security-tools/sigma-rules
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
6bdfddac8edea5e327bf28aed7e6dc4a7f701dc6
sigma-rules/kql
T
History
Mika Ayenson 1f015ebe85 1554 update eql schemas to fail validation on text fields (#1866) 
* Ensure kql2eql conversion doesnt support `text` fields

* Add unit test cases for`text` not supported in eql

* test `field not recognized` in the rule_validator and output a verbose message.

* use elasticsearch_type_family to lookup text mappings

Co-authored-by: Justin Ibarra <brokensound77@users.noreply.github.com>
2022-03-23 16:22:26 -04:00
..
__init__.py
Add support for eql-wildcard and kql-match_only_text (#1583)
2021-10-28 08:57:43 -05:00
ast.py
Update License to Elastic v2 (#944)
2021-03-03 22:12:11 -09:00
dsl.py
Update License to Elastic v2 (#944)
2021-03-03 22:12:11 -09:00
eql2kql.py
Add KQL support for additional ES field types (#1247)
2021-06-10 22:30:11 -06:00
errors.py
Update License to Elastic v2 (#944)
2021-03-03 22:12:11 -09:00
evaluator.py
Update License to Elastic v2 (#944)
2021-03-03 22:12:11 -09:00
kql2eql.py
1554 update eql schemas to fail validation on text fields (#1866)
2022-03-23 16:22:26 -04:00
kql.g
Add KQL module
2020-06-29 23:05:14 -06:00
optimizer.py
Update License to Elastic v2 (#944)
2021-03-03 22:12:11 -09:00
parser.py
Add support for eql-wildcard and kql-match_only_text (#1583)
2021-10-28 08:57:43 -05:00