security-tools/sigma-rules
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
1,877 Commits 1 Branch 0 Tags
21b559c97f2b53bf28345c337bfa187ed29f5535
Commit Graph

5 Commits

Author SHA1 Message Date
Justin Ibarra d12c04761f Add support for eql-wildcard and kql-match_only_text (#1583) 
* Add support for eql-wildcard and kql-match_only_text
* bump kql version
* lookup elasticsearch type family prior to getting type hint
Co-authored-by: David French <56409778+threat-punter@users.noreply.github.com>
 2021-10-28 08:57:43 -05:00
Justin Ibarra 582a842e32 [KQL] Add support for date fields in parser (#1487) 
* [KQL] Add support for date fields in parser

* add test for parsing date value
 2021-09-16 09:25:26 -08:00
Justin Ibarra 3fc34b86f2 Update License to Elastic v2 (#944) 2021-03-03 22:12:11 -09:00
Ross Wolf 5f867dbb72 Add KQL -> DSL conversion (#81) 
* Add KQL -> DSL converter
* Lint with black to 120 chars
* Add more tests and flatten shoulds
* Fix NotValue conversion to DSL
 2020-07-22 11:05:45 -06:00
Ross Wolf 41809f1dc5 Add KQL module 2020-06-29 23:05:14 -06:00