valitydev/SigmaHQ
14
0
Fork 0
mirror of https://github.com/valitydev/SigmaHQ.git synced 2024-11-07 09:48:58 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
5706361464
SigmaHQ/tools
History
Thomas Patzke 5706361464 Parsing of "near ... within" aggregation operator 
* Operator is only parsed. No processing or passing of parsed data to
  backends.
* Changed rule sysmon_mimikatz_inmemory_detection.yml accordingly.
2017-08-03 00:05:48 +02:00
..
config Fixed Splunk config for sigmac again 2017-05-26 22:40:06 +02:00
backends.py Added LogPoint aggregation 2017-06-19 15:21:29 +02:00
README.md Update README.md 2017-03-06 09:37:44 +01:00
sigma.py Parsing of "near ... within" aggregation operator 2017-08-03 00:05:48 +02:00
sigmac.py Verbose mode prints tokens if parsing failed 2017-03-29 22:21:40 +02:00

README.md

Tools in this section are currently in public beta status.

The --output and --config parameters are not usable yet.