target=e.target&&3===e.target.nodeType?e.target.parentNode:e.target,this.currentTarget=e.currentTarget,this.relatedTarget=e.relatedTarget):this.type=e,t&&ce.extend(this,t),this.timeStamp=e&&e.timeStamp||Date.now(),this[ce.expando]=!0},ce.Event.prototype={constructor:ce.Event,isDefaultPrevented:qe,isPropagationStopped:qe,isImmediatePropagationStopped:qe,isSimulated:!1,preventDefault:function(){var e=this.originalEvent;this.isDefaultPrevented=Ne,e&&!this.isSimulated&&e.preventDefault()},stopPropagation:function(){var e=this.originalEvent;this.isPropagationStopped=Ne,e&&!this.isSimulated&&e.stopPropagation()},stopImmediatePropagation:function(){var e=this.originalEvent;this.isImmediatePropagationStopped=Ne,e&&!this.isSimulated&&e.stopImmediatePropagation(),this.stopPropagation()}},ce.each({altKey:!0,bubbles:!0,cancelable:!0,changedTouches:!0,ctrlKey:!0,detail:!0,eventPhase:!0,metaKey:!0,pageX:!0,pageY:!0,shiftKey:!0,view:!0,"char":!0,code:!0,charCode:!0,key:!0,keyCode:!0,button:!0,buttons:!0,clientX:!0,clientY:!0,offsetX:!0,offsetY:!0,pointerId:!0,pointerType:!0,screenX:!0,screenY:!0,targetTouches:!0,toElement:!0,touches:!0,which:!0},ce.event.addProp),ce.each({focus:"focusin",blur:"focusout"},function(r,i){function o(e){if(C.documentMode){var t=_.get(this,"handle"),n=ce.event.fix(e);n.type="focusin"===e.type?"focus":"blur",n.isSimulated=!0,t(e),n.target===n.currentTarget&&t(n)}else ce.event.simulate(i,e.target,ce.event.fix(e))}ce.event.special[r]={setup:function(){var e;if(He(this,r,!0),!C.documentMode)return!1;(e=_.get(this,i))||this.addEventListener(i,o),_.set(this,i,(e||0)+1)},trigger:function(){return He(this,r),!0},teardown:function(){var e;if(!C.documentMode)return!1;(e=_.get(this,i)-1)?_.set(this,i,e):(this.removeEventListener(i,o),_.remove(this,i))},_default:function(e){return _.get(e.target,r)},delegateType:i},ce.event.special[i]={setup:function(){var e=this.ownerDocument||this.document||this,t=C.documentMode?this:e,n=_.get(t,i);n||(C.documentMode?this.addEventListener(i,o):e.addEventListener(r,o,!0)),_.set(t,i,(n||0)+1)},teardown:function(){var e=this.ownerDocument||this.document||this,t=C.documentMode?this:e,n=_.get(t,i)-1;n?_.set(t,i,n):(C.documentMode?this.removeEventListener(i,o):e.removeEventListener(r,o,!0),_.remove(t,i))}}}),ce.each({mouseenter:"mouseover",mouseleave:"mouseout",pointerenter:"pointerover",pointerleave:"pointerout"},function(e,i){ce.event.special[e]={delegateType:i,bindType:i,handle:function(e){var t,n=e.relatedTarget,r=e.handleObj;return n&&(n===this||ce.contains(this,n))||(e.type=r.origType,t=r.handler.apply(this,arguments),e.type=i),t}}}),ce.fn.extend({on:function(e,t,n,r){return Le(this,e,t,n,r)},one:function(e,t,n,r){return Le(this,e,t,n,r,1)},off:function(e,t,n){var r,i;if(e&&e.preventDefault&&e.handleObj)return r=e.handleObj,ce(e.delegateTarget).off(r.namespace?r.origType+"."+r.namespace:r.origType,r.selector,r.handler),this;if("object"==typeof e){for(i in e)this.off(i,t,e[i]);return this}return!1!==t&&"function"!=typeof t||(n=t,t=void 0),!1===n&&(n=qe),this.each(function(){ce.event.remove(this,e,n,t)})}});var Oe=/<script|<style|<link/i,Pe=/checked\s*(?:[^=]|=\s*.checked.)/i,Me=/^\s*<!\[CDATA\[|\]\]>\s*$/g;function Re(e,t){return fe(e,"table")&&fe(11!==t.nodeType?t:t.firstChild,"tr")&&ce(e).children("tbody")[0]||e}function Ie(e){return e.type=(null!==e.getAttribute("type"))+"/"+e.type,e}function We(e){return"true/"===(e.type||"").slice(0,5)?e.type=e.type.slice(5):e.removeAttribute("type"),e}function Fe(e,t){var n,r,i,o,a,s;if(1===t.nodeType){if(_.hasData(e)&&(s=_.get(e).events))for(i in _.remove(t,"handle events"),s)for(n=0,r=s[i].length;n<r;n++)ce.event.add(t,i,s[i][n]);z.hasData(e)&&(o=z.access(e),a=ce.extend({},o),z.set(t,a))}}function $e(n,r,i,o){r=g(r);var e,t,a,s,u,l,c=0,f=n.length,p=f-1,d=r[0],h=v(d);if(h||1<f&&"string"==typeof d&&!le.checkClone&&Pe.test(d))return n.each(function(e){var t=n.eq(e);h&&(r[0]=d.call(this,e,t.html())),$e(t,r,i,o)});if(f&&(t=(e=Ae(r,n[0].ownerDocument,!1,n,o)).firstChild,1===e.childNodes.length&&(e=t),t||o)){for(s=(a=ce.map(Se(e,"script"),Ie)).length;c<f;c++)u=e,c!==p&&(u=ce.clone(u,!0,!0),s&&ce.merge(a,Se(u,"script"))),i.call(n[c],u,c);if(s)for(l=a[a.length-1].ownerDocument,ce.map(a,We),c=0;c<s;c++)u=a[c],Ce.test(u.type||"")&&!_.access(u,"globalEval")&&ce.contains(l,u)&&(u.src&&"module"!==(u.type||"").toLowerCase()?ce._evalUrl&&!u.noModule&&ce._evalUrl(u.src,{nonce:u.nonce||u.getAttribute("nonce")},l):m(u.textContent.replace(Me,""),u,l))}return n}function Be(e,t,n){for(var r,i=t?ce.filter(t,e):e,o=0;null!=(r=i[o]);o++)n||1!==r.nodeType||ce.cleanData(Se(r)),r.parentNode&&(n&&K(r)&&Ee(Se(r,"script")),r.parentNode.removeChild(r));return e}ce.extend({htmlPrefilter:function(e){return e},clone:function(e,t,n){var r,i,o,a,s,u,l,c=e.cloneNode(!0),f=K(e);if(!(le.noCloneChecked||1!==e.nodeType&&11!==e.nodeType||ce.isXMLDoc(e)))for(a=Se(c),r=0,i=(o=Se(e)).length;r<i;r++)s=o[r],u=a[r],void 0,"input"===(l=u.nodeName.toLowerCase())&&we.test(s.type)?u.checked=s.checked:"input"!==l&&"textarea"!==l||(u.defaultValue=s.defaultValue);if(t)if(n)for(o=o||Se(e),a=a||Se(c),r=0,i=o.length;r<i;r++)Fe(o[r],a[r]);else Fe(e,c);return 0<(a=Se(c,"script")).length&&Ee(a,!f&&Se(e,"script")),c},cleanData:function(e){for(var t,n,r,i=ce.event.special,o=0;void 0!==(n=e[o]);o++)if($(n)){if(t=n[_.expando]){if(t.events)for(r in t.events)i[r]?ce.event.remove(n,r):ce.removeEvent(n,r,t.handle);n[_.expando]=void 0}n[z.expando]&&(n[z.expando]=void 0)}}}),ce.fn.extend({detach:function(e){return Be(this,e,!0)},remove:function(e){return Be(this,e)},text:function(e){return M(this,function(e){return void 0===e?ce.text(this):this.empty().each(function(){1!==this.nodeType&&11!==this.nodeType&&9!==this.nodeType||(this.textContent=e)})},null,e,arguments.length)},append:function(){return $e(this,arguments,function(e){1!==this.nodeType&&11!==this.nodeType&&9!==this.nodeType||Re(this,e).appendChild(e)})},prepend:function(){return $e(this,arguments,function(e){if(1===this.nodeType||11===this.nodeType||9===this.nodeType){var t=Re(this,e);t.insertBefore(e,t.firstChild)}})},before:function(){return $e(this,arguments,function(e){this.parentNode&&this.parentNode.insertBefore(e,this)})},after:function(){return $e(this,arguments,function(e){this.parentNode&&this.parentNode.insertBefore(e,this.nextSibling)})},empty:function(){for(var e,t=0;null!=(e=this[t]);t++)1===e.nodeType&&(ce.cleanData(Se(e,!1)),e.textContent="");return this},clone:function(e,t){return e=null!=e&&e,t=null==t?e:t,this.map(function(){return ce.clone(this,e,t)})},html:function(e){return M(this,function(e){var t=this[0]||{},n=0,r=this.length;if(void 0===e&&1===t.nodeType)return t.innerHTML;if("string"==typeof e&&!Oe.test(e)&&!ke[(Te.exec(e)||["",""])[1].toLowerCase()]){e=ce.htmlPrefilter(e);try{for(;n<r;n++)1===(t=this[n]||{}).nodeType&&(ce.cleanData(Se(t,!1)),t.innerHTML=e);t=0}catch(e){}}t&&this.empty().append(e)},null,e,arguments.length)},replaceWith:function(){var n=[];return $e(this,arguments,function(e){var t=this.parentNode;ce.inArray(this,n)<0&&(ce.cleanData(Se(this)),t&&t.replaceChild(e,this))},n)}}),ce.each({appendTo:"append",prependTo:"prepend",insertBefore:"before",insertAfter:"after",replaceAll:"replaceWith"},function(e,a){ce.fn[e]=function(e){for(var t,n=[],r=ce(e),i=r.length-1,o=0;o<=i;o++)t=o===i?this:this.clone(!0),ce(r[o])[a](t),s.apply(n,t.get());return this.pushStack(n)}});var _e=new RegExp("^("+G+")(?!px)[a-z%]+$","i"),ze=/^--/,Xe=function(e){var t=e.ownerDocument.defaultView;return t&&t.opener||(t=ie),t.getComputedStyle(e)},Ue=function(e,t,n){var r,i,o={};for(i in t)o[i]=e.style[i],e.style[i]=t[i];for(i in r=n.call(e),t)e.style[i]=o[i];return r},Ve=new RegExp(Q.join("|"),"i");function Ge(e,t,n){var r,i,o,a,s=ze.test(t),u=e.style;return(n=n||Xe(e))&&(a=n.getPropertyValue(t)||n[t],s&&a&&(a=a.replace(ve,"$1")||void 0),""!==a||K(e)||(a=ce.style(e,t)),!le.pixelBoxStyles()&&_e.test(a)&&Ve.test(t)&&(r=u.width,i=u.minWidth,o=u.maxWidth,u.minWidth=u.maxWidth=u.width=a,a=n.width,u.width=r,u.minWidth=i,u.maxWidth=o)),void 0!==a?a+"":a}function Ye(e,t){return{get:function(){if(!e())return(this.get=t).apply(this,arguments);delete this.get}}}!function(){function e(){if(l){u.style.cssText="position:absolute;left:-11111px;width:60px;margin-top:1px;padding:0;border:0",l.style.cssText="position:relative;display:block;box-sizing:border-box;overflow:scroll;margin:auto;border:1px;padding:1px;width:60%;top:1%",J.appendChild(u).appendChild(l);var e=ie.getComputedStyle(l);n="1%"!==e.top,s=12===t(e.marginLeft),l.style.right="60%",o=36===t(e.right),r=36===t(e.width),l.style.position="absolute",i=12===t(l.offsetWidth/3),J.removeChild(u),l=null}}function t(e){return Math.round(parseFloat(e))}var n,r,i,o,a,s,u=C.createElement("div"),l=C.createElement("div");l.style&&(l.style.backgroundClip="content-box",l.cloneNode(!0).style.backgroundClip="",le.clearCloneStyle="content-box"===l.style.backgroundClip,ce.extend(le,{boxSizingReliable:function(){return e(),r},pixelBoxStyles:function(){return e(),o},pixelPosition:function(){return e(),n},reliableMarginLeft:function(){return e(),s},scrollboxSize:function(){return e(),i},reliableTrDimensions:function(){var e,t,n,r;return null==a&&(e=C.createElement("table"),t=C.createElement("tr"),n=C.createElement("div"),e.style.cssText="position:absolute;left:-11111px;border-collapse:separate",t.style.cssText="box-sizing:content-box;border:1px solid",t.style.height="1px",n.style.height="9px",n.style.display="block",J.appendChild(e).appendChild(t).appendChild(n),r=ie.getComputedStyle(t),a=parseInt(r.height,10)+parseInt(r.borderTopWidth,10)+parseInt(r.borderBottomWidth,10)===t.offsetHeight,J.removeChild(e)),a}}))}();var Qe=["Webkit","Moz","ms"],Je=C.createElement("div").style,Ke={};function Ze(e){var t=ce.cssProps[e]||Ke[e];return t||(e in Je?e:Ke[e]=function(e){var t=e[0].toUpperCase()+e.slice(1),n=Qe.length;while(n--)if((e=Qe[n]+t)in Je)return e}(e)||e)}var et=/^(none|table(?!-c[ea]).+)/,tt={position:"absolute",visibility:"hidden",display:"block"},nt={letterSpacing:"0",fontWeight:"400"};function rt(e,t,n){var r=Y.exec(t);return r?Math.max(0,r[2]-(n||0))+(r[3]||"px"):t}function it(e,t,n,r,i,o){var a="width"===t?1:0,s=0,u=0,l=0;if(n===(r?"border":"content"))return 0;for(;a<4;a+=2)"margin"===n&&(l+=ce.css(e,n+Q[a],!0,i)),r?("content"===n&&(u-=ce.css(e,"padding"+Q[a],!0,i)),"margin"!==n&&(u-=ce.css(e,"border"+Q[a]+"Width",!0,i))):(u+=ce.css(e,"padding"+Q[a],!0,i),"padding"!==n?u+=ce.css(e,"border"+Q[a]+"Width",!0,i):s+=ce.css(e,"border"+Q[a]+"Width",!0,i));return!r&&0<=o&&(u+=Math.max(0,Math.ceil(e["offset"+t[0].toUpperCase()+t.slice(1)]-o-u-s-.5))||0),u+l}function ot(e,t,n){var r=Xe(e),i=(!le.boxSizingReliable()||n)&&"border-box"===ce.css(e,"boxSizing",!1,r),o=i,a=Ge(e,t,r),s="offset"+t[0].toUpperCase()+t.slice(1);if(_e.test(a)){if(!n)return a;a="auto"}return(!le.boxSizingReliable()&&i||!le.reliableTrDimensions()&&fe(e,"tr")||"auto"===a||!parseFloat(a)&&"inline"===ce.css(e,"display",!1,r))&&e.getClientRects().length&&(i="border-box"===ce.css(e,"boxSizing",!1,r),(o=s in e)&&(a=e[s])),(a=parseFloat(a)||0)+it(e,t,n||(i?"border":"content"),o,r,a)+"px"}function at(e,t,n,r,i){return new at.prototype.init(e,t,n,r,i)}ce.extend({cssHooks:{opacity:{get:function(e,t){if(t){var n=Ge(e,"opacity");return""===n?"1":n}}}},cssNumber:{animationIterationCount:!0,aspectRatio:!0,borderImageSlice:!0,columnCount:!0,flexGrow:!0,flexShrink:!0,fontWeight:!0,gridArea:!0,gridColumn:!0,gridColumnEnd:!0,gridColumnStart:!0,gridRow:!0,gridRowEnd:!0,gridRowStart:!0,lineHeight:!0,opacity:!0,order:!0,orphans:!0,scale:!0,widows:!0,zIndex:!0,zoom:!0,fillOpacity:!0,floodOpacity:!0,stopOpacity:!0,strokeMiterlimit:!0,strokeOpacity:!0},cssProps:{},style:function(e,t,n,r){if(e&&3!==e.nodeType&&8!==e.nodeType&&e.style){var i,o,a,s=F(t),u=ze.test(t),l=e.style;if(u||(t=Ze(s)),a=ce.cssHooks[t]||ce.cssHooks[s],void 0===n)return a&&"get"in a&&void 0!==(i=a.get(e,!1,r))?i:l[t];"string"===(o=typeof n)&&(i=Y.exec(n))&&i[1]&&(n=te(e,t,i),o="number"),null!=n&&n==n&&("number"!==o||u||(n+=i&&i[3]||(ce.cssNumber[s]?"":"px")),le.clearCloneStyle||""!==n||0!==t.indexOf("background")||(l[t]="inherit"),a&&"set"in a&&void 0===(n=a.set(e,n,r))||(u?l.setProperty(t,n):l[t]=n))}},css:function(e,t,n,r){var i,o,a,s=F(t);return ze.test(t)||(t=Ze(s)),(a=ce.cssHooks[t]||ce.cssHooks[s])&&"get"in a&&(i=a.get(e,!0,n)),void 0===i&&(i=Ge(e,t,r)),"normal"===i&&t in nt&&(i=nt[t]),""===n||n?(o=parseFloat(i),!0===n||isFinite(o)?o||0:i):i}}),ce.each(["height","width"],function(e,u){ce.cssHooks[u]={get:function(e,t,n){if(t)return!et.test(ce.css(e,"display"))||e.getClientRects().length&&e.getBoundingClientRect().width?ot(e,u,n):Ue(e,tt,function(){return ot(e,u,n)})},set:function(e,t,n){var r,i=Xe(e),o=!le.scrollboxSize()&&"absolute"===i.position,a=(o||n)&&"border-box"===ce.css(e,"boxSizing",!1,i),s=n?it(e,u,n,a,i):0;return a&&o&&(s-=Math.ceil(e["offset"+u[0].toUpperCase()+u.slice(1)]-parseFloat(i[u])-it(e,u,"border",!1,i)-.5)),s&&(r=Y.exec(t))&&"px"!==(r[3]||"px")&&(e.style[u]=t,t=ce.css(e,u)),rt(0,t,s)}}}),ce.cssHooks.marginLeft=Ye(le.reliableMarginLeft,function(e,t){if(t)return(parseFloat(Ge(e,"marginLeft"))||e.getBoundingClientRect().left-Ue(e,{marginLeft:0},function(){return e.getBoundingClientRect().left}))+"px"}),ce.each({margin:"",padding:"",border:"Width"},function(i,o){ce.cssHooks[i+o]={expand:function(e){for(var t=0,n={},r="string"==typeof e?e.split(" "):[e];t<4;t++)n[i+Q[t]+o]=r[t]||r[t-2]||r[0];return n}},"margin"!==i&&(ce.cssHooks[i+o].set=rt)}),ce.fn.extend({css:function(e,t){return M(this,function(e,t,n){var r,i,o={},a=0;if(Array.isArray(t)){for(r=Xe(e),i=t.length;a<i;a++)o[t[a]]=ce.css(e,t[a],!1,r);return o}return void 0!==n?ce.style(e,t,n):ce.css(e,t)},e,t,1<arguments.length)}}),((ce.Tween=at).prototype={constructor:at,init:function(e,t,n,r,i,o){this.elem=e,this.prop=n,this.easing=i||ce.easing._default,this.options=t,this.start=this.now=this.cur(),this.end=r,this.unit=o||(ce.cssNumber[n]?"":"px")},cur:function(){var e=at.propHooks[this.prop];return e&&e.get?e.get(this):at.propHooks._default.get(this)},run:function(e){var t,n=at.propHooks[this.prop];return this.options.duration?this.pos=t=ce.easing[this.easing](e,this.options.duration*e,0,1,this.options.duration):this.pos=t=e,this.now=(this.end-this.start)*t+this.start,this.options.step&&this.options.step.call(this.elem,this.now,this),n&&n.set?n.set(this):at.propHooks._default.set(this),this}}).init.prototype=at.prototype,(at.propHooks={_default:{get:function(e){var t;return 1!==e.elem.nodeType||null!=e.elem[e.prop]&&null==e.elem.style[e.prop]?e.elem[e.prop]:(t=ce.css(e.elem,e.prop,""))&&"auto"!==t?t:0},set:function(e){ce.fx.step[e.prop]?ce.fx.step[e.prop](e):1!==e.elem.nodeType||!ce.cssHooks[e.prop]&&null==e.elem.style[Ze(e.prop)]?e.elem[e.prop]=e.now:ce.style(e.elem,e.prop,e.now+e.unit)}}}).scrollTop=at.propHooks.scrollLeft={set:function(e){e.elem.nodeType&&e.elem.parentNode&&(e.elem[e.prop]=e.now)}},ce.easing={linear:function(e){return e},swing:function(e){return.5-Math.cos(e*Math.PI)/2},_default:"swing"},ce.fx=at.prototype.init,ce.fx.step={};var st,ut,lt,ct,ft=/^(?:toggle|show|hide)$/,pt=/queueHooks$/;function dt(){ut&&(!1===C.hidden&&ie.requestAnimationFrame?ie.requestAnimationFrame(dt):ie.setTimeout(dt,ce.fx.interval),ce.fx.tick())}function ht(){return ie.setTimeout(function(){st=void 0}),st=Date.now()}function gt(e,t){var n,r=0,i={height:e};for(t=t?1:0;r<4;r+=2-t)i["margin"+(n=Q[r])]=i["padding"+n]=e;return t&&(i.opacity=i.width=e),i}function vt(e,t,n){for(var r,i=(yt.tweeners[t]||[]).concat(yt.tweeners["*"]),o=0,a=i.length;o<a;o++)if(r=i[o].call(n,t,e))return r}function yt(o,e,t){var n,a,r=0,i=yt.prefilters.length,s=ce.Deferred().always(function(){delete u.elem}),u=function(){if(a)return!1;for(var e=st||ht(),t=Math.max(0,l.startTime+l.duration-e),n=1-(t/l.duration||0),r=0,i=l.tweens.length;r<i;r++)l.tweens[r].run(n);return s.notifyWith(o,[l,n,t]),n<1&&i?t:(i||s.notifyWith(o,[l,1,0]),s.resolveWith(o,[l]),!1)},l=s.promise({elem:o,props:ce.extend({},e),opts:ce.extend(!0,{specialEasing:{},easing:ce.easing._default},t),originalProperties:e,originalOptions:t,startTime:st||ht(),duration:t.duration,tweens:[],createTween:function(e,t){var n=ce.Tween(o,l.opts,e,t,l.opts.specialEasing[e]||l.opts.easing);return l.tweens.push(n),n},stop:function(e){var t=0,n=e?l.tweens.length:0;if(a)return this;for(a=!0;t<n;t++)l.tweens[t].run(1);return e?(s.notifyWith(o,[l,1,0]),s.resolveWith(o,[l,e])):s.rejectWith(o,[l,e]),this}}),c=l.props;for(!function(e,t){var n,r,i,o,a;for(n in e)if(i=t[r=F(n)],o=e[n],Array.isArray(o)&&(i=o[1],o=e[n]=o[0]),n!==r&&(e[r]=o,delete e[n]),(a=ce.cssHooks[r])&&"expand"in a)for(n in o=a.expand(o),delete e[r],o)n in e||(e[n]=o[n],t[n]=i);else t[r]=i}(c,l.opts.specialEasing);r<i;r++)if(n=yt.prefilters[r].call(l,o,c,l.opts))return v(n.stop)&&(ce._queueHooks(l.elem,l.opts.queue).stop=n.stop.bind(n)),n;return ce.map(c,vt,l),v(l.opts.start)&&l.opts.start.call(o,l),l.progress(l.opts.progress).done(l.opts.done,l.opts.complete).fail(l.opts.fail).always(l.opts.always),ce.fx.timer(ce.extend(u,{elem:o,anim:l,queue:l.opts.queue})),l}ce.Animation=ce.extend(yt,{tweeners:{"*":[function(e,t){var n=this.createTween(e,t);return te(n.elem,e,Y.exec(t),n),n}]},tweener:function(e,t){v(e)?(t=e,e=["*"]):e=e.match(D);for(var n,r=0,i=e.length;r<i;r++)n=e[r],yt.tweeners[n]=yt.tweeners[n]||[],yt.tweeners[n].unshift(t)},prefilters:[function(e,t,n){var r,i,o,a,s,u,l,c,f="width"in t||"height"in t,p=this,d={},h=e.style,g=e.nodeType&&ee(e),v=_.get(e,"fxshow");for(r in n.queue||(null==(a=ce._queueHooks(e,"fx")).unqueued&&(a.unqueued=0,s=a.empty.fire,a.empty.fire=function(){a.unqueued||s()}),a.unqueued++,p.always(function(){p.always(function(){a.unqueued--,ce.queue(e,"fx").length||a.empty.fire()})})),t)if(i=t[r],ft.test(i)){if(delete t[r],o=o||"toggle"===i,i===(g?"hide":"show")){if("show"!==i||!v||void 0===v[r])continue;g=!0}d[r]=v&&v[r]||ce.style(e,r)}if((u=!ce.isEmptyObject(t))||!ce.isEmptyObject(d))for(r in f&&1===e.nodeType&&(n.overflow=[h.overflow,h.overflowX,h.overflowY],null==(l=v&&v.display)&&(l=_.get(e,"display")),"none"===(c=ce.css(e,"display"))&&(l?c=l:(re([e],!0),l=e.style.display||l,c=ce.css(e,"display"),re([e]))),("inline"===c||"inline-block"===c&&null!=l)&&"none"===ce.css(e,"float")&&(u||(p.done(function(){h.display=l}),null==l&&(c=h.display,l="none"===c?"":c)),h.display="inline-block")),n.overflow&&(h.overflow="hidden",p.always(function(){h.overflow=n.overflow[0],h.overflowX=n.overflow[1],h.overflowY=n.overflow[2]})),u=!1,d)u||(v?"hidden"in v&&(g=v.hidden):v=_.access(e,"fxshow",{display:l}),o&&(v.hidden=!g),g&&re([e],!0),p.done(function(){for(r in g||re([e]),_.remove(e,"fxshow"),d)ce.style(e,r,d[r])})),u=vt(g?v[r]:0,r,p),r in v||(v[r]=u.start,g&&(u.end=u.start,u.start=0))}],prefilter:function(e,t){t?yt.prefilters.unshift(e):yt.prefilters.push(e)}}),ce.speed=function(e,t,n){var r=e&&"object"==typeof e?ce.extend({},e):{complete:n||!n&&t||v(e)&&e,duration:e,easing:n&&t||t&&!v(t)&&t};return ce.fx.off?r.duration=0:"number"!=typeof r.duration&&(r.duration in ce.fx.speeds?r.duration=ce.fx.speeds[r.duration]:r.duration=ce.fx.speeds._default),null!=r.queue&&!0!==r.queue||(r.queue="fx"),r.old=r.complete,r.complete=function(){v(r.old)&&r.old.call(this),r.queue&&ce.dequeue(this,r.queue)},r},ce.fn.extend({fadeTo:function(e,t,n,r){return this.filter(ee).css("opacity",0).show().end().animate({opacity:t},e,n,r)},animate:function(t,e,n,r){var i=ce.isEmptyObject(t),o=ce.speed(e,n,r),a=function(){var e=yt(this,ce.extend({},t),o);(i||_.get(this,"finish"))&&e.stop(!0)};return a.finish=a,i||!1===o.queue?this.each(a):this.queue(o.queue,a)},stop:function(i,e,o){var a=function(e){var t=e.stop;delete e.stop,t(o)};return"string"!=typeof i&&(o=e,e=i,i=void 0),e&&this.queue(i||"fx",[]),this.each(function(){var e=!0,t=null!=i&&i+"queueHooks",n=ce.timers,r=_.get(this);if(t)r[t]&&r[t].stop&&a(r[t]);else for(t in r)r[t]&&r[t].stop&&pt.test(t)&&a(r[t]);for(t=n.length;t--;)n[t].elem!==this||null!=i&&n[t].queue!==i||(n[t].anim.stop(o),e=!1,n.splice(t,1));!e&&o||ce.dequeue(this,i)})},finish:function(a){return!1!==a&&(a=a||"fx"),this.each(function(){var e,t=_.get(this),n=t[a+"queue"],r=t[a+"queueHooks"],i=ce.timers,o=n?n.length:0;for(t.finish=!0,ce.queue(this,a,[]),r&&r.stop&&r.stop.call(this,!0),e=i.length;e--;)i[e].elem===this&&i[e].queue===a&&(i[e].anim.stop(!0),i.splice(e,1));for(e=0;e<o;e++)n[e]&&n[e].finish&&n[e].finish.call(this);delete t.finish})}}),ce.each(["toggle","show","hide"],function(e,r){var i=ce.fn[r];ce.fn[r]=function(e,t,n){return null==e||"boolean"==typeof e?i.apply(this,arguments):this.animate(gt(r,!0),e,t,n)}}),ce.each({slideDown:gt("show"),slideUp:gt("hide"),slideToggle:gt("toggle"),fadeIn:{opacity:"show"},fadeOut:{opacity:"hide"},fadeToggle:{opacity:"toggle"}},function(e,r){ce.fn[e]=function(e,t,n){return this.animate(r,e,t,n)}}),ce.timers=[],ce.fx.tick=function(){var e,t=0,n=ce.timers;for(st=Date.now();t<n.length;t++)(e=n[t])()||n[t]!==e||n.splice(t--,1);n.length||ce.fx.stop(),st=void 0},ce.fx.timer=function(e){ce.timers.push(e),ce.fx.start()},ce.fx.interval=13,ce.fx.start=function(){ut||(ut=!0,dt())},ce.fx.stop=function(){ut=null},ce.fx.speeds={slow:600,fast:200,_default:400},ce.fn.delay=function(r,e){return r=ce.fx&&ce.fx.speeds[r]||r,e=e||"fx",this.queue(e,function(e,t){var n=ie.setTimeout(e,r);t.stop=function(){ie.clearTimeout(n)}})},lt=C.createElement("input"),ct=C.createElement("select").appendChild(C.createElement("option")),lt.type="checkbox",le.checkOn=""!==lt.value,le.optSelected=ct.selected,(lt=C.createElement("input")).value="t",lt.type="radio",le.radioValue="t"===lt.value;var mt,xt=ce.expr.attrHandle;ce.fn.extend({attr:function(e,t){return M(this,ce.attr,e,t,1<arguments.length)},removeAttr:function(e){return this.each(function(){ce.removeAttr(this,e)})}}),ce.extend({attr:function(e,t,n){var r,i,o=e.nodeType;if(3!==o&&8!==o&&2!==o)return"undefined"==typeof e.getAttribute?ce.prop(e,t,n):(1===o&&ce.isXMLDoc(e)||(i=ce.attrHooks[t.toLowerCase()]||(ce.expr.match.bool.test(t)?mt:void 0)),void 0!==n?null===n?void ce.removeAttr(e,t):i&&"set"in i&&void 0!==(r=i.set(e,n,t))?r:(e.setAttribute(t,n+""),n):i&&"get"in i&&null!==(r=i.get(e,t))?r:null==(r=ce.find.attr(e,t))?void 0:r)},attrHooks:{type:{set:function(e,t){if(!le.radioValue&&"radio"===t&&fe(e,"input")){var n=e.value;return e.setAttribute("type",t),n&&(e.value=n),t}}}},removeAttr:function(e,t){var n,r=0,i=t&&t.match(D);if(i&&1===e.nodeType)while(n=i[r++])e.removeAttribute(n)}}),mt={set:function(e,t,n){return!1===t?ce.removeAttr(e,n):e.setAttribute(n,n),n}},ce.each(ce.expr.match.bool.source.match(/\w+/g),function(e,t){var a=xt[t]||ce.find.attr;xt[t]=function(e,t,n){var r,i,o=t.toLowerCase();return n||(i=xt[o],xt[o]=r,r=null!=a(e,t,n)?o:null,xt[o]=i),r}});var bt=/^(?:input|select|textarea|button)$/i,wt=/^(?:a|area)$/i;function Tt(e){return(e.match(D)||[]).join(" ")}function Ct(e){return e.getAttribute&&e.getAttribute("class")||""}function kt(e){return Array.isArray(e)?e:"string"==typeof e&&e.match(D)||[]}ce.fn.extend({prop:function(e,t){return M(this,ce.prop,e,t,1<arguments.length)},removeProp:function(e){return this.each(function(){delete this[ce.propFix[e]||e]})}}),ce.extend({prop:function(e,t,n){var r,i,o=e.nodeType;if(3!==o&&8!==o&&2!==o)return 1===o&&ce.isXMLDoc(e)||(t=ce.propFix[t]||t,i=ce.propHooks[t]),void 0!==n?i&&"set"in i&&void 0!==(r=i.set(e,n,t))?r:e[t]=n:i&&"get"in i&&null!==(r=i.get(e,t))?r:e[t]},propHooks:{tabIndex:{get:function(e){var t=ce.find.attr(e,"tabindex");return t?parseInt(t,10):bt.test(e.nodeName)||wt.test(e.nodeName)&&e.href?0:-1}}},propFix:{"for":"htmlFor","class":"className"}}),le.optSelected||(ce.propHooks.selected={get:function(e){var t=e.parentNode;return t&&t.parentNode&&t.parentNode.selectedIndex,null},set:function(e){var t=e.parentNode;t&&(t.selectedIndex,t.parentNode&&t.parentNode.selectedIndex)}}),ce.each(["tabIndex","readOnly","maxLength","cellSpacing","cellPadding","rowSpan","colSpan","useMap","frameBorder","contentEditable"],function(){ce.propFix[this.toLowerCase()]=this}),ce.fn.extend({addClass:function(t){var e,n,r,i,o,a;return v(t)?this.each(function(e){ce(this).addClass(t.call(this,e,Ct(this)))}):(e=kt(t)).length?this.each(function(){if(r=Ct(this),n=1===this.nodeType&&" "+Tt(r)+" "){for(o=0;o<e.length;o++)i=e[o],n.indexOf(" "+i+" ")<0&&(n+=i+" ");a=Tt(n),r!==a&&this.setAttribute("class",a)}}):this},removeClass:function(t){var e,n,r,i,o,a;return v(t)?this.each(function(e){ce(this).removeClass(t.call(this,e,Ct(this)))}):arguments.length?(e=kt(t)).length?this.each(function(){if(r=Ct(this),n=1===this.nodeType&&" "+Tt(r)+" "){for(o=0;o<e.length;o++){i=e[o];while(-1<n.indexOf(" "+i+" "))n=n.replace(" "+i+" "," ")}a=Tt(n),r!==a&&this.setAttribute("class",a)}}):this:this.attr("class","")},toggleClass:function(t,n){var e,r,i,o,a=typeof t,s="string"===a||Array.isArray(t);return v(t)?this.each(function(e){ce(this).toggleClass(t.call(this,e,Ct(this),n),n)}):"boolean"==typeof n&&s?n?this.addClass(t):this.removeClass(t):(e=kt(t),this.each(function(){if(s)for(o=ce(this),i=0;i<e.length;i++)r=e[i],o.hasClass(r)?o.removeClass(r):o.addClass(r);else void 0!==t&&"boolean"!==a||((r=Ct(this))&&_.set(this,"__className__",r),this.setAttribute&&this.setAttribute("class",r||!1===t?"":_.get(this,"__className__")||""))}))},hasClass:function(e){var t,n,r=0;t=" "+e+" ";while(n=this[r++])if(1===n.nodeType&&-1<(" "+Tt(Ct(n))+" ").indexOf(t))return!0;return!1}});var St=/\r/g;ce.fn.extend({val:function(n){var r,e,i,t=this[0];return arguments.length?(i=v(n),this.each(function(e){var t;1===this.nodeType&&(null==(t=i?n.call(this,e,ce(this).val()):n)?t="":"number"==typeof t?t+="":Array.isArray(t)&&(t=ce.map(t,function(e){return null==e?"":e+""})),(r=ce.valHooks[this.type]||ce.valHooks[this.nodeName.toLowerCase()])&&"set"in r&&void 0!==r.set(this,t,"value")||(this.value=t))})):t?(r=ce.valHooks[t.type]||ce.valHooks[t.nodeName.toLowerCase()])&&"get"in r&&void 0!==(e=r.get(t,"value"))?e:"string"==typeof(e=t.value)?e.replace(St,""):null==e?"":e:void 0}}),ce.extend({valHooks:{option:{get:function(e){var t=ce.find.attr(e,"value");return null!=t?t:Tt(ce.text(e))}},select:{get:function(e){var t,n,r,i=e.options,o=e.selectedIndex,a="select-one"===e.type,s=a?null:[],u=a?o+1:i.length;for(r=o<0?u:a?o:0;r<u;r++)if(((n=i[r]).selected||r===o)&&!n.disabled&&(!n.parentNode.disabled||!fe(n.parentNode,"optgroup"))){if(t=ce(n).val(),a)return t;s.push(t)}return s},set:function(e,t){var n,r,i=e.options,o=ce.makeArray(t),a=i.length;while(a--)((r=i[a]).selected=-1<ce.inArray(ce.valHooks.option.get(r),o))&&(n=!0);return n||(e.selectedIndex=-1),o}}}}),ce.each(["radio","checkbox"],function(){ce.valHooks[this]={set:function(e,t){if(Array.isArray(t))return e.checked=-1<ce.inArray(ce(e).val(),t)}},le.checkOn||(ce.valHooks[this].get=function(e){return null===e.getAttribute("value")?"on":e.value})});var Et=ie.location,jt={guid:Date.now()},At=/\?/;ce.parseXML=function(e){var t,n;if(!e||"string"!=typeof e)return null;try{t=(new ie.DOMParser).parseFromString(e,"text/xml")}catch(e){}return n=t&&t.getElementsByTagName("parsererror")[0],t&&!n||ce.error("Invalid XML: "+(n?ce.map(n.childNodes,function(e){return e.textContent}).join("\n"):e)),t};var Dt=/^(?:focusinfocus|focusoutblur)$/,Nt=function(e){e.stopPropagation()};ce.extend(ce.event,{trigger:function(e,t,n,r){var i,o,a,s,u,l,c,f,p=[n||C],d=ue.call(e,"type")?e.type:e,h=ue.call(e,"namespace")?e.namespace.split("."):[];if(o=f=a=n=n||C,3!==n.nodeType&&8!==n.nodeType&&!Dt.test(d+ce.event.triggered)&&(-1<d.indexOf(".")&&(d=(h=d.split(".")).shift(),h.sort()),u=d.indexOf(":")<0&&"on"+d,(e=e[ce.expando]?e:new ce.Event(d,"object"==typeof e&&e)).isTrigger=r?2:3,e.namespace=h.join("."),e.rnamespace=e.namespace?new RegExp("(^|\\.)"+h.join("\\.(?:.*\\.|)")+"(\\.|$)"):null,e.result=void 0,e.target||(e.target=n),t=null==t?[e]:ce.makeArray(t,[e]),c=ce.event.special[d]||{},r||!c.trigger||!1!==c.trigger.apply(n,t))){if(!r&&!c.noBubble&&!y(n)){for(s=c.delegateType||d,Dt.test(s+d)||(o=o.parentNode);o;o=o.parentNode)p.push(o),a=o;a===(n.ownerDocument||C)&&p.push(a.defaultView||a.parentWindow||ie)}i=0;while((o=p[i++])&&!e.isPropagationStopped())f=o,e.type=1<i?s:c.bindType||d,(l=(_.get(o,"events")||Object.create(null))[e.type]&&_.get(o,"handle"))&&l.apply(o,t),(l=u&&o[u])&&l.apply&&$(o)&&(e.result=l.apply(o,t),!1===e.result&&e.preventDefault());return e.type=d,r||e.isDefaultPrevented()||c._default&&!1!==c._default.apply(p.pop(),t)||!$(n)||u&&v(n[d])&&!y(n)&&((a=n[u])&&(n[u]=null),ce.event.triggered=d,e.isPropagationStopped()&&f.addEventListener(d,Nt),n[d](),e.isPropagationStopped()&&f.removeEventListener(d,Nt),ce.event.triggered=void 0,a&&(n[u]=a)),e.result}},simulate:function(e,t,n){var r=ce.extend(new ce.Event,n,{type:e,isSimulated:!0});ce.event.trigger(r,null,t)}}),ce.fn.extend({trigger:function(e,t){return this.each(function(){ce.event.trigger(e,t,this)})},triggerHandler:function(e,t){var n=this[0];if(n)return ce.event.trigger(e,t,n,!0)}});var qt=/\[\]$/,Lt=/\r?\n/g,Ht=/^(?:submit|button|image|reset|file)$/i,Ot=/^(?:input|select|textarea|keygen)/i;function Pt(n,e,r,i){var t;if(Array.isArray(e))ce.each(e,function(e,t){r||qt.test(n)?i(n,t):Pt(n+"["+("object"==typeof t&&null!=t?e:"")+"]",t,r,i)});else if(r||"object"!==x(e))i(n,e);else for(t in e)Pt(n+"["+t+"]",e[t],r,i)}ce.param=function(e,t){var n,r=[],i=function(e,t){var n=v(t)?t():t;r[r.length]=encodeURIComponent(e)+"="+encodeURIComponent(null==n?"":n)};if(null==e)return"";if(Array.isArray(e)||e.jquery&&!ce.isPlainObject(e))ce.each(e,function(){i(this.name,this.value)});else for(n in e)Pt(n,e[n],t,i);return r.join("&")},ce.fn.extend({serialize:function(){return ce.param(this.serializeArray())},serializeArray:function(){return this.map(function(){var e=ce.prop(this,"elements");return e?ce.makeArray(e):this}).filter(function(){var e=this.type;return this.name&&!ce(this).is(":disabled")&&Ot.test(this.nodeName)&&!Ht.test(e)&&(this.checked||!we.test(e))}).map(function(e,t){var n=ce(this).val();return null==n?null:Array.isArray(n)?ce.map(n,function(e){return{name:t.name,value:e.replace(Lt,"\r\n")}}):{name:t.name,value:n.replace(Lt,"\r\n")}}).get()}});var Mt=/%20/g,Rt=/#.*$/,It=/([?&])_=[^&]*/,Wt=/^(.*?):[ \t]*([^\r\n]*)$/gm,Ft=/^(?:GET|HEAD)$/,$t=/^\/\//,Bt={},_t={},zt="*/".concat("*"),Xt=C.createElement("a");function Ut(o){return function(e,t){"string"!=typeof e&&(t=e,e="*");var n,r=0,i=e.toLowerCase().match(D)||[];if(v(t))while(n=i[r++])"+"===n[0]?(n=n.slice(1)||"*",(o[n]=o[n]||[]).unshift(t)):(o[n]=o[n]||[]).push(t)}}function Vt(t,i,o,a){var s={},u=t===_t;function l(e){var r;return s[e]=!0,ce.each(t[e]||[],function(e,t){var n=t(i,o,a);return"string"!=typeof n||u||s[n]?u?!(r=n):void 0:(i.dataTypes.unshift(n),l(n),!1)}),r}return l(i.dataTypes[0])||!s["*"]&&l("*")}function Gt(e,t){var n,r,i=ce.ajaxSettings.flatOptions||{};for(n in t)void 0!==t[n]&&((i[n]?e:r||(r={}))[n]=t[n]);return r&&ce.extend(!0,e,r),e}Xt.href=Et.href,ce.extend({active:0,lastModified:{},etag:{},ajaxSettings:{url:Et.href,type:"GET",isLocal:/^(?:about|app|app-storage|.+-extension|file|res|widget):$/.test(Et.protocol),global:!0,processData:!0,async:!0,contentType:"application/x-www-form-urlencoded; charset=UTF-8",accepts:{"*":zt,text:"text/plain",html:"text/html",xml:"application/xml, text/xml",json:"application/json, text/javascript"},contents:{xml:/\bxml\b/,html:/\bhtml/,json:/\bjson\b/},responseFields:{xml:"responseXML",text:"responseText",json:"responseJSON"},converters:{"* text":String,"text html":!0,"text json":JSON.parse,"text xml":ce.parseXML},flatOptions:{url:!0,context:!0}},ajaxSetup:function(e,t){return t?Gt(Gt(e,ce.ajaxSettings),t):Gt(ce.ajaxSettings,e)},ajaxPrefilter:Ut(Bt),ajaxTransport:Ut(_t),ajax:function(e,t){"object"==typeof e&&(t=e,e=void 0),t=t||{};var c,f,p,n,d,r,h,g,i,o,v=ce.ajaxSetup({},t),y=v.context||v,m=v.context&&(y.nodeType||y.jquery)?ce(y):ce.event,x=ce.Deferred(),b=ce.Callbacks("once memory"),w=v.statusCode||{},a={},s={},u="canceled",T={readyState:0,getResponseHeader:function(e){var t;if(h){if(!n){n={};while(t=Wt.exec(p))n[t[1].toLowerCase()+" "]=(n[t[1].toLowerCase()+" "]||[]).concat(t[2])}t=n[e.toLowerCase()+" "]}return null==t?null:t.join(", ")},getAllResponseHeaders:function(){return h?p:null},setRequestHeader:function(e,t){return null==h&&(e=s[e.toLowerCase()]=s[e.toLowerCase()]||e,a[e]=t),this},overrideMimeType:function(e){return null==h&&(v.mimeType=e),this},statusCode:function(e){var t;if(e)if(h)T.always(e[T.status]);else for(t in e)w[t]=[w[t],e[t]];return this},abort:function(e){var t=e||u;return c&&c.abort(t),l(0,t),this}};if(x.promise(T),v.url=((e||v.url||Et.href)+"").replace($t,Et.protocol+"//"),v.type=t.method||t.type||v.method||v.type,v.dataTypes=(v.dataType||"*").toLowerCase().match(D)||[""],null==v.crossDomain){r=C.createElement("a");try{r.href=v.url,r.href=r.href,v.crossDomain=Xt.protocol+"//"+Xt.host!=r.protocol+"//"+r.host}catch(e){v.crossDomain=!0}}if(v.data&&v.processData&&"string"!=typeof v.data&&(v.data=ce.param(v.data,v.traditional)),Vt(Bt,v,t,T),h)return T;for(i in(g=ce.event&&v.global)&&0==ce.active++&&ce.event.trigger("ajaxStart"),v.type=v.type.toUpperCase(),v.hasContent=!Ft.test(v.type),f=v.url.replace(Rt,""),v.hasContent?v.data&&v.processData&&0===(v.contentType||"").indexOf("application/x-www-form-urlencoded")&&(v.data=v.data.replace(Mt,"+")):(o=v.url.slice(f.length),v.data&&(v.processData||"string"==typeof v.data)&&(f+=(At.test(f)?"&":"?")+v.data,delete v.data),!1===v.cache&&(f=f.replace(It,"$1"),o=(At.test(f)?"&":"?")+"_="+jt.guid+++o),v.url=f+o),v.ifModified&&(ce.lastModified[f]&&T.setRequestHeader("If-Modified-Since",ce.lastModified[f]),ce.etag[f]&&T.setRequestHeader("If-None-Match",ce.etag[f])),(v.data&&v.hasContent&&!1!==v.contentType||t.contentType)&&T.setRequestHeader("Content-Type",v.contentType),T.setRequestHeader("Accept",v.dataTypes[0]&&v.accepts[v.dataTypes[0]]?v.accepts[v.dataTypes[0]]+("*"!==v.dataTypes[0]?", "+zt+"; q=0.01":""):v.accepts["*"]),v.headers)T.setRequestHeader(i,v.headers[i]);if(v.beforeSend&&(!1===v.beforeSend.call(y,T,v)||h))return T.abort();if(u="abort",b.add(v.complete),T.done(v.success),T.fail(v.error),c=Vt(_t,v,t,T)){if(T.readyState=1,g&&m.trigger("ajaxSend",[T,v]),h)return T;v.async&&0<v.timeout&&(d=ie.setTimeout(function(){T.abort("timeout")},v.timeout));try{h=!1,c.send(a,l)}catch(e){if(h)throw e;l(-1,e)}}else l(-1,"No Transport");function l(e,t,n,r){var i,o,a,s,u,l=t;h||(h=!0,d&&ie.clearTimeout(d),c=void 0,p=r||"",T.readyState=0<e?4:0,i=200<=e&&e<300||304===e,n&&(s=function(e,t,n){var r,i,o,a,s=e.contents,u=e.dataTypes;while("*"===u[0])u.shift(),void 0===r&&(r=e.mimeType||t.getResponseHeader("Content-Type"));if(r)for(i in s)if(s[i]&&s[i].test(r)){u.unshift(i);break}if(u[0]in n)o=u[0];else{for(i in n){if(!u[0]||e.converters[i+" "+u[0]]){o=i;break}a||(a=i)}o=o||a}if(o)return o!==u[0]&&u.unshift(o),n[o]}(v,T,n)),!i&&-1<ce.inArray("script",v.dataTypes)&&ce.inArray("json",v.dataTypes)<0&&(v.converters["text script"]=function(){}),s=function(e,t,n,r){var i,o,a,s,u,l={},c=e.dataTypes.slice();if(c[1])for(a in e.converters)l[a.toLowerCase()]=e.converters[a];o=c.shift();while(o)if(e.responseFields[o]&&(n[e.responseFields[o]]=t),!u&&r&&e.dataFilter&&(t=e.dataFilter(t,e.dataType)),u=o,o=c.shift())if("*"===o)o=u;else if("*"!==u&&u!==o){if(!(a=l[u+" "+o]||l["* "+o]))for(i in l)if((s=i.split(" "))[1]===o&&(a=l[u+" "+s[0]]||l["* "+s[0]])){!0===a?a=l[i]:!0!==l[i]&&(o=s[0],c.unshift(s[1]));break}if(!0!==a)if(a&&e["throws"])t=a(t);else try{t=a(t)}catch(e){return{state:"parsererror",error:a?e:"No conversion from "+u+" to "+o}}}return{state:"success",data:t}}(v,s,T,i),i?(v.ifModified&&((u=T.getResponseHeader("Last-Modified"))&&(ce.lastModified[f]=u),(u=T.getResponseHeader("etag"))&&(ce.etag[f]=u)),204===e||"HEAD"===v.type?l="nocontent":304===e?l="notmodified":(l=s.state,o=s.data,i=!(a=s.error))):(a=l,!e&&l||(l="error",e<0&&(e=0))),T.status=e,T.statusText=(t||l)+"",i?x.resolveWith(y,[o,l,T]):x.rejectWith(y,[T,l,a]),T.statusCode(w),w=void 0,g&&m.trigger(i?"ajaxSuccess":"ajaxError",[T,v,i?o:a]),b.fireWith(y,[T,l]),g&&(m.trigger("ajaxComplete",[T,v]),--ce.active||ce.event.trigger("ajaxStop")))}return T},getJSON:function(e,t,n){return ce.get(e,t,n,"json")},getScript:function(e,t){return ce.get(e,void 0,t,"script")}}),ce.each(["get","post"],function(e,i){ce[i]=function(e,t,n,r){return v(t)&&(r=r||n,n=t,t=void 0),ce.ajax(ce.extend({url:e,type:i,dataType:r,data:t,success:n},ce.isPlainObject(e)&&e))}}),ce.ajaxPrefilter(function(e){var t;for(t in e.headers)"content-type"===t.toLowerCase()&&(e.contentType=e.headers[t]||"")}),ce._evalUrl=function(e,t,n){return ce.ajax({url:e,type:"GET",dataType:"script",cache:!0,async:!1,global:!1,converters:{"text script":function(){}},dataFilter:function(e){ce.globalEval(e,t,n)}})},ce.fn.extend({wrapAll:function(e){var t;return this[0]&&(v(e)&&(e=e.call(this[0])),t=ce(e,this[0].ownerDocument).eq(0).clone(!0),this[0].parentNode&&t.insertBefore(this[0]),t.map(function(){var e=this;while(e.firstElementChild)e=e.firstElementChild;return e}).append(this)),this},wrapInner:function(n){return v(n)?this.each(function(e){ce(this).wrapInner(n.call(this,e))}):this.each(function(){var e=ce(this),t=e.contents();t.length?t.wrapAll(n):e.append(n)})},wrap:function(t){var n=v(t);return this.each(function(e){ce(this).wrapAll(n?t.call(this,e):t)})},unwrap:function(e){return this.parent(e).not("body").each(function(){ce(this).replaceWith(this.childNodes)}),this}}),ce.expr.pseudos.hidden=function(e){return!ce.expr.pseudos.visible(e)},ce.expr.pseudos.visible=function(e){return!!(e.offsetWidth||e.offsetHeight||e.getClientRects().length)},ce.ajaxSettings.xhr=function(){try{return new ie.XMLHttpRequest}catch(e){}};var Yt={0:200,1223:204},Qt=ce.ajaxSettings.xhr();le.cors=!!Qt&&"withCredentials"in Qt,le.ajax=Qt=!!Qt,ce.ajaxTransport(function(i){var o,a;if(le.cors||Qt&&!i.crossDomain)return{send:function(e,t){var n,r=i.xhr();if(r.open(i.type,i.url,i.async,i.username,i.password),i.xhrFields)for(n in i.xhrFields)r[n]=i.xhrFields[n];for(n in i.mimeType&&r.overrideMimeType&&r.overrideMimeType(i.mimeType),i.crossDomain||e["X-Requested-With"]||(e["X-Requested-With"]="XMLHttpRequest"),e)r.setRequestHeader(n,e[n]);o=function(e){return function(){o&&(o=a=r.onload=r.onerror=r.onabort=r.ontimeout=r.onreadystatechange=null,"abort"===e?r.abort():"error"===e?"number"!=typeof r.status?t(0,"error"):t(r.status,r.statusText):t(Yt[r.status]||r.status,r.statusText,"text"!==(r.responseType||"text")||"string"!=typeof r.responseText?{binary:r.response}:{text:r.responseText},r.getAllResponseHeaders()))}},r.onload=o(),a=r.onerror=r.ontimeout=o("error"),void 0!==r.onabort?r.onabort=a:r.onreadystatechange=function(){4===r.readyState&&ie.setTimeout(function(){o&&a()})},o=o("abort");try{r.send(i.hasContent&&i.data||null)}catch(e){if(o)throw e}},abort:function(){o&&o()}}}),ce.ajaxPrefilter(function(e){e.crossDomain&&(e.contents.script=!1)}),ce.ajaxSetup({accepts:{script:"text/javascript, application/javascript, application/ecmascript, application/x-ecmascript"},contents:{script:/\b(?:java|ecma)script\b/},converters:{"text script":function(e){return ce.globalEval(e),e}}}),ce.ajaxPrefilter("script",function(e){void 0===e.cache&&(e.cache=!1),e.crossDomain&&(e.type="GET")}),ce.ajaxTransport("script",function(n){var r,i;if(n.crossDomain||n.scriptAttrs)return{send:function(e,t){r=ce("<script>").attr(n.scriptAttrs||{}).prop({charset:n.scriptCharset,src:n.url}).on("load error",i=function(e){r.remove(),i=null,e&&t("error"===e.type?404:200,e.type)}),C.head.appendChild(r[0])},abort:function(){i&&i()}}});var Jt,Kt=[],Zt=/(=)\?(?=&|$)|\?\?/;ce.ajaxSetup({jsonp:"callback",jsonpCallback:function(){var e=Kt.pop()||ce.expando+"_"+jt.guid++;return this[e]=!0,e}}),ce.ajaxPrefilter("json jsonp",function(e,t,n){var r,i,o,a=!1!==e.jsonp&&(Zt.test(e.url)?"url":"string"==typeof e.data&&0===(e.contentType||"").indexOf("application/x-www-form-urlencoded")&&Zt.test(e.data)&&"data");if(a||"jsonp"===e.dataTypes[0])return r=e.jsonpCallback=v(e.jsonpCallback)?e.jsonpCallback():e.jsonpCallback,a?e[a]=e[a].replace(Zt,"$1"+r):!1!==e.jsonp&&(e.url+=(At.test(e.url)?"&":"?")+e.jsonp+"="+r),e.converters["script json"]=function(){return o||ce.error(r+" was not called"),o[0]},e.dataTypes[0]="json",i=ie[r],ie[r]=function(){o=arguments},n.always(function(){void 0===i?ce(ie).removeProp(r):ie[r]=i,e[r]&&(e.jsonpCallback=t.jsonpCallback,Kt.push(r)),o&&v(i)&&i(o[0]),o=i=void 0}),"script"}),le.createHTMLDocument=((Jt=C.implementation.createHTMLDocument("").body).innerHTML="<form></form><form></form>",2===Jt.childNodes.length),ce.parseHTML=function(e,t,n){return"string"!=typeof e?[]:("boolean"==typeof t&&(n=t,t=!1),t||(le.createHTMLDocument?((r=(t=C.implementation.createHTMLDocument("")).createElement("base")).href=C.location.href,t.head.appendChild(r)):t=C),o=!n&&[],(i=w.exec(e))?[t.createElement(i[1])]:(i=Ae([e],t,o),o&&o.length&&ce(o).remove(),ce.merge([],i.childNodes)));var r,i,o},ce.fn.load=function(e,t,n){var r,i,o,a=this,s=e.indexOf(" ");return-1<s&&(r=Tt(e.slice(s)),e=e.slice(0,s)),v(t)?(n=t,t=void 0):t&&"object"==typeof t&&(i="POST"),0<a.length&&ce.ajax({url:e,type:i||"GET",dataType:"html",data:t}).done(function(e){o=arguments,a.html(r?ce("<div>").append(ce.parseHTML(e)).find(r):e)}).always(n&&function(e,t){a.each(function(){n.apply(this,o||[e.responseText,t,e])})}),this},ce.expr.pseudos.animated=function(t){return ce.grep(ce.timers,function(e){return t===e.elem}).length},ce.offset={setOffset:function(e,t,n){var r,i,o,a,s,u,l=ce.css(e,"position"),c=ce(e),f={};"static"===l&&(e.style.position="relative"),s=c.offset(),o=ce.css(e,"top"),u=ce.css(e,"left"),("absolute"===l||"fixed"===l)&&-1<(o+u).indexOf("auto")?(a=(r=c.position()).top,i=r.left):(a=parseFloat(o)||0,i=parseFloat(u)||0),v(t)&&(t=t.call(e,n,ce.extend({},s))),null!=t.top&&(f.top=t.top-s.top+a),null!=t.left&&(f.left=t.left-s.left+i),"using"in t?t.using.call(e,f):c.css(f)}},ce.fn.extend({offset:function(t){if(arguments.length)return void 0===t?this:this.each(function(e){ce.offset.setOffset(this,t,e)});var e,n,r=this[0];return r?r.getClientRects().length?(e=r.getBoundingClientRect(),n=r.ownerDocument.defaultView,{top:e.top+n.pageYOffset,left:e.left+n.pageXOffset}):{top:0,left:0}:void 0},position:function(){if(this[0]){var e,t,n,r=this[0],i={top:0,left:0};if("fixed"===ce.css(r,"position"))t=r.getBoundingClientRect();else{t=this.offset(),n=r.ownerDocument,e=r.offsetParent||n.documentElement;while(e&&(e===n.body||e===n.documentElement)&&"static"===ce.css(e,"position"))e=e.parentNode;e&&e!==r&&1===e.nodeType&&((i=ce(e).offset()).top+=ce.css(e,"borderTopWidth",!0),i.left+=ce.css(e,"borderLeftWidth",!0))}return{top:t.top-i.top-ce.css(r,"marginTop",!0),left:t.left-i.left-ce.css(r,"marginLeft",!0)}}},offsetParent:function(){return this.map(function(){var e=this.offsetParent;while(e&&"static"===ce.css(e,"position"))e=e.offsetParent;return e||J})}}),ce.each({scrollLeft:"pageXOffset",scrollTop:"pageYOffset"},function(t,i){var o="pageYOffset"===i;ce.fn[t]=function(e){return M(this,function(e,t,n){var r;if(y(e)?r=e:9===e.nodeType&&(r=e.defaultView),void 0===n)return r?r[i]:e[t];r?r.scrollTo(o?r.pageXOffset:n,o?n:r.pageYOffset):e[t]=n},t,e,arguments.length)}}),ce.each(["top","left"],function(e,n){ce.cssHooks[n]=Ye(le.pixelPosition,function(e,t){if(t)return t=Ge(e,n),_e.test(t)?ce(e).position()[n]+"px":t})}),ce.each({Height:"height",Width:"width"},function(a,s){ce.each({padding:"inner"+a,content:s,"":"outer"+a},function(r,o){ce.fn[o]=function(e,t){var n=arguments.length&&(r||"boolean"!=typeof e),i=r||(!0===e||!0===t?"margin":"border");return M(this,function(e,t,n){var r;return y(e)?0===o.indexOf("outer")?e["inner"+a]:e.document.documentElement["client"+a]:9===e.nodeType?(r=e.documentElement,Math.max(e.body["scroll"+a],r["scroll"+a],e.body["offset"+a],r["offset"+a],r["client"+a])):void 0===n?ce.css(e,t,i):ce.style(e,t,n,i)},s,n?e:void 0,n)}})}),ce.each(["ajaxStart","ajaxStop","ajaxComplete","ajaxError","ajaxSuccess","ajaxSend"],function(e,t){ce.fn[t]=function(e){return this.on(t,e)}}),ce.fn.extend({bind:function(e,t,n){return this.on(e,null,t,n)},unbind:function(e,t){return this.off(e,null,t)},delegate:function(e,t,n,r){return this.on(t,e,n,r)},undelegate:function(e,t,n){return 1===arguments.length?this.off(e,"**"):this.off(t,e||"**",n)},hover:function(e,t){return this.on("mouseenter",e).on("mouseleave",t||e)}}),ce.each("blur focus focusin focusout resize scroll click dblclick mousedown mouseup mousemove mouseover mouseout mouseenter mouseleave change select submit keydown keypress keyup contextmenu".split(" "),function(e,n){ce.fn[n]=function(e,t){return 0<arguments.length?this.on(n,null,e,t):this.trigger(n)}});var en=/^[\s\uFEFF\xA0]+|([^\s\uFEFF\xA0])[\s\uFEFF\xA0]+$/g;ce.proxy=function(e,t){var n,r,i;if("string"==typeof t&&(n=e[t],t=e,e=n),v(e))return r=ae.call(arguments,2),(i=function(){return e.apply(t||this,r.concat(ae.call(arguments)))}).guid=e.guid=e.guid||ce.guid++,i},ce.holdReady=function(e){e?ce.readyWait++:ce.ready(!0)},ce.isArray=Array.isArray,ce.parseJSON=JSON.parse,ce.nodeName=fe,ce.isFunction=v,ce.isWindow=y,ce.camelCase=F,ce.type=x,ce.now=Date.now,ce.isNumeric=function(e){var t=ce.type(e);return("number"===t||"string"===t)&&!isNaN(e-parseFloat(e))},ce.trim=function(e){return null==e?"":(e+"").replace(en,"$1")},"function"==typeof define&&define.amd&&define("jquery",[],function(){return ce});var tn=ie.jQuery,nn=ie.$;return ce.noConflict=function(e){return ie.$===ce&&(ie.$=nn),e&&ie.jQuery===ce&&(ie.jQuery=tn),ce},"undefined"==typeof e&&(ie.jQuery=ie.$=ce),ce});
diff --git a/dist/index.html b/dist/index.html
index d07c7fa..360295a 100644
--- a/dist/index.html
+++ b/dist/index.html
@@ -1,4 +1,3 @@
-
 <!DOCTYPE html>
 <html lang="en" data-bs-theme="dark">
   <head>
@@ -8,26 +7,46 @@
       name="description"
       content="Mapping of open-source detection rules and atomic tests."
     />
-    <link rel="icon" type="image/png" href="./assets/images/favicon/" sizes="96x96" />
-    <link rel="icon" type="image/svg+xml" href="./assets/images/favicon/favicon.svg" />
+    <link
+      rel="icon"
+      type="image/png"
+      href="./assets/images/favicon/"
+      sizes="96x96"
+    />
+    <link
+      rel="icon"
+      type="image/svg+xml"
+      href="./assets/images/favicon/favicon.svg"
+    />
     <link rel="shortcut icon" href="./assets/images/favicon/favicon.ico" />
-    <link rel="apple-touch-icon" sizes="180x180" href="./assets/images/favicon/apple-touch-icon.png" />
+    <link
+      rel="apple-touch-icon"
+      sizes="180x180"
+      href="./assets/images/favicon/apple-touch-icon.png"
+    />
     <meta name="apple-mobile-web-app-title" content="ARM" />
     <link rel="manifest" href="./assets/images/favicon//site.webmanifest" />
-    <link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/5.3.0/css/bootstrap.min.css"/>
-    <link rel="stylesheet" href="https://cdn.datatables.net/2.1.8/css/dataTables.bootstrap5.css"/>
-    <link rel="stylesheet" href="https://cdn.datatables.net/fixedheader/4.0.1/css/fixedHeader.bootstrap5.min.css">
+
+    <link rel="stylesheet" href="./assets/css/bootstrap.min.css" />
+    <link rel="stylesheet" href="./assets/css/dataTables.bootstrap5.min.css" />
+    <link rel="stylesheet" href="./assets/css/buttons.bootstrap5.min.css" />
+    <link rel="stylesheet" href="./assets/css/fixedHeader.bootstrap5.min.css" />
 
     <!-- Open Graph Meta Tags -->
     <meta property="og:title" content="ARM - AttackRuleMap" />
-    <meta property="og:description" content="Mapping of open-source detection rules and atomic tests." />
-    <meta property="og:image" content="https://attackrulemap.netlify.app/assets/images/og-logo.png" />
+    <meta
+      property="og:description"
+      content="Mapping of open-source detection rules and atomic tests."
+    />
+    <meta
+      property="og:image"
+      content="https://attackrulemap.netlify.app/assets/images/og-logo.png"
+    />
     <meta property="og:url" content="https://attackrulemap.netlify.com" />
     <meta property="og:type" content="website" />
     <meta property="og:site_name" content="attackrulemap.netlify.com" />
-    <meta name="author" content="Burak Karaduman">
+    <meta name="author" content="Burak Karaduman" />
     <style>
-
       @font-face {
         font-family: "Chakra Petch Regular";
         src: url("./assets/fonts/ChakraPetch-Regular.ttf") format("truetype");
@@ -63,7686 +82,10352 @@
         color: white;
       }
 
+      #theme-icons {
+        cursor: pointer;
+      }
+
+      #scrollToTopBtn {
+        display: none;
+        position: fixed;
+        bottom: 20px;
+        right: 20px;
+        border-radius: 50%;
+        background-color: #3f6894;
+        opacity: 0.7;
+        width: 7 0px;
+        height: 7 0px;
+        display: flex;
+        align-items: center;
+        justify-content: center;
+        z-index: 1000;
+        cursor: pointer;
+        transition: opacity 0.3s ease;
+      }
+
+      #scrollToTopBtn:hover {
+        opacity: 1;
+      }
+
+      svg {
+        color: white;
+      }
+
+      #theme-icons svg:hover,
+      #github-icon:hover {
+        scale: 1.15;
+      }
+
+      #theme-icons svg,
+      #github-icon {
+        transition: 0.3s;
+      }
     </style>
   </head>
   <body>
     <div id="main" class="container-fluid p-4">
       <div id="header" class="d-flex align-items-center">
-        <img class="me-3" src="./assets/images/shield-logo.png" alt="" height="65" />
+        <img
+          class="me-3"
+          src="./assets/images/shield-logo.png"
+          alt=""
+          height="65"
+        />
         <div id="header">
-          <h2 class="text-start m-0 p-0">AttackRuleMap</h3>
+          <h2 class="text-start m-0 p-0">AttackRuleMap</h2>
           <p class="text-start text-muted m-0 p-0">
             Mapping of open-source detection rules and atomic tests.
           </p>
         </div>
-        <a class="ms-auto" href="https://github.com/krdmnbrk/AttackRuleMap" target="_blank" rel="noopener noreferrer">
-            <img  src="./assets/images/github-logo.svg" alt="" height="30" />
-        </a>
+        <div class="ms-auto d-flex flex-column align-items-center">
+          <!-- Top: GitHub ve theme buttons -->
+          <div class="d-flex justify-content-end align-items-center w-100">
+            <a
+              href="https://github.com/krdmnbrk/AttackRuleMap"
+              target="_blank"
+              rel="noopener noreferrer"
+              class="me-3"
+            >
+              <img
+                id="github-icon"
+                src="./assets/images/github-logo.svg"
+                alt="GitHub Logo"
+                height="25"
+              />
+            </a>
+            <div id="theme-icons" class="d-flex align-items-center">
+              <svg
+                id="light-mode-icon"
+                xmlns="http://www.w3.org/2000/svg"
+                width="25"
+                height="25"
+                viewBox="0 0 16 16"
+                fill="black"
+                class="bi bi-brightness-high"
+                style="display: none"
+              >
+                <path
+                  d="M8 11a3 3 0 1 1 0-6 3 3 0 0 1 0 6m0 1a4 4 0 1 0 0-8 4 4 0 0 0 0 8M8 0a.5.5 0 0 1 .5.5v2a.5.5 0 0 1-1 0v-2A.5.5 0 0 1 8 0m0 13a.5.5 0 0 1 .5.5v2a.5.5 0 0 1-1 0v-2A.5.5 0 0 1 8 13m8-5a.5.5 0 0 1-.5.5h-2a.5.5 0 0 1 0-1h2a.5.5 0 0 1 .5.5M3 8a.5.5 0 0 1-.5.5h-2a.5.5 0 0 1 0-1h2A.5.5 0 0 1 3 8m10.657-5.657a.5.5 0 0 1 0 .707l-1.414 1.415a.5.5 0 1 1-.707-.708l1.414-1.414a.5.5 0 0 1 .707 0m-9.193 9.193a.5.5 0 0 1 0 .707L3.05 13.657a.5.5 0 0 1-.707-.707l1.414-1.414a.5.5 0 0 1 .707 0m9.193 2.121a.5.5 0 0 1-.707 0l-1.414-1.414a.5.5 0 0 1 .707-.707l1.414 1.414a.5.5 0 0 1 0 .707M4.464 4.465a.5.5 0 0 1-.707 0L2.343 3.05a.5.5 0 1 1 .707-.707l1.414 1.414a.5.5 0 0 1 0 .708"
+                />
+              </svg>
+              <svg
+                id="dark-mode-icon"
+                xmlns="http://www.w3.org/2000/svg"
+                width="25"
+                height="25"
+                viewBox="0 0 16 16"
+                fill="white"
+                class="bi bi-moon"
+              >
+                <path
+                  d="M6 .278a.77.77 0 0 1 .08.858 7.2 7.2 0 0 0-.878 3.46c0 4.021 3.278 7.277 7.318 7.277q.792-.001 1.533-.16a.79.79 0 0 1 .81.316.73.73 0 0 1-.031.893A8.35 8.35 0 0 1 8.344 16C3.734 16 0 12.286 0 7.71 0 4.266 2.114 1.312 5.124.06A.75.75 0 0 1 6 .278M4.858 1.311A7.27 7.27 0 0 0 1.025 7.71c0 4.02 3.279 7.276 7.319 7.276a7.32 7.32 0 0 0 5.205-2.162q-.506.063-1.029.063c-4.61 0-8.343-3.714-8.343-8.29 0-1.167.242-2.278.681-3.286"
+                />
+              </svg>
+            </div>
+          </div>
+          <!-- Bottom Last updated -->
+          <div class="text-center mt-2">
+            <span style="user-select: none"
+              >Last Updated Date: Dec 29, 2024</span
+            >
+          </div>
+        </div>
       </div>
-      <hr>
+      <hr />
       <table id="arm-table" class="table table-striped" style="width: 100%">
         <thead>
           <tr>
-            <th style="width: 10%;">
-              <img class="pe-1" src="./assets/images/atomic-logo.png" alt="" height="30" />
-              Atomic Tech ID
+            <th style="width: 5%">Tech ID</th>
+            <th style="width: 25%">
+              <img src="./assets/images/atomic-logo.png" alt="" height="25" />
+              <span class="ps-1">Atomic Attack Name</span>
             </th>
-            <th style="width: 25%;">Atomic Name</th>
-            <th style="width: 15%;">GUID</th>
-            <th style="width: 25%;">
-              <img class="pe-1"  src="./assets/images/sigma-logo.svg" alt="sigma" height="30" />
-              Sigma Rules
+            <th style="width: 5%">Platform</th>
+            <th style="width: 30%">
+              <img
+                src="./assets/images/sigma-logo.svg"
+                alt="sigma"
+                height="25"
+              />
+              <span class="ps-1">Sigma Rules</span>
             </th>
-            <th style="width: 25%;">
-              <img class="pe-1"  src="./assets/images/splunk-logo.png" alt="splunk" height="25" />
-              Rules
+            <th style="width: 30%">
+              <img
+                style="border-radius: 10%"
+                src="./assets/images/splunk-logo.png"
+                alt="splunk"
+                height="25"
+              />
+              <span class="ps-1">Splunk Rules</span>
             </th>
           </tr>
         </thead>
         <tbody>
-
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1562.001">T1562.001</a>
-                    </td>
-                    <td class="attack-name">Disable Windows Defender with DISM</td>
-                    <td class="attack-guid">871438ac-7d6e-432a-b27d-3e7db69faf58</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_dism_remove.yml">Dism Remove Online Package</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/8567da9e-47f0-11ec-99a9-acde48001122/">Windows DISM Remove Defender</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1560.001">T1560.001</a>
-                    </td>
-                    <td class="attack-name">Compress Data and lock with password for Exfiltration with 7zip</td>
-                    <td class="attack-guid">d1334303-59cb-4a03-8313-b3e24d02c198</td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/a3b3bc96-1c4f-4eba-8218-027cac739a48/">Windows Password Managers Discovery</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1558.004">T1558.004</a>
-                    </td>
-                    <td class="attack-name">WinPwn - PowerSharpPack - Kerberoasting Using Rubeus</td>
-                    <td class="attack-guid">8c385f88-4d47-4c9a-814d-93d9deec8c71</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_download_patterns.yml">Suspicious PowerShell Download and Execute Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_malicious_cmdlets.yml">Malicious PowerShell Commandlets - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1558.004">T1558.004</a>
-                    </td>
-                    <td class="attack-name">Rubeus asreproast</td>
-                    <td class="attack-guid">615bd568-2859-41b5-9aed-61f6a88e48dd</td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/cca37478-8377-11ec-b59a-acde48001122/">Rubeus Command Line Parameters</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/d0026380-b3c4-4da0-ac8e-02790063ff6b/">Windows Command and Scripting Interpreter Hunting Path Traversal</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1558.003">T1558.003</a>
-                    </td>
-                    <td class="attack-name">WinPwn - PowerSharpPack - Kerberoasting Using Rubeus</td>
-                    <td class="attack-guid">29094950-2c96-4cbd-b5e4-f7c65079678f</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_download_patterns.yml">Suspicious PowerShell Download and Execute Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_malicious_cmdlets.yml">Malicious PowerShell Commandlets - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1558.003">T1558.003</a>
-                    </td>
-                    <td class="attack-name">Extract all accounts in use as SPN using setspn</td>
-                    <td class="attack-guid">e6f4affd-d826-4871-9a62-6c9004b8fe06</td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/ae8b3efc-2d2e-11ec-8b57-acde48001122/">ServicePrincipalNames Discovery with SetSPN</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1558.003">T1558.003</a>
-                    </td>
-                    <td class="attack-name">Rubeus kerberoast</td>
-                    <td class="attack-guid">14625569-6def-4497-99ac-8e7817105b55</td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/cca37478-8377-11ec-b59a-acde48001122/">Rubeus Command Line Parameters</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/d0026380-b3c4-4da0-ac8e-02790063ff6b/">Windows Command and Scripting Interpreter Hunting Path Traversal</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1555.004">T1555.004</a>
-                    </td>
-                    <td class="attack-name">WinPwn - Loot local Credentials - Invoke-WCMDump</td>
-                    <td class="attack-guid">fa714db1-63dd-479e-a58e-7b2b52ca5997</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_download_patterns.yml">Suspicious PowerShell Download and Execute Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1555.003">T1555.003</a>
-                    </td>
-                    <td class="attack-name">WinPwn - PowerSharpPack - Sharpweb for Browser Credentials</td>
-                    <td class="attack-guid">e5e3d639-6ea8-4408-9ecd-d5a286268ca0</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_download_patterns.yml">Suspicious PowerShell Download and Execute Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_malicious_cmdlets.yml">Malicious PowerShell Commandlets - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1552.006">T1552.006</a>
-                    </td>
-                    <td class="attack-name">GPP Passwords (findstr)</td>
-                    <td class="attack-guid">870fe8fb-5e23-4f5f-b89d-dd7fe26f3b5f</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_findstr_password_recon.yml">Potential Password Reconnaissance Via Findstr.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_findstr_gpp_passwords.yml">Findstr GPP Passwords</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/a3b3bc96-1c4f-4eba-8218-027cac739a48/">Windows Password Managers Discovery</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/1631ac2d-f2a9-42fa-8a59-d6e210d472f5/">Windows Findstr GPP Discovery</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1552.004">T1552.004</a>
-                    </td>
-                    <td class="attack-name">Private Keys</td>
-                    <td class="attack-guid">520ce462-7ca7-441e-b5a5-f8347f632696</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_private_keys_recon.yml">Private Keys Reconnaissance Via CommandLine Tools</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_dir_execution.yml">File And SubFolder Enumeration Via Dir Command</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/5c1c2877-06c0-40ee-a1a2-db71f1372b5b/">Windows Private Keys Discovery</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1552.001">T1552.001</a>
-                    </td>
-                    <td class="attack-name">List Credential Files via Command Prompt</td>
-                    <td class="attack-guid">b0cdacf6-8949-4ffe-9274-a9643a788e55</td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/a3b3bc96-1c4f-4eba-8218-027cac739a48/">Windows Password Managers Discovery</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1550.003">T1550.003</a>
-                    </td>
-                    <td class="attack-name">Mimikatz Kerberos Ticket Attack</td>
-                    <td class="attack-guid">dbf38128-7ba7-4776-bedf-cc2eed432098</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_mimikatz_command_line.yml">HackTool - Mimikatz Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/13bbd574-83ac-11ec-99d4-acde48001122/">Mimikatz PassTheTicket CommandLine Parameters</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1550.002">T1550.002</a>
-                    </td>
-                    <td class="attack-name">Mimikatz Pass the Hash</td>
-                    <td class="attack-guid">ec23cef9-27d9-46e4-a68d-6f75f7b86908</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_mimikatz_command_line.yml">HackTool - Mimikatz Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/a9e0d6d3-9676-4e26-994d-4e0406bb4467/">Windows Mimikatz Binary Execution</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1548.002">T1548.002</a>
-                    </td>
-                    <td class="attack-name">WinPwn - UAC Bypass DccwBypassUAC technique</td>
-                    <td class="attack-guid">2b61977b-ae2d-4ae4-89cb-5c36c89586be</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_download_patterns.yml">Suspicious PowerShell Download and Execute Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1548.002">T1548.002</a>
-                    </td>
-                    <td class="attack-name">Bypass UAC by Mocking Trusted Directories</td>
-                    <td class="attack-guid">f7a35090-6f7f-4f64-bb47-d657bf5b10c1</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/a3b3bc96-1c4f-4eba-8218-027cac739a48/">Windows Password Managers Discovery</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1546.003">T1546.003</a>
-                    </td>
-                    <td class="attack-name">Windows MOFComp.exe Load MOF File</td>
-                    <td class="attack-guid">29786d7e-8916-4de6-9c55-be7b093b2706</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_mofcomp_execution.yml">Potential Suspicious Mofcomp Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/e59b5a73-32bf-4467-a585-452c36ae10c1/">Windows MOF Event Triggered Execution via WMI</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1543.003">T1543.003</a>
-                    </td>
-                    <td class="attack-name">Remote Service Installation CMD</td>
-                    <td class="attack-guid">fb4151a2-db33-4f8c-b7f8-78ea8790f961</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sc_create_service.yml">New Service Creation Using Sc.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_service_creation.yml">Suspicious New Service Creation</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/e0eea4fa-4274-11ec-882b-3e22fbd008af/">Windows Service Creation on Remote Endpoint</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/3f519894-4276-11ec-ab02-3e22fbd008af/">Windows Service Initiation on Remote Endpoint</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/0dc44d03-8c00-482d-ba7c-796ba7ab18c9/">Windows Remote Create Service</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1531">T1531</a>
-                    </td>
-                    <td class="attack-name">Delete User - Windows</td>
-                    <td class="attack-guid">f21a1d7d-a62f-442a-8c3a-2440d43b19e5</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_net_user_add.yml">New User Created Via Net.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/640337e5-6e41-4b7f-af06-9d9eab5e1e2d/">Network Connection Discovery With Net</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1531">T1531</a>
-                    </td>
-                    <td class="attack-name">Change User Password - Windows</td>
-                    <td class="attack-guid">1b99ef28-f83c-4ec5-8a08-1a56263a5bb2</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_net_execution.yml">Net.EXE Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/640337e5-6e41-4b7f-af06-9d9eab5e1e2d/">Network Connection Discovery With Net</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1529">T1529</a>
-                    </td>
-                    <td class="attack-name">ESXi - vim-cmd Used to Power Off VMs</td>
-                    <td class="attack-guid">622cc1a0-45e7-428c-aed7-c96dd605fbe6</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_susp_exfil_and_tunneling_tool_execution.yml">Tunneling Tool Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/8aac5e1e-0fab-4437-af0b-c6e60af23eed/">Windows Protocol Tunneling with Plink</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1529">T1529</a>
-                    </td>
-                    <td class="attack-name">ESXi - Avoslocker enumerates VMs and forcefully kills VMs</td>
-                    <td class="attack-guid">189f7d6e-9442-4160-9bc3-5e4104d93ece</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_susp_exfil_and_tunneling_tool_execution.yml">Tunneling Tool Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/8aac5e1e-0fab-4437-af0b-c6e60af23eed/">Windows Protocol Tunneling with Plink</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1529">T1529</a>
-                    </td>
-                    <td class="attack-name">ESXi - Terminates VMs using pkill</td>
-                    <td class="attack-guid">987c9b4d-a637-42db-b1cb-e9e242c3991b</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_susp_exfil_and_tunneling_tool_execution.yml">Tunneling Tool Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/8aac5e1e-0fab-4437-af0b-c6e60af23eed/">Windows Protocol Tunneling with Plink</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1518.001">T1518.001</a>
-                    </td>
-                    <td class="attack-name">Get Windows Defender exclusion settings using WMIC</td>
-                    <td class="attack-guid">e31564c8-4c60-40cd-a8f4-9261307e8336</td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/272df6de-61f1-4784-877c-1fbc3e2d0838/">Remote WMI Command Attempt</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1505.004">T1505.004</a>
-                    </td>
-                    <td class="attack-name">Install IIS Module using AppCmd.exe</td>
-                    <td class="attack-guid">53adbdfa-8200-490c-871c-d3b1ab3324b2</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_iis_appcmd_susp_module_install.yml">IIS Native-Code Module Command Line Installation</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/38fe731c-1f13-43d4-b878-a5bbe44807e3/">Windows IIS Components Add New Module</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1491.001">T1491.001</a>
-                    </td>
-                    <td class="attack-name">ESXi - Change Welcome Message on Direct Console User Interface (DCUI)</td>
-                    <td class="attack-guid">30905f21-34f3-4504-8b4c-f7a5e314b810</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_susp_exfil_and_tunneling_tool_execution.yml">Tunneling Tool Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/8aac5e1e-0fab-4437-af0b-c6e60af23eed/">Windows Protocol Tunneling with Plink</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1485">T1485</a>
-                    </td>
-                    <td class="attack-name">ESXi - Delete VM Snapshots</td>
-                    <td class="attack-guid">1207ddff-f25b-41b3-aa0e-7c26d2b546d1</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_susp_exfil_and_tunneling_tool_execution.yml">Tunneling Tool Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/8aac5e1e-0fab-4437-af0b-c6e60af23eed/">Windows Protocol Tunneling with Plink</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1485">T1485</a>
-                    </td>
-                    <td class="attack-name">Windows - Overwrite file with SysInternals SDelete</td>
-                    <td class="attack-guid">476419b5-aebf-4366-a131-ae3e8dae5fc2</td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/d0026380-b3c4-4da0-ac8e-02790063ff6b/">Windows Command and Scripting Interpreter Hunting Path Traversal</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1482">T1482</a>
-                    </td>
-                    <td class="attack-name">TruffleSnout - Listing AD Infrastructure</td>
-                    <td class="attack-guid">ea1b4f2d-5b82-4006-b64f-f2845608a3bf</td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/d0026380-b3c4-4da0-ac8e-02790063ff6b/">Windows Command and Scripting Interpreter Hunting Path Traversal</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1482">T1482</a>
-                    </td>
-                    <td class="attack-name">Adfind - Enumerate Active Directory OUs</td>
-                    <td class="attack-guid">d1c73b96-ab87-4031-bad8-0e1b3b8bf3ec</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_pua_adfind_susp_usage.yml">PUA - AdFind Suspicious Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/bd3b0187-189b-46c0-be45-f52da2bae67f/">Windows AdFind Exe</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1219">T1219</a>
-                    </td>
-                    <td class="attack-name">GoToAssist Files Detected Test on Windows</td>
-                    <td class="attack-guid">1b72b3bd-72f8-4b63-a30b-84e91b9c3578</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invoke_webrequest_download.yml">Suspicious Invoke-WebRequest Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/0cdf318b-a0dd-47d7-b257-c621c0247de8/">User Discovery With Env Vars PowerShell</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1219">T1219</a>
-                    </td>
-                    <td class="attack-name">AnyDesk Files Detected Test on Windows</td>
-                    <td class="attack-guid">6b8b7391-5c0a-4f8c-baee-78d8ce0ce330</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invoke_webrequest_download.yml">Suspicious Invoke-WebRequest Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/0cdf318b-a0dd-47d7-b257-c621c0247de8/">User Discovery With Env Vars PowerShell</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.011">T1218.011</a>
-                    </td>
-                    <td class="attack-name">Rundll32 with Control_RunDLL</td>
-                    <td class="attack-guid">e4c04b6f-c492-4782-82c7-3bf75eb8077e</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_susp_activity.yml">Potentially Suspicious Rundll32 Activity</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/c8e7ced0-10c5-11ec-8b03-acde48001122/">Rundll32 Control RunDLL Hunt</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.011">T1218.011</a>
-                    </td>
-                    <td class="attack-name">Rundll32 with Ordinal Value</td>
-                    <td class="attack-guid">9fd5a74b-ba89-482a-8a3e-a5feaa3697b0</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_rundll32_by_ordinal.yml">DLL Call by Ordinal Via Rundll32.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/6c135f8d-5e60-454e-80b7-c56eed739833/">RunDLL Loading DLL By Ordinal</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.011">T1218.011</a>
-                    </td>
-                    <td class="attack-name">Execution of non-dll using rundll32.exe</td>
-                    <td class="attack-guid">ae3a8605-b26e-457c-b6b3-2702fd335bac</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_susp_execution_with_image_extension.yml">Suspicious Rundll32 Execution With Image Extension</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_powershell_susp_child_processes.yml">Potentially Suspicious PowerShell Child Processes</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_uncommon_dll_extension.yml">Rundll32 Execution With Uncommon DLL Extension</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/0cdf318b-a0dd-47d7-b257-c621c0247de8/">User Discovery With Env Vars PowerShell</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/9319dda5-73f2-4d43-a85a-67ce961bddb7/">Suspicious Rundll32 StartW</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.011">T1218.011</a>
-                    </td>
-                    <td class="attack-name">Rundll32 setupapi.dll Execution</td>
-                    <td class="attack-guid">71d771cd-d6b3-4f34-bc76-a63d47a10b19</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_susp_activity.yml">Potentially Suspicious Rundll32 Activity</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/61e7b44a-6088-4f26-b788-9a96ba13b37a/">Detect Rundll32 Application Control Bypass - setupapi</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.011">T1218.011</a>
-                    </td>
-                    <td class="attack-name">Rundll32 syssetup.dll Execution</td>
-                    <td class="attack-guid">41fa324a-3946-401e-bbdd-d7991c628125</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_susp_activity.yml">Potentially Suspicious Rundll32 Activity</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/71b9bf37-cde1-45fb-b899-1b0aa6fa1183/">Detect Rundll32 Application Control Bypass - syssetup</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.011">T1218.011</a>
-                    </td>
-                    <td class="attack-name">Rundll32 ieadvpack.dll Execution</td>
-                    <td class="attack-guid">5e46a58e-cbf6-45ef-a289-ed7754603df9</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_susp_activity.yml">Potentially Suspicious Rundll32 Activity</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/4aefadfe-9abd-4bf8-b3fd-867e9ef95bf8/">Detect Rundll32 Application Control Bypass - advpack</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.011">T1218.011</a>
-                    </td>
-                    <td class="attack-name">Rundll32 advpack.dll Execution</td>
-                    <td class="attack-guid">d91cae26-7fc1-457b-a854-34c8aad48c89</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_susp_activity.yml">Potentially Suspicious Rundll32 Activity</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/4aefadfe-9abd-4bf8-b3fd-867e9ef95bf8/">Detect Rundll32 Application Control Bypass - advpack</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.011">T1218.011</a>
-                    </td>
-                    <td class="attack-name">Rundll32 execute VBscript command using Ordinal number</td>
-                    <td class="attack-guid">32d1cf1b-cbc2-4c09-8d05-07ec5c83a821</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_mshta_inline_vbscript.yml">Wscript Shell Run In CommandLine</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_rundll32_by_ordinal.yml">DLL Call by Ordinal Via Rundll32.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_mshtml_runhtmlapplication.yml">Mshtml.DLL RunHTMLApplication Suspicious Usage</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_uncommon_dll_extension.yml">Rundll32 Execution With Uncommon DLL Extension</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/6c135f8d-5e60-454e-80b7-c56eed739833/">RunDLL Loading DLL By Ordinal</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.010">T1218.010</a>
-                    </td>
-                    <td class="attack-name">Regsvr32 Registering Non DLL</td>
-                    <td class="attack-guid">1ae5ea1f-0a4e-4e54-b2f5-4ac328a7f421</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_regsvr32_susp_parent.yml">Scripting/CommandLine Process Spawned Regsvr32</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_regsvr32_susp_extensions.yml">Regsvr32 DLL Execution With Suspicious File Extension</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_regsvr32_susp_exec_path_1.yml">Regsvr32 Execution From Potential Suspicious Location</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_regsvr32_uncommon_extension.yml">Regsvr32 DLL Execution With Uncommon Extension</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/62732736-6250-11eb-ae93-0242ac130002/">Suspicious Regsvr32 Register Suspicious Path</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.010">T1218.010</a>
-                    </td>
-                    <td class="attack-name">Regsvr32 remote COM scriptlet execution</td>
-                    <td class="attack-guid">c9d0c4ef-8a96-4794-a75b-3d3a5e6f2a36</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_regsvr32_susp_parent.yml">Scripting/CommandLine Process Spawned Regsvr32</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_regsvr32_flags_anomaly.yml">Potential Regsvr32 Commandline Flag Anomaly</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_regsvr32_network_pattern.yml">Potentially Suspicious Regsvr32 HTTP/FTP Pattern</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/070e9b80-6252-11eb-ae93-0242ac130002/">Detect Regsvr32 Application Control Bypass</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.010">T1218.010</a>
-                    </td>
-                    <td class="attack-name">Regsvr32 local COM scriptlet execution</td>
-                    <td class="attack-guid">449aa403-6aba-47ce-8a37-247d21ef0306</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_regsvr32_susp_parent.yml">Scripting/CommandLine Process Spawned Regsvr32</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_regsvr32_flags_anomaly.yml">Potential Regsvr32 Commandline Flag Anomaly</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/070e9b80-6252-11eb-ae93-0242ac130002/">Detect Regsvr32 Application Control Bypass</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.008">T1218.008</a>
-                    </td>
-                    <td class="attack-name">Odbcconf.exe - Load Response File</td>
-                    <td class="attack-guid">331ce274-f9c9-440b-9f8c-a1006e1fce0b</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_odbcconf_response_file.yml">Response File Execution Via Odbcconf.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/1acafff9-1347-4b40-abae-f35aa4ba85c1/">Windows Odbcconf Load Response File</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/0562ad4b-fdaa-4882-b12f-7b8e0034cd72/">Windows Odbcconf Hunting</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.008">T1218.008</a>
-                    </td>
-                    <td class="attack-name">Odbcconf.exe - Execute Arbitrary DLL</td>
-                    <td class="attack-guid">2430498b-06c0-4b92-a448-8ad263c388e2</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_odbcconf_register_dll_regsvr.yml">New DLL Registered Via Odbcconf.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/0562ad4b-fdaa-4882-b12f-7b8e0034cd72/">Windows Odbcconf Hunting</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/141e7fca-a9f0-40fd-a539-9aac8be41f1b/">Windows Odbcconf Load DLL</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.007">T1218.007</a>
-                    </td>
-                    <td class="attack-name">Msiexec.exe - Execute Remote MSI file</td>
-                    <td class="attack-guid">44a4bedf-ffe3-452e-bee4-6925ab125662</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_msiexec_install_quiet.yml">Msiexec Quiet Installation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_msiexec_install_remote.yml">Suspicious Msiexec Quiet Install From Remote Location</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/6aa49ff2-3c92-4586-83e0-d83eb693dfda/">Windows MSIExec Remote Download</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.007">T1218.007</a>
-                    </td>
-                    <td class="attack-name">Msiexec.exe - Execute the DllUnregisterServer function of a DLL</td>
-                    <td class="attack-guid">ab09ec85-4955-4f9c-b8e0-6851baf4d47f</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_msiexec_dll.yml">DllUnregisterServer Function Call Via Msiexec.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/a27db3c5-1a9a-46df-a577-765d3f1a3c24/">Windows MSIExec Unregister DLLRegisterServer</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.007">T1218.007</a>
-                    </td>
-                    <td class="attack-name">Msiexec.exe - Execute the DllRegisterServer function of a DLL</td>
-                    <td class="attack-guid">0106ffa5-fab6-4c7d-82e3-e6b8867d5e5d</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_msiexec_execute_dll.yml">Suspicious Msiexec Execute Arbitrary DLL</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/fdb59aef-d88f-4909-8369-ec2afbd2c398/">Windows MSIExec DLLRegisterServer</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.001">T1218.001</a>
-                    </td>
-                    <td class="attack-name">Decompile Local CHM File</td>
-                    <td class="attack-guid">20cb05e0-1fa5-406d-92c1-84da4ba01813</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hh_chm_execution.yml">HH.EXE Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hh_susp_execution.yml">Suspicious HH.EXE Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/a34aae96-ccf8-4aef-952c-3ea21444444d/">System Processes Run From Unexpected Locations</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/2acf0e19-4149-451c-a3f3-39cd3c77e37d/">Windows System Binary Proxy Execution Compiled HTML File Decompile</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.001">T1218.001</a>
-                    </td>
-                    <td class="attack-name">Invoke CHM Shortcut Command with ITS and Help Topic</td>
-                    <td class="attack-guid">15756147-7470-4a83-87fb-bb5662526247</td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/9be56c82-b1cc-4318-87eb-d138afaaca39/">Malicious PowerShell Process - Execution Policy Bypass</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.001">T1218.001</a>
-                    </td>
-                    <td class="attack-name">Compiled HTML Help Remote Payload</td>
-                    <td class="attack-guid">0f8af516-9818-4172-922b-42986ef1e81d</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hh_chm_execution.yml">HH.EXE Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hh_chm_remote_download_or_execution.yml">Remote CHM File Download/Execution Via HH.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/a34aae96-ccf8-4aef-952c-3ea21444444d/">System Processes Run From Unexpected Locations</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/8c5835b9-39d9-438b-817c-95f14c69a31e/">Detect HTML Help URL in Command Line</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.001">T1218.001</a>
-                    </td>
-                    <td class="attack-name">Compiled HTML Help Local Payload</td>
-                    <td class="attack-guid">5cb87818-0d7c-4469-b7ef-9224107aebe8</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hh_chm_execution.yml">HH.EXE Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/a34aae96-ccf8-4aef-952c-3ea21444444d/">System Processes Run From Unexpected Locations</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218">T1218</a>
-                    </td>
-                    <td class="attack-name">DiskShadow Command Execution</td>
-                    <td class="attack-guid">0e1483ba-8f0c-425d-b8c6-42736e058eaa</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_diskshadow_script_mode.yml">Diskshadow Script Mode Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/58adae9e-8ea3-11ec-90f6-acde48001122/">Windows Diskshadow Proxy Execution</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218">T1218</a>
-                    </td>
-                    <td class="attack-name">Renamed Microsoft.Workflow.Compiler.exe Payload Executions</td>
-                    <td class="attack-guid">4cc40fd7-87b8-4b16-b2d7-57534b86b911</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_svchost_masqueraded_execution.yml">Suspicious Process Masquerading As SvcHost.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_svchost_uncommon_parent_process.yml">Uncommon Svchost Parent Process</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_system_exe_anomaly.yml">System File Execution Location Anomaly</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/a34aae96-ccf8-4aef-952c-3ea21444444d/">System Processes Run From Unexpected Locations</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218">T1218</a>
-                    </td>
-                    <td class="attack-name">mavinject - Inject DLL into running process</td>
-                    <td class="attack-guid">c426dacf-575d-4937-8611-a148a86a5e61</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_lolbin_mavinject_process_injection.yml">Mavinject Inject DLL Into Running Process</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/ccf4b61b-1b26-4f2e-a089-f2009c569c57/">Windows Binary Proxy Execution Mavinject DLL Injection</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1216">T1216</a>
-                    </td>
-                    <td class="attack-name">SyncAppvPublishingServer Signed Script PowerShell Command Execution</td>
-                    <td class="attack-guid">275d963d-3f36-476c-8bef-a2a3960ee6eb</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_wscript_cscript_script_exec.yml">WSF/JSE/JS/VBA/VBE File Execution Via Cscript/Wscript</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_lolbin_syncappvpublishingserver_vbs_execute_psh.yml">SyncAppvPublishingServer VBS Execute Arbitrary PowerShell Code</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/8dd73f89-682d-444c-8b41-8e679966ad3c/">Windows System Script Proxy Execution Syncappvpublishingserver</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1201">T1201</a>
-                    </td>
-                    <td class="attack-name">Enumerate Active Directory Password Policy with get-addefaultdomainpasswordpolicy</td>
-                    <td class="attack-guid">b2698b33-984c-4a1c-93bb-e4ba72a0babb</td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/36e46ebe-065a-11ec-b4c7-acde48001122/">Get ADDefaultDomainPasswordPolicy with Powershell</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1201">T1201</a>
-                    </td>
-                    <td class="attack-name">Examine domain password policy - Windows</td>
-                    <td class="attack-guid">46c2c362-2679-4ef5-aec9-0e958e135be4</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_net_execution.yml">Net.EXE Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_net_groups_and_accounts_recon.yml">Suspicious Group And Account Reconnaissance Activity Using Net.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/09336538-065a-11ec-8665-acde48001122/">Password Policy Discovery with Net</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1197">T1197</a>
-                    </td>
-                    <td class="attack-name">Bits download using desktopimgdownldr.exe (cmd)</td>
-                    <td class="attack-guid">afb5e09e-e385-4dee-9a94-6ee60979d114</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_desktopimgdownldr_susp_execution.yml">Suspicious Desktopimgdownldr Command</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/54a6ed00-3256-11ec-b031-acde48001122/">CMD Carry Out String Command Parameter</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1197">T1197</a>
-                    </td>
-                    <td class="attack-name">Bitsadmin Download (PowerShell)</td>
-                    <td class="attack-guid">f63b8bc4-07e5-4112-acba-56f646f3f0bc</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/39e2605a-90d8-11eb-899e-acde48001122/">PowerShell Start-BitsTransfer</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1197">T1197</a>
-                    </td>
-                    <td class="attack-name">Bitsadmin Download (cmd)</td>
-                    <td class="attack-guid">3c73d728-75fb-4180-a12f-6712864d7421</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_bitsadmin_download_file_sharing_domains.yml">Suspicious Download From File-Sharing Website Via Bitsadmin</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_bitsadmin_download_susp_targetfolder.yml">File Download Via Bitsadmin To A Suspicious Target Folder</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_bitsadmin_download_uncommon_targetfolder.yml">File Download Via Bitsadmin To An Uncommon Target Folder</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_bitsadmin_download_susp_extensions.yml">File With Suspicious Extension Downloaded Via Bitsadmin</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/80630ff4-8e4c-11eb-aab5-acde48001122/">BITSAdmin Download File</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1195">T1195</a>
-                    </td>
-                    <td class="attack-name">Octopus Scanner Malware Open Source Supply Chain</td>
-                    <td class="attack-guid">82a9f001-94c5-495e-9ed5-f530dbded5e2</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_schtasks_env_folder.yml">Schedule Task Creation From Env Variable Or Potentially Suspicious Path Via Schtasks.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_schtasks_creation.yml">Scheduled Task Creation Via Schtasks.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/d0026380-b3c4-4da0-ac8e-02790063ff6b/">Windows Command and Scripting Interpreter Hunting Path Traversal</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1187">T1187</a>
-                    </td>
-                    <td class="attack-name">WinPwn - PowerSharpPack - Retrieving NTLM Hashes without Touching LSASS</td>
-                    <td class="attack-guid">7f06b25c-799e-40f1-89db-999c9cc84317</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_download_patterns.yml">Suspicious PowerShell Download and Execute Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_malicious_cmdlets.yml">Malicious PowerShell Commandlets - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1136.002">T1136.002</a>
-                    </td>
-                    <td class="attack-name">Create a new account similar to ANONYMOUS LOGON</td>
-                    <td class="attack-guid">dc7726d2-8ccb-4cc6-af22-0d5afb53a548</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_net_user_add.yml">New User Created Via Net.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_net_execution.yml">Net.EXE Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/640337e5-6e41-4b7f-af06-9d9eab5e1e2d/">Network Connection Discovery With Net</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/98f6a534-04c2-11ec-96b2-acde48001122/">Domain Account Discovery With Net App</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1136.002">T1136.002</a>
-                    </td>
-                    <td class="attack-name">Create a new Windows domain admin user</td>
-                    <td class="attack-guid">fcec2963-9951-4173-9bfa-98d8b7834e62</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_net_execution.yml">Net.EXE Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/f2f14ac7-fa81-471a-80d5-7eb65c3c7349/">Domain Group Discovery With Net</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/a23a0e20-0b1b-4a07-82e5-ec5f70811e7a/">Elevated Group Discovery With Net</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1136.001">T1136.001</a>
-                    </td>
-                    <td class="attack-name">Create a new Windows admin user via .NET</td>
-                    <td class="attack-guid">2170d9b5-bacd-4819-a952-da76dae0815f</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_download_patterns.yml">Suspicious PowerShell Download and Execute Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1136.001">T1136.001</a>
-                    </td>
-                    <td class="attack-name">Create a new Windows admin user</td>
-                    <td class="attack-guid">fda74566-a604-4581-a4cc-fbbe21d66559</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_add_user_local_admin_group.yml">User Added to Local Administrators Group</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_net_execution.yml">Net.EXE Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/54f5201e-155b-11ec-a6e2-acde48001122/">Net Localgroup Discovery</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1136.001">T1136.001</a>
-                    </td>
-                    <td class="attack-name">Create a new user in a command prompt</td>
-                    <td class="attack-guid">6657864e-0323-4206-9344-ac9cd7265a4f</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_net_user_add.yml">New User Created Via Net.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_net_execution.yml">Net.EXE Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/640337e5-6e41-4b7f-af06-9d9eab5e1e2d/">Network Connection Discovery With Net</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1134.005">T1134.005</a>
-                    </td>
-                    <td class="attack-name">Injection SID-History with mimikatz</td>
-                    <td class="attack-guid">6bef32e5-9456-4072-8f14-35566fb85401</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_mimikatz_command_line.yml">HackTool - Mimikatz Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/a9e0d6d3-9676-4e26-994d-4e0406bb4467/">Windows Mimikatz Binary Execution</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1134.002">T1134.002</a>
-                    </td>
-                    <td class="attack-name">WinPwn - Get SYSTEM shell - Pop System Shell using Token Manipulation technique</td>
-                    <td class="attack-guid">ccf4ac39-ec93-42be-9035-90e2f26bcd92</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_download_patterns.yml">Suspicious PowerShell Download and Execute Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_malicious_cmdlets.yml">Malicious PowerShell Commandlets - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1129">T1129</a>
-                    </td>
-                    <td class="attack-name">ESXi - Install a custom VIB on an ESXi host</td>
-                    <td class="attack-guid">7f843046-abf2-443f-b880-07a83cf968ec</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_susp_exfil_and_tunneling_tool_execution.yml">Tunneling Tool Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/8aac5e1e-0fab-4437-af0b-c6e60af23eed/">Windows Protocol Tunneling with Plink</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/d0026380-b3c4-4da0-ac8e-02790063ff6b/">Windows Command and Scripting Interpreter Hunting Path Traversal</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1124">T1124</a>
-                    </td>
-                    <td class="attack-name">System Time Discovery W32tm as a Delay</td>
-                    <td class="attack-guid">d5d5a6b0-0f92-42d8-985d-47aafa2dd4db</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_w32tm.yml">Use of W32tm as Timer</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/b2cc69e7-11ba-42dc-a269-59c069a48870/">Windows System Time Discovery W32tm Delay</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1114.001">T1114.001</a>
-                    </td>
-                    <td class="attack-name">Email Collection with PowerShell Get-Inbox</td>
-                    <td class="attack-guid">3f1b5096-0139-4736-9b78-19bcb02bb1cb</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_ntfs_short_name_path_use_cli.yml">Use Short Name Path in Command Line</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_script_exec_from_env_folder.yml">Script Interpreter Execution From Suspicious Folder</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_script_exec_from_temp.yml">Suspicious Script Execution From Temp Folder</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_set_policies_to_unsecure_level.yml">Change PowerShell Policies to an Insecure Level</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/9be56c82-b1cc-4318-87eb-d138afaaca39/">Malicious PowerShell Process - Execution Policy Bypass</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
-                    </td>
-                    <td class="attack-name">Flush Shimcache</td>
-                    <td class="attack-guid">ecbd533e-b45d-4239-aeff-b857c6f6d68b</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_susp_shimcache_flush.yml">ShimCache Flush</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/a913718a-25b6-11ec-96d3-acde48001122/">Rundll32 Shimcache Flush</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
-                    </td>
-                    <td class="attack-name">Change Powershell Execution Policy to Bypass</td>
-                    <td class="attack-guid">f3a6cceb-06c9-48e5-8df8-8867a6814245</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_set_policies_to_unsecure_level.yml">Change PowerShell Policies to an Insecure Level</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/9be56c82-b1cc-4318-87eb-d138afaaca39/">Malicious PowerShell Process - Execution Policy Bypass</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1110.002">T1110.002</a>
-                    </td>
-                    <td class="attack-name">Password Cracking with Hashcat</td>
-                    <td class="attack-guid">6d27df5d-69d4-4c91-bc33-5983ffe91692</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_hashcat.yml">HackTool - Hashcat Password Cracker Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/d0026380-b3c4-4da0-ac8e-02790063ff6b/">Windows Command and Scripting Interpreter Hunting Path Traversal</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1110.001">T1110.001</a>
-                    </td>
-                    <td class="attack-name">ESXi - Brute Force Until Account Lockout</td>
-                    <td class="attack-guid">ed6c2c87-bba6-4a28-ac6e-c8af3d6c2ab5</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_susp_exfil_and_tunneling_tool_execution.yml">Tunneling Tool Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/8aac5e1e-0fab-4437-af0b-c6e60af23eed/">Windows Protocol Tunneling with Plink</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1106">T1106</a>
-                    </td>
-                    <td class="attack-name">WinPwn - Get SYSTEM shell - Pop System Shell using NamedPipe Impersonation technique</td>
-                    <td class="attack-guid">e1f93a06-1649-4f07-89a8-f57279a7d60e</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_download_patterns.yml">Suspicious PowerShell Download and Execute Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_malicious_cmdlets.yml">Malicious PowerShell Commandlets - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1106">T1106</a>
-                    </td>
-                    <td class="attack-name">WinPwn - Get SYSTEM shell - Bind System Shell using CreateProcess technique</td>
-                    <td class="attack-guid">7ec5b74e-8289-4ff2-a162-b6f286a33abd</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_download_patterns.yml">Suspicious PowerShell Download and Execute Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_malicious_cmdlets.yml">Malicious PowerShell Commandlets - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1106">T1106</a>
-                    </td>
-                    <td class="attack-name">WinPwn - Get SYSTEM shell - Pop System Shell using CreateProcess technique</td>
-                    <td class="attack-guid">ce4e76e6-de70-4392-9efe-b281fc2b4087</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_download_patterns.yml">Suspicious PowerShell Download and Execute Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_malicious_cmdlets.yml">Malicious PowerShell Commandlets - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1105">T1105</a>
-                    </td>
-                    <td class="attack-name">Arbitrary file download using the Notepad++ GUP.exe binary</td>
-                    <td class="attack-guid">66ee226e-64cb-4dae-80e3-5bf5763e4a51</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_gup_suspicious_execution.yml">Suspicious GUP Usage</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_dir_execution.yml">File And SubFolder Enumeration Via Dir Command</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_gup_download.yml">File Download Using Notepad++ GUP Utility</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/a3b3bc96-1c4f-4eba-8218-027cac739a48/">Windows Password Managers Discovery</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1105">T1105</a>
-                    </td>
-                    <td class="attack-name">Nimgrab - Transfer Files</td>
-                    <td class="attack-guid">b1729c57-9384-4d1c-9b99-9b220afb384e</td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/54a6ed00-3256-11ec-b031-acde48001122/">CMD Carry Out String Command Parameter</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1105">T1105</a>
-                    </td>
-                    <td class="attack-name">File Download via PowerShell</td>
-                    <td class="attack-guid">54a4daf1-71df-4383-9ba7-f1a295d8b6d2</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1105">T1105</a>
-                    </td>
-                    <td class="attack-name">Windows - PowerShell Download</td>
-                    <td class="attack-guid">42dc4460-9aa6-45d3-b1a6-3955d34e1fe8</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_ps_downloadfile.yml">PowerShell DownloadFile</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/1a93b7ea-7af7-11eb-adb5-acde48001122/">Any Powershell DownloadFile</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1105">T1105</a>
-                    </td>
-                    <td class="attack-name">Windows - BITSAdmin BITS Download</td>
-                    <td class="attack-guid">a1921cd3-9a2d-47d5-a891-f1d0f2a7a31b</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_bitsadmin_download_file_sharing_domains.yml">Suspicious Download From File-Sharing Website Via Bitsadmin</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_bitsadmin_download_susp_targetfolder.yml">File Download Via Bitsadmin To A Suspicious Target Folder</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_bitsadmin_download_uncommon_targetfolder.yml">File Download Via Bitsadmin To An Uncommon Target Folder</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_bitsadmin_download_susp_extensions.yml">File With Suspicious Extension Downloaded Via Bitsadmin</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/80630ff4-8e4c-11eb-aab5-acde48001122/">BITSAdmin Download File</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1105">T1105</a>
-                    </td>
-                    <td class="attack-name">certutil download (urlcache)</td>
-                    <td class="attack-guid">dd3b61dd-7bbc-48cd-ab51-49ad1a776df0</td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/54a6ed00-3256-11ec-b031-acde48001122/">CMD Carry Out String Command Parameter</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1095">T1095</a>
-                    </td>
-                    <td class="attack-name">Powercat C2</td>
-                    <td class="attack-guid">3e0e0e7f-6aa2-4a61-b61d-526c2cc9330e</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_progname.yml">Suspicious Program Names</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1095">T1095</a>
-                    </td>
-                    <td class="attack-name">ICMP C2</td>
-                    <td class="attack-guid">0268e63c-e244-42db-bef7-72a9e59fc1fc</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1087.002">T1087.002</a>
-                    </td>
-                    <td class="attack-name">Suspicious LAPS Attributes Query with Get-ADComputer all properties and SearchScope</td>
-                    <td class="attack-guid">ffbcfd62-15d6-4989-a21a-80bfc8e58bb5</td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/c5a31f80-5888-4d81-9f78-1cc65026316e/">GetAdComputer with PowerShell</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1087.002">T1087.002</a>
-                    </td>
-                    <td class="attack-name">Suspicious LAPS Attributes Query with Get-ADComputer ms-Mcs-AdmPwd property</td>
-                    <td class="attack-guid">6e85bdf9-7bc4-4259-ac0f-f0cb39964443</td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/c5a31f80-5888-4d81-9f78-1cc65026316e/">GetAdComputer with PowerShell</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1087.002">T1087.002</a>
-                    </td>
-                    <td class="attack-name">Suspicious LAPS Attributes Query with Get-ADComputer all properties</td>
-                    <td class="attack-guid">394012d9-2164-4d4f-b9e5-acf30ba933fe</td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/c5a31f80-5888-4d81-9f78-1cc65026316e/">GetAdComputer with PowerShell</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1087.002">T1087.002</a>
-                    </td>
-                    <td class="attack-name">Enumerate Default Domain Admin Details (Domain)</td>
-                    <td class="attack-guid">c70ab9fd-19e2-4e02-a83c-9cfa8eaa8fef</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_net_user_default_accounts_manipulation.yml">Suspicious Manipulation Of Default Accounts Via Net.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/339805ce-ac30-11eb-b87d-acde48001122/">Account Discovery With Net App</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/98f6a534-04c2-11ec-96b2-acde48001122/">Domain Account Discovery With Net App</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/640337e5-6e41-4b7f-af06-9d9eab5e1e2d/">Network Connection Discovery With Net</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1087.002">T1087.002</a>
-                    </td>
-                    <td class="attack-name">Adfind - Enumerate Active Directory User Objects</td>
-                    <td class="attack-guid">e1ec8d20-509a-4b9a-b820-06c9b2da8eb7</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_pua_adfind_susp_usage.yml">PUA - AdFind Suspicious Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/bd3b0187-189b-46c0-be45-f52da2bae67f/">Windows AdFind Exe</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1087.002">T1087.002</a>
-                    </td>
-                    <td class="attack-name">Enumerate logged on users via CMD (Domain)</td>
-                    <td class="attack-guid">161dcd85-d014-4f5e-900c-d3eaae82a0f7</td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/ad03bfcf-8a91-4bc2-a500-112993deba87/">System User Discovery With Query</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1087.002">T1087.002</a>
-                    </td>
-                    <td class="attack-name">Enumerate all accounts (Domain)</td>
-                    <td class="attack-guid">6fbc9e68-5ad7-444a-bd11-8bf3136c477e</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_net_execution.yml">Net.EXE Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_net_groups_and_accounts_recon.yml">Suspicious Group And Account Reconnaissance Activity Using Net.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/f2f14ac7-fa81-471a-80d5-7eb65c3c7349/">Domain Group Discovery With Net</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1087.001">T1087.001</a>
-                    </td>
-                    <td class="attack-name">ESXi - Local Account Discovery via ESXCLI</td>
-                    <td class="attack-guid">9762ac6e-aa60-4449-a2f0-cbbd0e1fd22c</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_susp_exfil_and_tunneling_tool_execution.yml">Tunneling Tool Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/8aac5e1e-0fab-4437-af0b-c6e60af23eed/">Windows Protocol Tunneling with Plink</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1087.001">T1087.001</a>
-                    </td>
-                    <td class="attack-name">Enumerate logged on users via CMD (Local)</td>
-                    <td class="attack-guid">a138085e-bfe5-46ba-a242-74a6fb884af3</td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/ad03bfcf-8a91-4bc2-a500-112993deba87/">System User Discovery With Query</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1083">T1083</a>
-                    </td>
-                    <td class="attack-name">ESXi - Enumerate VMDKs available on an ESXi Host</td>
-                    <td class="attack-guid">4a233a40-caf7-4cf1-890a-c6331bbc72cf</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_susp_exfil_and_tunneling_tool_execution.yml">Tunneling Tool Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/8aac5e1e-0fab-4437-af0b-c6e60af23eed/">Windows Protocol Tunneling with Plink</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1082">T1082</a>
-                    </td>
-                    <td class="attack-name">ESXi - Darkside system information discovery</td>
-                    <td class="attack-guid">f89812e5-67d1-4f49-86fa-cbc6609ea86a</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_susp_exfil_and_tunneling_tool_execution.yml">Tunneling Tool Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/8aac5e1e-0fab-4437-af0b-c6e60af23eed/">Windows Protocol Tunneling with Plink</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1082">T1082</a>
-                    </td>
-                    <td class="attack-name">ESXi - VM Discovery using ESXCLI</td>
-                    <td class="attack-guid">2040405c-eea6-4c1c-aef3-c2acc430fac9</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_susp_exfil_and_tunneling_tool_execution.yml">Tunneling Tool Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/8aac5e1e-0fab-4437-af0b-c6e60af23eed/">Windows Protocol Tunneling with Plink</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1082">T1082</a>
-                    </td>
-                    <td class="attack-name">WinPwn - PowerSharpPack - Seatbelt</td>
-                    <td class="attack-guid">5c16ceb4-ba3a-43d7-b848-a13c1f216d95</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_download_patterns.yml">Suspicious PowerShell Download and Execute Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_malicious_cmdlets.yml">Malicious PowerShell Commandlets - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1082">T1082</a>
-                    </td>
-                    <td class="attack-name">WinPwn - PowerSharpPack - Sharpup checking common Privesc vectors</td>
-                    <td class="attack-guid">efb79454-1101-4224-a4d0-30c9c8b29ffc</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_download_patterns.yml">Suspicious PowerShell Download and Execute Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_malicious_cmdlets.yml">Malicious PowerShell Commandlets - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1082">T1082</a>
-                    </td>
-                    <td class="attack-name">WinPwn - PowerSharpPack - Watson searching for missing windows patches</td>
-                    <td class="attack-guid">07b18a66-6304-47d2-bad0-ef421eb2e107</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_download_patterns.yml">Suspicious PowerShell Download and Execute Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_malicious_cmdlets.yml">Malicious PowerShell Commandlets - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1078.003">T1078.003</a>
-                    </td>
-                    <td class="attack-name">Use PsExec to elevate to NT Authority\SYSTEM account</td>
-                    <td class="attack-guid">6904235f-0f55-4039-8aed-41c300ff7733</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sysinternals_psexec_execution.yml">Psexec Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sysinternals_eula_accepted.yml">Potential Execution of Sysinternals Tools</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/27c3a83d-cada-47c6-9042-67baf19d2574/">Detect PsExec With accepteula Flag</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1078.001">T1078.001</a>
-                    </td>
-                    <td class="attack-name">Activate Guest Account</td>
-                    <td class="attack-guid">aa6cb8c4-b582-4f8e-b677-37733914abda</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_net_user_default_accounts_manipulation.yml">Suspicious Manipulation Of Default Accounts Via Net.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/640337e5-6e41-4b7f-af06-9d9eab5e1e2d/">Network Connection Discovery With Net</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1071.004">T1071.004</a>
-                    </td>
-                    <td class="attack-name">DNS C2</td>
-                    <td class="attack-guid">e7bf9802-2e78-4db9-93b5-181b7bcd37d7</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1070.004">T1070.004</a>
-                    </td>
-                    <td class="attack-name">Clears Recycle bin via rd</td>
-                    <td class="attack-guid">f723d13d-48dc-4317-9990-cf43a9ac0bf2</td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/ba570b3a-d356-11eb-8358-acde48001122/">Recursive Delete of Directory In Batch CMD</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1070.004">T1070.004</a>
-                    </td>
-                    <td class="attack-name">Delete an entire folder - Windows cmd</td>
-                    <td class="attack-guid">ded937c4-2add-42f7-9c2c-c742b7a98698</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_dir_execution.yml">File And SubFolder Enumeration Via Dir Command</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_rmdir_execution.yml">Directory Removal Via Rmdir</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/c4566d2c-b094-48a1-9c59-d66e22065560/">Windows Indicator Removal Via Rmdir</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1069.002">T1069.002</a>
-                    </td>
-                    <td class="attack-name">Get-ADUser Enumeration using UserAccountControl flags (AS-REP Roasting)</td>
-                    <td class="attack-guid">43fa81fb-34bb-4b5f-867b-03c7dbe0e3d8</td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/0b6ee3f4-04e3-11ec-a87d-acde48001122/">Get ADUser with PowerShell</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1069.002">T1069.002</a>
-                    </td>
-                    <td class="attack-name">Enumerate Active Directory Groups with Get-AdGroup</td>
-                    <td class="attack-guid">3d1fcd2a-e51c-4cbe-8d84-9a843bad8dc8</td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/872e3063-0fc4-4e68-b2f3-f2b99184a708/">GetAdGroup with PowerShell</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1069.002">T1069.002</a>
-                    </td>
-                    <td class="attack-name">Adfind - Query Active Directory Groups</td>
-                    <td class="attack-guid">48ddc687-82af-40b7-8472-ff1e742e8274</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_pua_adfind_susp_usage.yml">PUA - AdFind Suspicious Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/bd3b0187-189b-46c0-be45-f52da2bae67f/">Windows AdFind Exe</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1069.002">T1069.002</a>
-                    </td>
-                    <td class="attack-name">Permission Groups Discovery PowerShell (Domain)</td>
-                    <td class="attack-guid">6d5d8c96-3d2a-4da9-9d6d-9a9d341899a7</td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/0cdf318b-a0dd-47d7-b257-c621c0247de8/">User Discovery With Env Vars PowerShell</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1069.001">T1069.001</a>
-                    </td>
-                    <td class="attack-name">WMIObject Group Discovery</td>
-                    <td class="attack-guid">69119e58-96db-4110-ad27-954e48f3bb13</td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/5434f670-155d-11ec-8cca-acde48001122/">Get WMIObject Group Discovery</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1069.001">T1069.001</a>
-                    </td>
-                    <td class="attack-name">Wmic Group Discovery</td>
-                    <td class="attack-guid">7413be50-be8e-430f-ad4d-07bf197884b2</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_recon_group.yml">Local Groups Reconnaissance Via Wmic.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/83317b08-155b-11ec-8e00-acde48001122/">Wmic Group Discovery</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1069.001">T1069.001</a>
-                    </td>
-                    <td class="attack-name">SharpHound3 - LocalAdmin</td>
-                    <td class="attack-guid">e03ada14-0980-4107-aff1-7783b2b59bb1</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_ntfs_short_name_path_use_cli.yml">Use Short Name Path in Command Line</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/dd04b29a-beed-11eb-87bc-acde48001122/">Detect SharpHound Usage</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/a0bdd2f6-c2ff-11eb-b918-acde48001122/">Detect SharpHound Command-Line Arguments</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1069.001">T1069.001</a>
-                    </td>
-                    <td class="attack-name">Basic Permission Groups Discovery Windows (Local)</td>
-                    <td class="attack-guid">1f454dd6-e134-44df-bebb-67de70fb6cd8</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_net_execution.yml">Net.EXE Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/54f5201e-155b-11ec-a6e2-acde48001122/">Net Localgroup Discovery</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059.001">T1059.001</a>
-                    </td>
-                    <td class="attack-name">SOAPHound - Build Cache</td>
-                    <td class="attack-guid">4099086c-1470-4223-8085-8186e1ed5948</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_soaphound_execution.yml">HackTool - SOAPHound Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/8e53f839-e127-4d6d-a54d-a2f67044a57f/">Windows SOAPHound Binary Execution</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/0cdf318b-a0dd-47d7-b257-c621c0247de8/">User Discovery With Env Vars PowerShell</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059.001">T1059.001</a>
-                    </td>
-                    <td class="attack-name">SOAPHound - Dump BloodHound Data</td>
-                    <td class="attack-guid">6a5b2a50-d037-4879-bf01-43d4d6cbf73f</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_soaphound_execution.yml">HackTool - SOAPHound Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/8e53f839-e127-4d6d-a54d-a2f67044a57f/">Windows SOAPHound Binary Execution</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/0cdf318b-a0dd-47d7-b257-c621c0247de8/">User Discovery With Env Vars PowerShell</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059.001">T1059.001</a>
-                    </td>
-                    <td class="attack-name">ATHPowerShellCommandLineParameter -EncodedCommand parameter variations with encoded arguments</td>
-                    <td class="attack-guid">0d181431-ddf3-4826-8055-2dbf63ae848b</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_encode.yml">Suspicious Execution of Powershell with Base64</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/9be56c82-b1cc-4318-87eb-d138afaaca39/">Malicious PowerShell Process - Execution Policy Bypass</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059.001">T1059.001</a>
-                    </td>
-                    <td class="attack-name">ATHPowerShellCommandLineParameter -EncodedCommand parameter variations</td>
-                    <td class="attack-guid">86a43bad-12e3-4e85-b97c-4d5cf25b95c3</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_encode.yml">Suspicious Execution of Powershell with Base64</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/9be56c82-b1cc-4318-87eb-d138afaaca39/">Malicious PowerShell Process - Execution Policy Bypass</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059.001">T1059.001</a>
-                    </td>
-                    <td class="attack-name">ATHPowerShellCommandLineParameter -Command parameter variations with encoded arguments</td>
-                    <td class="attack-guid">1c0a870f-dc74-49cf-9afc-eccc45e58790</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_encode.yml">Suspicious Execution of Powershell with Base64</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/9be56c82-b1cc-4318-87eb-d138afaaca39/">Malicious PowerShell Process - Execution Policy Bypass</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059.001">T1059.001</a>
-                    </td>
-                    <td class="attack-name">ATHPowerShellCommandLineParameter -Command parameter variations</td>
-                    <td class="attack-guid">686a9785-f99b-41d4-90df-66ed515f81d7</td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/9be56c82-b1cc-4318-87eb-d138afaaca39/">Malicious PowerShell Process - Execution Policy Bypass</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059.001">T1059.001</a>
-                    </td>
-                    <td class="attack-name">Powershell invoke mshta.exe download</td>
-                    <td class="attack-guid">8a2ad40b-12c7-4b25-8521-2737b0a415af</td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/54a6ed00-3256-11ec-b031-acde48001122/">CMD Carry Out String Command Parameter</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059.001">T1059.001</a>
-                    </td>
-                    <td class="attack-name">Powershell MsXml COM object - with prompt</td>
-                    <td class="attack-guid">388a7340-dbc1-4c9d-8e59-b75ad8c6d5da</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_iex_patterns.yml">Suspicious PowerShell IEX Execution Patterns</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_parameter_variation.yml">Suspicious PowerShell Parameter Substring</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_set_policies_to_unsecure_level.yml">Change PowerShell Policies to an Insecure Level</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/9be56c82-b1cc-4318-87eb-d138afaaca39/">Malicious PowerShell Process - Execution Policy Bypass</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059.001">T1059.001</a>
-                    </td>
-                    <td class="attack-name">Invoke-AppPathBypass</td>
-                    <td class="attack-guid">06a220b6-7e29-4bd8-9d07-5b4d86742372</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_progname.yml">Suspicious Program Names</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_download_patterns.yml">Suspicious PowerShell Download and Execute Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059.001">T1059.001</a>
-                    </td>
-                    <td class="attack-name">Mimikatz</td>
-                    <td class="attack-guid">f3132740-55bc-48c4-bcc0-758a459cd027</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_progname.yml">Suspicious Program Names</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_download_patterns.yml">Suspicious PowerShell Download and Execute Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_malicious_cmdlets.yml">Malicious PowerShell Commandlets - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_mimikatz_command_line.yml">HackTool - Mimikatz Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059">T1059</a>
-                    </td>
-                    <td class="attack-name">AutoIt Script Execution</td>
-                    <td class="attack-guid">a9b93f17-31cb-435d-a462-5e838a2a6026</td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/0ecb40d9-492b-4a57-9f87-515dd742794c/">Windows AutoIt3 Execution</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1055.001">T1055.001</a>
-                    </td>
-                    <td class="attack-name">WinPwn - Get SYSTEM shell - Bind System Shell using UsoClient DLL load technique</td>
-                    <td class="attack-guid">8b56f787-73d9-4f1d-87e8-d07e89cbc7f5</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_download_patterns.yml">Suspicious PowerShell Download and Execute Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_malicious_cmdlets.yml">Malicious PowerShell Commandlets - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_inline_win_api_access.yml">Potential WinAPI Calls Via CommandLine</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1053.005">T1053.005</a>
-                    </td>
-                    <td class="attack-name">Scheduled Task ("Ghost Task") via Registry Key Manipulation</td>
-                    <td class="attack-guid">704333ca-cc12-4bcf-9916-101844881f54</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sysinternals_eula_accepted.yml">Potential Execution of Sysinternals Tools</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/d0026380-b3c4-4da0-ac8e-02790063ff6b/">Windows Command and Scripting Interpreter Hunting Path Traversal</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1053.005">T1053.005</a>
-                    </td>
-                    <td class="attack-name">Scheduled task Remote</td>
-                    <td class="attack-guid">2e5eac3e-327b-4a88-a0c0-c4057039a8dd</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_schtasks_creation.yml">Scheduled Task Creation Via Schtasks.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/41a0e58e-884c-11ec-9976-acde48001122/">Windows Schtasks Create Run As System</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1053.005">T1053.005</a>
-                    </td>
-                    <td class="attack-name">Scheduled Task Startup Script</td>
-                    <td class="attack-guid">fec27f65-db86-4c2d-b66c-61945aee87c2</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_schtasks_schedule_type_system.yml">Suspicious Schtasks Schedule Type With High Privileges</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_schtasks_susp_pattern.yml">Suspicious Command Patterns In Scheduled Task Creation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_schtasks_system.yml">Schtasks Creation Or Modification With SYSTEM Privileges</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_schtasks_creation.yml">Scheduled Task Creation Via Schtasks.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/41a0e58e-884c-11ec-9976-acde48001122/">Windows Schtasks Create Run As System</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1049">T1049</a>
-                    </td>
-                    <td class="attack-name">System Network Connections Discovery with PowerShell</td>
-                    <td class="attack-guid">f069f0f1-baad-4831-aa2b-eddac4baac4a</td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/e02af35c-1de5-4afe-b4be-f45aba57272b/">GetNetTcpconnection with PowerShell</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1048.002">T1048.002</a>
-                    </td>
-                    <td class="attack-name">Exfiltrate data HTTPS using curl windows</td>
-                    <td class="attack-guid">1cdf2fb0-51b6-4fd8-96af-77020d5f1bf0</td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/42f8f1a2-4228-11ec-aade-acde48001122/">Windows Curl Upload to Remote Destination</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1047">T1047</a>
-                    </td>
-                    <td class="attack-name">Application uninstall using WMIC</td>
-                    <td class="attack-guid">c510d25b-1667-467d-8331-a56d3e9bc4ff</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_remote_execution.yml">WMIC Remote Command Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_uninstall_application.yml">Application Removed Via Wmic.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_recon_product.yml">Potential Product Reconnaissance Via Wmic.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/272df6de-61f1-4784-877c-1fbc3e2d0838/">Remote WMI Command Attempt</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1047">T1047</a>
-                    </td>
-                    <td class="attack-name">WMI Execute rundll32</td>
-                    <td class="attack-guid">00738d2a-4651-4d76-adf2-c43a41dfb243</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_susp_process_creation.yml">Suspicious Process Created Via Wmic.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_process_creation.yml">New Process Created Via Wmic.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/272df6de-61f1-4784-877c-1fbc3e2d0838/">Remote WMI Command Attempt</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/0661c2de-93de-11ec-9833-acde48001122/">Windows WMI Process Call Create</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/d25d2c3d-d9d8-40ec-8fdf-e86fe155a3da/">Remote Process Instantiation via WMI</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1047">T1047</a>
-                    </td>
-                    <td class="attack-name">Create a Process using WMI Query and an Encoded Command</td>
-                    <td class="attack-guid">7db7a7f9-9531-4840-9b30-46220135441c</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_base64_invoke.yml">PowerShell Base64 Encoded Invoke Keyword</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_encode.yml">Suspicious Execution of Powershell with Base64</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_parameter_variation.yml">Suspicious PowerShell Parameter Substring</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_set_policies_to_unsecure_level.yml">Change PowerShell Policies to an Insecure Level</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/9be56c82-b1cc-4318-87eb-d138afaaca39/">Malicious PowerShell Process - Execution Policy Bypass</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1047">T1047</a>
-                    </td>
-                    <td class="attack-name">WMI Execute Remote Process</td>
-                    <td class="attack-guid">9c8ef159-c666-472f-9874-90c8d60d136b</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_susp_process_creation.yml">Suspicious Process Created Via Wmic.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_process_creation.yml">New Process Created Via Wmic.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_remote_execution.yml">WMIC Remote Command Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/272df6de-61f1-4784-877c-1fbc3e2d0838/">Remote WMI Command Attempt</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/0661c2de-93de-11ec-9833-acde48001122/">Windows WMI Process Call Create</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/d25d2c3d-d9d8-40ec-8fdf-e86fe155a3da/">Remote Process Instantiation via WMI</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1047">T1047</a>
-                    </td>
-                    <td class="attack-name">WMI Execute Local Process</td>
-                    <td class="attack-guid">b3bdfc91-b33e-4c6d-a5c8-d64bee0276b3</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_susp_process_creation.yml">Suspicious Process Created Via Wmic.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_process_creation.yml">New Process Created Via Wmic.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/0661c2de-93de-11ec-9833-acde48001122/">Windows WMI Process Call Create</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1047">T1047</a>
-                    </td>
-                    <td class="attack-name">WMI Reconnaissance List Remote Services</td>
-                    <td class="attack-guid">0fd48ef7-d890-4e93-a533-f7dedd5191d3</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_recon_service.yml">Service Reconnaissance Via Wmic.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_remote_execution.yml">WMIC Remote Command Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/272df6de-61f1-4784-877c-1fbc3e2d0838/">Remote WMI Command Attempt</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1047">T1047</a>
-                    </td>
-                    <td class="attack-name">WMI Reconnaissance Users</td>
-                    <td class="attack-guid">c107778c-dcf5-47c5-af2e-1d058a3df3ea</td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/4902d7aa-0134-11ec-9d65-acde48001122/">Local Account Discovery With Wmic</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1036.004">T1036.004</a>
-                    </td>
-                    <td class="attack-name">Creating W32Time similar named service using schtasks</td>
-                    <td class="attack-guid">f9f2fe59-96f7-4a7d-ba9f-a9783200d4c9</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_schtasks_susp_pattern.yml">Suspicious Command Patterns In Scheduled Task Creation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_schtasks_system.yml">Schtasks Creation Or Modification With SYSTEM Privileges</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_schtasks_creation.yml">Scheduled Task Creation Via Schtasks.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/41a0e58e-884c-11ec-9976-acde48001122/">Windows Schtasks Create Run As System</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1036.003">T1036.003</a>
-                    </td>
-                    <td class="attack-name">Masquerading - wscript.exe running as svchost.exe</td>
-                    <td class="attack-guid">24136435-c91a-4ede-9da1-8b284a1c1a23</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir_lolbin.yml">LOL-Binary Copied From System Directory</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/54a6ed00-3256-11ec-b031-acde48001122/">CMD Carry Out String Command Parameter</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1033">T1033</a>
-                    </td>
-                    <td class="attack-name">GetCurrent User with PowerShell Script</td>
-                    <td class="attack-guid">1392bd0f-5d5a-429e-81d9-eb9d4d4d5b3b</td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/7eb9c3d5-c98c-4088-acc5-8240bad15379/">GetCurrent User with PowerShell</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1021.004">T1021.004</a>
-                    </td>
-                    <td class="attack-name">ESXi - Enable SSH via VIM-CMD</td>
-                    <td class="attack-guid">280812c8-4dae-43e9-a74e-1d08ab997c0e</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_susp_exfil_and_tunneling_tool_execution.yml">Tunneling Tool Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/8aac5e1e-0fab-4437-af0b-c6e60af23eed/">Windows Protocol Tunneling with Plink</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1021.003">T1021.003</a>
-                    </td>
-                    <td class="attack-name">PowerShell Lateral Movement using MMC20</td>
-                    <td class="attack-guid">6dc74eb1-c9d6-4c53-b3b5-6f50ae339673</td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/d4f42098-4680-11ec-ad07-3e22fbd008af/">Remote Process Instantiation via DCOM and PowerShell</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1021.002">T1021.002</a>
-                    </td>
-                    <td class="attack-name">Execute command writing output to local Admin Share</td>
-                    <td class="attack-guid">d41aaab5-bdfe-431d-a3d5-c29e9136ff46</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_redirect_local_admin_share.yml">Suspicious Redirection to Local Admin Share</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_crackmapexec_execution_patterns.yml">HackTool - CrackMapExec Execution Patterns</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/8ce07472-496f-11ec-ab3b-3e22fbd008af/">Impacket Lateral Movement Commandline Parameters</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1021.002">T1021.002</a>
-                    </td>
-                    <td class="attack-name">Copy and Execute File with PsExec</td>
-                    <td class="attack-guid">0eb03d41-79e4-4393-8e57-6344856be1cf</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sysinternals_psexec_execution.yml">Psexec Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sysinternals_eula_accepted.yml">Potential Execution of Sysinternals Tools</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/27c3a83d-cada-47c6-9042-67baf19d2574/">Detect PsExec With accepteula Flag</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1021.002">T1021.002</a>
-                    </td>
-                    <td class="attack-name">Map admin share</td>
-                    <td class="attack-guid">3386975b-367a-4fbb-9d77-4dcf3639ffd3</td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/54a6ed00-3256-11ec-b031-acde48001122/">CMD Carry Out String Command Parameter</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1018">T1018</a>
-                    </td>
-                    <td class="attack-name">Remote System Discovery - net group Domain Controller</td>
-                    <td class="attack-guid">5843529a-5056-4bc1-9c13-a311e2af4ca0</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_net_execution.yml">Net.EXE Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_net_groups_and_accounts_recon.yml">Suspicious Group And Account Reconnaissance Activity Using Net.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/f2f14ac7-fa81-471a-80d5-7eb65c3c7349/">Domain Group Discovery With Net</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1018">T1018</a>
-                    </td>
-                    <td class="attack-name">Get-WmiObject to Enumerate Domain Controllers</td>
-                    <td class="attack-guid">e3cf5123-f6c9-4375-bdf2-1bb3ba43a1ad</td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/7141122c-3bc2-4aaa-ab3b-7a85a0bbefc3/">GetWmiObject Ds Computer with PowerShell</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1018">T1018</a>
-                    </td>
-                    <td class="attack-name">Enumerate Active Directory Computers with Get-AdComputer</td>
-                    <td class="attack-guid">97e89d9e-e3f5-41b5-a90f-1e0825df0fdf</td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/c5a31f80-5888-4d81-9f78-1cc65026316e/">GetAdComputer with PowerShell</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1018">T1018</a>
-                    </td>
-                    <td class="attack-name">Adfind - Enumerate Active Directory Computer Objects</td>
-                    <td class="attack-guid">a889f5be-2d54-4050-bd05-884578748bb4</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_pua_adfind_susp_usage.yml">PUA - AdFind Suspicious Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/bd3b0187-189b-46c0-be45-f52da2bae67f/">Windows AdFind Exe</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1018">T1018</a>
-                    </td>
-                    <td class="attack-name">Remote System Discovery - nltest</td>
-                    <td class="attack-guid">52ab5108-3f6f-42fb-8ba3-73bc054f22c8</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_nltest_recon.yml">Potential Recon Activity Via Nltest.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_nltest_execution.yml">Nltest.EXE Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/41243735-89a7-4c83-bcdd-570aa78f00a1/">Domain Controller Discovery with Nltest</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1018">T1018</a>
-                    </td>
-                    <td class="attack-name">Remote System Discovery - net group Domain Computers</td>
-                    <td class="attack-guid">f1bf6c8f-9016-4edf-aff9-80b65f5d711f</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_net_execution.yml">Net.EXE Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_net_groups_and_accounts_recon.yml">Suspicious Group And Account Reconnaissance Activity Using Net.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/f2f14ac7-fa81-471a-80d5-7eb65c3c7349/">Domain Group Discovery With Net</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/9df16706-04a2-41e2-bbfe-9b38b34409d3/">Remote System Discovery with Net</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1018">T1018</a>
-                    </td>
-                    <td class="attack-name">Remote System Discovery - net</td>
-                    <td class="attack-guid">85321a9c-897f-4a60-9f20-29788e50bccd</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_net_view_share_and_sessions_enum.yml">Share And Session Enumeration Using Net.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/9df16706-04a2-41e2-bbfe-9b38b34409d3/">Remote System Discovery with Net</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1016">T1016</a>
-                    </td>
-                    <td class="attack-name">DNS Server Discovery Using nslookup</td>
-                    <td class="attack-guid">34557863-344a-468f-808b-a1bfb89b4fa9</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_nslookup_domain_discovery.yml">Network Reconnaissance Activity</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/2418780f-7c3e-4c45-b8b4-996ea850cd49/">Windows System Discovery Using ldap Nslookup</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1016">T1016</a>
-                    </td>
-                    <td class="attack-name">Adfind - Enumerate Active Directory Subnet Objects</td>
-                    <td class="attack-guid">9bb45dd7-c466-4f93-83a1-be30e56033ee</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_pua_adfind_susp_usage.yml">PUA - AdFind Suspicious Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/bd3b0187-189b-46c0-be45-f52da2bae67f/">Windows AdFind Exe</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.006">T1003.006</a>
-                    </td>
-                    <td class="attack-name">DCSync (Active Directory)</td>
-                    <td class="attack-guid">129efd28-8497-4c87-a1b0-73b9a870ca3e</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_mimikatz_command_line.yml">HackTool - Mimikatz Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_cobaltstrike_bloopers_cmd.yml">Operator Bloopers Cobalt Strike Commands</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/a9e0d6d3-9676-4e26-994d-4e0406bb4467/">Windows Mimikatz Binary Execution</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.004">T1003.004</a>
-                    </td>
-                    <td class="attack-name">Dump Kerberos Tickets from LSA using dumper.ps1</td>
-                    <td class="attack-guid">2dfa3bff-9a27-46db-ab75-7faefdaca732</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.004">T1003.004</a>
-                    </td>
-                    <td class="attack-name">Dumping LSA Secrets</td>
-                    <td class="attack-guid">55295ab0-a703-433b-9ca4-ae13807de12f</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_ntfs_short_name_path_use_cli.yml">Use Short Name Path in Command Line</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sysinternals_psexec_execution.yml">Psexec Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sysinternals_eula_accepted.yml">Potential Execution of Sysinternals Tools</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/e9fb4a59-c5fb-440a-9f24-191fbc6b2911/">Attempted Credential Dump From Registry via Reg exe</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/27c3a83d-cada-47c6-9042-67baf19d2574/">Detect PsExec With accepteula Flag</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.003">T1003.003</a>
-                    </td>
-                    <td class="attack-name">Create Volume Shadow Copy with diskshadow</td>
-                    <td class="attack-guid">b385996c-0e7d-4e27-95a4-aca046b119a7</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_diskshadow_script_mode.yml">Diskshadow Script Mode Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_dir_execution.yml">File And SubFolder Enumeration Via Dir Command</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/a3b3bc96-1c4f-4eba-8218-027cac739a48/">Windows Password Managers Discovery</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/58adae9e-8ea3-11ec-90f6-acde48001122/">Windows Diskshadow Proxy Execution</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.003">T1003.003</a>
-                    </td>
-                    <td class="attack-name">Create Symlink to Volume Shadow Copy</td>
-                    <td class="attack-guid">21748c28-2793-4284-9e07-d6d028b66702</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_mklink_shadow_copies_access_symlink.yml">VolumeShadowCopy Symlink Creation Via Mklink</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_sensitive_file_access_shadowcopy.yml">Sensitive File Access Via Volume Shadow Copy Backup</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/c5eac648-fae0-4263-91a6-773df1f4c903/">Credential Dumping via Symlink to Shadow Copy</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.003">T1003.003</a>
-                    </td>
-                    <td class="attack-name">Create Volume Shadow Copy remotely (WMI) with esentutl</td>
-                    <td class="attack-guid">21c7bf80-3e8b-40fa-8f9d-f5b194ff2865</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_esentutl_sensitive_file_copy.yml">Copying Sensitive Files with Credential Data</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_susp_process_creation.yml">Suspicious Process Created Via Wmic.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_process_creation.yml">New Process Created Via Wmic.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_remote_execution.yml">WMIC Remote Command Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/272df6de-61f1-4784-877c-1fbc3e2d0838/">Remote WMI Command Attempt</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/d8c406fe-23d2-45f3-a983-1abe7b83ff3b/">Credential Dumping via Copy Command from Shadow Copy</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/0661c2de-93de-11ec-9833-acde48001122/">Windows WMI Process Call Create</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/d25d2c3d-d9d8-40ec-8fdf-e86fe155a3da/">Remote Process Instantiation via WMI</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.003">T1003.003</a>
-                    </td>
-                    <td class="attack-name">Create Volume Shadow Copy remotely with WMI</td>
-                    <td class="attack-guid">d893459f-71f0-484d-9808-ec83b2b64226</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_shadow_copies_creation.yml">Shadow Copies Creation Using Operating Systems Utilities</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_recon_volume.yml">System Disk And Volume Reconnaissance Via Wmic.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_remote_execution.yml">WMIC Remote Command Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/272df6de-61f1-4784-877c-1fbc3e2d0838/">Remote WMI Command Attempt</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/eb120f5f-b879-4a63-97c1-93352b5df844/">Creation of Shadow Copy</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.003">T1003.003</a>
-                    </td>
-                    <td class="attack-name">Create Volume Shadow Copy with WMI</td>
-                    <td class="attack-guid">224f7de0-8f0a-4a94-b5d8-989b036c86da</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_shadow_copies_creation.yml">Shadow Copies Creation Using Operating Systems Utilities</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_recon_volume.yml">System Disk And Volume Reconnaissance Via Wmic.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/eb120f5f-b879-4a63-97c1-93352b5df844/">Creation of Shadow Copy</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.003">T1003.003</a>
-                    </td>
-                    <td class="attack-name">Copy NTDS.dit from Volume Shadow Copy</td>
-                    <td class="attack-guid">c6237146-9ea6-4711-85c9-c56d263a6b03</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_esentutl_sensitive_file_copy.yml">Copying Sensitive Files with Credential Data</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_sensitive_file_access_shadowcopy.yml">Sensitive File Access Via Volume Shadow Copy Backup</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_ntds.yml">Suspicious Process Patterns NTDS.DIT Exfil</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_shadowcopy_access.yml">Copy From VolumeShadowCopy Via Cmd.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/e9fb4a59-c5fb-440a-9f24-191fbc6b2911/">Attempted Credential Dump From Registry via Reg exe</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/d8c406fe-23d2-45f3-a983-1abe7b83ff3b/">Credential Dumping via Copy Command from Shadow Copy</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.003">T1003.003</a>
-                    </td>
-                    <td class="attack-name">Create Volume Shadow Copy with vssadmin</td>
-                    <td class="attack-guid">dcebead7-6c28-4b4b-bf3c-79deb1b1fc7f</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_shadow_copies_creation.yml">Shadow Copies Creation Using Operating Systems Utilities</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/eb120f5f-b879-4a63-97c1-93352b5df844/">Creation of Shadow Copy</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.002">T1003.002</a>
-                    </td>
-                    <td class="attack-name">dump volume shadow copy hives with certutil</td>
-                    <td class="attack-guid">eeb9751a-d598-42d3-b11c-c122d9c3f6c7</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_esentutl_sensitive_file_copy.yml">Copying Sensitive Files with Credential Data</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_redirection_susp_folder.yml">Potentially Suspicious CMD Shell Output Redirect</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_sensitive_file_access_shadowcopy.yml">Sensitive File Access Via Volume Shadow Copy Backup</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_certutil_encode.yml">File Encoded To Base64 Via Certutil.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_certutil_encode_susp_location.yml">File In Suspicious Location Encoded To Base64 Via Certutil.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/d8c406fe-23d2-45f3-a983-1abe7b83ff3b/">Credential Dumping via Copy Command from Shadow Copy</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.002">T1003.002</a>
-                    </td>
-                    <td class="attack-name">esentutl.exe SAM copy</td>
-                    <td class="attack-guid">a90c2f4d-6726-444e-99d2-a00cd7c20480</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_esentutl_sensitive_file_copy.yml">Copying Sensitive Files with Credential Data</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/d372f928-ce4f-11eb-a762-acde48001122/">Esentutl SAM Copy</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.002">T1003.002</a>
-                    </td>
-                    <td class="attack-name">Registry dump of SAM, creds, and secrets</td>
-                    <td class="attack-guid">5c2571d0-1572-416d-9676-812e64ca9f44</td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/e9fb4a59-c5fb-440a-9f24-191fbc6b2911/">Attempted Credential Dump From Registry via Reg exe</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.001">T1003.001</a>
-                    </td>
-                    <td class="attack-name">Powershell Mimikatz</td>
-                    <td class="attack-guid">66fb0bc1-3c3f-47e9-a298-550ecfefacbc</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_progname.yml">Suspicious Program Names</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_download_patterns.yml">Suspicious PowerShell Download and Execute Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_malicious_cmdlets.yml">Malicious PowerShell Commandlets - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_mimikatz_command_line.yml">HackTool - Mimikatz Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1562.001">T1562.001</a>
-                    </td>
-                    <td class="attack-name">Kill antimalware protected processes using Backstab</td>
-                    <td class="attack-guid">24a12b91-05a7-4deb-8d7f-035fa98591bc</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sysinternals_eula_accepted.yml">Potential Execution of Sysinternals Tools</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1562.001">T1562.001</a>
-                    </td>
-                    <td class="attack-name">Uninstall Crowdstrike Falcon on Windows</td>
-                    <td class="attack-guid">b32b1ccf-f7c1-49bc-9ddd-7d7466a7b297</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_uninstall_crowdstrike_falcon.yml">Uninstall Crowdstrike Falcon Sensor</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1562.001">T1562.001</a>
-                    </td>
-                    <td class="attack-name">Remove Windows Defender Definition Files</td>
-                    <td class="attack-guid">3d47daaa-2f56-43e0-94cc-caf5d8d52a68</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_mpcmdrun_remove_windows_defender_definition.yml">Windows Defender Definition Files Removed</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1562.001">T1562.001</a>
-                    </td>
-                    <td class="attack-name">Tamper with Windows Defender Command Prompt</td>
-                    <td class="attack-guid">aa875ed4-8935-47e2-b2c5-6ec00ab220d2</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sc_disable_service.yml">Service StartupType Change Via Sc.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_disable_defender_av_security_monitoring.yml">Disable Windows Defender AV Security Monitoring</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_service_tamper.yml">Suspicious Windows Service Tampering</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1562.001">T1562.001</a>
-                    </td>
-                    <td class="attack-name">Disable Arbitrary Security Windows Service</td>
-                    <td class="attack-guid">a1230893-56ac-4c81-b644-2108e982f8f5</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sc_disable_service.yml">Service StartupType Change Via Sc.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1562.001">T1562.001</a>
-                    </td>
-                    <td class="attack-name">AMSI Bypass - AMSI InitFailed</td>
-                    <td class="attack-guid">695eed40-e949-40e5-b306-b4031e4154bd</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_amsi_init_failed_bypass.yml">Potential AMSI Bypass Via .NET Reflection</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1562.001">T1562.001</a>
-                    </td>
-                    <td class="attack-name">Unload Sysmon Filter Driver</td>
-                    <td class="attack-guid">811b3e76-c41b-430c-ac0d-e2380bfaa164</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_fltmc_unload_driver_sysmon.yml">Sysmon Driver Unloaded Via Fltmc.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_fltmc_unload_driver.yml">Filter Driver Unloaded Via Fltmc.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1562">T1562</a>
-                    </td>
-                    <td class="attack-name">Windows Disable LSA Protection</td>
-                    <td class="attack-guid">40075d5f-3a70-4c66-9125-f72bee87247d</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_lsa_ppl_protection_disabled.yml">LSA PPL Protection Disabled Via Reg.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1560.001">T1560.001</a>
-                    </td>
-                    <td class="attack-name">Compress Data and lock with password for Exfiltration with winzip</td>
-                    <td class="attack-guid">01df0353-d531-408d-a0c5-3161bf822134</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_winzip_password_compression.yml">Compress Data and Lock With Password for Exfiltration With WINZIP</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_dir_execution.yml">File And SubFolder Enumeration Via Dir Command</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1560.001">T1560.001</a>
-                    </td>
-                    <td class="attack-name">Compress Data and lock with password for Exfiltration with winrar</td>
-                    <td class="attack-guid">8dd61a55-44c6-43cc-af0c-8bdda276860c</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rar_compression_with_password.yml">Rar Usage with Password and Compression Level</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1555.004">T1555.004</a>
-                    </td>
-                    <td class="attack-name">Access Saved Credentials via VaultCmd</td>
-                    <td class="attack-guid">9c2dd36d-5c8b-4b29-8d72-a11b0d5d7439</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_vaultcmd_list_creds.yml">Windows Credential Manager Access via VaultCmd</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1555.003">T1555.003</a>
-                    </td>
-                    <td class="attack-name">Dump Chrome Login Data with esentutl</td>
-                    <td class="attack-guid">70422253-8198-4019-b617-6be401b49fce</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_esentutl_sensitive_file_copy.yml">Copying Sensitive Files with Credential Data</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1555.003">T1555.003</a>
-                    </td>
-                    <td class="attack-name">Simulating access to Windows Edge Login Data</td>
-                    <td class="attack-guid">a6a5ec26-a2d1-4109-9d35-58b867689329</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_browser_data.yml">Potential Browser Data Stealing</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1555.003">T1555.003</a>
-                    </td>
-                    <td class="attack-name">Simulating access to Windows Firefox Login Data</td>
-                    <td class="attack-guid">eb8da98a-2e16-4551-b3dd-83de49baa14c</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_browser_data.yml">Potential Browser Data Stealing</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1555.003">T1555.003</a>
-                    </td>
-                    <td class="attack-name">Simulating access to Opera Login Data</td>
-                    <td class="attack-guid">28498c17-57e4-495a-b0be-cc1e36de408b</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_browser_data.yml">Potential Browser Data Stealing</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1555.003">T1555.003</a>
-                    </td>
-                    <td class="attack-name">Simulating access to Chrome Login Data</td>
-                    <td class="attack-guid">3d111226-d09a-4911-8715-fe11664f960d</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_browser_data.yml">Potential Browser Data Stealing</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1555.003">T1555.003</a>
-                    </td>
-                    <td class="attack-name">LaZagne - Credentials from Browser</td>
-                    <td class="attack-guid">9a2915b3-3954-4cce-8c76-00fbf4dbd014</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_lazagne.yml">HackTool - LaZagne Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1555.003">T1555.003</a>
-                    </td>
-                    <td class="attack-name">Run Chrome-password Collector</td>
-                    <td class="attack-guid">8c05b133-d438-47ca-a630-19cc464c4622</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sysinternals_eula_accepted.yml">Potential Execution of Sysinternals Tools</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1555">T1555</a>
-                    </td>
-                    <td class="attack-name">Enumerate credentials from Windows Credential Manager using vaultcmd.exe [Web Credentials]</td>
-                    <td class="attack-guid">bc071188-459f-44d5-901a-f8f2625b2d2e</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_vaultcmd_list_creds.yml">Windows Credential Manager Access via VaultCmd</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1555">T1555</a>
-                    </td>
-                    <td class="attack-name">Enumerate credentials from Windows Credential Manager using vaultcmd.exe [Windows Credentials]</td>
-                    <td class="attack-guid">36753ded-e5c4-4eb5-bc3c-e8fba236878d</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_vaultcmd_list_creds.yml">Windows Credential Manager Access via VaultCmd</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1555">T1555</a>
-                    </td>
-                    <td class="attack-name">Dump credentials from Windows Credential Manager With PowerShell [web Credentials]</td>
-                    <td class="attack-guid">8fd5a296-6772-4766-9991-ff4e92af7240</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1555">T1555</a>
-                    </td>
-                    <td class="attack-name">Dump credentials from Windows Credential Manager With PowerShell [windows Credentials]</td>
-                    <td class="attack-guid">c89becbe-1758-4e7d-a0f4-97d2188a23e3</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1553.004">T1553.004</a>
-                    </td>
-                    <td class="attack-name">Add Root Certificate to CurrentUser Certificate Store</td>
-                    <td class="attack-guid">ca20a3f1-42b5-4e21-ad3f-1049199ec2e0</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1553.003">T1553.003</a>
-                    </td>
-                    <td class="attack-name">SIP (Subject Interface Package) Hijacking via Custom DLL</td>
-                    <td class="attack-guid">e12f5d8d-574a-4e9d-8a84-c0e8b4a8a675</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_regsvr32_susp_parent.yml">Scripting/CommandLine Process Spawned Regsvr32</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_regsvr32_susp_exec_path_2.yml">Regsvr32 Execution From Highly Suspicious Location</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1552.006">T1552.006</a>
-                    </td>
-                    <td class="attack-name">GPP Passwords (Get-GPPPassword)</td>
-                    <td class="attack-guid">e9584f82-322c-474a-b831-940fd8b4455c</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_malicious_cmdlets.yml">Malicious PowerShell Commandlets - ProcessCreation</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1552.004">T1552.004</a>
-                    </td>
-                    <td class="attack-name">Export Certificates with Mimikatz</td>
-                    <td class="attack-guid">290df60e-4b5d-4a5e-b0c7-dc5348ea0c86</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_mimikatz_command_line.yml">HackTool - Mimikatz Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1552.004">T1552.004</a>
-                    </td>
-                    <td class="attack-name">CertUtil ExportPFX</td>
-                    <td class="attack-guid">336b25bf-4514-4684-8924-474974f28137</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1552.002">T1552.002</a>
-                    </td>
-                    <td class="attack-name">Enumeration for PuTTY Credentials in Registry</td>
-                    <td class="attack-guid">af197fd7-e868-448e-9bd5-05d1bcd9d9e5</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_enumeration_for_credentials_in_registry.yml">Enumeration for Credentials in Registry</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_registry_enumeration_for_credentials_cli.yml">Enumeration for 3rd Party Creds From CLI</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1552.002">T1552.002</a>
-                    </td>
-                    <td class="attack-name">Enumeration for Credentials in Registry</td>
-                    <td class="attack-guid">b6ec082c-7384-46b3-a111-9a9b8b14e5e7</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_enumeration_for_credentials_in_registry.yml">Enumeration for Credentials in Registry</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1548.002">T1548.002</a>
-                    </td>
-                    <td class="attack-name">Bypass UAC using Fodhelper</td>
-                    <td class="attack-guid">58f641ea-12e3-499a-b684-44dee46bd182</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_open_command.yml">Suspicious Reg Add Open Command</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1547.009">T1547.009</a>
-                    </td>
-                    <td class="attack-name">Shortcut Modification</td>
-                    <td class="attack-guid">ce4fc678-364f-4282-af16-2fb4c78005ce</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_calc_uncommon_exec.yml">Suspicious Calculator Usage</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_redirection_susp_folder.yml">Potentially Suspicious CMD Shell Output Redirect</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1547.001">T1547.001</a>
-                    </td>
-                    <td class="attack-name">Creating Boot Verification Program Key for application execution during successful boot</td>
-                    <td class="attack-guid">6e1666d5-3f2b-4b9a-80aa-f011322380d4</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sc_service_tamper_for_persistence.yml">Potential Persistence Attempt Via Existing Service Tampering</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1547.001">T1547.001</a>
-                    </td>
-                    <td class="attack-name">Reg Key RunOnce</td>
-                    <td class="attack-guid">554cbd88-cde1-4b56-8168-0be552eed9eb</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_direct_asep_registry_keys_modification.yml">Direct Autorun Keys Modification</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_add_run_key.yml">Potential Persistence Attempt Via Run Keys Using Reg.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1547.001">T1547.001</a>
-                    </td>
-                    <td class="attack-name">Reg Key Run</td>
-                    <td class="attack-guid">e55be3fd-3521-4610-9d1a-e210e42dcf05</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_direct_asep_registry_keys_modification.yml">Direct Autorun Keys Modification</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_add_run_key.yml">Potential Persistence Attempt Via Run Keys Using Reg.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1547">T1547</a>
-                    </td>
-                    <td class="attack-name">Driver Installation Using pnputil.exe</td>
-                    <td class="attack-guid">5cb0b071-8a5a-412f-839d-116beb2ed9f7</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_lolbin_susp_driver_installed_by_pnputil.yml">Suspicious Driver Install by pnputil.exe</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1547">T1547</a>
-                    </td>
-                    <td class="attack-name">Add a driver</td>
-                    <td class="attack-guid">cb01b3da-b0e7-4e24-bf6d-de5223526785</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_lolbin_susp_driver_installed_by_pnputil.yml">Suspicious Driver Install by pnputil.exe</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1546.011">T1546.011</a>
-                    </td>
-                    <td class="attack-name">New shim database files created in the default shim database directory</td>
-                    <td class="attack-guid">aefd6866-d753-431f-a7a4-215ca7e3f13d</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1546.011">T1546.011</a>
-                    </td>
-                    <td class="attack-name">Application Shim Installation</td>
-                    <td class="attack-guid">9ab27e22-ee62-4211-962b-d36d9a0e6a18</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sdbinst_shim_persistence.yml">Potential Shim Database Persistence via Sdbinst.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1546.008">T1546.008</a>
-                    </td>
-                    <td class="attack-name">Create Symbolic Link From osk.exe to cmd.exe</td>
-                    <td class="attack-guid">51ef369c-5e87-4f33-88cd-6d61be63edf2</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_del_execution.yml">File Deletion Via Del</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_del_greedy_deletion.yml">Greedy File Deletion Using Del</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_mklink_osk_cmd.yml">Potential Privilege Escalation Using Symlink Between Osk and Cmd</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1546.008">T1546.008</a>
-                    </td>
-                    <td class="attack-name">Replace binary of sticky keys</td>
-                    <td class="attack-guid">934e90cf-29ca-48b3-863c-411737ad44e3</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_sticky_keys_replace.yml">Persistence Via Sticky Key Backdoor</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1546.007">T1546.007</a>
-                    </td>
-                    <td class="attack-name">Netsh Helper DLL Registration</td>
-                    <td class="attack-guid">3244697d-5a3a-4dfc-941c-550f69f91a4d</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_netsh_helper_dll_persistence.yml">Potential Persistence Via Netsh Helper DLL</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1546.002">T1546.002</a>
-                    </td>
-                    <td class="attack-name">Set Arbitrary Binary as Screensaver</td>
-                    <td class="attack-guid">281201e7-de41-4dc9-b73d-f288938cbb64</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1546.001">T1546.001</a>
-                    </td>
-                    <td class="attack-name">Change Default File Association</td>
-                    <td class="attack-guid">10a08978-2045-4d62-8c42-1957bbbea102</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_assoc_execution.yml">Change Default File Association Via Assoc</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1546">T1546</a>
-                    </td>
-                    <td class="attack-name">Persistence via ErrorHandler.cmd script execution</td>
-                    <td class="attack-guid">547a4736-dd1c-4b48-b4fe-e916190bb2e7</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1543.003">T1543.003</a>
-                    </td>
-                    <td class="attack-name">TinyTurla backdoor service w64time</td>
-                    <td class="attack-guid">ef0581fd-528e-4662-87bc-4c2affb86940</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sc_service_tamper_for_persistence.yml">Potential Persistence Attempt Via Existing Service Tampering</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1543.003">T1543.003</a>
-                    </td>
-                    <td class="attack-name">Service Installation PowerShell</td>
-                    <td class="attack-guid">491a4af6-a521-4b74-b23b-f7b3f1ee9e77</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_create_service.yml">New Service Creation Using PowerShell</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_service_creation.yml">Suspicious New Service Creation</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1543.003">T1543.003</a>
-                    </td>
-                    <td class="attack-name">Service Installation CMD</td>
-                    <td class="attack-guid">981e2942-e433-44e9-afc1-8c957a1496b6</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sc_create_service.yml">New Service Creation Using Sc.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_service_creation.yml">Suspicious New Service Creation</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1543.003">T1543.003</a>
-                    </td>
-                    <td class="attack-name">Modify Fax service to run PowerShell</td>
-                    <td class="attack-guid">ed366cde-7d12-49df-a833-671904770b9f</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sc_service_tamper_for_persistence.yml">Potential Persistence Attempt Via Existing Service Tampering</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sc_service_path_modification.yml">Suspicious Service Path Modification</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1518.001">T1518.001</a>
-                    </td>
-                    <td class="attack-name">Security Software Discovery - AV Discovery via WMI</td>
-                    <td class="attack-guid">1553252f-14ea-4d3b-8a08-d7a4211aa945</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_recon_product_class.yml">Potential Product Class Reconnaissance Via Wmic.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_recon_product.yml">Potential Product Reconnaissance Via Wmic.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1518.001">T1518.001</a>
-                    </td>
-                    <td class="attack-name">Security Software Discovery - Sysmon Service</td>
-                    <td class="attack-guid">fe613cf3-8009-4446-9a0f-bc78a15b66c9</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_findstr_sysmon_discovery_via_default_altitude.yml">Sysmon Discovery Via Default Driver Altitude Using Findstr.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1518.001">T1518.001</a>
-                    </td>
-                    <td class="attack-name">Security Software Discovery</td>
-                    <td class="attack-guid">f92a380f-ced9-491f-b338-95a991418ce2</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_findstr_recon_pipe_output.yml">Recon Command Output Piped To Findstr.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_tasklist_basic_execution.yml">Suspicious Tasklist Discovery Command</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1518">T1518</a>
-                    </td>
-                    <td class="attack-name">Find and Display Internet Explorer Browser Version</td>
-                    <td class="attack-guid">68981660-6670-47ee-a5fa-7e74806420a4</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_software_discovery.yml">Detected Windows Software Discovery</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1505.003">T1505.003</a>
-                    </td>
-                    <td class="attack-name">Web Shell Written to Disk</td>
-                    <td class="attack-guid">0a2ce662-1efa-496f-a472-2fe7b080db16</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1505.002">T1505.002</a>
-                    </td>
-                    <td class="attack-name">Install MS Exchange Transport Agent Persistence</td>
-                    <td class="attack-guid">43e92449-ff60-46e9-83a3-1a38089df94d</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_msexchange_transport_agent.yml">MSExchange Transport Agent Installation</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1490">T1490</a>
-                    </td>
-                    <td class="attack-name">Modify VSS Service Permissions</td>
-                    <td class="attack-guid">a4420f93-5386-4290-b780-f4f66abc7070</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sc_sdset_allow_service_changes.yml">Allow Service Access Using Security Descriptor Tampering Via Sc.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sc_sdset_modification.yml">Service Security Descriptor Tampering Via Sc.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sc_sdset_deny_service_access.yml">Deny Service Access Using Security Descriptor Tampering Via Sc.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1490">T1490</a>
-                    </td>
-                    <td class="attack-name">Windows - vssadmin Resize Shadowstorage Volume</td>
-                    <td class="attack-guid">da558b07-69ae-41b9-b9d4-4d98154a7049</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_shadow_copies_deletion.yml">Shadow Copies Deletion Using Operating Systems Utilities</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1490">T1490</a>
-                    </td>
-                    <td class="attack-name">Windows - Disable the SR scheduled task</td>
-                    <td class="attack-guid">1c68c68d-83a4-4981-974e-8993055fa034</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_schtasks_disable.yml">Disable Important Scheduled Task</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1490">T1490</a>
-                    </td>
-                    <td class="attack-name">Windows - Delete Backup Files</td>
-                    <td class="attack-guid">6b1dbaf6-cc8a-4ea6-891f-6058569653bf</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_del_execution.yml">File Deletion Via Del</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1490">T1490</a>
-                    </td>
-                    <td class="attack-name">Windows - Delete Volume Shadow Copies via WMI with PowerShell</td>
-                    <td class="attack-guid">39a295ca-7059-4a88-86f6-09556c1211e7</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_shadow_copies_deletion.yml">Shadow Copies Deletion Using Operating Systems Utilities</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_shadowcopy_deletion.yml">Deletion of Volume Shadow Copies via WMI with PowerShell</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1490">T1490</a>
-                    </td>
-                    <td class="attack-name">Windows - Disable Windows Recovery Console Repair</td>
-                    <td class="attack-guid">cf21060a-80b3-4238-a595-22525de4ab81</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_bcdedit_boot_conf_tamper.yml">Boot Configuration Tampering Via Bcdedit.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1490">T1490</a>
-                    </td>
-                    <td class="attack-name">Windows - Delete Volume Shadow Copies via WMI</td>
-                    <td class="attack-guid">6a3ff8dd-f49c-4272-a658-11c2fe58bd88</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_shadow_copies_deletion.yml">Shadow Copies Deletion Using Operating Systems Utilities</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1490">T1490</a>
-                    </td>
-                    <td class="attack-name">Windows - Delete Volume Shadow Copies</td>
-                    <td class="attack-guid">43819286-91a9-4369-90ed-d31fb4da2c01</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_shadow_copies_deletion.yml">Shadow Copies Deletion Using Operating Systems Utilities</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1489">T1489</a>
-                    </td>
-                    <td class="attack-name">Windows - Stop service by killing process</td>
-                    <td class="attack-guid">f3191b84-c38b-400b-867e-3a217a27795f</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_taskkill_execution.yml">Process Terminated Via Taskkill</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1489">T1489</a>
-                    </td>
-                    <td class="attack-name">Windows - Stop service using net.exe</td>
-                    <td class="attack-guid">41274289-ec9c-4213-bea4-e43c4aa57954</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_net_execution.yml">Net.EXE Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_net_stop_service.yml">Stop Windows Service Via Net.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1489">T1489</a>
-                    </td>
-                    <td class="attack-name">Windows - Stop service using Service Controller</td>
-                    <td class="attack-guid">21dfb440-830d-4c86-a3e5-2a491d5a8d04</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sc_stop_service.yml">Stop Windows Service Via Sc.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1486">T1486</a>
-                    </td>
-                    <td class="attack-name">PureLocker Ransom Note</td>
-                    <td class="attack-guid">649349c7-9abf-493b-a7a2-b1aa4d141528</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_redirection_susp_folder.yml">Potentially Suspicious CMD Shell Output Redirect</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1485">T1485</a>
-                    </td>
-                    <td class="attack-name">Overwrite deleted data on C drive</td>
-                    <td class="attack-guid">321fd25e-0007-417f-adec-33232252be19</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cipher_overwrite_deleted_data.yml">Deleted Data Overwritten Via Cipher.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1482">T1482</a>
-                    </td>
-                    <td class="attack-name">Adfind - Enumerate Active Directory Trusts</td>
-                    <td class="attack-guid">15fe436d-e771-4ff3-b655-2dca9ba52834</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_pua_adfind_susp_usage.yml">PUA - AdFind Suspicious Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1482">T1482</a>
-                    </td>
-                    <td class="attack-name">Windows - Discover domain trusts with nltest</td>
-                    <td class="attack-guid">2e22641d-0498-48d2-b9ff-c71e496ccdbe</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_nltest_recon.yml">Potential Recon Activity Via Nltest.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_nltest_execution.yml">Nltest.EXE Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1222.001">T1222.001</a>
-                    </td>
-                    <td class="attack-name">Grant Full Access to folder for Everyone - Ryuk Ransomware Style</td>
-                    <td class="attack-guid">ac7e6118-473d-41ec-9ac0-ef4f1d1ed2f6</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_susp_file_permission_modifications.yml">File or Folder Permissions Modifications</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1222.001">T1222.001</a>
-                    </td>
-                    <td class="attack-name">attrib - hide file</td>
-                    <td class="attack-guid">32b979da-7b68-42c9-9a99-0e39900fc36c</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_redirection_susp_folder.yml">Potentially Suspicious CMD Shell Output Redirect</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1222.001">T1222.001</a>
-                    </td>
-                    <td class="attack-name">attrib - Remove read-only attribute</td>
-                    <td class="attack-guid">bec1e95c-83aa-492e-ab77-60c71bbd21b0</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_susp_file_permission_modifications.yml">File or Folder Permissions Modifications</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1222.001">T1222.001</a>
-                    </td>
-                    <td class="attack-name">cacls - Grant permission to specified user or group recursively</td>
-                    <td class="attack-guid">a8206bcc-f282-40a9-a389-05d9c0263485</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_susp_file_permission_modifications.yml">File or Folder Permissions Modifications</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1222.001">T1222.001</a>
-                    </td>
-                    <td class="attack-name">Take ownership using takeown utility</td>
-                    <td class="attack-guid">98d34bb4-6e75-42ad-9c41-1dae7dc6a001</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_takeown_recursive_own.yml">Suspicious Recursive Takeown</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_susp_file_permission_modifications.yml">File or Folder Permissions Modifications</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1222">T1222</a>
-                    </td>
-                    <td class="attack-name">Enable Local and Remote Symbolic Links via fsutil</td>
-                    <td class="attack-guid">6c4ac96f-d4fa-44f4-83ca-56d8f4a55c02</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_fsutil_symlinkevaluation.yml">Fsutil Behavior Set SymlinkEvaluation</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1220">T1220</a>
-                    </td>
-                    <td class="attack-name">WMIC bypass using remote XSL file</td>
-                    <td class="attack-guid">7f5be499-33be-4129-a560-66021f379b9b</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_xsl_script_processing.yml">XSL Script Execution Via WMIC.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_recon_process.yml">Process Reconnaissance Via Wmic.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1220">T1220</a>
-                    </td>
-                    <td class="attack-name">WMIC bypass using local XSL file</td>
-                    <td class="attack-guid">1b237334-3e21-4a0c-8178-b8c996124988</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_xsl_script_processing.yml">XSL Script Execution Via WMIC.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_recon_process.yml">Process Reconnaissance Via Wmic.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.011">T1218.011</a>
-                    </td>
-                    <td class="attack-name">Rundll32 execute payload by calling RouteTheCall</td>
-                    <td class="attack-guid">8a7f56ee-10e7-444c-a139-0109438288eb</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_susp_activity.yml">Potentially Suspicious Rundll32 Activity</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_powershell_susp_child_processes.yml">Potentially Suspicious PowerShell Child Processes</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.011">T1218.011</a>
-                    </td>
-                    <td class="attack-name">Rundll32 execute command via FileProtocolHandler</td>
-                    <td class="attack-guid">f3ad3c5b-1db1-45c1-81bf-d3370ebab6c8</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_susp_activity.yml">Potentially Suspicious Rundll32 Activity</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.011">T1218.011</a>
-                    </td>
-                    <td class="attack-name">Running DLL with .init extension and function</td>
-                    <td class="attack-guid">2d5029f0-ae20-446f-8811-e7511b58e8b6</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_uncommon_dll_extension.yml">Rundll32 Execution With Uncommon DLL Extension</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.011">T1218.011</a>
-                    </td>
-                    <td class="attack-name">Rundll32 with desk.cpl</td>
-                    <td class="attack-guid">83a95136-a496-423c-81d3-1c6750133917</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir_lolbin.yml">LOL-Binary Copied From System Directory</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_installscreensaver.yml">Rundll32 InstallScreenSaver Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_calc_uncommon_exec.yml">Suspicious Calculator Usage</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.011">T1218.011</a>
-                    </td>
-                    <td class="attack-name">Launches an executable using Rundll32 and pcwutl.dll</td>
-                    <td class="attack-guid">9f5d081a-ee5a-42f9-a04e-b7bdc487e676</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_susp_activity.yml">Potentially Suspicious Rundll32 Activity</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_lolbin_pcwutl.yml">Code Execution via Pcwutl.dll</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.011">T1218.011</a>
-                    </td>
-                    <td class="attack-name">Execution of HTA and VBS Files using Rundll32 and URL.dll</td>
-                    <td class="attack-guid">22cfde89-befe-4e15-9753-47306b37a6e3</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_susp_activity.yml">Potentially Suspicious Rundll32 Activity</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.011">T1218.011</a>
-                    </td>
-                    <td class="attack-name">Rundll32 execute VBscript command</td>
-                    <td class="attack-guid">638730e7-7aed-43dc-bf8c-8117f805f5bb</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_mshta_inline_vbscript.yml">Wscript Shell Run In CommandLine</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_mshtml_runhtmlapplication.yml">Mshtml.DLL RunHTMLApplication Suspicious Usage</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_uncommon_dll_extension.yml">Rundll32 Execution With Uncommon DLL Extension</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.011">T1218.011</a>
-                    </td>
-                    <td class="attack-name">Rundll32 execute JavaScript Remote Payload With GetObject</td>
-                    <td class="attack-guid">57ba4ce9-ee7a-4f27-9928-3c70c489b59d</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_mshtml_runhtmlapplication.yml">Mshtml.DLL RunHTMLApplication Suspicious Usage</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_uncommon_dll_extension.yml">Rundll32 Execution With Uncommon DLL Extension</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.010">T1218.010</a>
-                    </td>
-                    <td class="attack-name">Regsvr32 Silent DLL Install Call DllRegisterServer</td>
-                    <td class="attack-guid">9d71c492-ea2e-4c08-af16-c6994cdf029f</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_regsvr32_susp_parent.yml">Scripting/CommandLine Process Spawned Regsvr32</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_regsvr32_susp_exec_path_2.yml">Regsvr32 Execution From Highly Suspicious Location</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.007">T1218.007</a>
-                    </td>
-                    <td class="attack-name">Msiexec.exe - Execute Local MSI file with an embedded EXE</td>
-                    <td class="attack-guid">ed3fa08a-ca18-4009-973e-03d13014d0e8</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_msiexec_install_quiet.yml">Msiexec Quiet Installation</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.007">T1218.007</a>
-                    </td>
-                    <td class="attack-name">Msiexec.exe - Execute Local MSI file with an embedded DLL</td>
-                    <td class="attack-guid">628fa796-76c5-44c3-93aa-b9d8214fd568</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_msiexec_install_quiet.yml">Msiexec Quiet Installation</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.007">T1218.007</a>
-                    </td>
-                    <td class="attack-name">Msiexec.exe - Execute Local MSI file with embedded VBScript</td>
-                    <td class="attack-guid">8d73c7b0-c2b1-4ac1-881a-4aa644f76064</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_msiexec_install_quiet.yml">Msiexec Quiet Installation</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.007">T1218.007</a>
-                    </td>
-                    <td class="attack-name">Msiexec.exe - Execute Local MSI file with embedded JScript</td>
-                    <td class="attack-guid">a059b6c4-e7d6-4b2e-bcd7-9b2b33191a04</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_msiexec_install_quiet.yml">Msiexec Quiet Installation</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.005">T1218.005</a>
-                    </td>
-                    <td class="attack-name">Mshta used to Execute PowerShell</td>
-                    <td class="attack-guid">8707a805-2b76-4f32-b1c0-14e558205772</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_stdin_redirect.yml">Read Contents From Stdin Via Cmd.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_mshta_susp_execution.yml">MSHTA Suspicious Execution 01</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_mshta_inline_vbscript.yml">Wscript Shell Run In CommandLine</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.005">T1218.005</a>
-                    </td>
-                    <td class="attack-name">Mshta executes VBScript to execute malicious command</td>
-                    <td class="attack-guid">906865c3-e05f-4acc-85c4-fbc185455095</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_mshta_susp_execution.yml">MSHTA Suspicious Execution 01</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_mshta_inline_vbscript.yml">Wscript Shell Run In CommandLine</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.005">T1218.005</a>
-                    </td>
-                    <td class="attack-name">Mshta executes JavaScript Scheme Fetch Remote Payload With GetObject</td>
-                    <td class="attack-guid">1483fab9-4f52-4217-a9ce-daa9d7747cae</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_mshta_http.yml">Remotely Hosted HTA File Executed Via Mshta.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_mshta_javascript.yml">Suspicious JavaScript Execution Via Mshta.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.003">T1218.003</a>
-                    </td>
-                    <td class="attack-name">CMSTP Executing UAC Bypass</td>
-                    <td class="attack-guid">748cb4f6-2fb3-4e97-b7ad-b22635a09ab0</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_uac_bypass_cmstp.yml">Bypass UAC via CMSTP</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.003">T1218.003</a>
-                    </td>
-                    <td class="attack-name">CMSTP Executing Remote Scriptlet</td>
-                    <td class="attack-guid">34e63321-9683-496b-bbc1-7566bc55e624</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_uac_bypass_cmstp.yml">Bypass UAC via CMSTP</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218">T1218</a>
-                    </td>
-                    <td class="attack-name">System Binary Proxy Execution - Wlrmdr Lolbin</td>
-                    <td class="attack-guid">7816c252-b728-4ea6-a683-bd9441ca0b71</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wlrmdr_uncommon_child_process.yml">Wlrmdr.EXE Uncommon Argument Or Child Process</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218">T1218</a>
-                    </td>
-                    <td class="attack-name">Provlaunch.exe Executes Arbitrary Command via Registry Key</td>
-                    <td class="attack-guid">ab76e34f-28bf-441f-a39c-8db4835b89cc</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_registry_provlaunch_provisioning_command.yml">Potential Provisioning Registry Key Abuse For Binary Proxy Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218">T1218</a>
-                    </td>
-                    <td class="attack-name">Lolbas ie4uinit.exe use as proxy</td>
-                    <td class="attack-guid">13c0804e-615e-43ad-b223-2dfbacd0b0b3</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218">T1218</a>
-                    </td>
-                    <td class="attack-name">Lolbin Gpscript startup option</td>
-                    <td class="attack-guid">f8da74bb-21b8-4af9-8d84-f2c8e4a220e3</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_lolbin_gpscript.yml">Gpscript Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218">T1218</a>
-                    </td>
-                    <td class="attack-name">Lolbin Gpscript logon option</td>
-                    <td class="attack-guid">5bcda9cd-8e85-48fa-861d-b5a85d91d48c</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_lolbin_gpscript.yml">Gpscript Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218">T1218</a>
-                    </td>
-                    <td class="attack-name">Load Arbitrary DLL via Wuauclt (Windows Update Client)</td>
-                    <td class="attack-guid">49fbd548-49e9-4bb7-94a6-3769613912b8</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wuauclt_dll_loading.yml">Proxy Execution Via Wuauclt.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218">T1218</a>
-                    </td>
-                    <td class="attack-name">Invoke-ATHRemoteFXvGPUDisablementCommand base test</td>
-                    <td class="attack-guid">9ebe7901-7edf-45c0-b5c7-8366300919db</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_remotefxvgpudisablement_abuse.yml">RemoteFXvGPUDisablement Abuse Via AtomicTestHarnesses</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218">T1218</a>
-                    </td>
-                    <td class="attack-name">Microsoft.Workflow.Compiler.exe Payload Execution</td>
-                    <td class="attack-guid">7cbb0f26-a4c1-4f77-b180-a009aa05637e</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_microsoft_workflow_compiler_execution.yml">Microsoft Workflow Compiler Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218">T1218</a>
-                    </td>
-                    <td class="attack-name">InfDefaultInstall.exe .inf Execution</td>
-                    <td class="attack-guid">54ad7d5a-a1b5-472c-b6c4-f8090fb2daef</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_infdefaultinstall_execute_sct_scripts.yml">InfDefaultInstall.exe .inf Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218">T1218</a>
-                    </td>
-                    <td class="attack-name">Register-CimProvider - Execute evil dll</td>
-                    <td class="attack-guid">ad2c17ed-f626-4061-b21e-b9804a6f3655</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_registry_cimprovider_dll_load.yml">DLL Execution Via Register-cimprovider.exe</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1217">T1217</a>
-                    </td>
-                    <td class="attack-name">List Internet Explorer Bookmarks using the command prompt</td>
-                    <td class="attack-guid">727dbcdb-e495-4ab1-a6c4-80c7f77aef85</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_dir_execution.yml">File And SubFolder Enumeration Via Dir Command</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1217">T1217</a>
-                    </td>
-                    <td class="attack-name">List Mozilla Firefox bookmarks on Windows with command prompt</td>
-                    <td class="attack-guid">4312cdbc-79fc-4a9c-becc-53d49c734bc5</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_where_browser_data_recon.yml">Suspicious Where Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1217">T1217</a>
-                    </td>
-                    <td class="attack-name">List Google Chrome / Edge Chromium Bookmarks on Windows with command prompt</td>
-                    <td class="attack-guid">76f71e2f-480e-4bed-b61e-398fe17499d5</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_where_browser_data_recon.yml">Suspicious Where Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1216.001">T1216.001</a>
-                    </td>
-                    <td class="attack-name">PubPrn.vbs Signed Script Bypass</td>
-                    <td class="attack-guid">9dd29a1f-1e16-4862-be83-913b10a88f6c</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_lolbin_pubprn.yml">Pubprn.vbs Proxy Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_wscript_cscript_script_exec.yml">WSF/JSE/JS/VBA/VBE File Execution Via Cscript/Wscript</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1216">T1216</a>
-                    </td>
-                    <td class="attack-name">manage-bde.wsf Signed Script Command Execution</td>
-                    <td class="attack-guid">2a8f2d3c-3dec-4262-99dd-150cb2a4d63a</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_wscript_cscript_script_exec.yml">WSF/JSE/JS/VBA/VBE File Execution Via Cscript/Wscript</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_calc_uncommon_exec.yml">Suspicious Calculator Usage</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1204.002">T1204.002</a>
-                    </td>
-                    <td class="attack-name">LNK Payload Download</td>
-                    <td class="attack-guid">581d7521-9c4b-420e-9695-2aec5241167f</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invoke_webrequest_download.yml">Suspicious Invoke-WebRequest Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1204.002">T1204.002</a>
-                    </td>
-                    <td class="attack-name">Potentially Unwanted Applications (PUA)</td>
-                    <td class="attack-guid">02f35d62-9fdc-4a97-b899-a5d9a876d295</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invoke_webrequest_download.yml">Suspicious Invoke-WebRequest Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1204.002">T1204.002</a>
-                    </td>
-                    <td class="attack-name">OSTap Payload Download</td>
-                    <td class="attack-guid">3f3af983-118a-4fa1-85d3-ba4daa739d80</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_redirection_susp_folder.yml">Potentially Suspicious CMD Shell Output Redirect</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1202">T1202</a>
-                    </td>
-                    <td class="attack-name">Indirect Command Execution - Scriptrunner.exe</td>
-                    <td class="attack-guid">0fd14730-6226-4f5e-8d67-43c65f1be940</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_powershell_susp_child_processes.yml">Potentially Suspicious PowerShell Child Processes</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_lolbin_scriptrunner.yml">Use of Scriptrunner.exe</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1202">T1202</a>
-                    </td>
-                    <td class="attack-name">Indirect Command Execution - forfiles.exe</td>
-                    <td class="attack-guid">8b34a448-40d9-4fc3-a8c8-4bb286faf7dc</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_forfiles_proxy_execution_.yml">Forfiles Command Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1202">T1202</a>
-                    </td>
-                    <td class="attack-name">Indirect Command Execution - pcalua.exe</td>
-                    <td class="attack-guid">cecfea7a-5f03-4cdd-8bc8-6f7c22862440</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_lolbin_pcalua.yml">Use of Pcalua For Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1201">T1201</a>
-                    </td>
-                    <td class="attack-name">Use of SecEdit.exe to export the local security policy (including the password policy)</td>
-                    <td class="attack-guid">510cc97f-56ac-4cd3-a198-d3218c23d889</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_secedit_execution.yml">Potential Suspicious Activity Using SeCEdit</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1201">T1201</a>
-                    </td>
-                    <td class="attack-name">Examine local password policy - Windows</td>
-                    <td class="attack-guid">4588d243-f24e-4549-b2e3-e627acc089f6</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_net_execution.yml">Net.EXE Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1187">T1187</a>
-                    </td>
-                    <td class="attack-name">Trigger an authenticated RPC call to a target server with no Sign flag set</td>
-                    <td class="attack-guid">81cfdd7f-1f41-4cc5-9845-bb5149438e37</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rpcping_credential_capture.yml">Capture Credentials with Rpcping.exe</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_encode.yml">Suspicious Execution of Powershell with Base64</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1187">T1187</a>
-                    </td>
-                    <td class="attack-name">PetitPotam</td>
-                    <td class="attack-guid">485ce873-2e65-4706-9c7e-ae3ab9e14213</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_relay_attacks_tools.yml">Potential SMB Relay Attack Tool Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1140">T1140</a>
-                    </td>
-                    <td class="attack-name">Certutil Rename and Decode</td>
-                    <td class="attack-guid">71abc534-3c05-4d0c-80f7-cbe93cb2aa94</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir_lolbin.yml">LOL-Binary Copied From System Directory</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_calc_uncommon_exec.yml">Suspicious Calculator Usage</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1140">T1140</a>
-                    </td>
-                    <td class="attack-name">Deobfuscate/Decode Files Or Information</td>
-                    <td class="attack-guid">dc6fe391-69e6-4506-bd06-ea5eeb4082f8</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_calc_uncommon_exec.yml">Suspicious Calculator Usage</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1137">T1137</a>
-                    </td>
-                    <td class="attack-name">Office Application Startup - Outlook as a C2</td>
-                    <td class="attack-guid">bfe6ac15-c50b-4c4f-a186-0fc6b8ba936c</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_redirection_susp_folder.yml">Potentially Suspicious CMD Shell Output Redirect</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1135">T1135</a>
-                    </td>
-                    <td class="attack-name">PowerView ShareFinder</td>
-                    <td class="attack-guid">d07e4cc1-98ae-447e-9d31-36cb430d28c4</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_malicious_cmdlets.yml">Malicious PowerShell Commandlets - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_progname.yml">Suspicious Program Names</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_powershell_import_module.yml">Import New Module Via PowerShell CommandLine</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1135">T1135</a>
-                    </td>
-                    <td class="attack-name">View available share drives</td>
-                    <td class="attack-guid">ab39a04f-0c93-4540-9ff2-83f862c385ae</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_net_execution.yml">Net.EXE Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1135">T1135</a>
-                    </td>
-                    <td class="attack-name">Network Share Discovery command prompt</td>
-                    <td class="attack-guid">20f1097d-81c1-405c-8380-32174d493bbb</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_net_use_mount_share.yml">Windows Share Mount Via Net.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1134.004">T1134.004</a>
-                    </td>
-                    <td class="attack-name">Parent PID Spoofing - Spawn from Specified Process</td>
-                    <td class="attack-guid">cbbff285-9051-444a-9d17-c07cd2d230eb</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_weak_or_abused_passwords.yml">Weak or Abused Passwords In CLI</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1127">T1127</a>
-                    </td>
-                    <td class="attack-name">Lolbin Jsc.exe compile javascript to dll</td>
-                    <td class="attack-guid">3fc9fea2-871d-414d-8ef6-02e85e322b80</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1127">T1127</a>
-                    </td>
-                    <td class="attack-name">Lolbin Jsc.exe compile javascript to exe</td>
-                    <td class="attack-guid">1ec1c269-d6bd-49e7-b71b-a461f7fa7bc8</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1124">T1124</a>
-                    </td>
-                    <td class="attack-name">System Time Discovery</td>
-                    <td class="attack-guid">20aba24b-e61f-4b26-b4ce-4784f763ca20</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_net_use_mount_share.yml">Windows Share Mount Via Net.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_remote_time_discovery.yml">Discovery of a System Time</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1123">T1123</a>
-                    </td>
-                    <td class="attack-name">using device audio capture commandlet</td>
-                    <td class="attack-guid">9c3ad250-b185-4444-b5a9-d69218a10c95</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_audio_capture.yml">Audio Capture via PowerShell</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1120">T1120</a>
-                    </td>
-                    <td class="attack-name">Peripheral Device Discovery via fsutil</td>
-                    <td class="attack-guid">424e18fd-48b8-4201-8d3a-bf591523a686</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_fsutil_drive_enumeration.yml">Fsutil Drive Enumeration</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1119">T1119</a>
-                    </td>
-                    <td class="attack-name">Recon information for export with Command Prompt</td>
-                    <td class="attack-guid">aa1180e2-f329-4e1e-8625-2472ec0bfaf3</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_redirection_susp_folder.yml">Potentially Suspicious CMD Shell Output Redirect</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1119">T1119</a>
-                    </td>
-                    <td class="attack-name">Automated Collection Command Prompt</td>
-                    <td class="attack-guid">cb379146-53f1-43e0-b884-7ce2c635ff5b</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_automated_collection.yml">Automated Collection Command Prompt</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_redirection_susp_folder.yml">Potentially Suspicious CMD Shell Output Redirect</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_dir_execution.yml">File And SubFolder Enumeration Via Dir Command</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1115">T1115</a>
-                    </td>
-                    <td class="attack-name">Utilize Clipboard to store or execute commands from</td>
-                    <td class="attack-guid">0cd14633-58d4-4422-9ede-daa2c9474ae7</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_stdin_redirect.yml">Read Contents From Stdin Via Cmd.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_redirection_susp_folder.yml">Potentially Suspicious CMD Shell Output Redirect</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1113">T1113</a>
-                    </td>
-                    <td class="attack-name">Windows Recall Feature Enabled - DisableAIDataAnalysis Value Deleted</td>
-                    <td class="attack-guid">5a496325-0115-4274-8eb9-755b649ad0fb</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_enable_windows_recall.yml">Windows Recall Feature Enabled Via Reg.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
-                    </td>
-                    <td class="attack-name">Modify UseTPMKeyPIN Registry entry</td>
-                    <td class="attack-guid">02d8b9f7-1a51-4011-8901-2d55cca667f9</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_bitlocker.yml">Suspicious Reg Add BitLocker</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
-                    </td>
-                    <td class="attack-name">Modify UseTPMKey Registry entry</td>
-                    <td class="attack-guid">c8480c83-a932-446e-a919-06a1fd1e512a</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_bitlocker.yml">Suspicious Reg Add BitLocker</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
-                    </td>
-                    <td class="attack-name">Modify UseTPMPIN Registry entry</td>
-                    <td class="attack-guid">10b33fb0-c58b-44cd-8599-b6da5ad6384c</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_bitlocker.yml">Suspicious Reg Add BitLocker</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
-                    </td>
-                    <td class="attack-name">Modify EnableBDEWithNoTPM Registry entry</td>
-                    <td class="attack-guid">bacb3e73-8161-43a9-8204-a69fe0e4b482</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_bitlocker.yml">Suspicious Reg Add BitLocker</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
-                    </td>
-                    <td class="attack-name">Requires the BitLocker PIN for Pre-boot authentication</td>
-                    <td class="attack-guid">26fc7375-a551-4336-90d7-3f2817564304</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_bitlocker.yml">Suspicious Reg Add BitLocker</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
-                    </td>
-                    <td class="attack-name">Disable Windows Remote Desktop Protocol</td>
-                    <td class="attack-guid">5f8e36de-37ca-455e-b054-a2584f043c06</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_rdp_keys_tamper.yml">Potential Tampering With RDP Related Registry Keys Via Reg.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
-                    </td>
-                    <td class="attack-name">Enable RDP via Registry (fDenyTSConnections)</td>
-                    <td class="attack-guid">16bdbe52-371c-4ccf-b708-79fba61f1db4</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_rdp_keys_tamper.yml">Potential Tampering With RDP Related Registry Keys Via Reg.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
-                    </td>
-                    <td class="attack-name">Activities To Disable Microsoft [FIDO Aka Fast IDentity Online] Authentication Detected By Modified Registry Value.</td>
-                    <td class="attack-guid">ffeddced-bb9f-49c6-97f0-3d07a509bf94</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_susp_paths.yml">Reg Add Suspicious Paths</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_windows_defender_tamper.yml">Suspicious Windows Defender Registry Key Tampering Via Reg.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
-                    </td>
-                    <td class="attack-name">Modify Internet Zone Protocol Defaults in Current User Registry - cmd</td>
-                    <td class="attack-guid">c88ef166-50fa-40d5-a80c-e2b87d4180f7</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_registry_ie_security_zone_protocol_defaults_downgrade.yml">IE ZoneMap Setting Downgraded To MyComputer Zone For HTTP Protocols Via CLI</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
-                    </td>
-                    <td class="attack-name">Tamper Win Defender Protection</td>
-                    <td class="attack-guid">3b625eaa-c10d-4635-af96-3eae7d2a2f3c</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_susp_paths.yml">Reg Add Suspicious Paths</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_windows_defender_tamper.yml">Suspicious Windows Defender Registry Key Tampering Via Reg.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
-                    </td>
-                    <td class="attack-name">Enabling Remote Desktop Protocol via Remote Registry</td>
-                    <td class="attack-guid">e3ad8e83-3089-49ff-817f-e52f8c948090</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_rdp_keys_tamper.yml">Potential Tampering With RDP Related Registry Keys Via Reg.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
-                    </td>
-                    <td class="attack-name">Mimic Ransomware - Allow Multiple RDP Sessions per User</td>
-                    <td class="attack-guid">35727d9e-7a7f-4d0c-a259-dc3906d6e8b9</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_rdp_keys_tamper.yml">Potential Tampering With RDP Related Registry Keys Via Reg.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
-                    </td>
-                    <td class="attack-name">Disable Windows Error Reporting Settings</td>
-                    <td class="attack-guid">d2c9e41e-cd86-473d-980d-b6403562e3e1</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_susp_paths.yml">Reg Add Suspicious Paths</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_windows_defender_tamper.yml">Suspicious Windows Defender Registry Key Tampering Via Reg.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
-                    </td>
-                    <td class="attack-name">Ursnif Malware Registry Key Creation</td>
-                    <td class="attack-guid">c375558d-7c25-45e9-bd64-7b23a97c1db0</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_susp_paths.yml">Reg Add Suspicious Paths</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
-                    </td>
-                    <td class="attack-name">NetWire RAT Registry Key Creation</td>
-                    <td class="attack-guid">65704cd4-6e36-4b90-b6c1-dc29a82c8e56</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_add_run_key.yml">Potential Persistence Attempt Via Run Keys Using Reg.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
-                    </td>
-                    <td class="attack-name">Suppress Win Defender Notifications</td>
-                    <td class="attack-guid">c30dada3-7777-4590-b970-dc890b8cf113</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_susp_paths.yml">Reg Add Suspicious Paths</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_windows_defender_tamper.yml">Suspicious Windows Defender Registry Key Tampering Via Reg.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
-                    </td>
-                    <td class="attack-name">Windows Add Registry Value to Load Service in Safe Mode with Network</td>
-                    <td class="attack-guid">c173c948-65e5-499c-afbe-433722ed5bd4</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_add_safeboot.yml">Add SafeBoot Keys Via Reg Utility</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
-                    </td>
-                    <td class="attack-name">Windows Add Registry Value to Load Service in Safe Mode without Network</td>
-                    <td class="attack-guid">1dd59fb3-1cb3-4828-805d-cf80b4c3bbb5</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_add_safeboot.yml">Add SafeBoot Keys Via Reg Utility</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
-                    </td>
-                    <td class="attack-name">Windows Powershell Logging Disabled</td>
-                    <td class="attack-guid">95b25212-91a7-42ff-9613-124aca6845a8</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
-                    </td>
-                    <td class="attack-name">Modify registry to store logon credentials</td>
-                    <td class="attack-guid">c0413fb5-33e2-40b7-9b6f-60b29f4a7a18</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_susp_paths.yml">Reg Add Suspicious Paths</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
-                    </td>
-                    <td class="attack-name">Modify Registry of Local Machine - cmd</td>
-                    <td class="attack-guid">282f929a-6bc5-42b8-bd93-960c3ba35afe</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_direct_asep_registry_keys_modification.yml">Direct Autorun Keys Modification</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_add_run_key.yml">Potential Persistence Attempt Via Run Keys Using Reg.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1110.001">T1110.001</a>
-                    </td>
-                    <td class="attack-name">Password Brute User using Kerbrute Tool</td>
-                    <td class="attack-guid">59dbeb1a-79a7-4c2a-baf4-46d0f4c761c4</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_ntfs_short_name_path_use_cli.yml">Use Short Name Path in Command Line</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1105">T1105</a>
-                    </td>
-                    <td class="attack-name">iwr or Invoke Web-Request download</td>
-                    <td class="attack-guid">c01cad7f-7a4c-49df-985e-b190dcf6a279</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_script_exec_from_temp.yml">Suspicious Script Execution From Temp Folder</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invoke_webrequest_download.yml">Suspicious Invoke-WebRequest Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1105">T1105</a>
-                    </td>
-                    <td class="attack-name">Download a file using wscript</td>
-                    <td class="attack-guid">97116a3f-efac-4b26-8336-b9cb18c45188</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_wscript_cscript_script_exec.yml">WSF/JSE/JS/VBA/VBE File Execution Via Cscript/Wscript</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1105">T1105</a>
-                    </td>
-                    <td class="attack-name">certreq download</td>
-                    <td class="attack-guid">6fdaae87-c05b-42f8-842e-991a74e8376b</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_lolbin_susp_certreq_download.yml">Suspicious Certreq Command to Download</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1105">T1105</a>
-                    </td>
-                    <td class="attack-name">Lolbas replace.exe use to copy UNC file</td>
-                    <td class="attack-guid">ed0335ac-0354-400c-8148-f6151d20035a</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_lolbin_replace.yml">Replace.exe Usage</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_del_greedy_deletion.yml">Greedy File Deletion Using Del</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1105">T1105</a>
-                    </td>
-                    <td class="attack-name">Lolbas replace.exe use to copy file</td>
-                    <td class="attack-guid">54782d65-12f0-47a5-b4c1-b70ee23de6df</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_lolbin_replace.yml">Replace.exe Usage</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_del_greedy_deletion.yml">Greedy File Deletion Using Del</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1105">T1105</a>
-                    </td>
-                    <td class="attack-name">Printer Migration Command-Line Tool UNC share folder into a zip file</td>
-                    <td class="attack-guid">49845fc1-7961-4590-a0f0-3dbcf065ae7e</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_del_execution.yml">File Deletion Via Del</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_redirection_susp_folder.yml">Potentially Suspicious CMD Shell Output Redirect</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_del_greedy_deletion.yml">Greedy File Deletion Using Del</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_lolbin_printbrm.yml">PrintBrm ZIP Creation of Extraction</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1105">T1105</a>
-                    </td>
-                    <td class="attack-name">Download a file with IMEWDBLD.exe</td>
-                    <td class="attack-guid">1a02df58-09af-4064-a765-0babe1a0d1e2</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_imewbdld_download.yml">Arbitrary File Download Via IMEWDBLD.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1105">T1105</a>
-                    </td>
-                    <td class="attack-name">File download with finger.exe on Windows</td>
-                    <td class="attack-guid">5f507e45-8411-4f99-84e7-e38530c45d01</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_finger_execution.yml">Finger.EXE Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1105">T1105</a>
-                    </td>
-                    <td class="attack-name">Download a File with Windows Defender MpCmdRun.exe</td>
-                    <td class="attack-guid">815bef8b-bf91-4b67-be4c-abe4c2a94ccc</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_ntfs_short_name_path_use_cli.yml">Use Short Name Path in Command Line</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1105">T1105</a>
-                    </td>
-                    <td class="attack-name">svchost writing a file to a UNC path</td>
-                    <td class="attack-guid">fa5a2759-41d7-4e13-a19c-e8f28a53566f</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_lateral_movement.yml">Copy From Or To Admin Share Or Sysvol Folder</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1105">T1105</a>
-                    </td>
-                    <td class="attack-name">OSTAP Worming Activity</td>
-                    <td class="attack-guid">2ca61766-b456-4fcf-a35a-1233685e1cad</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_del_execution.yml">File Deletion Via Del</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1090.001">T1090.001</a>
-                    </td>
-                    <td class="attack-name">portproxy reg key</td>
-                    <td class="attack-guid">b8223ea9-4be2-44a6-b50a-9657a3d4e72a</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_netsh_port_forwarding.yml">New Port Forwarding Rule Added Via Netsh.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1087.002">T1087.002</a>
-                    </td>
-                    <td class="attack-name">Enumerate Linked Policies In ADSISearcher Discovery</td>
-                    <td class="attack-guid">7ab0205a-34e4-4a44-9b04-e1541d1a57be</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_pua_adfind_susp_usage.yml">PUA - AdFind Suspicious Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1087.002">T1087.002</a>
-                    </td>
-                    <td class="attack-name">Enumerate Active Directory Users with ADSISearcher</td>
-                    <td class="attack-guid">02e8be5a-3065-4e54-8cc8-a14d138834d3</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_pua_adfind_susp_usage.yml">PUA - AdFind Suspicious Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1087.002">T1087.002</a>
-                    </td>
-                    <td class="attack-name">Adfind - Enumerate Active Directory Exchange AD Objects</td>
-                    <td class="attack-guid">5e2938fb-f919-47b6-8b29-2f6a1f718e99</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_pua_adfind_enumeration.yml">PUA - Suspicious ActiveDirectory Enumeration Via AdFind.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1087.002">T1087.002</a>
-                    </td>
-                    <td class="attack-name">Adfind - Enumerate Active Directory Admins</td>
-                    <td class="attack-guid">b95fd967-4e62-4109-b48d-265edfd28c3a</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_pua_adfind_enumeration.yml">PUA - Suspicious ActiveDirectory Enumeration Via AdFind.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1087.002">T1087.002</a>
-                    </td>
-                    <td class="attack-name">Adfind -Listing password policy</td>
-                    <td class="attack-guid">736b4f53-f400-4c22-855d-1a6b5a551600</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_pua_adfind_enumeration.yml">PUA - Suspicious ActiveDirectory Enumeration Via AdFind.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1087.002">T1087.002</a>
-                    </td>
-                    <td class="attack-name">Automated AD Recon (ADRecon)</td>
-                    <td class="attack-guid">95018438-454a-468c-a0fa-59c800149b59</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_progname.yml">Suspicious Program Names</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1083">T1083</a>
-                    </td>
-                    <td class="attack-name">File and Directory Discovery (cmd.exe)</td>
-                    <td class="attack-guid">0e36303b-6762-4500-b003-127743b80ba6</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_redirection_susp_folder.yml">Potentially Suspicious CMD Shell Output Redirect</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_dir_execution.yml">File And SubFolder Enumeration Via Dir Command</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1082">T1082</a>
-                    </td>
-                    <td class="attack-name">System Information Discovery</td>
-                    <td class="attack-guid">4060ee98-01ae-4c8e-8aad-af8300519cc7</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_gather_network_info_execution.yml">Suspicious Reconnaissance Activity Via GatherNetworkInfo.VBS</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_wscript_cscript_script_exec.yml">WSF/JSE/JS/VBA/VBE File Execution Via Cscript/Wscript</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_lolbin_gather_network_info.yml">Potential Reconnaissance Activity Via GatherNetworkInfo.VBS</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1082">T1082</a>
-                    </td>
-                    <td class="attack-name">Griffon Recon</td>
-                    <td class="attack-guid">69bd4abe-8759-49a6-8d21-0f15822d6370</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_wscript_cscript_script_exec.yml">WSF/JSE/JS/VBA/VBE File Execution Via Cscript/Wscript</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_powershell_susp_child_processes.yml">Potentially Suspicious PowerShell Child Processes</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1082">T1082</a>
-                    </td>
-                    <td class="attack-name">Windows MachineGUID Discovery</td>
-                    <td class="attack-guid">224b4daf-db44-404e-b6b2-f4d1f0126ef8</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_machineguid.yml">Suspicious Query of MachineGUID</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1082">T1082</a>
-                    </td>
-                    <td class="attack-name">System Information Discovery</td>
-                    <td class="attack-guid">66703791-c902-4560-8770-42b8a91f7667</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_query_registry.yml">Potential Configuration And Service Reconnaissance Via Reg.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1078.003">T1078.003</a>
-                    </td>
-                    <td class="attack-name">Create local account with admin privileges</td>
-                    <td class="attack-guid">a524ce99-86de-4db6-b4f9-e08f35a47a15</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_add_user_local_admin_group.yml">User Added to Local Administrators Group</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1078.001">T1078.001</a>
-                    </td>
-                    <td class="attack-name">Enable Guest account with RDP capability and admin privileges</td>
-                    <td class="attack-guid">99747561-ed8d-47f2-9c91-1e5fde1ed6e0</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_add_user_local_admin_group.yml">User Added to Local Administrators Group</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_add_user_remote_desktop_group.yml">User Added to Remote Desktop Users Group</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_weak_or_abused_passwords.yml">Weak or Abused Passwords In CLI</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1074.001">T1074.001</a>
-                    </td>
-                    <td class="attack-name">Zip a Folder with PowerShell for Staging in Temp</td>
-                    <td class="attack-guid">a57fbe4b-3440-452a-88a7-943531ac872a</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_zip_compress.yml">Folder Compress To Potentially Suspicious Output Via Compress-Archive Cmdlet</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1074.001">T1074.001</a>
-                    </td>
-                    <td class="attack-name">Stage data from Discovery.bat</td>
-                    <td class="attack-guid">107706a5-6f9f-451a-adae-bab8c667829f</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invoke_webrequest_download.yml">Suspicious Invoke-WebRequest Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1071.001">T1071.001</a>
-                    </td>
-                    <td class="attack-name">Malicious User Agents - CMD</td>
-                    <td class="attack-guid">dc3488b0-08c7-4fea-b585-905c83b48180</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_stdin_redirect.yml">Read Contents From Stdin Via Cmd.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1070.005">T1070.005</a>
-                    </td>
-                    <td class="attack-name">Remove Network Share</td>
-                    <td class="attack-guid">09210ad5-1ef2-4077-9ad3-7351e13e9222</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_net_use_mount_share.yml">Windows Share Mount Via Net.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_net_share_unmount.yml">Unmount Share Via Net.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_net_execution.yml">Net.EXE Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1070.005">T1070.005</a>
-                    </td>
-                    <td class="attack-name">Add Network Share</td>
-                    <td class="attack-guid">14c38f32-6509-46d8-ab43-d53e32d2b131</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_net_execution.yml">Net.EXE Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1070.004">T1070.004</a>
-                    </td>
-                    <td class="attack-name">Delete Prefetch File</td>
-                    <td class="attack-guid">36f96049-0ad7-4a5f-8418-460acaeb92fb</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_lateral_movement.yml">Copy From Or To Admin Share Or Sysvol Folder</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1070.004">T1070.004</a>
-                    </td>
-                    <td class="attack-name">Delete a single file - Windows cmd</td>
-                    <td class="attack-guid">861ea0b4-708a-4d17-848d-186c9c7f17e3</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_del_execution.yml">File Deletion Via Del</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1070.001">T1070.001</a>
-                    </td>
-                    <td class="attack-name">Clear Logs</td>
-                    <td class="attack-guid">e6abb60e-26b8-41da-8aae-0c35174b0967</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_eventlog_clear.yml">Suspicious Eventlog Clearing or Configuration Change Activity</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1070">T1070</a>
-                    </td>
-                    <td class="attack-name">Indicator Removal using FSUtil</td>
-                    <td class="attack-guid">b4115c7a-0e92-47f0-a61e-17e7218b2435</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_fsutil_usage.yml">Fsutil Suspicious Invocation</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1069.002">T1069.002</a>
-                    </td>
-                    <td class="attack-name">Enumerate Active Directory Groups with ADSISearcher</td>
-                    <td class="attack-guid">9f4e344b-8434-41b3-85b1-d38f29d148d0</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_pua_adfind_susp_usage.yml">PUA - AdFind Suspicious Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059.007">T1059.007</a>
-                    </td>
-                    <td class="attack-name">JScript execution to gather local computer information via wscript</td>
-                    <td class="attack-guid">0709945e-4fec-4c49-9faf-c3c292a74484</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_wscript_cscript_script_exec.yml">WSF/JSE/JS/VBA/VBE File Execution Via Cscript/Wscript</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059.007">T1059.007</a>
-                    </td>
-                    <td class="attack-name">JScript execution to gather local computer information via cscript</td>
-                    <td class="attack-guid">01d75adf-ca1b-4dd1-ac96-7c9550ad1035</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_wscript_cscript_script_exec.yml">WSF/JSE/JS/VBA/VBE File Execution Via Cscript/Wscript</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_redirection_susp_folder.yml">Potentially Suspicious CMD Shell Output Redirect</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059.005">T1059.005</a>
-                    </td>
-                    <td class="attack-name">Visual Basic script execution to gather local computer information</td>
-                    <td class="attack-guid">1620de42-160a-4fe5-bbaf-d3fef0181ce9</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_wscript_cscript_script_exec.yml">WSF/JSE/JS/VBA/VBE File Execution Via Cscript/Wscript</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_powershell_susp_child_processes.yml">Potentially Suspicious PowerShell Child Processes</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059.003">T1059.003</a>
-                    </td>
-                    <td class="attack-name">Command prompt writing script to file then executes it</td>
-                    <td class="attack-guid">00682c9f-7df4-4df8-950b-6dcaaa3ad9af</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_whoami_output.yml">Whoami.EXE Execution With Output Option</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059.003">T1059.003</a>
-                    </td>
-                    <td class="attack-name">Command Prompt read contents from CMD file and execute</td>
-                    <td class="attack-guid">df81db1b-066c-4802-9bc8-b6d030c3ba8e</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_stdin_redirect.yml">Read Contents From Stdin Via Cmd.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059.003">T1059.003</a>
-                    </td>
-                    <td class="attack-name">Writes text to a file and displays it.</td>
-                    <td class="attack-guid">127b4afe-2346-4192-815c-69042bec570e</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_redirection_susp_folder.yml">Potentially Suspicious CMD Shell Output Redirect</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059.001">T1059.001</a>
-                    </td>
-                    <td class="attack-name">PowerShell Invoke Known Malicious Cmdlets</td>
-                    <td class="attack-guid">49eb9404-5e0f-4031-a179-b40f7be385e3</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_malicious_cmdlets.yml">Malicious PowerShell Commandlets - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_mimikatz_command_line.yml">HackTool - Mimikatz Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059.001">T1059.001</a>
-                    </td>
-                    <td class="attack-name">PowerShell Command Execution</td>
-                    <td class="attack-guid">a538de64-1c74-46ed-aa60-b995ed302598</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_encode.yml">Suspicious Execution of Powershell with Base64</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059.001">T1059.001</a>
-                    </td>
-                    <td class="attack-name">Mimikatz - Cradlecraft PsSendKeys</td>
-                    <td class="attack-guid">af1800cf-9f9d-4fd1-a709-14b1e6de020d</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_malicious_cmdlets.yml">Malicious PowerShell Commandlets - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_mimikatz_command_line.yml">HackTool - Mimikatz Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_progname.yml">Suspicious Program Names</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1057">T1057</a>
-                    </td>
-                    <td class="attack-name">Discover Specific Process - tasklist</td>
-                    <td class="attack-guid">11ba69ee-902e-4a0f-b3b6-418aed7d7ddb</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_findstr_lsass.yml">LSASS Process Reconnaissance Via Findstr.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_findstr_recon_pipe_output.yml">Recon Command Output Piped To Findstr.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_tasklist_basic_execution.yml">Suspicious Tasklist Discovery Command</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1057">T1057</a>
-                    </td>
-                    <td class="attack-name">Process Discovery - wmic process</td>
-                    <td class="attack-guid">640cbf6d-659b-498b-ba53-f6dd1a1cc02c</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_recon_process.yml">Process Reconnaissance Via Wmic.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1057">T1057</a>
-                    </td>
-                    <td class="attack-name">Process Discovery - tasklist</td>
-                    <td class="attack-guid">c5806a4f-62b8-4900-980b-c7ec004e9908</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_tasklist_basic_execution.yml">Suspicious Tasklist Discovery Command</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1056.004">T1056.004</a>
-                    </td>
-                    <td class="attack-name">Hook PowerShell TLS Encrypt/Decrypt Messages</td>
-                    <td class="attack-guid">de1934ea-1fbf-425b-8795-65fb27dd7e33</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_lolbin_mavinject_process_injection.yml">Mavinject Inject DLL Into Running Process</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1056.001">T1056.001</a>
-                    </td>
-                    <td class="attack-name">Input Capture</td>
-                    <td class="attack-guid">d9b633ca-8efb-45e6-b838-70f595c6ae26</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_malicious_cmdlets.yml">Malicious PowerShell Commandlets - ProcessCreation</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1055">T1055</a>
-                    </td>
-                    <td class="attack-name">Process Injection with Go using CreateThread WinAPI (Natively)</td>
-                    <td class="attack-guid">2a3c7035-d14f-467a-af94-933e49fe6786</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_inline_win_api_access.yml">Potential WinAPI Calls Via CommandLine</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1055">T1055</a>
-                    </td>
-                    <td class="attack-name">Process Injection with Go using CreateThread WinAPI</td>
-                    <td class="attack-guid">2871ed59-3837-4a52-9107-99500ebc87cb</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_inline_win_api_access.yml">Potential WinAPI Calls Via CommandLine</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1055">T1055</a>
-                    </td>
-                    <td class="attack-name">Remote Process Injection in LSASS via mimikatz</td>
-                    <td class="attack-guid">3203ad24-168e-4bec-be36-f79b13ef8a83</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_mimikatz_command_line.yml">HackTool - Mimikatz Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sysinternals_eula_accepted.yml">Potential Execution of Sysinternals Tools</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1053.005">T1053.005</a>
-                    </td>
-                    <td class="attack-name">Scheduled Task Executing Base64 Encoded Commands From Registry</td>
-                    <td class="attack-guid">e895677d-4f06-49ab-91b6-ae3742d0a2ba</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_schtasks_reg_loader_encoded.yml">Scheduled Task Executing Encoded Payload from Registry</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_schtasks_susp_pattern.yml">Suspicious Command Patterns In Scheduled Task Creation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_schtasks_creation.yml">Scheduled Task Creation Via Schtasks.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1053.005">T1053.005</a>
-                    </td>
-                    <td class="attack-name">Scheduled task Local</td>
-                    <td class="attack-guid">42f53695-ad4a-4546-abb6-7d837f644a71</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_schtasks_schedule_type.yml">Suspicious Schtasks Schedule Types</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_schtasks_creation.yml">Scheduled Task Creation Via Schtasks.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1053.002">T1053.002</a>
-                    </td>
-                    <td class="attack-name">At.exe Scheduled task</td>
-                    <td class="attack-guid">4a6c0dc4-0f2a-4203-9298-a5a9bdc21ed8</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_at_interactive_execution.yml">Interactive AT Job</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1047">T1047</a>
-                    </td>
-                    <td class="attack-name">WMI Reconnaissance Software</td>
-                    <td class="attack-guid">718aebaa-d0e0-471a-8241-c5afa69c7414</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_recon_hotfix.yml">Windows Hotfix Updates Reconnaissance Via Wmic.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1047">T1047</a>
-                    </td>
-                    <td class="attack-name">WMI Reconnaissance Processes</td>
-                    <td class="attack-guid">5750aa16-0e59-4410-8b9a-8a47ca2788e2</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_recon_process.yml">Process Reconnaissance Via Wmic.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1040">T1040</a>
-                    </td>
-                    <td class="attack-name">Windows Internal pktmon set filter</td>
-                    <td class="attack-guid">855fb8b4-b8ab-4785-ae77-09f5df7bff55</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_pktmon_execution.yml">PktMon.EXE Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1040">T1040</a>
-                    </td>
-                    <td class="attack-name">Windows Internal Packet Capture</td>
-                    <td class="attack-guid">b5656f67-d67f-4de8-8e62-b5581630f528</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_netsh_packet_capture.yml">New Network Trace Capture Started Via Netsh.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1039">T1039</a>
-                    </td>
-                    <td class="attack-name">Copy a sensitive File over Administrative share with Powershell</td>
-                    <td class="attack-guid">7762e120-5879-44ff-97f8-008b401b9a98</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_script_exec_from_temp.yml">Suspicious Script Execution From Temp Folder</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_lateral_movement.yml">Copy From Or To Admin Share Or Sysvol Folder</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1039">T1039</a>
-                    </td>
-                    <td class="attack-name">Copy a sensitive File over Administrative share with copy</td>
-                    <td class="attack-guid">6ed67921-1774-44ba-bac6-adb51ed60660</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_lateral_movement.yml">Copy From Or To Admin Share Or Sysvol Folder</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1037.001">T1037.001</a>
-                    </td>
-                    <td class="attack-name">Logon Scripts</td>
-                    <td class="attack-guid">d6042746-07d4-4c92-9ad8-e644c114a231</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_registry_logon_script.yml">Potential Persistence Via Logon Scripts - CommandLine</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_redirection_susp_folder.yml">Potentially Suspicious CMD Shell Output Redirect</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1036.007">T1036.007</a>
-                    </td>
-                    <td class="attack-name">File Extension Masquerading</td>
-                    <td class="attack-guid">c7fa0c3b-b57f-4cba-9118-863bf4e653fc</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir_lolbin.yml">LOL-Binary Copied From System Directory</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1036.004">T1036.004</a>
-                    </td>
-                    <td class="attack-name">Creating W32Time similar named service using sc</td>
-                    <td class="attack-guid">b721c6ef-472c-4263-a0d9-37f1f4ecff66</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sc_create_service.yml">New Service Creation Using Sc.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_service_creation.yml">Suspicious New Service Creation</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1036.003">T1036.003</a>
-                    </td>
-                    <td class="attack-name">Malicious process Masquerading as LSM.exe</td>
-                    <td class="attack-guid">83810c46-f45e-4485-9ab6-8ed0e9e6ed7f</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1036.003">T1036.003</a>
-                    </td>
-                    <td class="attack-name">Masquerading - powershell.exe running as taskhostw.exe</td>
-                    <td class="attack-guid">ac9d0fc3-8aa8-4ab5-b11f-682cd63b40aa</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1036.003">T1036.003</a>
-                    </td>
-                    <td class="attack-name">Masquerading - cscript.exe running as notepad.exe</td>
-                    <td class="attack-guid">3a2a578b-0a01-46e4-92e3-62e2859b42f0</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir_lolbin.yml">LOL-Binary Copied From System Directory</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1036.003">T1036.003</a>
-                    </td>
-                    <td class="attack-name">Masquerading as Windows LSASS process</td>
-                    <td class="attack-guid">5ba5a3d1-cf3c-4499-968a-a93155d1f717</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1033">T1033</a>
-                    </td>
-                    <td class="attack-name">System Owner/User Discovery</td>
-                    <td class="attack-guid">4c4959bf-addf-4b4a-be86-8d09cc1857aa</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_findstr_recon_pipe_output.yml">Recon Command Output Piped To Findstr.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_whoami_output.yml">Whoami.EXE Execution With Output Option</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1027">T1027</a>
-                    </td>
-                    <td class="attack-name">Execution from Compressed JScript File</td>
-                    <td class="attack-guid">fad04df1-5229-4185-b016-fb6010cd87ac</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_wscript_cscript_script_exec.yml">WSF/JSE/JS/VBA/VBE File Execution Via Cscript/Wscript</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1027">T1027</a>
-                    </td>
-                    <td class="attack-name">DLP Evasion via Sensitive Data in VBA Macro over HTTP</td>
-                    <td class="attack-guid">e2d85e66-cb66-4ed7-93b1-833fc56c9319</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invoke_webrequest_download.yml">Suspicious Invoke-WebRequest Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1021.001">T1021.001</a>
-                    </td>
-                    <td class="attack-name">Disable NLA for RDP via Command Prompt</td>
-                    <td class="attack-guid">01d1c6c0-faf0-408e-b368-752a02285cb2</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_rdp_keys_tamper.yml">Potential Tampering With RDP Related Registry Keys Via Reg.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1021.001">T1021.001</a>
-                    </td>
-                    <td class="attack-name">Changing RDP Port to Non Standard Port via Command_Prompt</td>
-                    <td class="attack-guid">74ace21e-a31c-4f7d-b540-53e4eb6d1f73</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_netsh_fw_add_rule.yml">New Firewall Rule Added Via Netsh.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_rdp_keys_tamper.yml">Potential Tampering With RDP Related Registry Keys Via Reg.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1018">T1018</a>
-                    </td>
-                    <td class="attack-name">Enumerate Remote Hosts with Netscan</td>
-                    <td class="attack-guid">b8147c9a-84db-4ec1-8eee-4e0da75f0de5</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_ntfs_short_name_path_use_cli.yml">Use Short Name Path in Command Line</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1018">T1018</a>
-                    </td>
-                    <td class="attack-name">Enumerate Active Directory Computers with ADSISearcher</td>
-                    <td class="attack-guid">64ede6ac-b57a-41c2-a7d1-32c6cd35397d</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_pua_adfind_susp_usage.yml">PUA - AdFind Suspicious Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1018">T1018</a>
-                    </td>
-                    <td class="attack-name">Remote System Discovery - ping sweep</td>
-                    <td class="attack-guid">6db1f57f-d1d5-4223-8a66-55c9c65a9592</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_network_scan_loop.yml">Suspicious Scan Loop Network</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1016.002">T1016.002</a>
-                    </td>
-                    <td class="attack-name">Enumerate Stored Wi-Fi Profiles And Passwords via netsh</td>
-                    <td class="attack-guid">53cf1903-0fa7-4177-ab14-f358ae809eec</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_netsh_wifi_credential_harvesting.yml">Harvesting Of Wifi Credentials Via Netsh.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1016">T1016</a>
-                    </td>
-                    <td class="attack-name">System Network Configuration Discovery (TrickBot Style)</td>
-                    <td class="attack-guid">dafaf052-5508-402d-bf77-51e0700c02e2</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_network_command.yml">Suspicious Network Command</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1016">T1016</a>
-                    </td>
-                    <td class="attack-name">System Network Configuration Discovery on Windows</td>
-                    <td class="attack-guid">970ab6a1-0157-4f3f-9a73-ec4166754b23</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_network_command.yml">Suspicious Network Command</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1007">T1007</a>
-                    </td>
-                    <td class="attack-name">System Service Discovery - net.exe</td>
-                    <td class="attack-guid">5f864a3f-8ce9-45c0-812c-bdf7d8aeacc3</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_redirection_susp_folder.yml">Potentially Suspicious CMD Shell Output Redirect</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1007">T1007</a>
-                    </td>
-                    <td class="attack-name">System Service Discovery</td>
-                    <td class="attack-guid">89676ba1-b1f8-47ee-b940-2e1a113ebc71</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_tasklist_basic_execution.yml">Suspicious Tasklist Discovery Command</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.006">T1003.006</a>
-                    </td>
-                    <td class="attack-name">Run DSInternals Get-ADReplAccount</td>
-                    <td class="attack-guid">a0bced08-3fc5-4d8b-93b7-e8344739376e</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_dsinternals_cmdlets.yml">DSInternals Suspicious PowerShell Cmdlets</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.005">T1003.005</a>
-                    </td>
-                    <td class="attack-name">Cached Credential Dump via Cmdkey</td>
-                    <td class="attack-guid">56506854-89d6-46a3-9804-b7fde90791f9</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmdkey_recon.yml">Potential Reconnaissance For Cached Credentials Via Cmdkey.EXE</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.003">T1003.003</a>
-                    </td>
-                    <td class="attack-name">Create Volume Shadow Copy with Powershell</td>
-                    <td class="attack-guid">542bb97e-da53-436b-8e43-e0a7d31a6c24</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_shadow_copies_creation.yml">Shadow Copies Creation Using Operating Systems Utilities</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.003">T1003.003</a>
-                    </td>
-                    <td class="attack-name">Dump Active Directory Database with NTDSUtil</td>
-                    <td class="attack-guid">2364e33d-ceab-4641-8468-bfb1d7cc2723</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_ntds.yml">Suspicious Process Patterns NTDS.DIT Exfil</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.001">T1003.001</a>
-                    </td>
-                    <td class="attack-name">Dump LSASS.exe Memory through Silent Process Exit</td>
-                    <td class="attack-guid">eb5adf16-b601-4926-bca7-dad22adffb37</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_ntfs_short_name_path_use_cli.yml">Use Short Name Path in Command Line</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.001">T1003.001</a>
-                    </td>
-                    <td class="attack-name">Dump LSASS.exe using imported Microsoft DLLs</td>
-                    <td class="attack-guid">86fc3f40-237f-4701-b155-81c01c48d697</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_xordump.yml">HackTool - XORDump Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_script_exec_from_temp.yml">Suspicious Script Execution From Temp Folder</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_lsass_dmp_cli_keywords.yml">LSASS Dump Keyword In CommandLine</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.001">T1003.001</a>
-                    </td>
-                    <td class="attack-name">Create Mini Dump of LSASS.exe using ProcDump</td>
-                    <td class="attack-guid">7cede33f-0acd-44ef-9774-15511300b24b</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sysinternals_eula_accepted.yml">Potential Execution of Sysinternals Tools</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sysinternals_procdump.yml">Procdump Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_lsass_dmp_cli_keywords.yml">LSASS Dump Keyword In CommandLine</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.001">T1003.001</a>
-                    </td>
-                    <td class="attack-name">Offline Credential Theft With Mimikatz</td>
-                    <td class="attack-guid">453acf13-1dbd-47d7-b28a-172ce9228023</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_mimikatz_command_line.yml">HackTool - Mimikatz Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_lsass_dmp_cli_keywords.yml">LSASS Dump Keyword In CommandLine</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_cobaltstrike_bloopers_cmd.yml">Operator Bloopers Cobalt Strike Commands</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.001">T1003.001</a>
-                    </td>
-                    <td class="attack-name">Dump LSASS.exe Memory using NanoDump</td>
-                    <td class="attack-guid">dddd4aca-bbed-46f0-984d-e4c5971c51ea</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_ntfs_short_name_path_use_cli.yml">Use Short Name Path in Command Line</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_lsass_dmp_cli_keywords.yml">LSASS Dump Keyword In CommandLine</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.001">T1003.001</a>
-                    </td>
-                    <td class="attack-name">Dump LSASS.exe Memory using comsvcs.dll</td>
-                    <td class="attack-guid">2536dee2-12fb-459a-8c37-971844fa73be</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_process_dump_via_comsvcs.yml">Process Memory Dump Via Comsvcs.DLL</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_getprocess_lsass.yml">PowerShell Get-Process LSASS</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_lsass_dmp_cli_keywords.yml">LSASS Dump Keyword In CommandLine</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_powershell_susp_child_processes.yml">Potentially Suspicious PowerShell Child Processes</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_susp_activity.yml">Potentially Suspicious Rundll32 Activity</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_ntfs_short_name_path_use_cli.yml">Use Short Name Path in Command Line</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.001">T1003.001</a>
-                    </td>
-                    <td class="attack-name">Dump LSASS.exe Memory using ProcDump</td>
-                    <td class="attack-guid">0be2230c-9ab3-4ac2-8826-3199b9a0ebf8</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_renamed_sysinternals_procdump.yml">Renamed ProcDump Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_lsass_dmp_cli_keywords.yml">LSASS Dump Keyword In CommandLine</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sysinternals_procdump_lsass.yml">Potential LSASS Process Dump Via Procdump</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sysinternals_eula_accepted.yml">Potential Execution of Sysinternals Tools</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sysinternals_procdump.yml">Procdump Execution</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003">T1003</a>
-                    </td>
-                    <td class="attack-name">Send NTLM Hash with RPC Test Connection</td>
-                    <td class="attack-guid">0b207037-813c-4444-ac3f-b597cf280a67</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rpcping_credential_capture.yml">Capture Credentials with Rpcping.exe</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_encode.yml">Suspicious Execution of Powershell with Base64</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003">T1003</a>
-                    </td>
-                    <td class="attack-name">Dump Credential Manager using keymgr.dll and rundll32.exe</td>
-                    <td class="attack-guid">84113186-ed3c-4d0d-8a3c-8980c86c1f4a</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_keymgr.yml">Suspicious Key Manager Access</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_powershell_susp_child_processes.yml">Potentially Suspicious PowerShell Child Processes</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_uncommon_dll_extension.yml">Rundll32 Execution With Uncommon DLL Extension</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-                <tr>
-                    <td>
-                        <a class="btn mitre-tech-btn" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003">T1003</a>
-                    </td>
-                    <td class="attack-name">Retrieve Microsoft IIS Service Account Credentials Using AppCmd (using config)</td>
-                    <td class="attack-guid">42510244-5019-48fa-a0e5-66c3b76e6049</td>
-                    <td class="rules">
-                        <ul>
-                            <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_iis_appcmd_service_account_password_dumped.yml">Microsoft IIS Service Account Password Dumped</a></li>
-                        </ul>
-                    </td>
-                    <td class="rules">
-                        <ul>
-                            N/A
-                        </ul>
-                    </td>
-                </tr>
-    
-            </tbody>
+          
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1562.001">T1562.001</a>
+            </td>
+            <td>
+                Disable Windows Defender with DISM
+                <br>
+                <small class="text-muted">GUID: 871438ac-7d6e-432a-b27d-3e7db69faf58</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_dism_remove.yml">Dism Remove Online Package</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/8567da9e-47f0-11ec-99a9-acde48001122/">Windows DISM Remove Defender</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1560.001">T1560.001</a>
+            </td>
+            <td>
+                Compress Data and lock with password for Exfiltration with 7zip
+                <br>
+                <small class="text-muted">GUID: d1334303-59cb-4a03-8313-b3e24d02c198</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/a3b3bc96-1c4f-4eba-8218-027cac739a48/">Windows Password Managers Discovery</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1558.004">T1558.004</a>
+            </td>
+            <td>
+                WinPwn - PowerSharpPack - Kerberoasting Using Rubeus
+                <br>
+                <small class="text-muted">GUID: 8c385f88-4d47-4c9a-814d-93d9deec8c71</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_download_patterns.yml">Suspicious PowerShell Download and Execute Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_malicious_cmdlets.yml">Malicious PowerShell Commandlets - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1558.004">T1558.004</a>
+            </td>
+            <td>
+                Rubeus asreproast
+                <br>
+                <small class="text-muted">GUID: 615bd568-2859-41b5-9aed-61f6a88e48dd</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/cca37478-8377-11ec-b59a-acde48001122/">Rubeus Command Line Parameters</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/d0026380-b3c4-4da0-ac8e-02790063ff6b/">Windows Command and Scripting Interpreter Hunting Path Traversal</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1558.003">T1558.003</a>
+            </td>
+            <td>
+                WinPwn - PowerSharpPack - Kerberoasting Using Rubeus
+                <br>
+                <small class="text-muted">GUID: 29094950-2c96-4cbd-b5e4-f7c65079678f</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_download_patterns.yml">Suspicious PowerShell Download and Execute Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_malicious_cmdlets.yml">Malicious PowerShell Commandlets - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1558.003">T1558.003</a>
+            </td>
+            <td>
+                Extract all accounts in use as SPN using setspn
+                <br>
+                <small class="text-muted">GUID: e6f4affd-d826-4871-9a62-6c9004b8fe06</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/ae8b3efc-2d2e-11ec-8b57-acde48001122/">ServicePrincipalNames Discovery with SetSPN</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1558.003">T1558.003</a>
+            </td>
+            <td>
+                Rubeus kerberoast
+                <br>
+                <small class="text-muted">GUID: 14625569-6def-4497-99ac-8e7817105b55</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/cca37478-8377-11ec-b59a-acde48001122/">Rubeus Command Line Parameters</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/d0026380-b3c4-4da0-ac8e-02790063ff6b/">Windows Command and Scripting Interpreter Hunting Path Traversal</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1555.004">T1555.004</a>
+            </td>
+            <td>
+                WinPwn - Loot local Credentials - Invoke-WCMDump
+                <br>
+                <small class="text-muted">GUID: fa714db1-63dd-479e-a58e-7b2b52ca5997</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_download_patterns.yml">Suspicious PowerShell Download and Execute Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1555.003">T1555.003</a>
+            </td>
+            <td>
+                WinPwn - PowerSharpPack - Sharpweb for Browser Credentials
+                <br>
+                <small class="text-muted">GUID: e5e3d639-6ea8-4408-9ecd-d5a286268ca0</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_download_patterns.yml">Suspicious PowerShell Download and Execute Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_malicious_cmdlets.yml">Malicious PowerShell Commandlets - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1552.006">T1552.006</a>
+            </td>
+            <td>
+                GPP Passwords (findstr)
+                <br>
+                <small class="text-muted">GUID: 870fe8fb-5e23-4f5f-b89d-dd7fe26f3b5f</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_findstr_password_recon.yml">Potential Password Reconnaissance Via Findstr.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_findstr_gpp_passwords.yml">Findstr GPP Passwords</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/a3b3bc96-1c4f-4eba-8218-027cac739a48/">Windows Password Managers Discovery</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/1631ac2d-f2a9-42fa-8a59-d6e210d472f5/">Windows Findstr GPP Discovery</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1552.004">T1552.004</a>
+            </td>
+            <td>
+                Private Keys
+                <br>
+                <small class="text-muted">GUID: 520ce462-7ca7-441e-b5a5-f8347f632696</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_private_keys_recon.yml">Private Keys Reconnaissance Via CommandLine Tools</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_dir_execution.yml">File And SubFolder Enumeration Via Dir Command</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/5c1c2877-06c0-40ee-a1a2-db71f1372b5b/">Windows Private Keys Discovery</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1552.001">T1552.001</a>
+            </td>
+            <td>
+                List Credential Files via Command Prompt
+                <br>
+                <small class="text-muted">GUID: b0cdacf6-8949-4ffe-9274-a9643a788e55</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/a3b3bc96-1c4f-4eba-8218-027cac739a48/">Windows Password Managers Discovery</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1550.003">T1550.003</a>
+            </td>
+            <td>
+                Mimikatz Kerberos Ticket Attack
+                <br>
+                <small class="text-muted">GUID: dbf38128-7ba7-4776-bedf-cc2eed432098</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_mimikatz_command_line.yml">HackTool - Mimikatz Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/13bbd574-83ac-11ec-99d4-acde48001122/">Mimikatz PassTheTicket CommandLine Parameters</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1550.002">T1550.002</a>
+            </td>
+            <td>
+                Mimikatz Pass the Hash
+                <br>
+                <small class="text-muted">GUID: ec23cef9-27d9-46e4-a68d-6f75f7b86908</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_mimikatz_command_line.yml">HackTool - Mimikatz Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/a9e0d6d3-9676-4e26-994d-4e0406bb4467/">Windows Mimikatz Binary Execution</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1548.002">T1548.002</a>
+            </td>
+            <td>
+                WinPwn - UAC Bypass DccwBypassUAC technique
+                <br>
+                <small class="text-muted">GUID: 2b61977b-ae2d-4ae4-89cb-5c36c89586be</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_download_patterns.yml">Suspicious PowerShell Download and Execute Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1548.002">T1548.002</a>
+            </td>
+            <td>
+                Bypass UAC by Mocking Trusted Directories
+                <br>
+                <small class="text-muted">GUID: f7a35090-6f7f-4f64-bb47-d657bf5b10c1</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/a3b3bc96-1c4f-4eba-8218-027cac739a48/">Windows Password Managers Discovery</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1546.003">T1546.003</a>
+            </td>
+            <td>
+                Windows MOFComp.exe Load MOF File
+                <br>
+                <small class="text-muted">GUID: 29786d7e-8916-4de6-9c55-be7b093b2706</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_mofcomp_execution.yml">Potential Suspicious Mofcomp Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/e59b5a73-32bf-4467-a585-452c36ae10c1/">Windows MOF Event Triggered Execution via WMI</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1543.003">T1543.003</a>
+            </td>
+            <td>
+                Remote Service Installation CMD
+                <br>
+                <small class="text-muted">GUID: fb4151a2-db33-4f8c-b7f8-78ea8790f961</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sc_create_service.yml">New Service Creation Using Sc.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_service_creation.yml">Suspicious New Service Creation</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/e0eea4fa-4274-11ec-882b-3e22fbd008af/">Windows Service Creation on Remote Endpoint</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/3f519894-4276-11ec-ab02-3e22fbd008af/">Windows Service Initiation on Remote Endpoint</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/0dc44d03-8c00-482d-ba7c-796ba7ab18c9/">Windows Remote Create Service</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1531">T1531</a>
+            </td>
+            <td>
+                Delete User - Windows
+                <br>
+                <small class="text-muted">GUID: f21a1d7d-a62f-442a-8c3a-2440d43b19e5</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_net_user_add.yml">New User Created Via Net.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/640337e5-6e41-4b7f-af06-9d9eab5e1e2d/">Network Connection Discovery With Net</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1531">T1531</a>
+            </td>
+            <td>
+                Change User Password - Windows
+                <br>
+                <small class="text-muted">GUID: 1b99ef28-f83c-4ec5-8a08-1a56263a5bb2</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_net_execution.yml">Net.EXE Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/640337e5-6e41-4b7f-af06-9d9eab5e1e2d/">Network Connection Discovery With Net</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1529">T1529</a>
+            </td>
+            <td>
+                ESXi - vim-cmd Used to Power Off VMs
+                <br>
+                <small class="text-muted">GUID: 622cc1a0-45e7-428c-aed7-c96dd605fbe6</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_susp_exfil_and_tunneling_tool_execution.yml">Tunneling Tool Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/8aac5e1e-0fab-4437-af0b-c6e60af23eed/">Windows Protocol Tunneling with Plink</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1529">T1529</a>
+            </td>
+            <td>
+                ESXi - Avoslocker enumerates VMs and forcefully kills VMs
+                <br>
+                <small class="text-muted">GUID: 189f7d6e-9442-4160-9bc3-5e4104d93ece</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_susp_exfil_and_tunneling_tool_execution.yml">Tunneling Tool Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/8aac5e1e-0fab-4437-af0b-c6e60af23eed/">Windows Protocol Tunneling with Plink</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1529">T1529</a>
+            </td>
+            <td>
+                ESXi - Terminates VMs using pkill
+                <br>
+                <small class="text-muted">GUID: 987c9b4d-a637-42db-b1cb-e9e242c3991b</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_susp_exfil_and_tunneling_tool_execution.yml">Tunneling Tool Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/8aac5e1e-0fab-4437-af0b-c6e60af23eed/">Windows Protocol Tunneling with Plink</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1518.001">T1518.001</a>
+            </td>
+            <td>
+                Get Windows Defender exclusion settings using WMIC
+                <br>
+                <small class="text-muted">GUID: e31564c8-4c60-40cd-a8f4-9261307e8336</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/272df6de-61f1-4784-877c-1fbc3e2d0838/">Remote WMI Command Attempt</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1505.004">T1505.004</a>
+            </td>
+            <td>
+                Install IIS Module using AppCmd.exe
+                <br>
+                <small class="text-muted">GUID: 53adbdfa-8200-490c-871c-d3b1ab3324b2</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_iis_appcmd_susp_module_install.yml">IIS Native-Code Module Command Line Installation</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/38fe731c-1f13-43d4-b878-a5bbe44807e3/">Windows IIS Components Add New Module</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1491.001">T1491.001</a>
+            </td>
+            <td>
+                ESXi - Change Welcome Message on Direct Console User Interface (DCUI)
+                <br>
+                <small class="text-muted">GUID: 30905f21-34f3-4504-8b4c-f7a5e314b810</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_susp_exfil_and_tunneling_tool_execution.yml">Tunneling Tool Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/8aac5e1e-0fab-4437-af0b-c6e60af23eed/">Windows Protocol Tunneling with Plink</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1485">T1485</a>
+            </td>
+            <td>
+                ESXi - Delete VM Snapshots
+                <br>
+                <small class="text-muted">GUID: 1207ddff-f25b-41b3-aa0e-7c26d2b546d1</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_susp_exfil_and_tunneling_tool_execution.yml">Tunneling Tool Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/8aac5e1e-0fab-4437-af0b-c6e60af23eed/">Windows Protocol Tunneling with Plink</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1485">T1485</a>
+            </td>
+            <td>
+                Windows - Overwrite file with SysInternals SDelete
+                <br>
+                <small class="text-muted">GUID: 476419b5-aebf-4366-a131-ae3e8dae5fc2</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/d0026380-b3c4-4da0-ac8e-02790063ff6b/">Windows Command and Scripting Interpreter Hunting Path Traversal</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1482">T1482</a>
+            </td>
+            <td>
+                TruffleSnout - Listing AD Infrastructure
+                <br>
+                <small class="text-muted">GUID: ea1b4f2d-5b82-4006-b64f-f2845608a3bf</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/d0026380-b3c4-4da0-ac8e-02790063ff6b/">Windows Command and Scripting Interpreter Hunting Path Traversal</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1482">T1482</a>
+            </td>
+            <td>
+                Adfind - Enumerate Active Directory OUs
+                <br>
+                <small class="text-muted">GUID: d1c73b96-ab87-4031-bad8-0e1b3b8bf3ec</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_pua_adfind_susp_usage.yml">PUA - AdFind Suspicious Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/bd3b0187-189b-46c0-be45-f52da2bae67f/">Windows AdFind Exe</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1219">T1219</a>
+            </td>
+            <td>
+                GoToAssist Files Detected Test on Windows
+                <br>
+                <small class="text-muted">GUID: 1b72b3bd-72f8-4b63-a30b-84e91b9c3578</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invoke_webrequest_download.yml">Suspicious Invoke-WebRequest Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/0cdf318b-a0dd-47d7-b257-c621c0247de8/">User Discovery With Env Vars PowerShell</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1219">T1219</a>
+            </td>
+            <td>
+                AnyDesk Files Detected Test on Windows
+                <br>
+                <small class="text-muted">GUID: 6b8b7391-5c0a-4f8c-baee-78d8ce0ce330</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invoke_webrequest_download.yml">Suspicious Invoke-WebRequest Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/0cdf318b-a0dd-47d7-b257-c621c0247de8/">User Discovery With Env Vars PowerShell</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.011">T1218.011</a>
+            </td>
+            <td>
+                Rundll32 with Control_RunDLL
+                <br>
+                <small class="text-muted">GUID: e4c04b6f-c492-4782-82c7-3bf75eb8077e</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_susp_activity.yml">Potentially Suspicious Rundll32 Activity</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/c8e7ced0-10c5-11ec-8b03-acde48001122/">Rundll32 Control RunDLL Hunt</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.011">T1218.011</a>
+            </td>
+            <td>
+                Rundll32 with Ordinal Value
+                <br>
+                <small class="text-muted">GUID: 9fd5a74b-ba89-482a-8a3e-a5feaa3697b0</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_rundll32_by_ordinal.yml">DLL Call by Ordinal Via Rundll32.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/6c135f8d-5e60-454e-80b7-c56eed739833/">RunDLL Loading DLL By Ordinal</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.011">T1218.011</a>
+            </td>
+            <td>
+                Execution of non-dll using rundll32.exe
+                <br>
+                <small class="text-muted">GUID: ae3a8605-b26e-457c-b6b3-2702fd335bac</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_susp_execution_with_image_extension.yml">Suspicious Rundll32 Execution With Image Extension</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_powershell_susp_child_processes.yml">Potentially Suspicious PowerShell Child Processes</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_uncommon_dll_extension.yml">Rundll32 Execution With Uncommon DLL Extension</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/0cdf318b-a0dd-47d7-b257-c621c0247de8/">User Discovery With Env Vars PowerShell</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/9319dda5-73f2-4d43-a85a-67ce961bddb7/">Suspicious Rundll32 StartW</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.011">T1218.011</a>
+            </td>
+            <td>
+                Rundll32 setupapi.dll Execution
+                <br>
+                <small class="text-muted">GUID: 71d771cd-d6b3-4f34-bc76-a63d47a10b19</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_susp_activity.yml">Potentially Suspicious Rundll32 Activity</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/61e7b44a-6088-4f26-b788-9a96ba13b37a/">Detect Rundll32 Application Control Bypass - setupapi</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.011">T1218.011</a>
+            </td>
+            <td>
+                Rundll32 syssetup.dll Execution
+                <br>
+                <small class="text-muted">GUID: 41fa324a-3946-401e-bbdd-d7991c628125</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_susp_activity.yml">Potentially Suspicious Rundll32 Activity</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/71b9bf37-cde1-45fb-b899-1b0aa6fa1183/">Detect Rundll32 Application Control Bypass - syssetup</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.011">T1218.011</a>
+            </td>
+            <td>
+                Rundll32 ieadvpack.dll Execution
+                <br>
+                <small class="text-muted">GUID: 5e46a58e-cbf6-45ef-a289-ed7754603df9</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_susp_activity.yml">Potentially Suspicious Rundll32 Activity</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/4aefadfe-9abd-4bf8-b3fd-867e9ef95bf8/">Detect Rundll32 Application Control Bypass - advpack</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.011">T1218.011</a>
+            </td>
+            <td>
+                Rundll32 advpack.dll Execution
+                <br>
+                <small class="text-muted">GUID: d91cae26-7fc1-457b-a854-34c8aad48c89</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_susp_activity.yml">Potentially Suspicious Rundll32 Activity</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/4aefadfe-9abd-4bf8-b3fd-867e9ef95bf8/">Detect Rundll32 Application Control Bypass - advpack</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.011">T1218.011</a>
+            </td>
+            <td>
+                Rundll32 execute VBscript command using Ordinal number
+                <br>
+                <small class="text-muted">GUID: 32d1cf1b-cbc2-4c09-8d05-07ec5c83a821</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_mshta_inline_vbscript.yml">Wscript Shell Run In CommandLine</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_rundll32_by_ordinal.yml">DLL Call by Ordinal Via Rundll32.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_mshtml_runhtmlapplication.yml">Mshtml.DLL RunHTMLApplication Suspicious Usage</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_uncommon_dll_extension.yml">Rundll32 Execution With Uncommon DLL Extension</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/6c135f8d-5e60-454e-80b7-c56eed739833/">RunDLL Loading DLL By Ordinal</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.010">T1218.010</a>
+            </td>
+            <td>
+                Regsvr32 Registering Non DLL
+                <br>
+                <small class="text-muted">GUID: 1ae5ea1f-0a4e-4e54-b2f5-4ac328a7f421</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_regsvr32_susp_parent.yml">Scripting/CommandLine Process Spawned Regsvr32</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_regsvr32_susp_extensions.yml">Regsvr32 DLL Execution With Suspicious File Extension</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_regsvr32_susp_exec_path_1.yml">Regsvr32 Execution From Potential Suspicious Location</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_regsvr32_uncommon_extension.yml">Regsvr32 DLL Execution With Uncommon Extension</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/62732736-6250-11eb-ae93-0242ac130002/">Suspicious Regsvr32 Register Suspicious Path</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.010">T1218.010</a>
+            </td>
+            <td>
+                Regsvr32 remote COM scriptlet execution
+                <br>
+                <small class="text-muted">GUID: c9d0c4ef-8a96-4794-a75b-3d3a5e6f2a36</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_regsvr32_susp_parent.yml">Scripting/CommandLine Process Spawned Regsvr32</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_regsvr32_flags_anomaly.yml">Potential Regsvr32 Commandline Flag Anomaly</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_regsvr32_network_pattern.yml">Potentially Suspicious Regsvr32 HTTP/FTP Pattern</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/070e9b80-6252-11eb-ae93-0242ac130002/">Detect Regsvr32 Application Control Bypass</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.010">T1218.010</a>
+            </td>
+            <td>
+                Regsvr32 local COM scriptlet execution
+                <br>
+                <small class="text-muted">GUID: 449aa403-6aba-47ce-8a37-247d21ef0306</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_regsvr32_susp_parent.yml">Scripting/CommandLine Process Spawned Regsvr32</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_regsvr32_flags_anomaly.yml">Potential Regsvr32 Commandline Flag Anomaly</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/070e9b80-6252-11eb-ae93-0242ac130002/">Detect Regsvr32 Application Control Bypass</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.008">T1218.008</a>
+            </td>
+            <td>
+                Odbcconf.exe - Load Response File
+                <br>
+                <small class="text-muted">GUID: 331ce274-f9c9-440b-9f8c-a1006e1fce0b</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_odbcconf_response_file.yml">Response File Execution Via Odbcconf.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/1acafff9-1347-4b40-abae-f35aa4ba85c1/">Windows Odbcconf Load Response File</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/0562ad4b-fdaa-4882-b12f-7b8e0034cd72/">Windows Odbcconf Hunting</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.008">T1218.008</a>
+            </td>
+            <td>
+                Odbcconf.exe - Execute Arbitrary DLL
+                <br>
+                <small class="text-muted">GUID: 2430498b-06c0-4b92-a448-8ad263c388e2</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_odbcconf_register_dll_regsvr.yml">New DLL Registered Via Odbcconf.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/0562ad4b-fdaa-4882-b12f-7b8e0034cd72/">Windows Odbcconf Hunting</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/141e7fca-a9f0-40fd-a539-9aac8be41f1b/">Windows Odbcconf Load DLL</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.007">T1218.007</a>
+            </td>
+            <td>
+                Msiexec.exe - Execute Remote MSI file
+                <br>
+                <small class="text-muted">GUID: 44a4bedf-ffe3-452e-bee4-6925ab125662</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_msiexec_install_quiet.yml">Msiexec Quiet Installation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_msiexec_install_remote.yml">Suspicious Msiexec Quiet Install From Remote Location</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/6aa49ff2-3c92-4586-83e0-d83eb693dfda/">Windows MSIExec Remote Download</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.007">T1218.007</a>
+            </td>
+            <td>
+                Msiexec.exe - Execute the DllUnregisterServer function of a DLL
+                <br>
+                <small class="text-muted">GUID: ab09ec85-4955-4f9c-b8e0-6851baf4d47f</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_msiexec_dll.yml">DllUnregisterServer Function Call Via Msiexec.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/a27db3c5-1a9a-46df-a577-765d3f1a3c24/">Windows MSIExec Unregister DLLRegisterServer</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.007">T1218.007</a>
+            </td>
+            <td>
+                Msiexec.exe - Execute the DllRegisterServer function of a DLL
+                <br>
+                <small class="text-muted">GUID: 0106ffa5-fab6-4c7d-82e3-e6b8867d5e5d</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_msiexec_execute_dll.yml">Suspicious Msiexec Execute Arbitrary DLL</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/fdb59aef-d88f-4909-8369-ec2afbd2c398/">Windows MSIExec DLLRegisterServer</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.001">T1218.001</a>
+            </td>
+            <td>
+                Decompile Local CHM File
+                <br>
+                <small class="text-muted">GUID: 20cb05e0-1fa5-406d-92c1-84da4ba01813</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hh_chm_execution.yml">HH.EXE Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hh_susp_execution.yml">Suspicious HH.EXE Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/a34aae96-ccf8-4aef-952c-3ea21444444d/">System Processes Run From Unexpected Locations</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/2acf0e19-4149-451c-a3f3-39cd3c77e37d/">Windows System Binary Proxy Execution Compiled HTML File Decompile</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.001">T1218.001</a>
+            </td>
+            <td>
+                Invoke CHM Shortcut Command with ITS and Help Topic
+                <br>
+                <small class="text-muted">GUID: 15756147-7470-4a83-87fb-bb5662526247</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/9be56c82-b1cc-4318-87eb-d138afaaca39/">Malicious PowerShell Process - Execution Policy Bypass</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.001">T1218.001</a>
+            </td>
+            <td>
+                Compiled HTML Help Remote Payload
+                <br>
+                <small class="text-muted">GUID: 0f8af516-9818-4172-922b-42986ef1e81d</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hh_chm_execution.yml">HH.EXE Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hh_chm_remote_download_or_execution.yml">Remote CHM File Download/Execution Via HH.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/a34aae96-ccf8-4aef-952c-3ea21444444d/">System Processes Run From Unexpected Locations</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/8c5835b9-39d9-438b-817c-95f14c69a31e/">Detect HTML Help URL in Command Line</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.001">T1218.001</a>
+            </td>
+            <td>
+                Compiled HTML Help Local Payload
+                <br>
+                <small class="text-muted">GUID: 5cb87818-0d7c-4469-b7ef-9224107aebe8</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hh_chm_execution.yml">HH.EXE Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/a34aae96-ccf8-4aef-952c-3ea21444444d/">System Processes Run From Unexpected Locations</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218">T1218</a>
+            </td>
+            <td>
+                DiskShadow Command Execution
+                <br>
+                <small class="text-muted">GUID: 0e1483ba-8f0c-425d-b8c6-42736e058eaa</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_diskshadow_script_mode.yml">Diskshadow Script Mode Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/58adae9e-8ea3-11ec-90f6-acde48001122/">Windows Diskshadow Proxy Execution</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218">T1218</a>
+            </td>
+            <td>
+                Renamed Microsoft.Workflow.Compiler.exe Payload Executions
+                <br>
+                <small class="text-muted">GUID: 4cc40fd7-87b8-4b16-b2d7-57534b86b911</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_svchost_masqueraded_execution.yml">Suspicious Process Masquerading As SvcHost.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_svchost_uncommon_parent_process.yml">Uncommon Svchost Parent Process</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_system_exe_anomaly.yml">System File Execution Location Anomaly</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/a34aae96-ccf8-4aef-952c-3ea21444444d/">System Processes Run From Unexpected Locations</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218">T1218</a>
+            </td>
+            <td>
+                mavinject - Inject DLL into running process
+                <br>
+                <small class="text-muted">GUID: c426dacf-575d-4937-8611-a148a86a5e61</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_lolbin_mavinject_process_injection.yml">Mavinject Inject DLL Into Running Process</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/ccf4b61b-1b26-4f2e-a089-f2009c569c57/">Windows Binary Proxy Execution Mavinject DLL Injection</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1216">T1216</a>
+            </td>
+            <td>
+                SyncAppvPublishingServer Signed Script PowerShell Command Execution
+                <br>
+                <small class="text-muted">GUID: 275d963d-3f36-476c-8bef-a2a3960ee6eb</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_wscript_cscript_script_exec.yml">WSF/JSE/JS/VBA/VBE File Execution Via Cscript/Wscript</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_lolbin_syncappvpublishingserver_vbs_execute_psh.yml">SyncAppvPublishingServer VBS Execute Arbitrary PowerShell Code</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/8dd73f89-682d-444c-8b41-8e679966ad3c/">Windows System Script Proxy Execution Syncappvpublishingserver</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1201">T1201</a>
+            </td>
+            <td>
+                Enumerate Active Directory Password Policy with get-addefaultdomainpasswordpolicy
+                <br>
+                <small class="text-muted">GUID: b2698b33-984c-4a1c-93bb-e4ba72a0babb</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/36e46ebe-065a-11ec-b4c7-acde48001122/">Get ADDefaultDomainPasswordPolicy with Powershell</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1201">T1201</a>
+            </td>
+            <td>
+                Examine domain password policy - Windows
+                <br>
+                <small class="text-muted">GUID: 46c2c362-2679-4ef5-aec9-0e958e135be4</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_net_execution.yml">Net.EXE Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_net_groups_and_accounts_recon.yml">Suspicious Group And Account Reconnaissance Activity Using Net.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/09336538-065a-11ec-8665-acde48001122/">Password Policy Discovery with Net</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1197">T1197</a>
+            </td>
+            <td>
+                Bits download using desktopimgdownldr.exe (cmd)
+                <br>
+                <small class="text-muted">GUID: afb5e09e-e385-4dee-9a94-6ee60979d114</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_desktopimgdownldr_susp_execution.yml">Suspicious Desktopimgdownldr Command</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/54a6ed00-3256-11ec-b031-acde48001122/">CMD Carry Out String Command Parameter</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1197">T1197</a>
+            </td>
+            <td>
+                Bitsadmin Download (PowerShell)
+                <br>
+                <small class="text-muted">GUID: f63b8bc4-07e5-4112-acba-56f646f3f0bc</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/39e2605a-90d8-11eb-899e-acde48001122/">PowerShell Start-BitsTransfer</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1197">T1197</a>
+            </td>
+            <td>
+                Bitsadmin Download (cmd)
+                <br>
+                <small class="text-muted">GUID: 3c73d728-75fb-4180-a12f-6712864d7421</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_bitsadmin_download_file_sharing_domains.yml">Suspicious Download From File-Sharing Website Via Bitsadmin</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_bitsadmin_download_susp_targetfolder.yml">File Download Via Bitsadmin To A Suspicious Target Folder</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_bitsadmin_download_uncommon_targetfolder.yml">File Download Via Bitsadmin To An Uncommon Target Folder</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_bitsadmin_download_susp_extensions.yml">File With Suspicious Extension Downloaded Via Bitsadmin</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/80630ff4-8e4c-11eb-aab5-acde48001122/">BITSAdmin Download File</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1195">T1195</a>
+            </td>
+            <td>
+                Octopus Scanner Malware Open Source Supply Chain
+                <br>
+                <small class="text-muted">GUID: 82a9f001-94c5-495e-9ed5-f530dbded5e2</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_schtasks_env_folder.yml">Schedule Task Creation From Env Variable Or Potentially Suspicious Path Via Schtasks.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_schtasks_creation.yml">Scheduled Task Creation Via Schtasks.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/d0026380-b3c4-4da0-ac8e-02790063ff6b/">Windows Command and Scripting Interpreter Hunting Path Traversal</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1187">T1187</a>
+            </td>
+            <td>
+                WinPwn - PowerSharpPack - Retrieving NTLM Hashes without Touching LSASS
+                <br>
+                <small class="text-muted">GUID: 7f06b25c-799e-40f1-89db-999c9cc84317</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_download_patterns.yml">Suspicious PowerShell Download and Execute Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_malicious_cmdlets.yml">Malicious PowerShell Commandlets - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1136.002">T1136.002</a>
+            </td>
+            <td>
+                Create a new account similar to ANONYMOUS LOGON
+                <br>
+                <small class="text-muted">GUID: dc7726d2-8ccb-4cc6-af22-0d5afb53a548</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_net_user_add.yml">New User Created Via Net.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_net_execution.yml">Net.EXE Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/640337e5-6e41-4b7f-af06-9d9eab5e1e2d/">Network Connection Discovery With Net</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/98f6a534-04c2-11ec-96b2-acde48001122/">Domain Account Discovery With Net App</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1136.002">T1136.002</a>
+            </td>
+            <td>
+                Create a new Windows domain admin user
+                <br>
+                <small class="text-muted">GUID: fcec2963-9951-4173-9bfa-98d8b7834e62</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_net_execution.yml">Net.EXE Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/f2f14ac7-fa81-471a-80d5-7eb65c3c7349/">Domain Group Discovery With Net</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/a23a0e20-0b1b-4a07-82e5-ec5f70811e7a/">Elevated Group Discovery With Net</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1136.001">T1136.001</a>
+            </td>
+            <td>
+                Create a new Windows admin user via .NET
+                <br>
+                <small class="text-muted">GUID: 2170d9b5-bacd-4819-a952-da76dae0815f</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_download_patterns.yml">Suspicious PowerShell Download and Execute Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1136.001">T1136.001</a>
+            </td>
+            <td>
+                Create a new Windows admin user
+                <br>
+                <small class="text-muted">GUID: fda74566-a604-4581-a4cc-fbbe21d66559</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_add_user_local_admin_group.yml">User Added to Local Administrators Group</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_net_execution.yml">Net.EXE Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/54f5201e-155b-11ec-a6e2-acde48001122/">Net Localgroup Discovery</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1136.001">T1136.001</a>
+            </td>
+            <td>
+                Create a new user in a command prompt
+                <br>
+                <small class="text-muted">GUID: 6657864e-0323-4206-9344-ac9cd7265a4f</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_net_user_add.yml">New User Created Via Net.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_net_execution.yml">Net.EXE Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/640337e5-6e41-4b7f-af06-9d9eab5e1e2d/">Network Connection Discovery With Net</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1134.005">T1134.005</a>
+            </td>
+            <td>
+                Injection SID-History with mimikatz
+                <br>
+                <small class="text-muted">GUID: 6bef32e5-9456-4072-8f14-35566fb85401</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_mimikatz_command_line.yml">HackTool - Mimikatz Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/a9e0d6d3-9676-4e26-994d-4e0406bb4467/">Windows Mimikatz Binary Execution</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1134.002">T1134.002</a>
+            </td>
+            <td>
+                WinPwn - Get SYSTEM shell - Pop System Shell using Token Manipulation technique
+                <br>
+                <small class="text-muted">GUID: ccf4ac39-ec93-42be-9035-90e2f26bcd92</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_download_patterns.yml">Suspicious PowerShell Download and Execute Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_malicious_cmdlets.yml">Malicious PowerShell Commandlets - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1129">T1129</a>
+            </td>
+            <td>
+                ESXi - Install a custom VIB on an ESXi host
+                <br>
+                <small class="text-muted">GUID: 7f843046-abf2-443f-b880-07a83cf968ec</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_susp_exfil_and_tunneling_tool_execution.yml">Tunneling Tool Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/8aac5e1e-0fab-4437-af0b-c6e60af23eed/">Windows Protocol Tunneling with Plink</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/d0026380-b3c4-4da0-ac8e-02790063ff6b/">Windows Command and Scripting Interpreter Hunting Path Traversal</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1124">T1124</a>
+            </td>
+            <td>
+                System Time Discovery W32tm as a Delay
+                <br>
+                <small class="text-muted">GUID: d5d5a6b0-0f92-42d8-985d-47aafa2dd4db</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_w32tm.yml">Use of W32tm as Timer</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/b2cc69e7-11ba-42dc-a269-59c069a48870/">Windows System Time Discovery W32tm Delay</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1114.001">T1114.001</a>
+            </td>
+            <td>
+                Email Collection with PowerShell Get-Inbox
+                <br>
+                <small class="text-muted">GUID: 3f1b5096-0139-4736-9b78-19bcb02bb1cb</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_ntfs_short_name_path_use_cli.yml">Use Short Name Path in Command Line</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_script_exec_from_env_folder.yml">Script Interpreter Execution From Suspicious Folder</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_script_exec_from_temp.yml">Suspicious Script Execution From Temp Folder</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_set_policies_to_unsecure_level.yml">Change PowerShell Policies to an Insecure Level</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/9be56c82-b1cc-4318-87eb-d138afaaca39/">Malicious PowerShell Process - Execution Policy Bypass</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
+            </td>
+            <td>
+                Flush Shimcache
+                <br>
+                <small class="text-muted">GUID: ecbd533e-b45d-4239-aeff-b857c6f6d68b</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_susp_shimcache_flush.yml">ShimCache Flush</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/a913718a-25b6-11ec-96d3-acde48001122/">Rundll32 Shimcache Flush</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
+            </td>
+            <td>
+                Change Powershell Execution Policy to Bypass
+                <br>
+                <small class="text-muted">GUID: f3a6cceb-06c9-48e5-8df8-8867a6814245</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_set_policies_to_unsecure_level.yml">Change PowerShell Policies to an Insecure Level</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/9be56c82-b1cc-4318-87eb-d138afaaca39/">Malicious PowerShell Process - Execution Policy Bypass</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1110.002">T1110.002</a>
+            </td>
+            <td>
+                Password Cracking with Hashcat
+                <br>
+                <small class="text-muted">GUID: 6d27df5d-69d4-4c91-bc33-5983ffe91692</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_hashcat.yml">HackTool - Hashcat Password Cracker Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/d0026380-b3c4-4da0-ac8e-02790063ff6b/">Windows Command and Scripting Interpreter Hunting Path Traversal</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1110.001">T1110.001</a>
+            </td>
+            <td>
+                ESXi - Brute Force Until Account Lockout
+                <br>
+                <small class="text-muted">GUID: ed6c2c87-bba6-4a28-ac6e-c8af3d6c2ab5</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_susp_exfil_and_tunneling_tool_execution.yml">Tunneling Tool Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/8aac5e1e-0fab-4437-af0b-c6e60af23eed/">Windows Protocol Tunneling with Plink</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1106">T1106</a>
+            </td>
+            <td>
+                WinPwn - Get SYSTEM shell - Pop System Shell using NamedPipe Impersonation technique
+                <br>
+                <small class="text-muted">GUID: e1f93a06-1649-4f07-89a8-f57279a7d60e</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_download_patterns.yml">Suspicious PowerShell Download and Execute Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_malicious_cmdlets.yml">Malicious PowerShell Commandlets - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1106">T1106</a>
+            </td>
+            <td>
+                WinPwn - Get SYSTEM shell - Bind System Shell using CreateProcess technique
+                <br>
+                <small class="text-muted">GUID: 7ec5b74e-8289-4ff2-a162-b6f286a33abd</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_download_patterns.yml">Suspicious PowerShell Download and Execute Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_malicious_cmdlets.yml">Malicious PowerShell Commandlets - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1106">T1106</a>
+            </td>
+            <td>
+                WinPwn - Get SYSTEM shell - Pop System Shell using CreateProcess technique
+                <br>
+                <small class="text-muted">GUID: ce4e76e6-de70-4392-9efe-b281fc2b4087</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_download_patterns.yml">Suspicious PowerShell Download and Execute Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_malicious_cmdlets.yml">Malicious PowerShell Commandlets - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1105">T1105</a>
+            </td>
+            <td>
+                Arbitrary file download using the Notepad++ GUP.exe binary
+                <br>
+                <small class="text-muted">GUID: 66ee226e-64cb-4dae-80e3-5bf5763e4a51</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_gup_suspicious_execution.yml">Suspicious GUP Usage</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_dir_execution.yml">File And SubFolder Enumeration Via Dir Command</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_gup_download.yml">File Download Using Notepad++ GUP Utility</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/a3b3bc96-1c4f-4eba-8218-027cac739a48/">Windows Password Managers Discovery</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1105">T1105</a>
+            </td>
+            <td>
+                Nimgrab - Transfer Files
+                <br>
+                <small class="text-muted">GUID: b1729c57-9384-4d1c-9b99-9b220afb384e</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/54a6ed00-3256-11ec-b031-acde48001122/">CMD Carry Out String Command Parameter</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1105">T1105</a>
+            </td>
+            <td>
+                File Download via PowerShell
+                <br>
+                <small class="text-muted">GUID: 54a4daf1-71df-4383-9ba7-f1a295d8b6d2</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1105">T1105</a>
+            </td>
+            <td>
+                Windows - PowerShell Download
+                <br>
+                <small class="text-muted">GUID: 42dc4460-9aa6-45d3-b1a6-3955d34e1fe8</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_ps_downloadfile.yml">PowerShell DownloadFile</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/1a93b7ea-7af7-11eb-adb5-acde48001122/">Any Powershell DownloadFile</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1105">T1105</a>
+            </td>
+            <td>
+                Windows - BITSAdmin BITS Download
+                <br>
+                <small class="text-muted">GUID: a1921cd3-9a2d-47d5-a891-f1d0f2a7a31b</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_bitsadmin_download_file_sharing_domains.yml">Suspicious Download From File-Sharing Website Via Bitsadmin</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_bitsadmin_download_susp_targetfolder.yml">File Download Via Bitsadmin To A Suspicious Target Folder</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_bitsadmin_download_uncommon_targetfolder.yml">File Download Via Bitsadmin To An Uncommon Target Folder</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_bitsadmin_download_susp_extensions.yml">File With Suspicious Extension Downloaded Via Bitsadmin</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/80630ff4-8e4c-11eb-aab5-acde48001122/">BITSAdmin Download File</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1105">T1105</a>
+            </td>
+            <td>
+                certutil download (urlcache)
+                <br>
+                <small class="text-muted">GUID: dd3b61dd-7bbc-48cd-ab51-49ad1a776df0</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/54a6ed00-3256-11ec-b031-acde48001122/">CMD Carry Out String Command Parameter</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1095">T1095</a>
+            </td>
+            <td>
+                Powercat C2
+                <br>
+                <small class="text-muted">GUID: 3e0e0e7f-6aa2-4a61-b61d-526c2cc9330e</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_progname.yml">Suspicious Program Names</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1095">T1095</a>
+            </td>
+            <td>
+                ICMP C2
+                <br>
+                <small class="text-muted">GUID: 0268e63c-e244-42db-bef7-72a9e59fc1fc</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1087.002">T1087.002</a>
+            </td>
+            <td>
+                Suspicious LAPS Attributes Query with Get-ADComputer all properties and SearchScope
+                <br>
+                <small class="text-muted">GUID: ffbcfd62-15d6-4989-a21a-80bfc8e58bb5</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/c5a31f80-5888-4d81-9f78-1cc65026316e/">GetAdComputer with PowerShell</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1087.002">T1087.002</a>
+            </td>
+            <td>
+                Suspicious LAPS Attributes Query with Get-ADComputer ms-Mcs-AdmPwd property
+                <br>
+                <small class="text-muted">GUID: 6e85bdf9-7bc4-4259-ac0f-f0cb39964443</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/c5a31f80-5888-4d81-9f78-1cc65026316e/">GetAdComputer with PowerShell</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1087.002">T1087.002</a>
+            </td>
+            <td>
+                Suspicious LAPS Attributes Query with Get-ADComputer all properties
+                <br>
+                <small class="text-muted">GUID: 394012d9-2164-4d4f-b9e5-acf30ba933fe</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/c5a31f80-5888-4d81-9f78-1cc65026316e/">GetAdComputer with PowerShell</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1087.002">T1087.002</a>
+            </td>
+            <td>
+                Enumerate Default Domain Admin Details (Domain)
+                <br>
+                <small class="text-muted">GUID: c70ab9fd-19e2-4e02-a83c-9cfa8eaa8fef</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_net_user_default_accounts_manipulation.yml">Suspicious Manipulation Of Default Accounts Via Net.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/339805ce-ac30-11eb-b87d-acde48001122/">Account Discovery With Net App</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/98f6a534-04c2-11ec-96b2-acde48001122/">Domain Account Discovery With Net App</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/640337e5-6e41-4b7f-af06-9d9eab5e1e2d/">Network Connection Discovery With Net</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1087.002">T1087.002</a>
+            </td>
+            <td>
+                Adfind - Enumerate Active Directory User Objects
+                <br>
+                <small class="text-muted">GUID: e1ec8d20-509a-4b9a-b820-06c9b2da8eb7</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_pua_adfind_susp_usage.yml">PUA - AdFind Suspicious Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/bd3b0187-189b-46c0-be45-f52da2bae67f/">Windows AdFind Exe</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1087.002">T1087.002</a>
+            </td>
+            <td>
+                Enumerate logged on users via CMD (Domain)
+                <br>
+                <small class="text-muted">GUID: 161dcd85-d014-4f5e-900c-d3eaae82a0f7</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/ad03bfcf-8a91-4bc2-a500-112993deba87/">System User Discovery With Query</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1087.002">T1087.002</a>
+            </td>
+            <td>
+                Enumerate all accounts (Domain)
+                <br>
+                <small class="text-muted">GUID: 6fbc9e68-5ad7-444a-bd11-8bf3136c477e</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_net_execution.yml">Net.EXE Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_net_groups_and_accounts_recon.yml">Suspicious Group And Account Reconnaissance Activity Using Net.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/f2f14ac7-fa81-471a-80d5-7eb65c3c7349/">Domain Group Discovery With Net</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1087.001">T1087.001</a>
+            </td>
+            <td>
+                ESXi - Local Account Discovery via ESXCLI
+                <br>
+                <small class="text-muted">GUID: 9762ac6e-aa60-4449-a2f0-cbbd0e1fd22c</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_susp_exfil_and_tunneling_tool_execution.yml">Tunneling Tool Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/8aac5e1e-0fab-4437-af0b-c6e60af23eed/">Windows Protocol Tunneling with Plink</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1087.001">T1087.001</a>
+            </td>
+            <td>
+                Enumerate logged on users via CMD (Local)
+                <br>
+                <small class="text-muted">GUID: a138085e-bfe5-46ba-a242-74a6fb884af3</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/ad03bfcf-8a91-4bc2-a500-112993deba87/">System User Discovery With Query</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1083">T1083</a>
+            </td>
+            <td>
+                ESXi - Enumerate VMDKs available on an ESXi Host
+                <br>
+                <small class="text-muted">GUID: 4a233a40-caf7-4cf1-890a-c6331bbc72cf</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_susp_exfil_and_tunneling_tool_execution.yml">Tunneling Tool Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/8aac5e1e-0fab-4437-af0b-c6e60af23eed/">Windows Protocol Tunneling with Plink</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1082">T1082</a>
+            </td>
+            <td>
+                ESXi - Darkside system information discovery
+                <br>
+                <small class="text-muted">GUID: f89812e5-67d1-4f49-86fa-cbc6609ea86a</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_susp_exfil_and_tunneling_tool_execution.yml">Tunneling Tool Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/8aac5e1e-0fab-4437-af0b-c6e60af23eed/">Windows Protocol Tunneling with Plink</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1082">T1082</a>
+            </td>
+            <td>
+                ESXi - VM Discovery using ESXCLI
+                <br>
+                <small class="text-muted">GUID: 2040405c-eea6-4c1c-aef3-c2acc430fac9</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_susp_exfil_and_tunneling_tool_execution.yml">Tunneling Tool Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/8aac5e1e-0fab-4437-af0b-c6e60af23eed/">Windows Protocol Tunneling with Plink</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1082">T1082</a>
+            </td>
+            <td>
+                WinPwn - PowerSharpPack - Seatbelt
+                <br>
+                <small class="text-muted">GUID: 5c16ceb4-ba3a-43d7-b848-a13c1f216d95</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_download_patterns.yml">Suspicious PowerShell Download and Execute Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_malicious_cmdlets.yml">Malicious PowerShell Commandlets - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1082">T1082</a>
+            </td>
+            <td>
+                WinPwn - PowerSharpPack - Sharpup checking common Privesc vectors
+                <br>
+                <small class="text-muted">GUID: efb79454-1101-4224-a4d0-30c9c8b29ffc</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_download_patterns.yml">Suspicious PowerShell Download and Execute Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_malicious_cmdlets.yml">Malicious PowerShell Commandlets - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1082">T1082</a>
+            </td>
+            <td>
+                WinPwn - PowerSharpPack - Watson searching for missing windows patches
+                <br>
+                <small class="text-muted">GUID: 07b18a66-6304-47d2-bad0-ef421eb2e107</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_download_patterns.yml">Suspicious PowerShell Download and Execute Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_malicious_cmdlets.yml">Malicious PowerShell Commandlets - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1078.003">T1078.003</a>
+            </td>
+            <td>
+                Use PsExec to elevate to NT Authority\SYSTEM account
+                <br>
+                <small class="text-muted">GUID: 6904235f-0f55-4039-8aed-41c300ff7733</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sysinternals_psexec_execution.yml">Psexec Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sysinternals_eula_accepted.yml">Potential Execution of Sysinternals Tools</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/27c3a83d-cada-47c6-9042-67baf19d2574/">Detect PsExec With accepteula Flag</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1078.001">T1078.001</a>
+            </td>
+            <td>
+                Activate Guest Account
+                <br>
+                <small class="text-muted">GUID: aa6cb8c4-b582-4f8e-b677-37733914abda</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_net_user_default_accounts_manipulation.yml">Suspicious Manipulation Of Default Accounts Via Net.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/640337e5-6e41-4b7f-af06-9d9eab5e1e2d/">Network Connection Discovery With Net</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1071.004">T1071.004</a>
+            </td>
+            <td>
+                DNS C2
+                <br>
+                <small class="text-muted">GUID: e7bf9802-2e78-4db9-93b5-181b7bcd37d7</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1070.004">T1070.004</a>
+            </td>
+            <td>
+                Clears Recycle bin via rd
+                <br>
+                <small class="text-muted">GUID: f723d13d-48dc-4317-9990-cf43a9ac0bf2</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/ba570b3a-d356-11eb-8358-acde48001122/">Recursive Delete of Directory In Batch CMD</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1070.004">T1070.004</a>
+            </td>
+            <td>
+                Delete an entire folder - Windows cmd
+                <br>
+                <small class="text-muted">GUID: ded937c4-2add-42f7-9c2c-c742b7a98698</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_dir_execution.yml">File And SubFolder Enumeration Via Dir Command</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_rmdir_execution.yml">Directory Removal Via Rmdir</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/c4566d2c-b094-48a1-9c59-d66e22065560/">Windows Indicator Removal Via Rmdir</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1069.002">T1069.002</a>
+            </td>
+            <td>
+                Get-ADUser Enumeration using UserAccountControl flags (AS-REP Roasting)
+                <br>
+                <small class="text-muted">GUID: 43fa81fb-34bb-4b5f-867b-03c7dbe0e3d8</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/0b6ee3f4-04e3-11ec-a87d-acde48001122/">Get ADUser with PowerShell</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1069.002">T1069.002</a>
+            </td>
+            <td>
+                Enumerate Active Directory Groups with Get-AdGroup
+                <br>
+                <small class="text-muted">GUID: 3d1fcd2a-e51c-4cbe-8d84-9a843bad8dc8</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/872e3063-0fc4-4e68-b2f3-f2b99184a708/">GetAdGroup with PowerShell</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1069.002">T1069.002</a>
+            </td>
+            <td>
+                Adfind - Query Active Directory Groups
+                <br>
+                <small class="text-muted">GUID: 48ddc687-82af-40b7-8472-ff1e742e8274</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_pua_adfind_susp_usage.yml">PUA - AdFind Suspicious Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/bd3b0187-189b-46c0-be45-f52da2bae67f/">Windows AdFind Exe</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1069.002">T1069.002</a>
+            </td>
+            <td>
+                Permission Groups Discovery PowerShell (Domain)
+                <br>
+                <small class="text-muted">GUID: 6d5d8c96-3d2a-4da9-9d6d-9a9d341899a7</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/0cdf318b-a0dd-47d7-b257-c621c0247de8/">User Discovery With Env Vars PowerShell</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1069.001">T1069.001</a>
+            </td>
+            <td>
+                WMIObject Group Discovery
+                <br>
+                <small class="text-muted">GUID: 69119e58-96db-4110-ad27-954e48f3bb13</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/5434f670-155d-11ec-8cca-acde48001122/">Get WMIObject Group Discovery</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1069.001">T1069.001</a>
+            </td>
+            <td>
+                Wmic Group Discovery
+                <br>
+                <small class="text-muted">GUID: 7413be50-be8e-430f-ad4d-07bf197884b2</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_recon_group.yml">Local Groups Reconnaissance Via Wmic.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/83317b08-155b-11ec-8e00-acde48001122/">Wmic Group Discovery</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1069.001">T1069.001</a>
+            </td>
+            <td>
+                SharpHound3 - LocalAdmin
+                <br>
+                <small class="text-muted">GUID: e03ada14-0980-4107-aff1-7783b2b59bb1</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_ntfs_short_name_path_use_cli.yml">Use Short Name Path in Command Line</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/dd04b29a-beed-11eb-87bc-acde48001122/">Detect SharpHound Usage</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/a0bdd2f6-c2ff-11eb-b918-acde48001122/">Detect SharpHound Command-Line Arguments</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1069.001">T1069.001</a>
+            </td>
+            <td>
+                Basic Permission Groups Discovery Windows (Local)
+                <br>
+                <small class="text-muted">GUID: 1f454dd6-e134-44df-bebb-67de70fb6cd8</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_net_execution.yml">Net.EXE Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/54f5201e-155b-11ec-a6e2-acde48001122/">Net Localgroup Discovery</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059.001">T1059.001</a>
+            </td>
+            <td>
+                SOAPHound - Build Cache
+                <br>
+                <small class="text-muted">GUID: 4099086c-1470-4223-8085-8186e1ed5948</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_soaphound_execution.yml">HackTool - SOAPHound Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/8e53f839-e127-4d6d-a54d-a2f67044a57f/">Windows SOAPHound Binary Execution</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/0cdf318b-a0dd-47d7-b257-c621c0247de8/">User Discovery With Env Vars PowerShell</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059.001">T1059.001</a>
+            </td>
+            <td>
+                SOAPHound - Dump BloodHound Data
+                <br>
+                <small class="text-muted">GUID: 6a5b2a50-d037-4879-bf01-43d4d6cbf73f</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_soaphound_execution.yml">HackTool - SOAPHound Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/8e53f839-e127-4d6d-a54d-a2f67044a57f/">Windows SOAPHound Binary Execution</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/0cdf318b-a0dd-47d7-b257-c621c0247de8/">User Discovery With Env Vars PowerShell</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059.001">T1059.001</a>
+            </td>
+            <td>
+                ATHPowerShellCommandLineParameter -EncodedCommand parameter variations with encoded arguments
+                <br>
+                <small class="text-muted">GUID: 0d181431-ddf3-4826-8055-2dbf63ae848b</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_encode.yml">Suspicious Execution of Powershell with Base64</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/9be56c82-b1cc-4318-87eb-d138afaaca39/">Malicious PowerShell Process - Execution Policy Bypass</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059.001">T1059.001</a>
+            </td>
+            <td>
+                ATHPowerShellCommandLineParameter -EncodedCommand parameter variations
+                <br>
+                <small class="text-muted">GUID: 86a43bad-12e3-4e85-b97c-4d5cf25b95c3</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_encode.yml">Suspicious Execution of Powershell with Base64</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/9be56c82-b1cc-4318-87eb-d138afaaca39/">Malicious PowerShell Process - Execution Policy Bypass</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059.001">T1059.001</a>
+            </td>
+            <td>
+                ATHPowerShellCommandLineParameter -Command parameter variations with encoded arguments
+                <br>
+                <small class="text-muted">GUID: 1c0a870f-dc74-49cf-9afc-eccc45e58790</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_encode.yml">Suspicious Execution of Powershell with Base64</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/9be56c82-b1cc-4318-87eb-d138afaaca39/">Malicious PowerShell Process - Execution Policy Bypass</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059.001">T1059.001</a>
+            </td>
+            <td>
+                ATHPowerShellCommandLineParameter -Command parameter variations
+                <br>
+                <small class="text-muted">GUID: 686a9785-f99b-41d4-90df-66ed515f81d7</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/9be56c82-b1cc-4318-87eb-d138afaaca39/">Malicious PowerShell Process - Execution Policy Bypass</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059.001">T1059.001</a>
+            </td>
+            <td>
+                Powershell invoke mshta.exe download
+                <br>
+                <small class="text-muted">GUID: 8a2ad40b-12c7-4b25-8521-2737b0a415af</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/54a6ed00-3256-11ec-b031-acde48001122/">CMD Carry Out String Command Parameter</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059.001">T1059.001</a>
+            </td>
+            <td>
+                Powershell MsXml COM object - with prompt
+                <br>
+                <small class="text-muted">GUID: 388a7340-dbc1-4c9d-8e59-b75ad8c6d5da</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_iex_patterns.yml">Suspicious PowerShell IEX Execution Patterns</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_parameter_variation.yml">Suspicious PowerShell Parameter Substring</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_set_policies_to_unsecure_level.yml">Change PowerShell Policies to an Insecure Level</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/9be56c82-b1cc-4318-87eb-d138afaaca39/">Malicious PowerShell Process - Execution Policy Bypass</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059.001">T1059.001</a>
+            </td>
+            <td>
+                Invoke-AppPathBypass
+                <br>
+                <small class="text-muted">GUID: 06a220b6-7e29-4bd8-9d07-5b4d86742372</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_progname.yml">Suspicious Program Names</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_download_patterns.yml">Suspicious PowerShell Download and Execute Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059.001">T1059.001</a>
+            </td>
+            <td>
+                Mimikatz
+                <br>
+                <small class="text-muted">GUID: f3132740-55bc-48c4-bcc0-758a459cd027</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_progname.yml">Suspicious Program Names</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_download_patterns.yml">Suspicious PowerShell Download and Execute Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_malicious_cmdlets.yml">Malicious PowerShell Commandlets - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_mimikatz_command_line.yml">HackTool - Mimikatz Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059">T1059</a>
+            </td>
+            <td>
+                AutoIt Script Execution
+                <br>
+                <small class="text-muted">GUID: a9b93f17-31cb-435d-a462-5e838a2a6026</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/0ecb40d9-492b-4a57-9f87-515dd742794c/">Windows AutoIt3 Execution</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1055.001">T1055.001</a>
+            </td>
+            <td>
+                WinPwn - Get SYSTEM shell - Bind System Shell using UsoClient DLL load technique
+                <br>
+                <small class="text-muted">GUID: 8b56f787-73d9-4f1d-87e8-d07e89cbc7f5</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_download_patterns.yml">Suspicious PowerShell Download and Execute Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_malicious_cmdlets.yml">Malicious PowerShell Commandlets - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_inline_win_api_access.yml">Potential WinAPI Calls Via CommandLine</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1053.005">T1053.005</a>
+            </td>
+            <td>
+                Scheduled Task ("Ghost Task") via Registry Key Manipulation
+                <br>
+                <small class="text-muted">GUID: 704333ca-cc12-4bcf-9916-101844881f54</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sysinternals_eula_accepted.yml">Potential Execution of Sysinternals Tools</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/d0026380-b3c4-4da0-ac8e-02790063ff6b/">Windows Command and Scripting Interpreter Hunting Path Traversal</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1053.005">T1053.005</a>
+            </td>
+            <td>
+                Scheduled task Remote
+                <br>
+                <small class="text-muted">GUID: 2e5eac3e-327b-4a88-a0c0-c4057039a8dd</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_schtasks_creation.yml">Scheduled Task Creation Via Schtasks.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/41a0e58e-884c-11ec-9976-acde48001122/">Windows Schtasks Create Run As System</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1053.005">T1053.005</a>
+            </td>
+            <td>
+                Scheduled Task Startup Script
+                <br>
+                <small class="text-muted">GUID: fec27f65-db86-4c2d-b66c-61945aee87c2</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_schtasks_schedule_type_system.yml">Suspicious Schtasks Schedule Type With High Privileges</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_schtasks_susp_pattern.yml">Suspicious Command Patterns In Scheduled Task Creation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_schtasks_system.yml">Schtasks Creation Or Modification With SYSTEM Privileges</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_schtasks_creation.yml">Scheduled Task Creation Via Schtasks.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/41a0e58e-884c-11ec-9976-acde48001122/">Windows Schtasks Create Run As System</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1049">T1049</a>
+            </td>
+            <td>
+                System Network Connections Discovery with PowerShell
+                <br>
+                <small class="text-muted">GUID: f069f0f1-baad-4831-aa2b-eddac4baac4a</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/e02af35c-1de5-4afe-b4be-f45aba57272b/">GetNetTcpconnection with PowerShell</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1048.002">T1048.002</a>
+            </td>
+            <td>
+                Exfiltrate data HTTPS using curl windows
+                <br>
+                <small class="text-muted">GUID: 1cdf2fb0-51b6-4fd8-96af-77020d5f1bf0</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/42f8f1a2-4228-11ec-aade-acde48001122/">Windows Curl Upload to Remote Destination</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1047">T1047</a>
+            </td>
+            <td>
+                Application uninstall using WMIC
+                <br>
+                <small class="text-muted">GUID: c510d25b-1667-467d-8331-a56d3e9bc4ff</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_remote_execution.yml">WMIC Remote Command Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_uninstall_application.yml">Application Removed Via Wmic.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_recon_product.yml">Potential Product Reconnaissance Via Wmic.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/272df6de-61f1-4784-877c-1fbc3e2d0838/">Remote WMI Command Attempt</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1047">T1047</a>
+            </td>
+            <td>
+                WMI Execute rundll32
+                <br>
+                <small class="text-muted">GUID: 00738d2a-4651-4d76-adf2-c43a41dfb243</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_susp_process_creation.yml">Suspicious Process Created Via Wmic.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_process_creation.yml">New Process Created Via Wmic.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/272df6de-61f1-4784-877c-1fbc3e2d0838/">Remote WMI Command Attempt</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/0661c2de-93de-11ec-9833-acde48001122/">Windows WMI Process Call Create</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/d25d2c3d-d9d8-40ec-8fdf-e86fe155a3da/">Remote Process Instantiation via WMI</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1047">T1047</a>
+            </td>
+            <td>
+                Create a Process using WMI Query and an Encoded Command
+                <br>
+                <small class="text-muted">GUID: 7db7a7f9-9531-4840-9b30-46220135441c</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_base64_invoke.yml">PowerShell Base64 Encoded Invoke Keyword</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_encode.yml">Suspicious Execution of Powershell with Base64</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_parameter_variation.yml">Suspicious PowerShell Parameter Substring</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_set_policies_to_unsecure_level.yml">Change PowerShell Policies to an Insecure Level</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/9be56c82-b1cc-4318-87eb-d138afaaca39/">Malicious PowerShell Process - Execution Policy Bypass</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1047">T1047</a>
+            </td>
+            <td>
+                WMI Execute Remote Process
+                <br>
+                <small class="text-muted">GUID: 9c8ef159-c666-472f-9874-90c8d60d136b</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_susp_process_creation.yml">Suspicious Process Created Via Wmic.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_process_creation.yml">New Process Created Via Wmic.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_remote_execution.yml">WMIC Remote Command Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/272df6de-61f1-4784-877c-1fbc3e2d0838/">Remote WMI Command Attempt</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/0661c2de-93de-11ec-9833-acde48001122/">Windows WMI Process Call Create</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/d25d2c3d-d9d8-40ec-8fdf-e86fe155a3da/">Remote Process Instantiation via WMI</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1047">T1047</a>
+            </td>
+            <td>
+                WMI Execute Local Process
+                <br>
+                <small class="text-muted">GUID: b3bdfc91-b33e-4c6d-a5c8-d64bee0276b3</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_susp_process_creation.yml">Suspicious Process Created Via Wmic.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_process_creation.yml">New Process Created Via Wmic.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/0661c2de-93de-11ec-9833-acde48001122/">Windows WMI Process Call Create</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1047">T1047</a>
+            </td>
+            <td>
+                WMI Reconnaissance List Remote Services
+                <br>
+                <small class="text-muted">GUID: 0fd48ef7-d890-4e93-a533-f7dedd5191d3</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_recon_service.yml">Service Reconnaissance Via Wmic.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_remote_execution.yml">WMIC Remote Command Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/272df6de-61f1-4784-877c-1fbc3e2d0838/">Remote WMI Command Attempt</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1047">T1047</a>
+            </td>
+            <td>
+                WMI Reconnaissance Users
+                <br>
+                <small class="text-muted">GUID: c107778c-dcf5-47c5-af2e-1d058a3df3ea</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/4902d7aa-0134-11ec-9d65-acde48001122/">Local Account Discovery With Wmic</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1036.004">T1036.004</a>
+            </td>
+            <td>
+                Creating W32Time similar named service using schtasks
+                <br>
+                <small class="text-muted">GUID: f9f2fe59-96f7-4a7d-ba9f-a9783200d4c9</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_schtasks_susp_pattern.yml">Suspicious Command Patterns In Scheduled Task Creation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_schtasks_system.yml">Schtasks Creation Or Modification With SYSTEM Privileges</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_schtasks_creation.yml">Scheduled Task Creation Via Schtasks.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/41a0e58e-884c-11ec-9976-acde48001122/">Windows Schtasks Create Run As System</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1036.003">T1036.003</a>
+            </td>
+            <td>
+                Masquerading - wscript.exe running as svchost.exe
+                <br>
+                <small class="text-muted">GUID: 24136435-c91a-4ede-9da1-8b284a1c1a23</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir_lolbin.yml">LOL-Binary Copied From System Directory</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/54a6ed00-3256-11ec-b031-acde48001122/">CMD Carry Out String Command Parameter</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1033">T1033</a>
+            </td>
+            <td>
+                GetCurrent User with PowerShell Script
+                <br>
+                <small class="text-muted">GUID: 1392bd0f-5d5a-429e-81d9-eb9d4d4d5b3b</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/7eb9c3d5-c98c-4088-acc5-8240bad15379/">GetCurrent User with PowerShell</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1021.004">T1021.004</a>
+            </td>
+            <td>
+                ESXi - Enable SSH via VIM-CMD
+                <br>
+                <small class="text-muted">GUID: 280812c8-4dae-43e9-a74e-1d08ab997c0e</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_susp_exfil_and_tunneling_tool_execution.yml">Tunneling Tool Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/8aac5e1e-0fab-4437-af0b-c6e60af23eed/">Windows Protocol Tunneling with Plink</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1021.003">T1021.003</a>
+            </td>
+            <td>
+                PowerShell Lateral Movement using MMC20
+                <br>
+                <small class="text-muted">GUID: 6dc74eb1-c9d6-4c53-b3b5-6f50ae339673</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/d4f42098-4680-11ec-ad07-3e22fbd008af/">Remote Process Instantiation via DCOM and PowerShell</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1021.002">T1021.002</a>
+            </td>
+            <td>
+                Execute command writing output to local Admin Share
+                <br>
+                <small class="text-muted">GUID: d41aaab5-bdfe-431d-a3d5-c29e9136ff46</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_redirect_local_admin_share.yml">Suspicious Redirection to Local Admin Share</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_crackmapexec_execution_patterns.yml">HackTool - CrackMapExec Execution Patterns</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/8ce07472-496f-11ec-ab3b-3e22fbd008af/">Impacket Lateral Movement Commandline Parameters</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1021.002">T1021.002</a>
+            </td>
+            <td>
+                Copy and Execute File with PsExec
+                <br>
+                <small class="text-muted">GUID: 0eb03d41-79e4-4393-8e57-6344856be1cf</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sysinternals_psexec_execution.yml">Psexec Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sysinternals_eula_accepted.yml">Potential Execution of Sysinternals Tools</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/27c3a83d-cada-47c6-9042-67baf19d2574/">Detect PsExec With accepteula Flag</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1021.002">T1021.002</a>
+            </td>
+            <td>
+                Map admin share
+                <br>
+                <small class="text-muted">GUID: 3386975b-367a-4fbb-9d77-4dcf3639ffd3</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/54a6ed00-3256-11ec-b031-acde48001122/">CMD Carry Out String Command Parameter</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1018">T1018</a>
+            </td>
+            <td>
+                Remote System Discovery - net group Domain Controller
+                <br>
+                <small class="text-muted">GUID: 5843529a-5056-4bc1-9c13-a311e2af4ca0</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_net_execution.yml">Net.EXE Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_net_groups_and_accounts_recon.yml">Suspicious Group And Account Reconnaissance Activity Using Net.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/f2f14ac7-fa81-471a-80d5-7eb65c3c7349/">Domain Group Discovery With Net</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1018">T1018</a>
+            </td>
+            <td>
+                Get-WmiObject to Enumerate Domain Controllers
+                <br>
+                <small class="text-muted">GUID: e3cf5123-f6c9-4375-bdf2-1bb3ba43a1ad</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/7141122c-3bc2-4aaa-ab3b-7a85a0bbefc3/">GetWmiObject Ds Computer with PowerShell</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1018">T1018</a>
+            </td>
+            <td>
+                Enumerate Active Directory Computers with Get-AdComputer
+                <br>
+                <small class="text-muted">GUID: 97e89d9e-e3f5-41b5-a90f-1e0825df0fdf</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/c5a31f80-5888-4d81-9f78-1cc65026316e/">GetAdComputer with PowerShell</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1018">T1018</a>
+            </td>
+            <td>
+                Adfind - Enumerate Active Directory Computer Objects
+                <br>
+                <small class="text-muted">GUID: a889f5be-2d54-4050-bd05-884578748bb4</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_pua_adfind_susp_usage.yml">PUA - AdFind Suspicious Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/bd3b0187-189b-46c0-be45-f52da2bae67f/">Windows AdFind Exe</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1018">T1018</a>
+            </td>
+            <td>
+                Remote System Discovery - nltest
+                <br>
+                <small class="text-muted">GUID: 52ab5108-3f6f-42fb-8ba3-73bc054f22c8</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_nltest_recon.yml">Potential Recon Activity Via Nltest.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_nltest_execution.yml">Nltest.EXE Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/41243735-89a7-4c83-bcdd-570aa78f00a1/">Domain Controller Discovery with Nltest</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1018">T1018</a>
+            </td>
+            <td>
+                Remote System Discovery - net group Domain Computers
+                <br>
+                <small class="text-muted">GUID: f1bf6c8f-9016-4edf-aff9-80b65f5d711f</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_net_execution.yml">Net.EXE Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_net_groups_and_accounts_recon.yml">Suspicious Group And Account Reconnaissance Activity Using Net.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/f2f14ac7-fa81-471a-80d5-7eb65c3c7349/">Domain Group Discovery With Net</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/9df16706-04a2-41e2-bbfe-9b38b34409d3/">Remote System Discovery with Net</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1018">T1018</a>
+            </td>
+            <td>
+                Remote System Discovery - net
+                <br>
+                <small class="text-muted">GUID: 85321a9c-897f-4a60-9f20-29788e50bccd</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_net_view_share_and_sessions_enum.yml">Share And Session Enumeration Using Net.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/9df16706-04a2-41e2-bbfe-9b38b34409d3/">Remote System Discovery with Net</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1016">T1016</a>
+            </td>
+            <td>
+                DNS Server Discovery Using nslookup
+                <br>
+                <small class="text-muted">GUID: 34557863-344a-468f-808b-a1bfb89b4fa9</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_nslookup_domain_discovery.yml">Network Reconnaissance Activity</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/2418780f-7c3e-4c45-b8b4-996ea850cd49/">Windows System Discovery Using ldap Nslookup</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1016">T1016</a>
+            </td>
+            <td>
+                Adfind - Enumerate Active Directory Subnet Objects
+                <br>
+                <small class="text-muted">GUID: 9bb45dd7-c466-4f93-83a1-be30e56033ee</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_pua_adfind_susp_usage.yml">PUA - AdFind Suspicious Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/bd3b0187-189b-46c0-be45-f52da2bae67f/">Windows AdFind Exe</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.006">T1003.006</a>
+            </td>
+            <td>
+                DCSync (Active Directory)
+                <br>
+                <small class="text-muted">GUID: 129efd28-8497-4c87-a1b0-73b9a870ca3e</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_mimikatz_command_line.yml">HackTool - Mimikatz Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_cobaltstrike_bloopers_cmd.yml">Operator Bloopers Cobalt Strike Commands</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/a9e0d6d3-9676-4e26-994d-4e0406bb4467/">Windows Mimikatz Binary Execution</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.004">T1003.004</a>
+            </td>
+            <td>
+                Dump Kerberos Tickets from LSA using dumper.ps1
+                <br>
+                <small class="text-muted">GUID: 2dfa3bff-9a27-46db-ab75-7faefdaca732</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.004">T1003.004</a>
+            </td>
+            <td>
+                Dumping LSA Secrets
+                <br>
+                <small class="text-muted">GUID: 55295ab0-a703-433b-9ca4-ae13807de12f</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_ntfs_short_name_path_use_cli.yml">Use Short Name Path in Command Line</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sysinternals_psexec_execution.yml">Psexec Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sysinternals_eula_accepted.yml">Potential Execution of Sysinternals Tools</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/e9fb4a59-c5fb-440a-9f24-191fbc6b2911/">Attempted Credential Dump From Registry via Reg exe</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/27c3a83d-cada-47c6-9042-67baf19d2574/">Detect PsExec With accepteula Flag</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.003">T1003.003</a>
+            </td>
+            <td>
+                Create Volume Shadow Copy with diskshadow
+                <br>
+                <small class="text-muted">GUID: b385996c-0e7d-4e27-95a4-aca046b119a7</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_diskshadow_script_mode.yml">Diskshadow Script Mode Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_dir_execution.yml">File And SubFolder Enumeration Via Dir Command</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/a3b3bc96-1c4f-4eba-8218-027cac739a48/">Windows Password Managers Discovery</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/58adae9e-8ea3-11ec-90f6-acde48001122/">Windows Diskshadow Proxy Execution</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.003">T1003.003</a>
+            </td>
+            <td>
+                Create Symlink to Volume Shadow Copy
+                <br>
+                <small class="text-muted">GUID: 21748c28-2793-4284-9e07-d6d028b66702</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_mklink_shadow_copies_access_symlink.yml">VolumeShadowCopy Symlink Creation Via Mklink</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_sensitive_file_access_shadowcopy.yml">Sensitive File Access Via Volume Shadow Copy Backup</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/c5eac648-fae0-4263-91a6-773df1f4c903/">Credential Dumping via Symlink to Shadow Copy</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.003">T1003.003</a>
+            </td>
+            <td>
+                Create Volume Shadow Copy remotely (WMI) with esentutl
+                <br>
+                <small class="text-muted">GUID: 21c7bf80-3e8b-40fa-8f9d-f5b194ff2865</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_esentutl_sensitive_file_copy.yml">Copying Sensitive Files with Credential Data</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_susp_process_creation.yml">Suspicious Process Created Via Wmic.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_process_creation.yml">New Process Created Via Wmic.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_remote_execution.yml">WMIC Remote Command Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/272df6de-61f1-4784-877c-1fbc3e2d0838/">Remote WMI Command Attempt</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/d8c406fe-23d2-45f3-a983-1abe7b83ff3b/">Credential Dumping via Copy Command from Shadow Copy</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/0661c2de-93de-11ec-9833-acde48001122/">Windows WMI Process Call Create</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/d25d2c3d-d9d8-40ec-8fdf-e86fe155a3da/">Remote Process Instantiation via WMI</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.003">T1003.003</a>
+            </td>
+            <td>
+                Create Volume Shadow Copy remotely with WMI
+                <br>
+                <small class="text-muted">GUID: d893459f-71f0-484d-9808-ec83b2b64226</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_shadow_copies_creation.yml">Shadow Copies Creation Using Operating Systems Utilities</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_recon_volume.yml">System Disk And Volume Reconnaissance Via Wmic.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_remote_execution.yml">WMIC Remote Command Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/272df6de-61f1-4784-877c-1fbc3e2d0838/">Remote WMI Command Attempt</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/eb120f5f-b879-4a63-97c1-93352b5df844/">Creation of Shadow Copy</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.003">T1003.003</a>
+            </td>
+            <td>
+                Create Volume Shadow Copy with WMI
+                <br>
+                <small class="text-muted">GUID: 224f7de0-8f0a-4a94-b5d8-989b036c86da</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_shadow_copies_creation.yml">Shadow Copies Creation Using Operating Systems Utilities</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_recon_volume.yml">System Disk And Volume Reconnaissance Via Wmic.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/eb120f5f-b879-4a63-97c1-93352b5df844/">Creation of Shadow Copy</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.003">T1003.003</a>
+            </td>
+            <td>
+                Copy NTDS.dit from Volume Shadow Copy
+                <br>
+                <small class="text-muted">GUID: c6237146-9ea6-4711-85c9-c56d263a6b03</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_esentutl_sensitive_file_copy.yml">Copying Sensitive Files with Credential Data</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_sensitive_file_access_shadowcopy.yml">Sensitive File Access Via Volume Shadow Copy Backup</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_ntds.yml">Suspicious Process Patterns NTDS.DIT Exfil</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_shadowcopy_access.yml">Copy From VolumeShadowCopy Via Cmd.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/e9fb4a59-c5fb-440a-9f24-191fbc6b2911/">Attempted Credential Dump From Registry via Reg exe</a></li><li><a target="_blank" href="https://research.splunk.com/endpoint/d8c406fe-23d2-45f3-a983-1abe7b83ff3b/">Credential Dumping via Copy Command from Shadow Copy</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.003">T1003.003</a>
+            </td>
+            <td>
+                Create Volume Shadow Copy with vssadmin
+                <br>
+                <small class="text-muted">GUID: dcebead7-6c28-4b4b-bf3c-79deb1b1fc7f</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_shadow_copies_creation.yml">Shadow Copies Creation Using Operating Systems Utilities</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/eb120f5f-b879-4a63-97c1-93352b5df844/">Creation of Shadow Copy</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.002">T1003.002</a>
+            </td>
+            <td>
+                dump volume shadow copy hives with certutil
+                <br>
+                <small class="text-muted">GUID: eeb9751a-d598-42d3-b11c-c122d9c3f6c7</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_esentutl_sensitive_file_copy.yml">Copying Sensitive Files with Credential Data</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_redirection_susp_folder.yml">Potentially Suspicious CMD Shell Output Redirect</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_sensitive_file_access_shadowcopy.yml">Sensitive File Access Via Volume Shadow Copy Backup</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_certutil_encode.yml">File Encoded To Base64 Via Certutil.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_certutil_encode_susp_location.yml">File In Suspicious Location Encoded To Base64 Via Certutil.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/d8c406fe-23d2-45f3-a983-1abe7b83ff3b/">Credential Dumping via Copy Command from Shadow Copy</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.002">T1003.002</a>
+            </td>
+            <td>
+                esentutl.exe SAM copy
+                <br>
+                <small class="text-muted">GUID: a90c2f4d-6726-444e-99d2-a00cd7c20480</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_esentutl_sensitive_file_copy.yml">Copying Sensitive Files with Credential Data</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/d372f928-ce4f-11eb-a762-acde48001122/">Esentutl SAM Copy</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.002">T1003.002</a>
+            </td>
+            <td>
+                Registry dump of SAM, creds, and secrets
+                <br>
+                <small class="text-muted">GUID: 5c2571d0-1572-416d-9676-812e64ca9f44</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/e9fb4a59-c5fb-440a-9f24-191fbc6b2911/">Attempted Credential Dump From Registry via Reg exe</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.001">T1003.001</a>
+            </td>
+            <td>
+                Powershell Mimikatz
+                <br>
+                <small class="text-muted">GUID: 66fb0bc1-3c3f-47e9-a298-550ecfefacbc</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_progname.yml">Suspicious Program Names</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_susp_download_patterns.yml">Suspicious PowerShell Download and Execute Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_malicious_cmdlets.yml">Malicious PowerShell Commandlets - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_mimikatz_command_line.yml">HackTool - Mimikatz Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_patterns.yml">PowerShell Download Pattern</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://research.splunk.com/endpoint/4d015ef2-7adf-11eb-95da-acde48001122/">Any Powershell DownloadString</a></li>
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1562.001">T1562.001</a>
+            </td>
+            <td>
+                Kill antimalware protected processes using Backstab
+                <br>
+                <small class="text-muted">GUID: 24a12b91-05a7-4deb-8d7f-035fa98591bc</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sysinternals_eula_accepted.yml">Potential Execution of Sysinternals Tools</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1562.001">T1562.001</a>
+            </td>
+            <td>
+                Uninstall Crowdstrike Falcon on Windows
+                <br>
+                <small class="text-muted">GUID: b32b1ccf-f7c1-49bc-9ddd-7d7466a7b297</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_uninstall_crowdstrike_falcon.yml">Uninstall Crowdstrike Falcon Sensor</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1562.001">T1562.001</a>
+            </td>
+            <td>
+                Remove Windows Defender Definition Files
+                <br>
+                <small class="text-muted">GUID: 3d47daaa-2f56-43e0-94cc-caf5d8d52a68</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_mpcmdrun_remove_windows_defender_definition.yml">Windows Defender Definition Files Removed</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1562.001">T1562.001</a>
+            </td>
+            <td>
+                Tamper with Windows Defender Command Prompt
+                <br>
+                <small class="text-muted">GUID: aa875ed4-8935-47e2-b2c5-6ec00ab220d2</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sc_disable_service.yml">Service StartupType Change Via Sc.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_disable_defender_av_security_monitoring.yml">Disable Windows Defender AV Security Monitoring</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_service_tamper.yml">Suspicious Windows Service Tampering</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1562.001">T1562.001</a>
+            </td>
+            <td>
+                Disable Arbitrary Security Windows Service
+                <br>
+                <small class="text-muted">GUID: a1230893-56ac-4c81-b644-2108e982f8f5</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sc_disable_service.yml">Service StartupType Change Via Sc.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1562.001">T1562.001</a>
+            </td>
+            <td>
+                AMSI Bypass - AMSI InitFailed
+                <br>
+                <small class="text-muted">GUID: 695eed40-e949-40e5-b306-b4031e4154bd</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_amsi_init_failed_bypass.yml">Potential AMSI Bypass Via .NET Reflection</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1562.001">T1562.001</a>
+            </td>
+            <td>
+                Unload Sysmon Filter Driver
+                <br>
+                <small class="text-muted">GUID: 811b3e76-c41b-430c-ac0d-e2380bfaa164</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_fltmc_unload_driver_sysmon.yml">Sysmon Driver Unloaded Via Fltmc.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_fltmc_unload_driver.yml">Filter Driver Unloaded Via Fltmc.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1562">T1562</a>
+            </td>
+            <td>
+                Windows Disable LSA Protection
+                <br>
+                <small class="text-muted">GUID: 40075d5f-3a70-4c66-9125-f72bee87247d</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_lsa_ppl_protection_disabled.yml">LSA PPL Protection Disabled Via Reg.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1560.001">T1560.001</a>
+            </td>
+            <td>
+                Compress Data and lock with password for Exfiltration with winzip
+                <br>
+                <small class="text-muted">GUID: 01df0353-d531-408d-a0c5-3161bf822134</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_winzip_password_compression.yml">Compress Data and Lock With Password for Exfiltration With WINZIP</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_dir_execution.yml">File And SubFolder Enumeration Via Dir Command</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1560.001">T1560.001</a>
+            </td>
+            <td>
+                Compress Data and lock with password for Exfiltration with winrar
+                <br>
+                <small class="text-muted">GUID: 8dd61a55-44c6-43cc-af0c-8bdda276860c</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rar_compression_with_password.yml">Rar Usage with Password and Compression Level</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1555.004">T1555.004</a>
+            </td>
+            <td>
+                Access Saved Credentials via VaultCmd
+                <br>
+                <small class="text-muted">GUID: 9c2dd36d-5c8b-4b29-8d72-a11b0d5d7439</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_vaultcmd_list_creds.yml">Windows Credential Manager Access via VaultCmd</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1555.003">T1555.003</a>
+            </td>
+            <td>
+                Dump Chrome Login Data with esentutl
+                <br>
+                <small class="text-muted">GUID: 70422253-8198-4019-b617-6be401b49fce</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_esentutl_sensitive_file_copy.yml">Copying Sensitive Files with Credential Data</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1555.003">T1555.003</a>
+            </td>
+            <td>
+                Simulating access to Windows Edge Login Data
+                <br>
+                <small class="text-muted">GUID: a6a5ec26-a2d1-4109-9d35-58b867689329</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_browser_data.yml">Potential Browser Data Stealing</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1555.003">T1555.003</a>
+            </td>
+            <td>
+                Simulating access to Windows Firefox Login Data
+                <br>
+                <small class="text-muted">GUID: eb8da98a-2e16-4551-b3dd-83de49baa14c</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_browser_data.yml">Potential Browser Data Stealing</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1555.003">T1555.003</a>
+            </td>
+            <td>
+                Simulating access to Opera Login Data
+                <br>
+                <small class="text-muted">GUID: 28498c17-57e4-495a-b0be-cc1e36de408b</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_browser_data.yml">Potential Browser Data Stealing</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1555.003">T1555.003</a>
+            </td>
+            <td>
+                Simulating access to Chrome Login Data
+                <br>
+                <small class="text-muted">GUID: 3d111226-d09a-4911-8715-fe11664f960d</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_browser_data.yml">Potential Browser Data Stealing</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1555.003">T1555.003</a>
+            </td>
+            <td>
+                LaZagne - Credentials from Browser
+                <br>
+                <small class="text-muted">GUID: 9a2915b3-3954-4cce-8c76-00fbf4dbd014</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_lazagne.yml">HackTool - LaZagne Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1555.003">T1555.003</a>
+            </td>
+            <td>
+                Run Chrome-password Collector
+                <br>
+                <small class="text-muted">GUID: 8c05b133-d438-47ca-a630-19cc464c4622</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sysinternals_eula_accepted.yml">Potential Execution of Sysinternals Tools</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1555">T1555</a>
+            </td>
+            <td>
+                Enumerate credentials from Windows Credential Manager using vaultcmd.exe [Web Credentials]
+                <br>
+                <small class="text-muted">GUID: bc071188-459f-44d5-901a-f8f2625b2d2e</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_vaultcmd_list_creds.yml">Windows Credential Manager Access via VaultCmd</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1555">T1555</a>
+            </td>
+            <td>
+                Enumerate credentials from Windows Credential Manager using vaultcmd.exe [Windows Credentials]
+                <br>
+                <small class="text-muted">GUID: 36753ded-e5c4-4eb5-bc3c-e8fba236878d</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_vaultcmd_list_creds.yml">Windows Credential Manager Access via VaultCmd</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1555">T1555</a>
+            </td>
+            <td>
+                Dump credentials from Windows Credential Manager With PowerShell [web Credentials]
+                <br>
+                <small class="text-muted">GUID: 8fd5a296-6772-4766-9991-ff4e92af7240</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1555">T1555</a>
+            </td>
+            <td>
+                Dump credentials from Windows Credential Manager With PowerShell [windows Credentials]
+                <br>
+                <small class="text-muted">GUID: c89becbe-1758-4e7d-a0f4-97d2188a23e3</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1553.004">T1553.004</a>
+            </td>
+            <td>
+                Add Root Certificate to CurrentUser Certificate Store
+                <br>
+                <small class="text-muted">GUID: ca20a3f1-42b5-4e21-ad3f-1049199ec2e0</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1553.003">T1553.003</a>
+            </td>
+            <td>
+                SIP (Subject Interface Package) Hijacking via Custom DLL
+                <br>
+                <small class="text-muted">GUID: e12f5d8d-574a-4e9d-8a84-c0e8b4a8a675</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_regsvr32_susp_parent.yml">Scripting/CommandLine Process Spawned Regsvr32</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_regsvr32_susp_exec_path_2.yml">Regsvr32 Execution From Highly Suspicious Location</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1552.006">T1552.006</a>
+            </td>
+            <td>
+                GPP Passwords (Get-GPPPassword)
+                <br>
+                <small class="text-muted">GUID: e9584f82-322c-474a-b831-940fd8b4455c</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_malicious_cmdlets.yml">Malicious PowerShell Commandlets - ProcessCreation</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1552.004">T1552.004</a>
+            </td>
+            <td>
+                Export Certificates with Mimikatz
+                <br>
+                <small class="text-muted">GUID: 290df60e-4b5d-4a5e-b0c7-dc5348ea0c86</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_mimikatz_command_line.yml">HackTool - Mimikatz Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1552.004">T1552.004</a>
+            </td>
+            <td>
+                CertUtil ExportPFX
+                <br>
+                <small class="text-muted">GUID: 336b25bf-4514-4684-8924-474974f28137</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_iex.yml">PowerShell Download and Execution Cradles</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1552.002">T1552.002</a>
+            </td>
+            <td>
+                Enumeration for PuTTY Credentials in Registry
+                <br>
+                <small class="text-muted">GUID: af197fd7-e868-448e-9bd5-05d1bcd9d9e5</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_enumeration_for_credentials_in_registry.yml">Enumeration for Credentials in Registry</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_registry_enumeration_for_credentials_cli.yml">Enumeration for 3rd Party Creds From CLI</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1552.002">T1552.002</a>
+            </td>
+            <td>
+                Enumeration for Credentials in Registry
+                <br>
+                <small class="text-muted">GUID: b6ec082c-7384-46b3-a111-9a9b8b14e5e7</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_enumeration_for_credentials_in_registry.yml">Enumeration for Credentials in Registry</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1548.002">T1548.002</a>
+            </td>
+            <td>
+                Bypass UAC using Fodhelper
+                <br>
+                <small class="text-muted">GUID: 58f641ea-12e3-499a-b684-44dee46bd182</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_open_command.yml">Suspicious Reg Add Open Command</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1547.009">T1547.009</a>
+            </td>
+            <td>
+                Shortcut Modification
+                <br>
+                <small class="text-muted">GUID: ce4fc678-364f-4282-af16-2fb4c78005ce</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_calc_uncommon_exec.yml">Suspicious Calculator Usage</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_redirection_susp_folder.yml">Potentially Suspicious CMD Shell Output Redirect</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1547.001">T1547.001</a>
+            </td>
+            <td>
+                Creating Boot Verification Program Key for application execution during successful boot
+                <br>
+                <small class="text-muted">GUID: 6e1666d5-3f2b-4b9a-80aa-f011322380d4</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sc_service_tamper_for_persistence.yml">Potential Persistence Attempt Via Existing Service Tampering</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1547.001">T1547.001</a>
+            </td>
+            <td>
+                Reg Key RunOnce
+                <br>
+                <small class="text-muted">GUID: 554cbd88-cde1-4b56-8168-0be552eed9eb</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_direct_asep_registry_keys_modification.yml">Direct Autorun Keys Modification</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_add_run_key.yml">Potential Persistence Attempt Via Run Keys Using Reg.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1547.001">T1547.001</a>
+            </td>
+            <td>
+                Reg Key Run
+                <br>
+                <small class="text-muted">GUID: e55be3fd-3521-4610-9d1a-e210e42dcf05</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_direct_asep_registry_keys_modification.yml">Direct Autorun Keys Modification</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_add_run_key.yml">Potential Persistence Attempt Via Run Keys Using Reg.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1547">T1547</a>
+            </td>
+            <td>
+                Driver Installation Using pnputil.exe
+                <br>
+                <small class="text-muted">GUID: 5cb0b071-8a5a-412f-839d-116beb2ed9f7</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_lolbin_susp_driver_installed_by_pnputil.yml">Suspicious Driver Install by pnputil.exe</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1547">T1547</a>
+            </td>
+            <td>
+                Add a driver
+                <br>
+                <small class="text-muted">GUID: cb01b3da-b0e7-4e24-bf6d-de5223526785</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_lolbin_susp_driver_installed_by_pnputil.yml">Suspicious Driver Install by pnputil.exe</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1546.011">T1546.011</a>
+            </td>
+            <td>
+                New shim database files created in the default shim database directory
+                <br>
+                <small class="text-muted">GUID: aefd6866-d753-431f-a7a4-215ca7e3f13d</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1546.011">T1546.011</a>
+            </td>
+            <td>
+                Application Shim Installation
+                <br>
+                <small class="text-muted">GUID: 9ab27e22-ee62-4211-962b-d36d9a0e6a18</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sdbinst_shim_persistence.yml">Potential Shim Database Persistence via Sdbinst.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1546.008">T1546.008</a>
+            </td>
+            <td>
+                Create Symbolic Link From osk.exe to cmd.exe
+                <br>
+                <small class="text-muted">GUID: 51ef369c-5e87-4f33-88cd-6d61be63edf2</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_del_execution.yml">File Deletion Via Del</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_del_greedy_deletion.yml">Greedy File Deletion Using Del</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_mklink_osk_cmd.yml">Potential Privilege Escalation Using Symlink Between Osk and Cmd</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1546.008">T1546.008</a>
+            </td>
+            <td>
+                Replace binary of sticky keys
+                <br>
+                <small class="text-muted">GUID: 934e90cf-29ca-48b3-863c-411737ad44e3</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_sticky_keys_replace.yml">Persistence Via Sticky Key Backdoor</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1546.007">T1546.007</a>
+            </td>
+            <td>
+                Netsh Helper DLL Registration
+                <br>
+                <small class="text-muted">GUID: 3244697d-5a3a-4dfc-941c-550f69f91a4d</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_netsh_helper_dll_persistence.yml">Potential Persistence Via Netsh Helper DLL</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1546.002">T1546.002</a>
+            </td>
+            <td>
+                Set Arbitrary Binary as Screensaver
+                <br>
+                <small class="text-muted">GUID: 281201e7-de41-4dc9-b73d-f288938cbb64</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1546.001">T1546.001</a>
+            </td>
+            <td>
+                Change Default File Association
+                <br>
+                <small class="text-muted">GUID: 10a08978-2045-4d62-8c42-1957bbbea102</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_assoc_execution.yml">Change Default File Association Via Assoc</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1546">T1546</a>
+            </td>
+            <td>
+                Persistence via ErrorHandler.cmd script execution
+                <br>
+                <small class="text-muted">GUID: 547a4736-dd1c-4b48-b4fe-e916190bb2e7</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1543.003">T1543.003</a>
+            </td>
+            <td>
+                TinyTurla backdoor service w64time
+                <br>
+                <small class="text-muted">GUID: ef0581fd-528e-4662-87bc-4c2affb86940</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sc_service_tamper_for_persistence.yml">Potential Persistence Attempt Via Existing Service Tampering</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1543.003">T1543.003</a>
+            </td>
+            <td>
+                Service Installation PowerShell
+                <br>
+                <small class="text-muted">GUID: 491a4af6-a521-4b74-b23b-f7b3f1ee9e77</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_create_service.yml">New Service Creation Using PowerShell</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_service_creation.yml">Suspicious New Service Creation</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1543.003">T1543.003</a>
+            </td>
+            <td>
+                Service Installation CMD
+                <br>
+                <small class="text-muted">GUID: 981e2942-e433-44e9-afc1-8c957a1496b6</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sc_create_service.yml">New Service Creation Using Sc.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_service_creation.yml">Suspicious New Service Creation</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1543.003">T1543.003</a>
+            </td>
+            <td>
+                Modify Fax service to run PowerShell
+                <br>
+                <small class="text-muted">GUID: ed366cde-7d12-49df-a833-671904770b9f</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sc_service_tamper_for_persistence.yml">Potential Persistence Attempt Via Existing Service Tampering</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sc_service_path_modification.yml">Suspicious Service Path Modification</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1518.001">T1518.001</a>
+            </td>
+            <td>
+                Security Software Discovery - AV Discovery via WMI
+                <br>
+                <small class="text-muted">GUID: 1553252f-14ea-4d3b-8a08-d7a4211aa945</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_recon_product_class.yml">Potential Product Class Reconnaissance Via Wmic.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_recon_product.yml">Potential Product Reconnaissance Via Wmic.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1518.001">T1518.001</a>
+            </td>
+            <td>
+                Security Software Discovery - Sysmon Service
+                <br>
+                <small class="text-muted">GUID: fe613cf3-8009-4446-9a0f-bc78a15b66c9</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_findstr_sysmon_discovery_via_default_altitude.yml">Sysmon Discovery Via Default Driver Altitude Using Findstr.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1518.001">T1518.001</a>
+            </td>
+            <td>
+                Security Software Discovery
+                <br>
+                <small class="text-muted">GUID: f92a380f-ced9-491f-b338-95a991418ce2</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_findstr_recon_pipe_output.yml">Recon Command Output Piped To Findstr.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_tasklist_basic_execution.yml">Suspicious Tasklist Discovery Command</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1518">T1518</a>
+            </td>
+            <td>
+                Find and Display Internet Explorer Browser Version
+                <br>
+                <small class="text-muted">GUID: 68981660-6670-47ee-a5fa-7e74806420a4</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_software_discovery.yml">Detected Windows Software Discovery</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1505.003">T1505.003</a>
+            </td>
+            <td>
+                Web Shell Written to Disk
+                <br>
+                <small class="text-muted">GUID: 0a2ce662-1efa-496f-a472-2fe7b080db16</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1505.002">T1505.002</a>
+            </td>
+            <td>
+                Install MS Exchange Transport Agent Persistence
+                <br>
+                <small class="text-muted">GUID: 43e92449-ff60-46e9-83a3-1a38089df94d</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_msexchange_transport_agent.yml">MSExchange Transport Agent Installation</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1490">T1490</a>
+            </td>
+            <td>
+                Modify VSS Service Permissions
+                <br>
+                <small class="text-muted">GUID: a4420f93-5386-4290-b780-f4f66abc7070</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sc_sdset_allow_service_changes.yml">Allow Service Access Using Security Descriptor Tampering Via Sc.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sc_sdset_modification.yml">Service Security Descriptor Tampering Via Sc.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sc_sdset_deny_service_access.yml">Deny Service Access Using Security Descriptor Tampering Via Sc.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1490">T1490</a>
+            </td>
+            <td>
+                Windows - vssadmin Resize Shadowstorage Volume
+                <br>
+                <small class="text-muted">GUID: da558b07-69ae-41b9-b9d4-4d98154a7049</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_shadow_copies_deletion.yml">Shadow Copies Deletion Using Operating Systems Utilities</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1490">T1490</a>
+            </td>
+            <td>
+                Windows - Disable the SR scheduled task
+                <br>
+                <small class="text-muted">GUID: 1c68c68d-83a4-4981-974e-8993055fa034</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_schtasks_disable.yml">Disable Important Scheduled Task</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1490">T1490</a>
+            </td>
+            <td>
+                Windows - Delete Backup Files
+                <br>
+                <small class="text-muted">GUID: 6b1dbaf6-cc8a-4ea6-891f-6058569653bf</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_del_execution.yml">File Deletion Via Del</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1490">T1490</a>
+            </td>
+            <td>
+                Windows - Delete Volume Shadow Copies via WMI with PowerShell
+                <br>
+                <small class="text-muted">GUID: 39a295ca-7059-4a88-86f6-09556c1211e7</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_shadow_copies_deletion.yml">Shadow Copies Deletion Using Operating Systems Utilities</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_shadowcopy_deletion.yml">Deletion of Volume Shadow Copies via WMI with PowerShell</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1490">T1490</a>
+            </td>
+            <td>
+                Windows - Disable Windows Recovery Console Repair
+                <br>
+                <small class="text-muted">GUID: cf21060a-80b3-4238-a595-22525de4ab81</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_bcdedit_boot_conf_tamper.yml">Boot Configuration Tampering Via Bcdedit.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1490">T1490</a>
+            </td>
+            <td>
+                Windows - Delete Volume Shadow Copies via WMI
+                <br>
+                <small class="text-muted">GUID: 6a3ff8dd-f49c-4272-a658-11c2fe58bd88</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_shadow_copies_deletion.yml">Shadow Copies Deletion Using Operating Systems Utilities</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1490">T1490</a>
+            </td>
+            <td>
+                Windows - Delete Volume Shadow Copies
+                <br>
+                <small class="text-muted">GUID: 43819286-91a9-4369-90ed-d31fb4da2c01</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_shadow_copies_deletion.yml">Shadow Copies Deletion Using Operating Systems Utilities</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1489">T1489</a>
+            </td>
+            <td>
+                Windows - Stop service by killing process
+                <br>
+                <small class="text-muted">GUID: f3191b84-c38b-400b-867e-3a217a27795f</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_taskkill_execution.yml">Process Terminated Via Taskkill</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1489">T1489</a>
+            </td>
+            <td>
+                Windows - Stop service using net.exe
+                <br>
+                <small class="text-muted">GUID: 41274289-ec9c-4213-bea4-e43c4aa57954</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_net_execution.yml">Net.EXE Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_net_stop_service.yml">Stop Windows Service Via Net.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1489">T1489</a>
+            </td>
+            <td>
+                Windows - Stop service using Service Controller
+                <br>
+                <small class="text-muted">GUID: 21dfb440-830d-4c86-a3e5-2a491d5a8d04</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sc_stop_service.yml">Stop Windows Service Via Sc.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1486">T1486</a>
+            </td>
+            <td>
+                PureLocker Ransom Note
+                <br>
+                <small class="text-muted">GUID: 649349c7-9abf-493b-a7a2-b1aa4d141528</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_redirection_susp_folder.yml">Potentially Suspicious CMD Shell Output Redirect</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1485">T1485</a>
+            </td>
+            <td>
+                Overwrite deleted data on C drive
+                <br>
+                <small class="text-muted">GUID: 321fd25e-0007-417f-adec-33232252be19</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cipher_overwrite_deleted_data.yml">Deleted Data Overwritten Via Cipher.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1482">T1482</a>
+            </td>
+            <td>
+                Adfind - Enumerate Active Directory Trusts
+                <br>
+                <small class="text-muted">GUID: 15fe436d-e771-4ff3-b655-2dca9ba52834</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_pua_adfind_susp_usage.yml">PUA - AdFind Suspicious Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1482">T1482</a>
+            </td>
+            <td>
+                Windows - Discover domain trusts with nltest
+                <br>
+                <small class="text-muted">GUID: 2e22641d-0498-48d2-b9ff-c71e496ccdbe</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_nltest_recon.yml">Potential Recon Activity Via Nltest.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_nltest_execution.yml">Nltest.EXE Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1222.001">T1222.001</a>
+            </td>
+            <td>
+                Grant Full Access to folder for Everyone - Ryuk Ransomware Style
+                <br>
+                <small class="text-muted">GUID: ac7e6118-473d-41ec-9ac0-ef4f1d1ed2f6</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_susp_file_permission_modifications.yml">File or Folder Permissions Modifications</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1222.001">T1222.001</a>
+            </td>
+            <td>
+                attrib - hide file
+                <br>
+                <small class="text-muted">GUID: 32b979da-7b68-42c9-9a99-0e39900fc36c</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_redirection_susp_folder.yml">Potentially Suspicious CMD Shell Output Redirect</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1222.001">T1222.001</a>
+            </td>
+            <td>
+                attrib - Remove read-only attribute
+                <br>
+                <small class="text-muted">GUID: bec1e95c-83aa-492e-ab77-60c71bbd21b0</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_susp_file_permission_modifications.yml">File or Folder Permissions Modifications</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1222.001">T1222.001</a>
+            </td>
+            <td>
+                cacls - Grant permission to specified user or group recursively
+                <br>
+                <small class="text-muted">GUID: a8206bcc-f282-40a9-a389-05d9c0263485</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_susp_file_permission_modifications.yml">File or Folder Permissions Modifications</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1222.001">T1222.001</a>
+            </td>
+            <td>
+                Take ownership using takeown utility
+                <br>
+                <small class="text-muted">GUID: 98d34bb4-6e75-42ad-9c41-1dae7dc6a001</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_takeown_recursive_own.yml">Suspicious Recursive Takeown</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_susp_file_permission_modifications.yml">File or Folder Permissions Modifications</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1222">T1222</a>
+            </td>
+            <td>
+                Enable Local and Remote Symbolic Links via fsutil
+                <br>
+                <small class="text-muted">GUID: 6c4ac96f-d4fa-44f4-83ca-56d8f4a55c02</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_fsutil_symlinkevaluation.yml">Fsutil Behavior Set SymlinkEvaluation</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1220">T1220</a>
+            </td>
+            <td>
+                WMIC bypass using remote XSL file
+                <br>
+                <small class="text-muted">GUID: 7f5be499-33be-4129-a560-66021f379b9b</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_xsl_script_processing.yml">XSL Script Execution Via WMIC.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_recon_process.yml">Process Reconnaissance Via Wmic.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1220">T1220</a>
+            </td>
+            <td>
+                WMIC bypass using local XSL file
+                <br>
+                <small class="text-muted">GUID: 1b237334-3e21-4a0c-8178-b8c996124988</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_xsl_script_processing.yml">XSL Script Execution Via WMIC.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_recon_process.yml">Process Reconnaissance Via Wmic.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.011">T1218.011</a>
+            </td>
+            <td>
+                Rundll32 execute payload by calling RouteTheCall
+                <br>
+                <small class="text-muted">GUID: 8a7f56ee-10e7-444c-a139-0109438288eb</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_susp_activity.yml">Potentially Suspicious Rundll32 Activity</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_powershell_susp_child_processes.yml">Potentially Suspicious PowerShell Child Processes</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.011">T1218.011</a>
+            </td>
+            <td>
+                Rundll32 execute command via FileProtocolHandler
+                <br>
+                <small class="text-muted">GUID: f3ad3c5b-1db1-45c1-81bf-d3370ebab6c8</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_susp_activity.yml">Potentially Suspicious Rundll32 Activity</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.011">T1218.011</a>
+            </td>
+            <td>
+                Running DLL with .init extension and function
+                <br>
+                <small class="text-muted">GUID: 2d5029f0-ae20-446f-8811-e7511b58e8b6</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_uncommon_dll_extension.yml">Rundll32 Execution With Uncommon DLL Extension</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.011">T1218.011</a>
+            </td>
+            <td>
+                Rundll32 with desk.cpl
+                <br>
+                <small class="text-muted">GUID: 83a95136-a496-423c-81d3-1c6750133917</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir_lolbin.yml">LOL-Binary Copied From System Directory</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_installscreensaver.yml">Rundll32 InstallScreenSaver Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_calc_uncommon_exec.yml">Suspicious Calculator Usage</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.011">T1218.011</a>
+            </td>
+            <td>
+                Launches an executable using Rundll32 and pcwutl.dll
+                <br>
+                <small class="text-muted">GUID: 9f5d081a-ee5a-42f9-a04e-b7bdc487e676</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_susp_activity.yml">Potentially Suspicious Rundll32 Activity</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_lolbin_pcwutl.yml">Code Execution via Pcwutl.dll</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.011">T1218.011</a>
+            </td>
+            <td>
+                Execution of HTA and VBS Files using Rundll32 and URL.dll
+                <br>
+                <small class="text-muted">GUID: 22cfde89-befe-4e15-9753-47306b37a6e3</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_susp_activity.yml">Potentially Suspicious Rundll32 Activity</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.011">T1218.011</a>
+            </td>
+            <td>
+                Rundll32 execute VBscript command
+                <br>
+                <small class="text-muted">GUID: 638730e7-7aed-43dc-bf8c-8117f805f5bb</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_mshta_inline_vbscript.yml">Wscript Shell Run In CommandLine</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_mshtml_runhtmlapplication.yml">Mshtml.DLL RunHTMLApplication Suspicious Usage</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_uncommon_dll_extension.yml">Rundll32 Execution With Uncommon DLL Extension</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.011">T1218.011</a>
+            </td>
+            <td>
+                Rundll32 execute JavaScript Remote Payload With GetObject
+                <br>
+                <small class="text-muted">GUID: 57ba4ce9-ee7a-4f27-9928-3c70c489b59d</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_mshtml_runhtmlapplication.yml">Mshtml.DLL RunHTMLApplication Suspicious Usage</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_uncommon_dll_extension.yml">Rundll32 Execution With Uncommon DLL Extension</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.010">T1218.010</a>
+            </td>
+            <td>
+                Regsvr32 Silent DLL Install Call DllRegisterServer
+                <br>
+                <small class="text-muted">GUID: 9d71c492-ea2e-4c08-af16-c6994cdf029f</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_regsvr32_susp_parent.yml">Scripting/CommandLine Process Spawned Regsvr32</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_regsvr32_susp_exec_path_2.yml">Regsvr32 Execution From Highly Suspicious Location</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.007">T1218.007</a>
+            </td>
+            <td>
+                Msiexec.exe - Execute Local MSI file with an embedded EXE
+                <br>
+                <small class="text-muted">GUID: ed3fa08a-ca18-4009-973e-03d13014d0e8</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_msiexec_install_quiet.yml">Msiexec Quiet Installation</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.007">T1218.007</a>
+            </td>
+            <td>
+                Msiexec.exe - Execute Local MSI file with an embedded DLL
+                <br>
+                <small class="text-muted">GUID: 628fa796-76c5-44c3-93aa-b9d8214fd568</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_msiexec_install_quiet.yml">Msiexec Quiet Installation</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.007">T1218.007</a>
+            </td>
+            <td>
+                Msiexec.exe - Execute Local MSI file with embedded VBScript
+                <br>
+                <small class="text-muted">GUID: 8d73c7b0-c2b1-4ac1-881a-4aa644f76064</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_msiexec_install_quiet.yml">Msiexec Quiet Installation</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.007">T1218.007</a>
+            </td>
+            <td>
+                Msiexec.exe - Execute Local MSI file with embedded JScript
+                <br>
+                <small class="text-muted">GUID: a059b6c4-e7d6-4b2e-bcd7-9b2b33191a04</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_msiexec_install_quiet.yml">Msiexec Quiet Installation</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.005">T1218.005</a>
+            </td>
+            <td>
+                Mshta used to Execute PowerShell
+                <br>
+                <small class="text-muted">GUID: 8707a805-2b76-4f32-b1c0-14e558205772</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_stdin_redirect.yml">Read Contents From Stdin Via Cmd.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_mshta_susp_execution.yml">MSHTA Suspicious Execution 01</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_mshta_inline_vbscript.yml">Wscript Shell Run In CommandLine</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.005">T1218.005</a>
+            </td>
+            <td>
+                Mshta executes VBScript to execute malicious command
+                <br>
+                <small class="text-muted">GUID: 906865c3-e05f-4acc-85c4-fbc185455095</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_mshta_susp_execution.yml">MSHTA Suspicious Execution 01</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_mshta_inline_vbscript.yml">Wscript Shell Run In CommandLine</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.005">T1218.005</a>
+            </td>
+            <td>
+                Mshta executes JavaScript Scheme Fetch Remote Payload With GetObject
+                <br>
+                <small class="text-muted">GUID: 1483fab9-4f52-4217-a9ce-daa9d7747cae</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_mshta_http.yml">Remotely Hosted HTA File Executed Via Mshta.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_mshta_javascript.yml">Suspicious JavaScript Execution Via Mshta.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.003">T1218.003</a>
+            </td>
+            <td>
+                CMSTP Executing UAC Bypass
+                <br>
+                <small class="text-muted">GUID: 748cb4f6-2fb3-4e97-b7ad-b22635a09ab0</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_uac_bypass_cmstp.yml">Bypass UAC via CMSTP</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218.003">T1218.003</a>
+            </td>
+            <td>
+                CMSTP Executing Remote Scriptlet
+                <br>
+                <small class="text-muted">GUID: 34e63321-9683-496b-bbc1-7566bc55e624</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_uac_bypass_cmstp.yml">Bypass UAC via CMSTP</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218">T1218</a>
+            </td>
+            <td>
+                System Binary Proxy Execution - Wlrmdr Lolbin
+                <br>
+                <small class="text-muted">GUID: 7816c252-b728-4ea6-a683-bd9441ca0b71</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wlrmdr_uncommon_child_process.yml">Wlrmdr.EXE Uncommon Argument Or Child Process</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218">T1218</a>
+            </td>
+            <td>
+                Provlaunch.exe Executes Arbitrary Command via Registry Key
+                <br>
+                <small class="text-muted">GUID: ab76e34f-28bf-441f-a39c-8db4835b89cc</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_registry_provlaunch_provisioning_command.yml">Potential Provisioning Registry Key Abuse For Binary Proxy Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218">T1218</a>
+            </td>
+            <td>
+                Lolbas ie4uinit.exe use as proxy
+                <br>
+                <small class="text-muted">GUID: 13c0804e-615e-43ad-b223-2dfbacd0b0b3</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218">T1218</a>
+            </td>
+            <td>
+                Lolbin Gpscript startup option
+                <br>
+                <small class="text-muted">GUID: f8da74bb-21b8-4af9-8d84-f2c8e4a220e3</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_lolbin_gpscript.yml">Gpscript Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218">T1218</a>
+            </td>
+            <td>
+                Lolbin Gpscript logon option
+                <br>
+                <small class="text-muted">GUID: 5bcda9cd-8e85-48fa-861d-b5a85d91d48c</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_lolbin_gpscript.yml">Gpscript Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218">T1218</a>
+            </td>
+            <td>
+                Load Arbitrary DLL via Wuauclt (Windows Update Client)
+                <br>
+                <small class="text-muted">GUID: 49fbd548-49e9-4bb7-94a6-3769613912b8</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wuauclt_dll_loading.yml">Proxy Execution Via Wuauclt.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218">T1218</a>
+            </td>
+            <td>
+                Invoke-ATHRemoteFXvGPUDisablementCommand base test
+                <br>
+                <small class="text-muted">GUID: 9ebe7901-7edf-45c0-b5c7-8366300919db</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_remotefxvgpudisablement_abuse.yml">RemoteFXvGPUDisablement Abuse Via AtomicTestHarnesses</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218">T1218</a>
+            </td>
+            <td>
+                Microsoft.Workflow.Compiler.exe Payload Execution
+                <br>
+                <small class="text-muted">GUID: 7cbb0f26-a4c1-4f77-b180-a009aa05637e</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_microsoft_workflow_compiler_execution.yml">Microsoft Workflow Compiler Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218">T1218</a>
+            </td>
+            <td>
+                InfDefaultInstall.exe .inf Execution
+                <br>
+                <small class="text-muted">GUID: 54ad7d5a-a1b5-472c-b6c4-f8090fb2daef</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_infdefaultinstall_execute_sct_scripts.yml">InfDefaultInstall.exe .inf Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1218">T1218</a>
+            </td>
+            <td>
+                Register-CimProvider - Execute evil dll
+                <br>
+                <small class="text-muted">GUID: ad2c17ed-f626-4061-b21e-b9804a6f3655</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_registry_cimprovider_dll_load.yml">DLL Execution Via Register-cimprovider.exe</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1217">T1217</a>
+            </td>
+            <td>
+                List Internet Explorer Bookmarks using the command prompt
+                <br>
+                <small class="text-muted">GUID: 727dbcdb-e495-4ab1-a6c4-80c7f77aef85</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_dir_execution.yml">File And SubFolder Enumeration Via Dir Command</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1217">T1217</a>
+            </td>
+            <td>
+                List Mozilla Firefox bookmarks on Windows with command prompt
+                <br>
+                <small class="text-muted">GUID: 4312cdbc-79fc-4a9c-becc-53d49c734bc5</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_where_browser_data_recon.yml">Suspicious Where Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1217">T1217</a>
+            </td>
+            <td>
+                List Google Chrome / Edge Chromium Bookmarks on Windows with command prompt
+                <br>
+                <small class="text-muted">GUID: 76f71e2f-480e-4bed-b61e-398fe17499d5</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_where_browser_data_recon.yml">Suspicious Where Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1216.001">T1216.001</a>
+            </td>
+            <td>
+                PubPrn.vbs Signed Script Bypass
+                <br>
+                <small class="text-muted">GUID: 9dd29a1f-1e16-4862-be83-913b10a88f6c</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_lolbin_pubprn.yml">Pubprn.vbs Proxy Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_wscript_cscript_script_exec.yml">WSF/JSE/JS/VBA/VBE File Execution Via Cscript/Wscript</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1216">T1216</a>
+            </td>
+            <td>
+                manage-bde.wsf Signed Script Command Execution
+                <br>
+                <small class="text-muted">GUID: 2a8f2d3c-3dec-4262-99dd-150cb2a4d63a</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_wscript_cscript_script_exec.yml">WSF/JSE/JS/VBA/VBE File Execution Via Cscript/Wscript</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_calc_uncommon_exec.yml">Suspicious Calculator Usage</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1204.002">T1204.002</a>
+            </td>
+            <td>
+                LNK Payload Download
+                <br>
+                <small class="text-muted">GUID: 581d7521-9c4b-420e-9695-2aec5241167f</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invoke_webrequest_download.yml">Suspicious Invoke-WebRequest Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1204.002">T1204.002</a>
+            </td>
+            <td>
+                Potentially Unwanted Applications (PUA)
+                <br>
+                <small class="text-muted">GUID: 02f35d62-9fdc-4a97-b899-a5d9a876d295</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invoke_webrequest_download.yml">Suspicious Invoke-WebRequest Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1204.002">T1204.002</a>
+            </td>
+            <td>
+                OSTap Payload Download
+                <br>
+                <small class="text-muted">GUID: 3f3af983-118a-4fa1-85d3-ba4daa739d80</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_redirection_susp_folder.yml">Potentially Suspicious CMD Shell Output Redirect</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1202">T1202</a>
+            </td>
+            <td>
+                Indirect Command Execution - Scriptrunner.exe
+                <br>
+                <small class="text-muted">GUID: 0fd14730-6226-4f5e-8d67-43c65f1be940</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_powershell_susp_child_processes.yml">Potentially Suspicious PowerShell Child Processes</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_lolbin_scriptrunner.yml">Use of Scriptrunner.exe</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1202">T1202</a>
+            </td>
+            <td>
+                Indirect Command Execution - forfiles.exe
+                <br>
+                <small class="text-muted">GUID: 8b34a448-40d9-4fc3-a8c8-4bb286faf7dc</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_forfiles_proxy_execution_.yml">Forfiles Command Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1202">T1202</a>
+            </td>
+            <td>
+                Indirect Command Execution - pcalua.exe
+                <br>
+                <small class="text-muted">GUID: cecfea7a-5f03-4cdd-8bc8-6f7c22862440</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_lolbin_pcalua.yml">Use of Pcalua For Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1201">T1201</a>
+            </td>
+            <td>
+                Use of SecEdit.exe to export the local security policy (including the password policy)
+                <br>
+                <small class="text-muted">GUID: 510cc97f-56ac-4cd3-a198-d3218c23d889</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_secedit_execution.yml">Potential Suspicious Activity Using SeCEdit</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1201">T1201</a>
+            </td>
+            <td>
+                Examine local password policy - Windows
+                <br>
+                <small class="text-muted">GUID: 4588d243-f24e-4549-b2e3-e627acc089f6</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_net_execution.yml">Net.EXE Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1187">T1187</a>
+            </td>
+            <td>
+                Trigger an authenticated RPC call to a target server with no Sign flag set
+                <br>
+                <small class="text-muted">GUID: 81cfdd7f-1f41-4cc5-9845-bb5149438e37</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rpcping_credential_capture.yml">Capture Credentials with Rpcping.exe</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_encode.yml">Suspicious Execution of Powershell with Base64</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1187">T1187</a>
+            </td>
+            <td>
+                PetitPotam
+                <br>
+                <small class="text-muted">GUID: 485ce873-2e65-4706-9c7e-ae3ab9e14213</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_relay_attacks_tools.yml">Potential SMB Relay Attack Tool Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1140">T1140</a>
+            </td>
+            <td>
+                Certutil Rename and Decode
+                <br>
+                <small class="text-muted">GUID: 71abc534-3c05-4d0c-80f7-cbe93cb2aa94</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir_lolbin.yml">LOL-Binary Copied From System Directory</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_calc_uncommon_exec.yml">Suspicious Calculator Usage</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1140">T1140</a>
+            </td>
+            <td>
+                Deobfuscate/Decode Files Or Information
+                <br>
+                <small class="text-muted">GUID: dc6fe391-69e6-4506-bd06-ea5eeb4082f8</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_calc_uncommon_exec.yml">Suspicious Calculator Usage</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1137">T1137</a>
+            </td>
+            <td>
+                Office Application Startup - Outlook as a C2
+                <br>
+                <small class="text-muted">GUID: bfe6ac15-c50b-4c4f-a186-0fc6b8ba936c</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_redirection_susp_folder.yml">Potentially Suspicious CMD Shell Output Redirect</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1135">T1135</a>
+            </td>
+            <td>
+                PowerView ShareFinder
+                <br>
+                <small class="text-muted">GUID: d07e4cc1-98ae-447e-9d31-36cb430d28c4</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_malicious_cmdlets.yml">Malicious PowerShell Commandlets - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_progname.yml">Suspicious Program Names</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_powershell_import_module.yml">Import New Module Via PowerShell CommandLine</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1135">T1135</a>
+            </td>
+            <td>
+                View available share drives
+                <br>
+                <small class="text-muted">GUID: ab39a04f-0c93-4540-9ff2-83f862c385ae</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_net_execution.yml">Net.EXE Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1135">T1135</a>
+            </td>
+            <td>
+                Network Share Discovery command prompt
+                <br>
+                <small class="text-muted">GUID: 20f1097d-81c1-405c-8380-32174d493bbb</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_net_use_mount_share.yml">Windows Share Mount Via Net.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1134.004">T1134.004</a>
+            </td>
+            <td>
+                Parent PID Spoofing - Spawn from Specified Process
+                <br>
+                <small class="text-muted">GUID: cbbff285-9051-444a-9d17-c07cd2d230eb</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_weak_or_abused_passwords.yml">Weak or Abused Passwords In CLI</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1127">T1127</a>
+            </td>
+            <td>
+                Lolbin Jsc.exe compile javascript to dll
+                <br>
+                <small class="text-muted">GUID: 3fc9fea2-871d-414d-8ef6-02e85e322b80</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1127">T1127</a>
+            </td>
+            <td>
+                Lolbin Jsc.exe compile javascript to exe
+                <br>
+                <small class="text-muted">GUID: 1ec1c269-d6bd-49e7-b71b-a461f7fa7bc8</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1124">T1124</a>
+            </td>
+            <td>
+                System Time Discovery
+                <br>
+                <small class="text-muted">GUID: 20aba24b-e61f-4b26-b4ce-4784f763ca20</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_net_use_mount_share.yml">Windows Share Mount Via Net.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_remote_time_discovery.yml">Discovery of a System Time</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1123">T1123</a>
+            </td>
+            <td>
+                using device audio capture commandlet
+                <br>
+                <small class="text-muted">GUID: 9c3ad250-b185-4444-b5a9-d69218a10c95</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_audio_capture.yml">Audio Capture via PowerShell</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1120">T1120</a>
+            </td>
+            <td>
+                Peripheral Device Discovery via fsutil
+                <br>
+                <small class="text-muted">GUID: 424e18fd-48b8-4201-8d3a-bf591523a686</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_fsutil_drive_enumeration.yml">Fsutil Drive Enumeration</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1119">T1119</a>
+            </td>
+            <td>
+                Recon information for export with Command Prompt
+                <br>
+                <small class="text-muted">GUID: aa1180e2-f329-4e1e-8625-2472ec0bfaf3</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_redirection_susp_folder.yml">Potentially Suspicious CMD Shell Output Redirect</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1119">T1119</a>
+            </td>
+            <td>
+                Automated Collection Command Prompt
+                <br>
+                <small class="text-muted">GUID: cb379146-53f1-43e0-b884-7ce2c635ff5b</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_automated_collection.yml">Automated Collection Command Prompt</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_redirection_susp_folder.yml">Potentially Suspicious CMD Shell Output Redirect</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_dir_execution.yml">File And SubFolder Enumeration Via Dir Command</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1115">T1115</a>
+            </td>
+            <td>
+                Utilize Clipboard to store or execute commands from
+                <br>
+                <small class="text-muted">GUID: 0cd14633-58d4-4422-9ede-daa2c9474ae7</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_stdin_redirect.yml">Read Contents From Stdin Via Cmd.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_redirection_susp_folder.yml">Potentially Suspicious CMD Shell Output Redirect</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1113">T1113</a>
+            </td>
+            <td>
+                Windows Recall Feature Enabled - DisableAIDataAnalysis Value Deleted
+                <br>
+                <small class="text-muted">GUID: 5a496325-0115-4274-8eb9-755b649ad0fb</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_enable_windows_recall.yml">Windows Recall Feature Enabled Via Reg.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
+            </td>
+            <td>
+                Modify UseTPMKeyPIN Registry entry
+                <br>
+                <small class="text-muted">GUID: 02d8b9f7-1a51-4011-8901-2d55cca667f9</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_bitlocker.yml">Suspicious Reg Add BitLocker</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
+            </td>
+            <td>
+                Modify UseTPMKey Registry entry
+                <br>
+                <small class="text-muted">GUID: c8480c83-a932-446e-a919-06a1fd1e512a</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_bitlocker.yml">Suspicious Reg Add BitLocker</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
+            </td>
+            <td>
+                Modify UseTPMPIN Registry entry
+                <br>
+                <small class="text-muted">GUID: 10b33fb0-c58b-44cd-8599-b6da5ad6384c</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_bitlocker.yml">Suspicious Reg Add BitLocker</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
+            </td>
+            <td>
+                Modify EnableBDEWithNoTPM Registry entry
+                <br>
+                <small class="text-muted">GUID: bacb3e73-8161-43a9-8204-a69fe0e4b482</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_bitlocker.yml">Suspicious Reg Add BitLocker</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
+            </td>
+            <td>
+                Requires the BitLocker PIN for Pre-boot authentication
+                <br>
+                <small class="text-muted">GUID: 26fc7375-a551-4336-90d7-3f2817564304</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_bitlocker.yml">Suspicious Reg Add BitLocker</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
+            </td>
+            <td>
+                Disable Windows Remote Desktop Protocol
+                <br>
+                <small class="text-muted">GUID: 5f8e36de-37ca-455e-b054-a2584f043c06</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_rdp_keys_tamper.yml">Potential Tampering With RDP Related Registry Keys Via Reg.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
+            </td>
+            <td>
+                Enable RDP via Registry (fDenyTSConnections)
+                <br>
+                <small class="text-muted">GUID: 16bdbe52-371c-4ccf-b708-79fba61f1db4</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_rdp_keys_tamper.yml">Potential Tampering With RDP Related Registry Keys Via Reg.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
+            </td>
+            <td>
+                Activities To Disable Microsoft [FIDO Aka Fast IDentity Online] Authentication Detected By Modified Registry Value.
+                <br>
+                <small class="text-muted">GUID: ffeddced-bb9f-49c6-97f0-3d07a509bf94</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_susp_paths.yml">Reg Add Suspicious Paths</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_windows_defender_tamper.yml">Suspicious Windows Defender Registry Key Tampering Via Reg.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
+            </td>
+            <td>
+                Modify Internet Zone Protocol Defaults in Current User Registry - cmd
+                <br>
+                <small class="text-muted">GUID: c88ef166-50fa-40d5-a80c-e2b87d4180f7</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_registry_ie_security_zone_protocol_defaults_downgrade.yml">IE ZoneMap Setting Downgraded To MyComputer Zone For HTTP Protocols Via CLI</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
+            </td>
+            <td>
+                Tamper Win Defender Protection
+                <br>
+                <small class="text-muted">GUID: 3b625eaa-c10d-4635-af96-3eae7d2a2f3c</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_susp_paths.yml">Reg Add Suspicious Paths</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_windows_defender_tamper.yml">Suspicious Windows Defender Registry Key Tampering Via Reg.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
+            </td>
+            <td>
+                Enabling Remote Desktop Protocol via Remote Registry
+                <br>
+                <small class="text-muted">GUID: e3ad8e83-3089-49ff-817f-e52f8c948090</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_rdp_keys_tamper.yml">Potential Tampering With RDP Related Registry Keys Via Reg.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
+            </td>
+            <td>
+                Mimic Ransomware - Allow Multiple RDP Sessions per User
+                <br>
+                <small class="text-muted">GUID: 35727d9e-7a7f-4d0c-a259-dc3906d6e8b9</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_rdp_keys_tamper.yml">Potential Tampering With RDP Related Registry Keys Via Reg.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
+            </td>
+            <td>
+                Disable Windows Error Reporting Settings
+                <br>
+                <small class="text-muted">GUID: d2c9e41e-cd86-473d-980d-b6403562e3e1</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_susp_paths.yml">Reg Add Suspicious Paths</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_windows_defender_tamper.yml">Suspicious Windows Defender Registry Key Tampering Via Reg.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
+            </td>
+            <td>
+                Ursnif Malware Registry Key Creation
+                <br>
+                <small class="text-muted">GUID: c375558d-7c25-45e9-bd64-7b23a97c1db0</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_susp_paths.yml">Reg Add Suspicious Paths</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
+            </td>
+            <td>
+                NetWire RAT Registry Key Creation
+                <br>
+                <small class="text-muted">GUID: 65704cd4-6e36-4b90-b6c1-dc29a82c8e56</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_add_run_key.yml">Potential Persistence Attempt Via Run Keys Using Reg.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
+            </td>
+            <td>
+                Suppress Win Defender Notifications
+                <br>
+                <small class="text-muted">GUID: c30dada3-7777-4590-b970-dc890b8cf113</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_susp_paths.yml">Reg Add Suspicious Paths</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_windows_defender_tamper.yml">Suspicious Windows Defender Registry Key Tampering Via Reg.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
+            </td>
+            <td>
+                Windows Add Registry Value to Load Service in Safe Mode with Network
+                <br>
+                <small class="text-muted">GUID: c173c948-65e5-499c-afbe-433722ed5bd4</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_add_safeboot.yml">Add SafeBoot Keys Via Reg Utility</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
+            </td>
+            <td>
+                Windows Add Registry Value to Load Service in Safe Mode without Network
+                <br>
+                <small class="text-muted">GUID: 1dd59fb3-1cb3-4828-805d-cf80b4c3bbb5</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_add_safeboot.yml">Add SafeBoot Keys Via Reg Utility</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
+            </td>
+            <td>
+                Windows Powershell Logging Disabled
+                <br>
+                <small class="text-muted">GUID: 95b25212-91a7-42ff-9613-124aca6845a8</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
+            </td>
+            <td>
+                Modify registry to store logon credentials
+                <br>
+                <small class="text-muted">GUID: c0413fb5-33e2-40b7-9b6f-60b29f4a7a18</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_susp_paths.yml">Reg Add Suspicious Paths</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1112">T1112</a>
+            </td>
+            <td>
+                Modify Registry of Local Machine - cmd
+                <br>
+                <small class="text-muted">GUID: 282f929a-6bc5-42b8-bd93-960c3ba35afe</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_direct_asep_registry_keys_modification.yml">Direct Autorun Keys Modification</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_add_run_key.yml">Potential Persistence Attempt Via Run Keys Using Reg.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1110.001">T1110.001</a>
+            </td>
+            <td>
+                Password Brute User using Kerbrute Tool
+                <br>
+                <small class="text-muted">GUID: 59dbeb1a-79a7-4c2a-baf4-46d0f4c761c4</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_ntfs_short_name_path_use_cli.yml">Use Short Name Path in Command Line</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1105">T1105</a>
+            </td>
+            <td>
+                iwr or Invoke Web-Request download
+                <br>
+                <small class="text-muted">GUID: c01cad7f-7a4c-49df-985e-b190dcf6a279</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_script_exec_from_temp.yml">Suspicious Script Execution From Temp Folder</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invoke_webrequest_download.yml">Suspicious Invoke-WebRequest Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1105">T1105</a>
+            </td>
+            <td>
+                Download a file using wscript
+                <br>
+                <small class="text-muted">GUID: 97116a3f-efac-4b26-8336-b9cb18c45188</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_wscript_cscript_script_exec.yml">WSF/JSE/JS/VBA/VBE File Execution Via Cscript/Wscript</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1105">T1105</a>
+            </td>
+            <td>
+                certreq download
+                <br>
+                <small class="text-muted">GUID: 6fdaae87-c05b-42f8-842e-991a74e8376b</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_lolbin_susp_certreq_download.yml">Suspicious Certreq Command to Download</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1105">T1105</a>
+            </td>
+            <td>
+                Lolbas replace.exe use to copy UNC file
+                <br>
+                <small class="text-muted">GUID: ed0335ac-0354-400c-8148-f6151d20035a</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_lolbin_replace.yml">Replace.exe Usage</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_del_greedy_deletion.yml">Greedy File Deletion Using Del</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1105">T1105</a>
+            </td>
+            <td>
+                Lolbas replace.exe use to copy file
+                <br>
+                <small class="text-muted">GUID: 54782d65-12f0-47a5-b4c1-b70ee23de6df</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_lolbin_replace.yml">Replace.exe Usage</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_del_greedy_deletion.yml">Greedy File Deletion Using Del</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1105">T1105</a>
+            </td>
+            <td>
+                Printer Migration Command-Line Tool UNC share folder into a zip file
+                <br>
+                <small class="text-muted">GUID: 49845fc1-7961-4590-a0f0-3dbcf065ae7e</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_del_execution.yml">File Deletion Via Del</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_redirection_susp_folder.yml">Potentially Suspicious CMD Shell Output Redirect</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_del_greedy_deletion.yml">Greedy File Deletion Using Del</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_lolbin_printbrm.yml">PrintBrm ZIP Creation of Extraction</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1105">T1105</a>
+            </td>
+            <td>
+                Download a file with IMEWDBLD.exe
+                <br>
+                <small class="text-muted">GUID: 1a02df58-09af-4064-a765-0babe1a0d1e2</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_imewbdld_download.yml">Arbitrary File Download Via IMEWDBLD.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1105">T1105</a>
+            </td>
+            <td>
+                File download with finger.exe on Windows
+                <br>
+                <small class="text-muted">GUID: 5f507e45-8411-4f99-84e7-e38530c45d01</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_finger_execution.yml">Finger.EXE Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1105">T1105</a>
+            </td>
+            <td>
+                Download a File with Windows Defender MpCmdRun.exe
+                <br>
+                <small class="text-muted">GUID: 815bef8b-bf91-4b67-be4c-abe4c2a94ccc</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_ntfs_short_name_path_use_cli.yml">Use Short Name Path in Command Line</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1105">T1105</a>
+            </td>
+            <td>
+                svchost writing a file to a UNC path
+                <br>
+                <small class="text-muted">GUID: fa5a2759-41d7-4e13-a19c-e8f28a53566f</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_lateral_movement.yml">Copy From Or To Admin Share Or Sysvol Folder</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1105">T1105</a>
+            </td>
+            <td>
+                OSTAP Worming Activity
+                <br>
+                <small class="text-muted">GUID: 2ca61766-b456-4fcf-a35a-1233685e1cad</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_del_execution.yml">File Deletion Via Del</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1090.001">T1090.001</a>
+            </td>
+            <td>
+                portproxy reg key
+                <br>
+                <small class="text-muted">GUID: b8223ea9-4be2-44a6-b50a-9657a3d4e72a</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_netsh_port_forwarding.yml">New Port Forwarding Rule Added Via Netsh.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1087.002">T1087.002</a>
+            </td>
+            <td>
+                Enumerate Linked Policies In ADSISearcher Discovery
+                <br>
+                <small class="text-muted">GUID: 7ab0205a-34e4-4a44-9b04-e1541d1a57be</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_pua_adfind_susp_usage.yml">PUA - AdFind Suspicious Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1087.002">T1087.002</a>
+            </td>
+            <td>
+                Enumerate Active Directory Users with ADSISearcher
+                <br>
+                <small class="text-muted">GUID: 02e8be5a-3065-4e54-8cc8-a14d138834d3</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_pua_adfind_susp_usage.yml">PUA - AdFind Suspicious Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1087.002">T1087.002</a>
+            </td>
+            <td>
+                Adfind - Enumerate Active Directory Exchange AD Objects
+                <br>
+                <small class="text-muted">GUID: 5e2938fb-f919-47b6-8b29-2f6a1f718e99</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_pua_adfind_enumeration.yml">PUA - Suspicious ActiveDirectory Enumeration Via AdFind.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1087.002">T1087.002</a>
+            </td>
+            <td>
+                Adfind - Enumerate Active Directory Admins
+                <br>
+                <small class="text-muted">GUID: b95fd967-4e62-4109-b48d-265edfd28c3a</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_pua_adfind_enumeration.yml">PUA - Suspicious ActiveDirectory Enumeration Via AdFind.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1087.002">T1087.002</a>
+            </td>
+            <td>
+                Adfind -Listing password policy
+                <br>
+                <small class="text-muted">GUID: 736b4f53-f400-4c22-855d-1a6b5a551600</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_pua_adfind_enumeration.yml">PUA - Suspicious ActiveDirectory Enumeration Via AdFind.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1087.002">T1087.002</a>
+            </td>
+            <td>
+                Automated AD Recon (ADRecon)
+                <br>
+                <small class="text-muted">GUID: 95018438-454a-468c-a0fa-59c800149b59</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_progname.yml">Suspicious Program Names</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1083">T1083</a>
+            </td>
+            <td>
+                File and Directory Discovery (cmd.exe)
+                <br>
+                <small class="text-muted">GUID: 0e36303b-6762-4500-b003-127743b80ba6</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_redirection_susp_folder.yml">Potentially Suspicious CMD Shell Output Redirect</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_dir_execution.yml">File And SubFolder Enumeration Via Dir Command</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1082">T1082</a>
+            </td>
+            <td>
+                System Information Discovery
+                <br>
+                <small class="text-muted">GUID: 4060ee98-01ae-4c8e-8aad-af8300519cc7</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_gather_network_info_execution.yml">Suspicious Reconnaissance Activity Via GatherNetworkInfo.VBS</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_wscript_cscript_script_exec.yml">WSF/JSE/JS/VBA/VBE File Execution Via Cscript/Wscript</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_lolbin_gather_network_info.yml">Potential Reconnaissance Activity Via GatherNetworkInfo.VBS</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1082">T1082</a>
+            </td>
+            <td>
+                Griffon Recon
+                <br>
+                <small class="text-muted">GUID: 69bd4abe-8759-49a6-8d21-0f15822d6370</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_wscript_cscript_script_exec.yml">WSF/JSE/JS/VBA/VBE File Execution Via Cscript/Wscript</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_powershell_susp_child_processes.yml">Potentially Suspicious PowerShell Child Processes</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1082">T1082</a>
+            </td>
+            <td>
+                Windows MachineGUID Discovery
+                <br>
+                <small class="text-muted">GUID: 224b4daf-db44-404e-b6b2-f4d1f0126ef8</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_machineguid.yml">Suspicious Query of MachineGUID</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1082">T1082</a>
+            </td>
+            <td>
+                System Information Discovery
+                <br>
+                <small class="text-muted">GUID: 66703791-c902-4560-8770-42b8a91f7667</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_query_registry.yml">Potential Configuration And Service Reconnaissance Via Reg.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1078.003">T1078.003</a>
+            </td>
+            <td>
+                Create local account with admin privileges
+                <br>
+                <small class="text-muted">GUID: a524ce99-86de-4db6-b4f9-e08f35a47a15</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_add_user_local_admin_group.yml">User Added to Local Administrators Group</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1078.001">T1078.001</a>
+            </td>
+            <td>
+                Enable Guest account with RDP capability and admin privileges
+                <br>
+                <small class="text-muted">GUID: 99747561-ed8d-47f2-9c91-1e5fde1ed6e0</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_add_user_local_admin_group.yml">User Added to Local Administrators Group</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_add_user_remote_desktop_group.yml">User Added to Remote Desktop Users Group</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_weak_or_abused_passwords.yml">Weak or Abused Passwords In CLI</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1074.001">T1074.001</a>
+            </td>
+            <td>
+                Zip a Folder with PowerShell for Staging in Temp
+                <br>
+                <small class="text-muted">GUID: a57fbe4b-3440-452a-88a7-943531ac872a</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_zip_compress.yml">Folder Compress To Potentially Suspicious Output Via Compress-Archive Cmdlet</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1074.001">T1074.001</a>
+            </td>
+            <td>
+                Stage data from Discovery.bat
+                <br>
+                <small class="text-muted">GUID: 107706a5-6f9f-451a-adae-bab8c667829f</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invoke_webrequest_download.yml">Suspicious Invoke-WebRequest Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1071.001">T1071.001</a>
+            </td>
+            <td>
+                Malicious User Agents - CMD
+                <br>
+                <small class="text-muted">GUID: dc3488b0-08c7-4fea-b585-905c83b48180</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_stdin_redirect.yml">Read Contents From Stdin Via Cmd.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1070.005">T1070.005</a>
+            </td>
+            <td>
+                Remove Network Share
+                <br>
+                <small class="text-muted">GUID: 09210ad5-1ef2-4077-9ad3-7351e13e9222</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_net_use_mount_share.yml">Windows Share Mount Via Net.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_net_share_unmount.yml">Unmount Share Via Net.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_net_execution.yml">Net.EXE Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1070.005">T1070.005</a>
+            </td>
+            <td>
+                Add Network Share
+                <br>
+                <small class="text-muted">GUID: 14c38f32-6509-46d8-ab43-d53e32d2b131</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_net_execution.yml">Net.EXE Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1070.004">T1070.004</a>
+            </td>
+            <td>
+                Delete Prefetch File
+                <br>
+                <small class="text-muted">GUID: 36f96049-0ad7-4a5f-8418-460acaeb92fb</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_lateral_movement.yml">Copy From Or To Admin Share Or Sysvol Folder</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1070.004">T1070.004</a>
+            </td>
+            <td>
+                Delete a single file - Windows cmd
+                <br>
+                <small class="text-muted">GUID: 861ea0b4-708a-4d17-848d-186c9c7f17e3</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_del_execution.yml">File Deletion Via Del</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1070.001">T1070.001</a>
+            </td>
+            <td>
+                Clear Logs
+                <br>
+                <small class="text-muted">GUID: e6abb60e-26b8-41da-8aae-0c35174b0967</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_eventlog_clear.yml">Suspicious Eventlog Clearing or Configuration Change Activity</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1070">T1070</a>
+            </td>
+            <td>
+                Indicator Removal using FSUtil
+                <br>
+                <small class="text-muted">GUID: b4115c7a-0e92-47f0-a61e-17e7218b2435</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_fsutil_usage.yml">Fsutil Suspicious Invocation</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1069.002">T1069.002</a>
+            </td>
+            <td>
+                Enumerate Active Directory Groups with ADSISearcher
+                <br>
+                <small class="text-muted">GUID: 9f4e344b-8434-41b3-85b1-d38f29d148d0</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_pua_adfind_susp_usage.yml">PUA - AdFind Suspicious Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059.007">T1059.007</a>
+            </td>
+            <td>
+                JScript execution to gather local computer information via wscript
+                <br>
+                <small class="text-muted">GUID: 0709945e-4fec-4c49-9faf-c3c292a74484</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_wscript_cscript_script_exec.yml">WSF/JSE/JS/VBA/VBE File Execution Via Cscript/Wscript</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059.007">T1059.007</a>
+            </td>
+            <td>
+                JScript execution to gather local computer information via cscript
+                <br>
+                <small class="text-muted">GUID: 01d75adf-ca1b-4dd1-ac96-7c9550ad1035</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_wscript_cscript_script_exec.yml">WSF/JSE/JS/VBA/VBE File Execution Via Cscript/Wscript</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_redirection_susp_folder.yml">Potentially Suspicious CMD Shell Output Redirect</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059.005">T1059.005</a>
+            </td>
+            <td>
+                Visual Basic script execution to gather local computer information
+                <br>
+                <small class="text-muted">GUID: 1620de42-160a-4fe5-bbaf-d3fef0181ce9</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_wscript_cscript_script_exec.yml">WSF/JSE/JS/VBA/VBE File Execution Via Cscript/Wscript</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_powershell_susp_child_processes.yml">Potentially Suspicious PowerShell Child Processes</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059.003">T1059.003</a>
+            </td>
+            <td>
+                Command prompt writing script to file then executes it
+                <br>
+                <small class="text-muted">GUID: 00682c9f-7df4-4df8-950b-6dcaaa3ad9af</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_whoami_output.yml">Whoami.EXE Execution With Output Option</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059.003">T1059.003</a>
+            </td>
+            <td>
+                Command Prompt read contents from CMD file and execute
+                <br>
+                <small class="text-muted">GUID: df81db1b-066c-4802-9bc8-b6d030c3ba8e</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_stdin_redirect.yml">Read Contents From Stdin Via Cmd.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059.003">T1059.003</a>
+            </td>
+            <td>
+                Writes text to a file and displays it.
+                <br>
+                <small class="text-muted">GUID: 127b4afe-2346-4192-815c-69042bec570e</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_redirection_susp_folder.yml">Potentially Suspicious CMD Shell Output Redirect</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059.001">T1059.001</a>
+            </td>
+            <td>
+                PowerShell Invoke Known Malicious Cmdlets
+                <br>
+                <small class="text-muted">GUID: 49eb9404-5e0f-4031-a179-b40f7be385e3</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_malicious_cmdlets.yml">Malicious PowerShell Commandlets - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_mimikatz_command_line.yml">HackTool - Mimikatz Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059.001">T1059.001</a>
+            </td>
+            <td>
+                PowerShell Command Execution
+                <br>
+                <small class="text-muted">GUID: a538de64-1c74-46ed-aa60-b995ed302598</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_encode.yml">Suspicious Execution of Powershell with Base64</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1059.001">T1059.001</a>
+            </td>
+            <td>
+                Mimikatz - Cradlecraft PsSendKeys
+                <br>
+                <small class="text-muted">GUID: af1800cf-9f9d-4fd1-a709-14b1e6de020d</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_malicious_cmdlets.yml">Malicious PowerShell Commandlets - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_mimikatz_command_line.yml">HackTool - Mimikatz Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_progname.yml">Suspicious Program Names</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1057">T1057</a>
+            </td>
+            <td>
+                Discover Specific Process - tasklist
+                <br>
+                <small class="text-muted">GUID: 11ba69ee-902e-4a0f-b3b6-418aed7d7ddb</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_findstr_lsass.yml">LSASS Process Reconnaissance Via Findstr.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_findstr_recon_pipe_output.yml">Recon Command Output Piped To Findstr.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_tasklist_basic_execution.yml">Suspicious Tasklist Discovery Command</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1057">T1057</a>
+            </td>
+            <td>
+                Process Discovery - wmic process
+                <br>
+                <small class="text-muted">GUID: 640cbf6d-659b-498b-ba53-f6dd1a1cc02c</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_recon_process.yml">Process Reconnaissance Via Wmic.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1057">T1057</a>
+            </td>
+            <td>
+                Process Discovery - tasklist
+                <br>
+                <small class="text-muted">GUID: c5806a4f-62b8-4900-980b-c7ec004e9908</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_tasklist_basic_execution.yml">Suspicious Tasklist Discovery Command</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1056.004">T1056.004</a>
+            </td>
+            <td>
+                Hook PowerShell TLS Encrypt/Decrypt Messages
+                <br>
+                <small class="text-muted">GUID: de1934ea-1fbf-425b-8795-65fb27dd7e33</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_lolbin_mavinject_process_injection.yml">Mavinject Inject DLL Into Running Process</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1056.001">T1056.001</a>
+            </td>
+            <td>
+                Input Capture
+                <br>
+                <small class="text-muted">GUID: d9b633ca-8efb-45e6-b838-70f595c6ae26</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_malicious_cmdlets.yml">Malicious PowerShell Commandlets - ProcessCreation</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1055">T1055</a>
+            </td>
+            <td>
+                Process Injection with Go using CreateThread WinAPI (Natively)
+                <br>
+                <small class="text-muted">GUID: 2a3c7035-d14f-467a-af94-933e49fe6786</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_inline_win_api_access.yml">Potential WinAPI Calls Via CommandLine</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1055">T1055</a>
+            </td>
+            <td>
+                Process Injection with Go using CreateThread WinAPI
+                <br>
+                <small class="text-muted">GUID: 2871ed59-3837-4a52-9107-99500ebc87cb</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_inline_win_api_access.yml">Potential WinAPI Calls Via CommandLine</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1055">T1055</a>
+            </td>
+            <td>
+                Remote Process Injection in LSASS via mimikatz
+                <br>
+                <small class="text-muted">GUID: 3203ad24-168e-4bec-be36-f79b13ef8a83</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_mimikatz_command_line.yml">HackTool - Mimikatz Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sysinternals_eula_accepted.yml">Potential Execution of Sysinternals Tools</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1053.005">T1053.005</a>
+            </td>
+            <td>
+                Scheduled Task Executing Base64 Encoded Commands From Registry
+                <br>
+                <small class="text-muted">GUID: e895677d-4f06-49ab-91b6-ae3742d0a2ba</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_schtasks_reg_loader_encoded.yml">Scheduled Task Executing Encoded Payload from Registry</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invocation_specific.yml">Suspicious PowerShell Invocations - Specific - ProcessCreation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_schtasks_susp_pattern.yml">Suspicious Command Patterns In Scheduled Task Creation</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_schtasks_creation.yml">Scheduled Task Creation Via Schtasks.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1053.005">T1053.005</a>
+            </td>
+            <td>
+                Scheduled task Local
+                <br>
+                <small class="text-muted">GUID: 42f53695-ad4a-4546-abb6-7d837f644a71</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_schtasks_schedule_type.yml">Suspicious Schtasks Schedule Types</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_schtasks_creation.yml">Scheduled Task Creation Via Schtasks.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1053.002">T1053.002</a>
+            </td>
+            <td>
+                At.exe Scheduled task
+                <br>
+                <small class="text-muted">GUID: 4a6c0dc4-0f2a-4203-9298-a5a9bdc21ed8</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_at_interactive_execution.yml">Interactive AT Job</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1047">T1047</a>
+            </td>
+            <td>
+                WMI Reconnaissance Software
+                <br>
+                <small class="text-muted">GUID: 718aebaa-d0e0-471a-8241-c5afa69c7414</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_recon_hotfix.yml">Windows Hotfix Updates Reconnaissance Via Wmic.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1047">T1047</a>
+            </td>
+            <td>
+                WMI Reconnaissance Processes
+                <br>
+                <small class="text-muted">GUID: 5750aa16-0e59-4410-8b9a-8a47ca2788e2</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_wmic_recon_process.yml">Process Reconnaissance Via Wmic.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1040">T1040</a>
+            </td>
+            <td>
+                Windows Internal pktmon set filter
+                <br>
+                <small class="text-muted">GUID: 855fb8b4-b8ab-4785-ae77-09f5df7bff55</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_pktmon_execution.yml">PktMon.EXE Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1040">T1040</a>
+            </td>
+            <td>
+                Windows Internal Packet Capture
+                <br>
+                <small class="text-muted">GUID: b5656f67-d67f-4de8-8e62-b5581630f528</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_netsh_packet_capture.yml">New Network Trace Capture Started Via Netsh.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1039">T1039</a>
+            </td>
+            <td>
+                Copy a sensitive File over Administrative share with Powershell
+                <br>
+                <small class="text-muted">GUID: 7762e120-5879-44ff-97f8-008b401b9a98</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_script_exec_from_temp.yml">Suspicious Script Execution From Temp Folder</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_lateral_movement.yml">Copy From Or To Admin Share Or Sysvol Folder</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1039">T1039</a>
+            </td>
+            <td>
+                Copy a sensitive File over Administrative share with copy
+                <br>
+                <small class="text-muted">GUID: 6ed67921-1774-44ba-bac6-adb51ed60660</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_lateral_movement.yml">Copy From Or To Admin Share Or Sysvol Folder</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1037.001">T1037.001</a>
+            </td>
+            <td>
+                Logon Scripts
+                <br>
+                <small class="text-muted">GUID: d6042746-07d4-4c92-9ad8-e644c114a231</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_registry_logon_script.yml">Potential Persistence Via Logon Scripts - CommandLine</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_redirection_susp_folder.yml">Potentially Suspicious CMD Shell Output Redirect</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1036.007">T1036.007</a>
+            </td>
+            <td>
+                File Extension Masquerading
+                <br>
+                <small class="text-muted">GUID: c7fa0c3b-b57f-4cba-9118-863bf4e653fc</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir_lolbin.yml">LOL-Binary Copied From System Directory</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1036.004">T1036.004</a>
+            </td>
+            <td>
+                Creating W32Time similar named service using sc
+                <br>
+                <small class="text-muted">GUID: b721c6ef-472c-4263-a0d9-37f1f4ecff66</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sc_create_service.yml">New Service Creation Using Sc.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_service_creation.yml">Suspicious New Service Creation</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1036.003">T1036.003</a>
+            </td>
+            <td>
+                Malicious process Masquerading as LSM.exe
+                <br>
+                <small class="text-muted">GUID: 83810c46-f45e-4485-9ab6-8ed0e9e6ed7f</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1036.003">T1036.003</a>
+            </td>
+            <td>
+                Masquerading - powershell.exe running as taskhostw.exe
+                <br>
+                <small class="text-muted">GUID: ac9d0fc3-8aa8-4ab5-b11f-682cd63b40aa</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1036.003">T1036.003</a>
+            </td>
+            <td>
+                Masquerading - cscript.exe running as notepad.exe
+                <br>
+                <small class="text-muted">GUID: 3a2a578b-0a01-46e4-92e3-62e2859b42f0</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir_lolbin.yml">LOL-Binary Copied From System Directory</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1036.003">T1036.003</a>
+            </td>
+            <td>
+                Masquerading as Windows LSASS process
+                <br>
+                <small class="text-muted">GUID: 5ba5a3d1-cf3c-4499-968a-a93155d1f717</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_copy_system_dir.yml">Suspicious Copy From or To System Directory</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1033">T1033</a>
+            </td>
+            <td>
+                System Owner/User Discovery
+                <br>
+                <small class="text-muted">GUID: 4c4959bf-addf-4b4a-be86-8d09cc1857aa</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_findstr_recon_pipe_output.yml">Recon Command Output Piped To Findstr.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_whoami_output.yml">Whoami.EXE Execution With Output Option</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1027">T1027</a>
+            </td>
+            <td>
+                Execution from Compressed JScript File
+                <br>
+                <small class="text-muted">GUID: fad04df1-5229-4185-b016-fb6010cd87ac</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_wscript_cscript_script_exec.yml">WSF/JSE/JS/VBA/VBE File Execution Via Cscript/Wscript</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1027">T1027</a>
+            </td>
+            <td>
+                DLP Evasion via Sensitive Data in VBA Macro over HTTP
+                <br>
+                <small class="text-muted">GUID: e2d85e66-cb66-4ed7-93b1-833fc56c9319</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_web_request_cmd_and_cmdlets.yml">Usage Of Web Request Commands And Cmdlets</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_download_cradles.yml">PowerShell Web Download</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_invoke_webrequest_download.yml">Suspicious Invoke-WebRequest Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1021.001">T1021.001</a>
+            </td>
+            <td>
+                Disable NLA for RDP via Command Prompt
+                <br>
+                <small class="text-muted">GUID: 01d1c6c0-faf0-408e-b368-752a02285cb2</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_rdp_keys_tamper.yml">Potential Tampering With RDP Related Registry Keys Via Reg.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1021.001">T1021.001</a>
+            </td>
+            <td>
+                Changing RDP Port to Non Standard Port via Command_Prompt
+                <br>
+                <small class="text-muted">GUID: 74ace21e-a31c-4f7d-b540-53e4eb6d1f73</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_netsh_fw_add_rule.yml">New Firewall Rule Added Via Netsh.EXE</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_reg_rdp_keys_tamper.yml">Potential Tampering With RDP Related Registry Keys Via Reg.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1018">T1018</a>
+            </td>
+            <td>
+                Enumerate Remote Hosts with Netscan
+                <br>
+                <small class="text-muted">GUID: b8147c9a-84db-4ec1-8eee-4e0da75f0de5</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_ntfs_short_name_path_use_cli.yml">Use Short Name Path in Command Line</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1018">T1018</a>
+            </td>
+            <td>
+                Enumerate Active Directory Computers with ADSISearcher
+                <br>
+                <small class="text-muted">GUID: 64ede6ac-b57a-41c2-a7d1-32c6cd35397d</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_pua_adfind_susp_usage.yml">PUA - AdFind Suspicious Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1018">T1018</a>
+            </td>
+            <td>
+                Remote System Discovery - ping sweep
+                <br>
+                <small class="text-muted">GUID: 6db1f57f-d1d5-4223-8a66-55c9c65a9592</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_network_scan_loop.yml">Suspicious Scan Loop Network</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1016.002">T1016.002</a>
+            </td>
+            <td>
+                Enumerate Stored Wi-Fi Profiles And Passwords via netsh
+                <br>
+                <small class="text-muted">GUID: 53cf1903-0fa7-4177-ab14-f358ae809eec</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_netsh_wifi_credential_harvesting.yml">Harvesting Of Wifi Credentials Via Netsh.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1016">T1016</a>
+            </td>
+            <td>
+                System Network Configuration Discovery (TrickBot Style)
+                <br>
+                <small class="text-muted">GUID: dafaf052-5508-402d-bf77-51e0700c02e2</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_network_command.yml">Suspicious Network Command</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1016">T1016</a>
+            </td>
+            <td>
+                System Network Configuration Discovery on Windows
+                <br>
+                <small class="text-muted">GUID: 970ab6a1-0157-4f3f-9a73-ec4166754b23</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_network_command.yml">Suspicious Network Command</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1007">T1007</a>
+            </td>
+            <td>
+                System Service Discovery - net.exe
+                <br>
+                <small class="text-muted">GUID: 5f864a3f-8ce9-45c0-812c-bdf7d8aeacc3</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmd_redirection_susp_folder.yml">Potentially Suspicious CMD Shell Output Redirect</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1007">T1007</a>
+            </td>
+            <td>
+                System Service Discovery
+                <br>
+                <small class="text-muted">GUID: 89676ba1-b1f8-47ee-b940-2e1a113ebc71</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_tasklist_basic_execution.yml">Suspicious Tasklist Discovery Command</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.006">T1003.006</a>
+            </td>
+            <td>
+                Run DSInternals Get-ADReplAccount
+                <br>
+                <small class="text-muted">GUID: a0bced08-3fc5-4d8b-93b7-e8344739376e</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_dsinternals_cmdlets.yml">DSInternals Suspicious PowerShell Cmdlets</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.005">T1003.005</a>
+            </td>
+            <td>
+                Cached Credential Dump via Cmdkey
+                <br>
+                <small class="text-muted">GUID: 56506854-89d6-46a3-9804-b7fde90791f9</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_cmdkey_recon.yml">Potential Reconnaissance For Cached Credentials Via Cmdkey.EXE</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.003">T1003.003</a>
+            </td>
+            <td>
+                Create Volume Shadow Copy with Powershell
+                <br>
+                <small class="text-muted">GUID: 542bb97e-da53-436b-8e43-e0a7d31a6c24</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_shadow_copies_creation.yml">Shadow Copies Creation Using Operating Systems Utilities</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.003">T1003.003</a>
+            </td>
+            <td>
+                Dump Active Directory Database with NTDSUtil
+                <br>
+                <small class="text-muted">GUID: 2364e33d-ceab-4641-8468-bfb1d7cc2723</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_ntds.yml">Suspicious Process Patterns NTDS.DIT Exfil</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.001">T1003.001</a>
+            </td>
+            <td>
+                Dump LSASS.exe Memory through Silent Process Exit
+                <br>
+                <small class="text-muted">GUID: eb5adf16-b601-4926-bca7-dad22adffb37</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_ntfs_short_name_path_use_cli.yml">Use Short Name Path in Command Line</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.001">T1003.001</a>
+            </td>
+            <td>
+                Dump LSASS.exe using imported Microsoft DLLs
+                <br>
+                <small class="text-muted">GUID: 86fc3f40-237f-4701-b155-81c01c48d697</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_xordump.yml">HackTool - XORDump Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_script_exec_from_temp.yml">Suspicious Script Execution From Temp Folder</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_lsass_dmp_cli_keywords.yml">LSASS Dump Keyword In CommandLine</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.001">T1003.001</a>
+            </td>
+            <td>
+                Create Mini Dump of LSASS.exe using ProcDump
+                <br>
+                <small class="text-muted">GUID: 7cede33f-0acd-44ef-9774-15511300b24b</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sysinternals_eula_accepted.yml">Potential Execution of Sysinternals Tools</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sysinternals_procdump.yml">Procdump Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_lsass_dmp_cli_keywords.yml">LSASS Dump Keyword In CommandLine</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.001">T1003.001</a>
+            </td>
+            <td>
+                Offline Credential Theft With Mimikatz
+                <br>
+                <small class="text-muted">GUID: 453acf13-1dbd-47d7-b28a-172ce9228023</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_mimikatz_command_line.yml">HackTool - Mimikatz Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_lsass_dmp_cli_keywords.yml">LSASS Dump Keyword In CommandLine</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_hktl_cobaltstrike_bloopers_cmd.yml">Operator Bloopers Cobalt Strike Commands</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.001">T1003.001</a>
+            </td>
+            <td>
+                Dump LSASS.exe Memory using NanoDump
+                <br>
+                <small class="text-muted">GUID: dddd4aca-bbed-46f0-984d-e4c5971c51ea</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_ntfs_short_name_path_use_cli.yml">Use Short Name Path in Command Line</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_lsass_dmp_cli_keywords.yml">LSASS Dump Keyword In CommandLine</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.001">T1003.001</a>
+            </td>
+            <td>
+                Dump LSASS.exe Memory using comsvcs.dll
+                <br>
+                <small class="text-muted">GUID: 2536dee2-12fb-459a-8c37-971844fa73be</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_process_dump_via_comsvcs.yml">Process Memory Dump Via Comsvcs.DLL</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_getprocess_lsass.yml">PowerShell Get-Process LSASS</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_lsass_dmp_cli_keywords.yml">LSASS Dump Keyword In CommandLine</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_powershell_susp_child_processes.yml">Potentially Suspicious PowerShell Child Processes</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_susp_activity.yml">Potentially Suspicious Rundll32 Activity</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_ntfs_short_name_path_use_cli.yml">Use Short Name Path in Command Line</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003.001">T1003.001</a>
+            </td>
+            <td>
+                Dump LSASS.exe Memory using ProcDump
+                <br>
+                <small class="text-muted">GUID: 0be2230c-9ab3-4ac2-8826-3199b9a0ebf8</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_renamed_sysinternals_procdump.yml">Renamed ProcDump Execution</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_susp_lsass_dmp_cli_keywords.yml">LSASS Dump Keyword In CommandLine</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sysinternals_procdump_lsass.yml">Potential LSASS Process Dump Via Procdump</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sysinternals_eula_accepted.yml">Potential Execution of Sysinternals Tools</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sysinternals_procdump.yml">Procdump Execution</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003">T1003</a>
+            </td>
+            <td>
+                Send NTLM Hash with RPC Test Connection
+                <br>
+                <small class="text-muted">GUID: 0b207037-813c-4444-ac3f-b597cf280a67</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rpcping_credential_capture.yml">Capture Credentials with Rpcping.exe</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_powershell_encode.yml">Suspicious Execution of Powershell with Base64</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003">T1003</a>
+            </td>
+            <td>
+                Dump Credential Manager using keymgr.dll and rundll32.exe
+                <br>
+                <small class="text-muted">GUID: 84113186-ed3c-4d0d-8a3c-8980c86c1f4a</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_keymgr.yml">Suspicious Key Manager Access</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules-threat-hunting/windows/process_creation/proc_creation_win_powershell_susp_child_processes.yml">Potentially Suspicious PowerShell Child Processes</a></li><li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_rundll32_uncommon_dll_extension.yml">Rundll32 Execution With Uncommon DLL Extension</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        <tr>
+            <td>
+                <a class="btn mitre-tech-btn rounded-1" style="user-select: text;" target="_blank" href="https://www.atomicredteam.io/atomic-red-team/atomics/T1003">T1003</a>
+            </td>
+            <td>
+                Retrieve Microsoft IIS Service Account Credentials Using AppCmd (using config)
+                <br>
+                <small class="text-muted">GUID: 42510244-5019-48fa-a0e5-66c3b76e6049</small>
+            </td>
+            <td >
+                <img src="./assets/images/windows-logo.svg" height="32" alt="Windows" title="Windows">
+            </td>
+            <td class="rules">
+                <ul>
+                    <li><a target="_blank" href="https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_iis_appcmd_service_account_password_dumped.yml">Microsoft IIS Service Account Password Dumped</a></li>
+                </ul>
+            </td>
+            <td class="rules">
+                <ul>
+                    N/A
+                </ul>
+            </td>
+        </tr>
+    
+        </tbody>
       </table>
+
+      <div id="scrollToTopBtn" style="display: none">
+        <svg
+          xmlns="http://www.w3.org/2000/svg"
+          width="50"
+          height="50"
+          fill="currentColor"
+          class="bi bi-arrow-up-circle"
+          viewBox="0 0 16 16"
+        >
+          <path
+            fill-rule="evenodd"
+            d="M1 8a7 7 0 1 0 14 0A7 7 0 0 0 1 8m15 0A8 8 0 1 1 0 8a8 8 0 0 1 16 0m-7.5 3.5a.5.5 0 0 1-1 0V5.707L5.354 7.854a.5.5 0 1 1-.708-.708l3-3a.5.5 0 0 1 .708 0l3 3a.5.5 0 0 1-.708.708L8.5 5.707z"
+          />
+        </svg>
+      </div>
     </div>
 
-    <script src="./assets/js/jquery-3.7.1.js"></script>
+    <script src="./assets/js/jquery-3.7.1.min.js"></script>
     <script src="./assets/js/bootstrap.bundle.min.js"></script>
-    <script src="./assets/js/dataTables.js"></script>
-
-    <script src="./assets/js/dataTables.fixedHeader.min.js"></script>
+    <script src="./assets/js/dataTables.min.js"></script>
+    <script src="./assets/js/dataTables.bootstrap5.min.js"></script>
+    <script src="./assets/js/dataTables.buttons.min.js"></script>
+    <script src="./assets/js/buttons.bootstrap5.min.js"></script>
     <script src="./assets/js/fixedHeader.bootstrap5.min.js"></script>
+    <script src="./assets/js/dataTables.fixedHeader.min.js"></script>
+
     <script>
       $(document).ready(function () {
         $("#arm-table").DataTable({
@@ -7751,8 +10436,137 @@ <h2 class="text-start m-0 p-0">AttackRuleMap</h3>
           ordering: true,
           info: true,
           fixedHeader: true,
+          dom:
+            "<'row'<'col-sm-12 col-md-6'B><'col-sm-12 col-md-6'f>>" +
+            "<'row'<'col-sm-12'tr>>" +
+            "<'row'<'col-sm-12 col-md-5'i><'col-sm-12 col-md-7'p>>",
+
+          buttons: [
+            {
+              className: "btn-sm json-export",
+              text: "Export JSON",
+              action: function (e, dt, button, config) {
+                const data = dt.buttons.exportData();
+                const json = JSON.stringify(
+                  data.body.map((row, rowIndex) => {
+                    const obj = {};
+                    data.header.forEach((header, columnIndex) => {
+                      let formattedHeader = header
+                        .replace(/\s+/g, "_")
+                        .toLowerCase();
+
+                      if (formattedHeader === "atomic_attack_name") {
+                        const match =
+                          row[columnIndex].match(/GUID:\s*([a-f0-9-]+)/i);
+                        if (match) {
+                          obj["atomic_attack_guid"] = match[1];
+                          obj[formattedHeader] = row[columnIndex]
+                            .replace(/GUID:\s*[a-f0-9-]+/i, "")
+                            .trim();
+                        } else {
+                          obj[formattedHeader] = row[columnIndex];
+                        }
+                      } else if (
+                        formattedHeader === "sigma_rules" ||
+                        formattedHeader === "splunk_rules"
+                      ) {
+                        const cell = $(
+                          `#arm-table tbody tr:eq(${rowIndex}) td:eq(${columnIndex})`
+                        );
+                        const listItems = cell
+                          .find("ul > li > a")
+                          .map((_, a) => {
+                            return {
+                              rule_name: $(a).text().trim(),
+                              rule_link: $(a).attr("href"),
+                            };
+                          })
+                          .get();
+
+                        if (
+                          listItems.length === 0 ||
+                          (listItems.length === 1 &&
+                            listItems[0].rule_name === "N/A")
+                        ) {
+                        } else {
+                          obj[formattedHeader] = listItems;
+                        }
+                      } else if (formattedHeader === "platform") {
+                        const cell = $(
+                          `#arm-table tbody tr:eq(${rowIndex}) td:eq(${columnIndex})`
+                        );
+                        const platformTitle = cell.find("img").attr("title");
+                        obj[formattedHeader] = platformTitle
+                          ? platformTitle
+                          : "";
+                      } else {
+                        obj[formattedHeader] = row[columnIndex];
+                      }
+                    });
+                    return obj;
+                  }),
+                  null,
+                  2
+                );
+
+                const blob = new Blob([json], { type: "application/json" });
+                const link = document.createElement("a");
+                link.href = URL.createObjectURL(blob);
+                link.download = "attack_rule_map.json";
+                link.click();
+              },
+            },
+          ],
+        });
+        const savedTheme = localStorage.getItem("theme");
+        if (savedTheme === "light") {
+          $("html").attr("data-bs-theme", "light");
+          toggleIcons();
+        } else {
+          $("html").attr("data-bs-theme", "dark");
+          toggleIcons();
+        }
+
+        $("#dark-mode-icon").click(function () {
+          $("html").attr("data-bs-theme", "light");
+          localStorage.setItem("theme", "light");
+          toggleIcons();
+        });
+
+        $("#light-mode-icon").click(function () {
+          $("html").attr("data-bs-theme", "dark");
+          localStorage.setItem("theme", "dark");
+          toggleIcons();
+        });
+
+        function toggleIcons() {
+          $(".json-export")
+            .removeClass("btn-secondary")
+            .addClass("btn-success");
+          if ($("html").attr("data-bs-theme") === "dark") {
+            $("#light-mode-icon").hide();
+            $("#dark-mode-icon").show();
+            $("#github-icon").attr("style", "filter: invert(0)");
+          } else {
+            $("#github-icon").attr("style", "filter: invert(1)");
+            $("#light-mode-icon").show();
+            $("#dark-mode-icon").hide();
+          }
+        }
+
+        $(window).scroll(function () {
+          if ($(this).scrollTop() > 300) {
+            $("#scrollToTopBtn").fadeIn();
+          } else {
+            $("#scrollToTopBtn").fadeOut();
+          }
+        });
+
+        $("#scrollToTopBtn").click(function () {
+          $("html, body").animate({ scrollTop: 0 });
+          return false;
         });
       });
     </script>
   </body>
-</html>
+</html>
\ No newline at end of file