23ed626287
Change location value=str(value)
2021-11-01 16:05:34 +01:00
9d0123e782
Fix errors introduced at commit 58d9e41
2021-11-01 12:40:41 +01:00
f3c01a3f65
Merge pull request #1948 from zazzzSec/fix_cb_paths
...
fixing cb path wildcards that don't work
2021-10-16 20:44:14 +02:00
58d9e4180a
Correct for proper output to Splunk and CarbonBlack. Add AWS Athena config/backend support
2021-09-13 14:17:33 -05:00
b36db223b1
fixing path wildcards that don't adhear to tool specifications
2021-08-30 21:06:57 -04:00
e0d6856987
[CarbonBlack] Adding extra escape character
...
Hyphens, especially when at the start of a query, need escaping since hyphens are also used to negate conditions
2021-07-29 13:57:58 +01:00
e1f43f17c2
fixed various spelling errors all over rules and source code
2021-02-24 14:43:13 +00:00
51df5ad876
Added:
...
Sumo Logic CSE Rule Backend
Updated:
Mapping depence on logsource
Azure Sentinel Query Backend
MDATP: query with few logsources
CROWDSTRIKE: fix generateMapItemTypedNode
2020-10-06 15:07:52 +03:00
1921e9dd89
Fix wild card and some escaped characters
2020-08-18 15:57:13 +07:00
bbcbed4742
Add parentheses about field list groups in CB
...
This should address the grouping issue from #660 .
The grouping issue was solved by just slamming some parentheses around the fields in the listExpression field.
2020-06-11 15:33:02 +02:00
fb9c5841f4
Added Humio, Crowdstrike, Corelight
2020-05-08 13:41:52 +03:00
5dc30bd388
Carbonblack, Arcsight ESM, Elastic Rule
2020-02-24 19:29:45 +02:00
Jordi Schoots