.. |
generic
|
Introduced dns_query log source category
|
2020-07-05 23:29:51 +02:00 |
mitre
|
+ Adding Mitre Sub-Techniques and python update script to fetch latest Pre, Enterprise & Mobile Tactics and Techniques from Mitre CTI
|
2020-08-13 10:24:44 +01:00 |
ala.yml
|
Squashed commit of the following:
|
2020-06-05 13:18:03 -04:00 |
arcsight-zeek.yml
|
Squashed commit of the following:
|
2020-06-05 13:18:03 -04:00 |
arcsight.yml
|
Added AppLocker log source
|
2020-07-13 20:41:54 +00:00 |
carbon-black.yml
|
Fix field mapping for DestinationHostname
|
2020-11-26 04:17:28 +01:00 |
crowdstrike.yml
|
Squashed commit of the following:
|
2020-06-05 13:18:03 -04:00 |
ecs-cloudtrail.yml
|
added role name field to ecs-cloudtrail.
|
2020-11-13 05:59:55 +05:00 |
ecs-dns.yml
|
kibana-ndjson for all configs which already have kibana
|
2020-11-09 08:46:17 +01:00 |
ecs-proxy.yml
|
New Backend - Kibana NDJSON
|
2020-11-05 23:34:25 +01:00 |
ecs-suricata.yml
|
Create ecs-suricata.yml
|
2020-11-01 21:21:04 -03:00 |
ecs-zeek-corelight.yml
|
kibana-ndjson for all configs which already have kibana
|
2020-11-09 08:46:17 +01:00 |
ecs-zeek-elastic-beats-implementation.yml
|
kibana-ndjson for all configs which already have kibana
|
2020-11-09 08:46:17 +01:00 |
elk-defaultindex-filebeat.yml
|
docs: descriptions for source configs
|
2020-06-25 13:59:51 +02:00 |
elk-defaultindex-logstash.yml
|
docs: descriptions for source configs
|
2020-06-25 13:59:51 +02:00 |
elk-defaultindex.yml
|
docs: descriptions for source configs
|
2020-06-25 13:59:51 +02:00 |
elk-linux.yml
|
docs: descriptions for source configs
|
2020-06-25 13:59:51 +02:00 |
elk-windows.yml
|
Added AppLocker log source
|
2020-07-13 20:32:03 +00:00 |
elk-winlogbeat-sp.yml
|
Added AppLocker log source
|
2020-07-13 20:45:30 +00:00 |
elk-winlogbeat.yml
|
Added AppLocker log source
|
2020-07-13 20:44:03 +00:00 |
filebeat-defaultindex.yml
|
kibana-ndjson for all configs which already have kibana
|
2020-11-09 08:46:17 +01:00 |
fireeye-helix.yml
|
Add FirEye Helix backend
|
2020-11-19 11:18:28 -05:00 |
helk.yml
|
kibana-ndjson for all configs which already have kibana
|
2020-11-09 08:46:17 +01:00 |
humio.yml
|
Squashed commit of the following:
|
2020-06-05 13:18:03 -04:00 |
limacharlie.yml
|
change to github
|
2020-02-28 16:56:48 +07:00 |
logpoint-windows.yml
|
Added AppLocker log source
|
2020-07-13 20:46:49 +00:00 |
logstash-defaultindex.yml
|
kibana-ndjson for all configs which already have kibana
|
2020-11-09 08:46:17 +01:00 |
logstash-linux.yml
|
kibana-ndjson for all configs which already have kibana
|
2020-11-09 08:46:17 +01:00 |
logstash-windows.yml
|
kibana-ndjson for all configs which already have kibana
|
2020-11-09 08:46:17 +01:00 |
logstash-zeek-default-json.yml
|
kibana-ndjson for all configs which already have kibana
|
2020-11-09 08:46:17 +01:00 |
netwitness-epl.yml
|
initial commit for Netwitness-EPL backend
|
2020-09-10 17:12:12 +02:00 |
netwitness.yml
|
change to github
|
2020-02-28 16:56:48 +07:00 |
powershell-windows-all.yml
|
Added AppLocker log source
|
2020-07-13 20:30:02 +00:00 |
powershell.yml
|
Added AppLocker log source
|
2020-07-13 20:29:13 +00:00 |
qradar.yml
|
Squashed commit of the following:
|
2020-06-05 13:18:03 -04:00 |
qualys.yml
|
change to github
|
2020-02-28 16:56:48 +07:00 |
splunk-windows-index.yml
|
change to github
|
2020-02-28 16:56:48 +07:00 |
splunk-windows.yml
|
Added AppLocker log source
|
2020-07-13 20:27:52 +00:00 |
splunk-zeek.yml
|
Squashed commit of the following:
|
2020-06-05 13:18:03 -04:00 |
stix-linux.yml
|
STIX Support keywords (value without field)
|
2020-07-28 18:52:02 +03:00 |
stix-qradar.yml
|
stix backend + mapping configurations for windows logs and qradar
|
2020-07-07 15:04:16 +03:00 |
stix-windows.yml
|
extension should use '..'
|
2020-07-26 12:16:48 +03:00 |
stix.yml
|
STIX Support keywords (value without field)
|
2020-07-28 18:52:02 +03:00 |
sumologic-cse.yml
|
Added:
|
2020-10-06 15:07:52 +03:00 |
sumologic.yml
|
Added Windows NTLM log source + fixes
|
2020-07-02 23:20:36 +02:00 |
sysmon.yml
|
Added:
|
2020-10-06 15:07:52 +03:00 |
thor.yml
|
Added AppLocker log source
|
2020-07-13 20:23:42 +00:00 |
winlogbeat-modules-enabled.yml
|
kibana-ndjson for all configs which already have kibana
|
2020-11-09 08:46:17 +01:00 |
winlogbeat-old.yml
|
kibana-ndjson for all configs which already have kibana
|
2020-11-09 08:46:17 +01:00 |
winlogbeat.yml
|
kibana-ndjson for all configs which already have kibana
|
2020-11-09 08:46:17 +01:00 |