sigma-rules

Author	SHA1	Message	Date
Justin Ibarra	254b4eb23f	Generate ATT&CK navigator layer files and links (#1787 ) * Generate attack layer files and build with package * add update-navigator-gists command * add workflow to update navigator gists on pushes to main * Add coverage readme * fix keys for links * update navigator layer names * purge gist files prior to update; add badge * Update how the navigator links are displayed * moved navigator code to dedicated and refactored to dataclasses * convert gist links to permalink versions * alphabetize; catch 404 for gist update	2022-03-04 08:20:44 -09:00
Justin Ibarra	a5eb02ac28	Refresh ATT&CK to v10.1 (#1791 )	2022-02-24 16:37:23 -09:00
Justin Ibarra	3fc34b86f2	Update License to Elastic v2 (#944 )	2021-03-03 22:12:11 -09:00
Justin Ibarra	c1a0438f45	[Rule Tuning] Update ATT&CK threat mappings to reflect changes (#706 ) * replaced/removed all revoked/deprecated techniques * tests will fail on revoked (changed) techniques * tests will fail on deprecated techniques * tests will fail when techniques are mapped to an invalid tactic	2020-12-18 12:46:16 -09:00
Ross Wolf	331d321648	Make threat.technique optional (#727 )	2020-12-17 20:22:59 -09:00
Justin Ibarra	e272800a5d	Add ATT&CK sub-technique support to CLI (#614 ) * Add Mitre sub-technique support to CLI * Add subtechnique enum to schema * Add test to prevent duplicative tactics in mapping	2020-12-08 21:56:55 -09:00
Justin Ibarra	065bcd8018	Refresh ATT&CK data to v7.2 and expand threat validation (#330 ) * refresh to latest ATT&CK 7.2 * add new unit test to further validate threat mappings * updated threat mappings in rules to reflect changes * new func to download and refresh mitre data based on version	2020-09-23 22:03:29 -08:00
Ross Wolf	3b305d3003	Add rule loader and dependencies Co-Authored-By: Justin Ibarra <brokensound77@users.noreply.github.com>	2020-06-29 23:17:42 -06:00

8 Commits