valitydev/SigmaHQ
14
0
Fork 0
mirror of https://github.com/valitydev/SigmaHQ.git synced 2024-11-07 09:48:58 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
203aa192c7
SigmaHQ/tools/config/splunk-windows-index.yml
vunx2 58f5fa1b8e change to github
2020-02-28 16:56:48 +07:00

12 lines
200 B
YAML
Raw Blame History

title: Splunk Windows index and EventID field mapping
order: 20
backends:
- splunk
- splunkxml
logsources:
windows:
product: windows
index: windows
fieldmappings:
EventID: EventCode
Reference in New Issue View Git Blame Copy Permalink