security-tools/sigma-rules
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
2,041 Commits 1 Branch 0 Tags
dbfdb7f804ca01a4bc6f4e4318a2fda4fe37f134
Commit Graph

7 Commits

Author SHA1 Message Date
Mika Ayenson 0e8cce28e9 [Bug] Support spaces with capital letters (#3689) 
(cherry picked from commit 43b3a4b080)
 2024-05-17 14:12:47 +00:00
Justin Ibarra 09a7e2e81b Refresh Kibana module with API updates (#3466) 
* Refresh Kibana module with API updates
* add import/export commands
* rename repo commands
* add RawRuleCollection and DictRule objects
* save exported rules to files; rule.from_rule_resource
* strip unknown fields in schema
* add remote cli test
* update docs
* bump kibana lib version

---------

Co-authored-by: brokensound77 <brokensound77@users.noreply.github.com>

(cherry picked from commit c567d3731a)
 2024-04-26 17:20:37 +00:00
Eric Forte 06a9b0e3b6 Bump KQL Version in Init (#3597) 
(cherry picked from commit 114db81f07)
 2024-04-15 15:14:10 +00:00
Eric Forte 02be3c08e9 Bump KQL lib Version (#3575) 
(cherry picked from commit e6f48ade01)
 2024-04-05 17:46:47 +00:00
Eric Forte 72ba0b16a9 [Bug] KQL fails validation on uppercase keywords (#3568) 
* add todo

* Add a normalize_kql_keywords function to utils

* update rule loader to normalize and warn

* optimized loading

* fix linting

* Moved conversion to kql module.

* Updated unit test

* Refactor KQL parser to normalize keywords via flag

* Fix logic typo

* Update detection_rules/utils.py

Co-authored-by: Justin Ibarra <16747370+brokensound77@users.noreply.github.com>

* Update lib/kql/kql/__init__.py

Co-authored-by: Justin Ibarra <16747370+brokensound77@users.noreply.github.com>

* Updated to fix unit tests and remove warnings

* linting typo

* Added comments

* remove unused imports

* Update kql.parse default

---------

Co-authored-by: Justin Ibarra <16747370+brokensound77@users.noreply.github.com>
Co-authored-by: Mika Ayenson <Mikaayenson@users.noreply.github.com>

(cherry picked from commit 1566c29bae)
 2024-04-04 22:10:57 +00:00
Mika Ayenson edf52a578c [FR] Update Python Dependency Versions (#3515) 
(cherry picked from commit 5c3523954e)
 2024-03-19 19:15:12 +00:00
Mika Ayenson 434b3ffcc0 [FR] Independently package kql / kibana and bump to py3.12 (#3514) 
(cherry picked from commit d26981f712)
 2024-03-15 01:26:12 +00:00