security-tools/sigma-rules
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
bda38d6f27941d1a635e27d906ad0b59b52b452d
sigma-rules/detection_rules
T
History
Jonhnathan 608a0ff0c2 [Rule Tuning] Windows BBR Rule Tuning - 1 (#3579) 
* [Rule Tuning] Windows BBR Rule Tuning - 1

* Update non-ecs-schema.json

* Update rules_building_block/command_and_control_certutil_network_connection.toml

Co-authored-by: Samirbous <64742097+Samirbous@users.noreply.github.com>

* Update rules_building_block/collection_common_compressed_archived_file.toml

Co-authored-by: Ruben Groenewoud <78494512+Aegrah@users.noreply.github.com>

* Update defense_evasion_dll_hijack.toml

---------

Co-authored-by: Samirbous <64742097+Samirbous@users.noreply.github.com>
Co-authored-by: Ruben Groenewoud <78494512+Aegrah@users.noreply.github.com>

(cherry picked from commit d0dfa479bb)
2024-04-08 13:46:29 +00:00
..
etc
[Rule Tuning] Windows BBR Rule Tuning - 1 (#3579)
2024-04-08 13:46:29 +00:00
schemas
[Bug] New Terms Rule Import Failing (#3569)
2024-04-04 21:45:02 +00:00
__init__.py
[FR] Independently package kql / kibana and bump to py3.12 (#3514)
2024-03-15 01:26:12 +00:00
__main__.py
[FR] Independently package kql / kibana and bump to py3.12 (#3514)
2024-03-15 01:26:12 +00:00
attack.py
[FR] Adapt PyPi semver Library and Remove Custom (#2503)
2023-02-07 14:26:29 -05:00
beats.py
[Bug] Use integration schemas for required_field types (#3303)
2023-12-11 17:37:43 +00:00
cli_utils.py
[Bug] New Terms Rule Import Failing (#3569)
2024-04-04 21:45:02 +00:00
devtools.py
Deprecate Releasing to a patch kibana version workflow (#3552)
2024-04-03 03:12:07 +00:00
docs.py
[Bug] Fix URL links in autogenerated security docs (#3474)
2024-02-23 21:55:30 +00:00
ecs.py
[FR] Add Support for Multi-Fields and Validation in Rules (#2882)
2023-06-28 20:35:33 -04:00
endgame.py
add support for additional endgame field types (#2372)
2022-10-19 11:11:09 -04:00
eswrap.py
Update sort parameter (#3531)
2024-03-25 15:54:13 +00:00
ghwrap.py
Update package and install process (#1948)
2022-12-08 15:49:49 -05:00
integrations.py
[FR] 8.12 Release Preparation update Main Branch to 8.13 (#3313)
2023-12-11 20:03:26 +00:00
kbwrap.py
[Bug] Strip Non-Public Fields Prior to Uploading Rules (#2986)
2023-08-02 12:38:48 -05:00
main.py
[FR] Add required-fields option to import-rules (#3546)
2024-03-28 23:37:15 +00:00
mappings.py
Release ER Production RTAs to DR (#2270)
2022-09-08 12:50:39 -04:00
misc.py
[FR] Update Python Dependency Versions (#3515)
2024-03-19 19:15:12 +00:00
mixins.py
[FR] Adapt PyPi semver Library and Remove Custom (#2503)
2023-02-07 14:26:29 -05:00
ml.py
Refactor experimental ML CLI and code (#1218)
2021-06-02 20:37:12 -08:00
navigator.py
[FR] Update build-release to support bbr release (#2987)
2023-07-31 15:20:18 -04:00
packaging.py
[Bug] Adjust build-release CLI and fix links when generating security docs (#3434)
2024-02-12 15:13:42 +00:00
remote_validation.py
[FR] Add Support for ES|QL Rule Type and Remote Validation (#3281)
2023-12-08 19:52:16 +00:00
rule_formatter.py
[Bug] Add explicit format preserver (#3566)
2024-04-04 20:58:27 +00:00
rule_loader.py
[FR] Add support for BBR rules to the rule loader (#2968)
2023-07-27 11:27:04 -05:00
rule_validators.py
Update default (#3574)
2024-04-05 00:35:15 +00:00
rule.py
Update default (#3574)
2024-04-05 00:35:15 +00:00
utils.py
Update default (#3574)
2024-04-05 00:35:15 +00:00
version_lock.py
[Bug][FR] Remove Rule Type Change Restriction and Fix Version Lock Bug (#2769)
2023-05-02 11:00:36 -04:00