security-tools/blue-team-tools
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
edb52e098a2a45044b04900bfce3f7a5478b3b4e
blue-team-tools/tools
T
History
Thomas Patzke 5706361464 Parsing of "near ... within" aggregation operator 
* Operator is only parsed. No processing or passing of parsed data to
  backends.
* Changed rule sysmon_mimikatz_inmemory_detection.yml accordingly.
2017-08-03 00:05:48 +02:00
..
config
Fixed Splunk config for sigmac again
2017-05-26 22:40:06 +02:00
backends.py
Added LogPoint aggregation
2017-06-19 15:21:29 +02:00
README.md
Update README.md
2017-03-06 09:37:44 +01:00
sigma.py
Parsing of "near ... within" aggregation operator
2017-08-03 00:05:48 +02:00
sigmac.py
Verbose mode prints tokens if parsing failed
2017-03-29 22:21:40 +02:00

README.md

Tools in this section are currently in public beta status.

The --output and --config parameters are not usable yet.

Reference in New Issue View Git Blame Copy Permalink