security-tools/sigma-rules
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
6ea11cd9adbe9800e33df74840e44c31393a2d52
sigma-rules/detection_rules
T
History
Apoorva Joshi a5a606e804 [New Rule] Adding DGA Rules from Advanced Analytic DGA Package (#3102) 
* Adding DGA rules

* Adding references

* updated rule tags and queries

* Updating min stack version

* added logic to handle ml jobs

* added code comments for clarity

* removing subbed security docs folder

* added event dataset to queries for endpoint; updated note

* removed event dataset

---------

Co-authored-by: Terrance DeJesus <99630311+terrancedejesus@users.noreply.github.com>
Co-authored-by: terrancedejesus <terrance.dejesus@elastic.co>
2023-10-16 15:48:54 -04:00
..
etc
Lock versions for releases: 8.3,8.4,8.5,8.6,8.7,8.8,8.9,8.10,8.11 (#3183)
2023-10-13 15:10:49 -04:00
schemas
[FR] 8.11 Release Preparation and Update Main Branch to 8.12 (#3182)
2023-10-13 13:37:21 -04:00
__init__.py
Update package and install process (#1948)
2022-12-08 15:49:49 -05:00
__main__.py
Move Rule into a dataclass (#1029)
2021-03-24 10:24:32 -06:00
attack.py
[FR] Adapt PyPi semver Library and Remove Custom (#2503)
2023-02-07 14:26:29 -05:00
beats.py
[FR] Adapt PyPi semver Library and Remove Custom (#2503)
2023-02-07 14:26:29 -05:00
cli_utils.py
[Bug] Create Rule CLI Crashes on Required Arg (#3127)
2023-09-28 14:28:13 -05:00
devtools.py
[New Rule] Adding Lateral Movement Rules from Advanced Analytic LMD Package (#3119)
2023-09-27 14:53:38 -04:00
docs.py
[FR] Generate Prebuilt Rules Reference Page (#2964)
2023-07-27 11:05:31 -05:00
ecs.py
[FR] Add Support for Multi-Fields and Validation in Rules (#2882)
2023-06-28 20:35:33 -04:00
endgame.py
add support for additional endgame field types (#2372)
2022-10-19 11:11:09 -04:00
eswrap.py
[FR] Add host family to data path (#2839)
2023-06-12 16:03:33 -04:00
ghwrap.py
Update package and install process (#1948)
2022-12-08 15:49:49 -05:00
integrations.py
[New Rule] Adding DGA Rules from Advanced Analytic DGA Package (#3102)
2023-10-16 15:48:54 -04:00
kbwrap.py
[Bug] Strip Non-Public Fields Prior to Uploading Rules (#2986)
2023-08-02 12:38:48 -05:00
main.py
[New Rule] File Compressed or Archived into Common Format (#3173)
2023-10-11 11:34:34 -07:00
mappings.py
Release ER Production RTAs to DR (#2270)
2022-09-08 12:50:39 -04:00
misc.py
[Bug] Create Rule CLI Crashes on Required Arg (#3127)
2023-09-28 14:28:13 -05:00
mixins.py
[FR] Adapt PyPi semver Library and Remove Custom (#2503)
2023-02-07 14:26:29 -05:00
ml.py
Refactor experimental ML CLI and code (#1218)
2021-06-02 20:37:12 -08:00
navigator.py
[FR] Update build-release to support bbr release (#2987)
2023-07-31 15:20:18 -04:00
packaging.py
[FR] Add support for BBR rules to the rule loader (#2968)
2023-07-27 11:27:04 -05:00
rule_formatter.py
Validate markdown plugin fields (#2602)
2023-03-28 09:17:50 -04:00
rule_loader.py
[FR] Add support for BBR rules to the rule loader (#2968)
2023-07-27 11:27:04 -05:00
rule_validators.py
[FR] Add support for samples in eql 0.9.18 (#3000)
2023-09-07 09:01:28 -05:00
rule.py
[New Rule] Adding DGA Rules from Advanced Analytic DGA Package (#3102)
2023-10-16 15:48:54 -04:00
utils.py
[FR] Only supporting known compatible rule file types (#3167)
2023-10-11 11:43:42 -04:00
version_lock.py
[Bug][FR] Remove Rule Type Change Restriction and Fix Version Lock Bug (#2769)
2023-05-02 11:00:36 -04:00