4b7ef3b7d1
Merge pull request #22 from darktrace-com/update-workbook-age
...
Update workbook age
2022-07-27 09:38:02 +01:00
ef4ffd0659
modifed test data to be consistent with the new action strings being used
2022-07-26 16:13:02 -07:00
e3f7a9c849
added groupScore to the test data
2022-07-26 08:59:32 -07:00
2a43c38aaf
renamed sample logs file to be consistent with what the queries are using
2022-07-22 15:45:41 -07:00
04ea0e9002
Merge pull request #5307 from tanium/master
...
Tanium: initial merge commit
2022-07-22 12:50:56 +05:30
f43c535a05
Merge pull request #4026 from parag-metron/Digital-Shadows-connector
...
Digital Shadows solution
2022-07-22 12:50:21 +05:30
dcdd1527c6
Corrections requested by team Sample Data, Image, Zip
2022-07-20 14:01:02 -04:00
b9401b1d8e
deleted MarkLogicAudit_CL.json
2022-07-20 14:22:50 +03:00
6ac17eb12d
OracleWebLogic parser update ( #5585 )
...
* fixed data types
* sample data update
2022-07-15 13:48:08 +05:30
05d9a70a07
changing dummy emails to sanitized@sanitized.com
2022-07-13 15:34:00 +01:00
d30505fdd3
moving log samples into repo root sample data
2022-07-13 13:19:33 +01:00
5dae813ffc
Merge remote-tracking branch 'origin/master' into azurekid/bugfix/sample-data
2022-07-13 13:26:47 +02:00
54c6f20b6c
Merge pull request #4612 from socprime/MuleSoft-Cloudhub
...
MuleSoft Cloudhub: first commit
2022-07-12 11:00:57 +05:30
75be2c2676
removed _s and _d and _g from column names
2022-07-11 09:51:41 -06:00
a402d437cd
add sample data in json format
2022-07-11 11:59:52 +03:00
1668f2a64a
fix: Auth0_CL->Auth0AM_CL, details_response_statusCode is Real type
2022-07-08 11:21:55 +03:00
e2715368bd
add sample data with file column
2022-07-07 14:19:03 +03:00
25d0c65d34
Merge branch 'master' of github.com:Azure/Azure-Sentinel
2022-07-05 14:52:58 -06:00
cde23ca1e3
add sample data
2022-07-05 15:01:44 +03:00
caa0fe6e3b
remove MarkLogicAudit_CL.json
2022-07-05 13:08:36 +03:00
fd50b2599a
Merge pull request #5339 from securepractice/SecurePracticeMailRisk
...
Secure Practice MailRisk Solution
2022-07-05 10:36:12 +05:30
4fbcf046dd
updated filetype
2022-07-04 11:48:41 +02:00
c34616b5f7
fixed newline issue causing import errors via API
2022-07-04 11:15:07 +02:00
2ddea2ba57
invalid json format
2022-07-04 10:33:15 +02:00
00bf42d5d0
add: new sample with details_request_method, details_request_body_audience, details_response_statusCode
2022-06-28 00:10:26 +03:00
4b41117b98
Merge pull request #4757 from socprime/AliCloud
...
Ali cloud connector
2022-06-23 19:23:34 +05:30
eef8255947
Added tanium sample data
2022-06-21 13:03:07 -06:00
fa9cf71227
add sample data
2022-06-21 14:23:59 +03:00
b8ab5a2290
Update sample data
2022-06-20 09:07:42 +02:00
6e037a183b
Sanitize emails in sample data
2022-06-17 12:08:49 +02:00
dd627b8398
Merge branch 'SecurePracticeMailRisk' of https://github.com/securepractice/Azure-Sentinel ; branch 'master' of https://github.com/Azure/Azure-Sentinel into SecurePracticeMailRisk
2022-06-16 11:56:42 +02:00
a36e8e7dcc
Merge pull request #4483 from dicolanl/ZeroNetworksv1
...
Merged Zero Networks v1.0.0
2022-06-15 19:21:11 -07:00
d365beff8d
Merge pull request #5034 from socprime/NetwrixAuditor
...
add NetwrixAuditor connector
2022-06-13 13:05:05 +05:30
664ba56594
change data type and rename NetwrixAuditor_CL to NetwrixAuditor
2022-06-10 14:29:26 +03:00
006dc34eb7
add samples
2022-06-06 11:24:53 +03:00
77e166f7cf
update box connector sample data
2022-06-02 17:03:09 +03:00
7221de4fe4
add Metadata for the data connector, provide the sample data in the json file format
2022-06-02 12:57:45 +03:00
427429b0f8
add Metadata for the data connector, provide the sample data in the json file format
2022-06-02 12:56:13 +03:00
27eafb7ca6
add Metadata for the data connector, provide the sample data in the json file format
2022-06-02 12:39:52 +03:00
155f8d014e
Merge pull request #4751 from socprime/data_connector_postgresql
...
PostgreSQL data connector PR
2022-06-02 11:00:54 +05:30
47f90683a8
return previous data
2022-06-01 16:13:00 +03:00
0f5f543981
Merge pull request #5033 from socprime/MongoDB
...
add MongoDBAudit connector
2022-06-01 14:39:57 +05:30
6bc628b649
update sample data
2022-05-31 21:20:25 +03:00
57956894ae
update after review
2022-05-31 21:05:33 +03:00
ba0eb8c110
add RAW log samples
2022-05-30 16:31:03 +03:00
43144e8cf0
make changes proposed in code review
2022-05-30 11:54:45 +03:00
4b4ecf512d
make changes proposed in code review
2022-05-30 11:54:03 +03:00
5019ec999c
make changes proposed in code review
2022-05-27 19:13:46 +03:00
79da059119
make changes proposed in code review
2022-05-27 19:12:21 +03:00
70317b68da
make changes proposed in code review
2022-05-27 19:03:54 +03:00
3bf1cd32ce
make changes proposed in code review
2022-05-27 18:32:18 +03:00
ce4e48d6c7
Adding new ASim Network Parser for Cisco Meraki ( #5127 )
...
* Adding new ASim Network Parser for Cisco Meraki
* [ASIM Parsers] Generate deployable ARM templates from KQL function YAML files.
Co-authored-by: github-actions[bot] <>
2022-05-26 14:02:27 +05:30
da301d4bab
change sample format, fix the link bug
2022-05-23 16:27:24 +03:00
58da85fd15
fix the link bug
2022-05-23 15:06:23 +03:00
b9d1e39550
refactor structure
2022-05-20 18:34:34 +03:00
628464c9fd
change RAW txt data to csv
2022-05-20 17:53:16 +03:00
beae529554
add MarkLogic connector
2022-05-20 17:35:25 +03:00
150ca05c66
add MongoDBAudit connector
2022-05-20 17:25:31 +03:00
4c444a0782
change naming
2022-05-16 12:08:08 +03:00
8bd74f095f
update sample data
2022-05-05 11:19:28 +03:00
d703bcf987
add: parser, fix data scheme, data samples, remove exit(0)
2022-05-02 12:15:47 +03:00
5a905657f4
change CL structure
2022-04-29 14:02:51 +03:00
3483b44b58
add samples
2022-04-29 12:09:25 +03:00
da9496c0b6
PostgreSQL data connector PR
2022-04-28 14:02:51 +03:00
d23e118307
init commit
2022-04-26 17:24:15 +03:00
6a5baee05c
MuleSoft: update sample
2022-04-22 10:40:19 +03:00
cc2adaeda8
add: Auth0 Data Connector
2022-04-18 16:05:06 +03:00
17401fdb69
Merge pull request #3869 from armorblox/armorblox-sentinel-solution
...
Playbook, Workbook & Analytic Rule for the Armorblox Sentinel integration
2022-04-13 16:08:42 +05:30
4082ad1af3
solved validation errors
2022-04-12 16:30:30 +05:30
9cf61bdfd4
Merge pull request #4461 from sailpoint-tech-partner-eng/SailPointIdentityNow
...
SailPoint IdentityNow
2022-04-12 10:19:17 +05:30
613ede7cdc
Merge branch 'Azure:master' into Digital-Shadows-connector
2022-04-11 20:27:21 +05:30
89d65a8c0a
MuleSoft Cloudhub: first commit
2022-04-11 15:46:09 +03:00
cad5fb5aa4
PR Updates
2022-04-06 11:37:17 -05:00
1814dae8f1
Build Failed Updates
2022-04-06 11:25:57 -05:00
26afc8c662
PR Updates
2022-04-06 11:17:11 -05:00
a40e46fad3
PR Changes
2022-04-05 14:17:50 -05:00
4bb162dd0d
Merge pull request #4397 from socprime/CyberArkEPM_Dataconnector
...
CyberArkEPM: first commit
2022-04-04 14:03:57 +05:30
d672c2736c
Update ZNAccessOrchestratorAudit_CL.json
2022-03-28 07:43:48 -07:00
1a4098ba53
CyberArkEPM: sample and parser upd
2022-03-28 12:38:18 +03:00
7c88339950
CyberArkEPM: add new event types
2022-03-25 15:19:50 +02:00
3a258a0b45
CyberArkEPM: init script fix
2022-03-19 10:11:10 +02:00
0f71ef4667
add logo and sample data
2022-03-16 12:58:34 -07:00
e221885c82
CyberArkEPM: fixes
2022-03-15 15:57:28 +02:00
eedc3373c2
CyberArkEPM: first commit
2022-03-11 15:17:47 +02:00
6447680c84
Update Sample Data
2022-03-08 09:20:01 +01:00
7e5e46388c
removed [UTC] from date rows
2022-02-25 11:55:23 +05:30
8e7c55c2d8
changed mail to sanitized@sanitized.com
2022-02-24 18:14:04 +05:30
ba599a5070
resolving some errors
2022-02-24 17:42:50 +05:30
d9af3b397a
added sample data
2022-02-24 17:32:02 +05:30
17bec1fb5c
Merge branch 'Azure:master' into master
2022-02-17 04:35:38 +05:00
6d1d684aa7
added date_t update
2022-02-16 21:05:24 +05:30
fbc4d470c9
Merge pull request #3871 from adamhuang97/p/update-to-ms
...
[TrendMicro] Update new version data connector.
2022-02-10 17:04:59 +05:30
e5debdc61c
Update new version sample data.
2022-02-09 21:43:39 +08:00
199cf9ff26
changed id_s values type to string
2022-02-03 19:00:40 +05:30
1fb947b6b0
Changes in the Armorblox API sample json
2022-02-02 19:34:03 +05:30
d96e7347ad
Merge pull request #3858 from redcanaryco/redcanary_solution
...
Add Solution for Red Canary
2022-01-31 12:22:48 +05:30
d41f05b587
Merge pull request #3833 from argos-au/master
...
Adding ARGOS Cloud Security Solution
2022-01-28 22:10:46 +05:30
cc9e22463b
Fix sample data file name.
2022-01-25 17:44:26 +08:00
2b0e92e2de
clean up sample data
2022-01-25 11:39:52 +11:00
6415fbc51c
Resolved errors in the workbook, logo and sample data
2022-01-24 02:09:56 +05:00
df3878ec43
Initial Commit with the first version
2022-01-24 01:49:36 +05:00
bcbc36ad49
Add RequesterObjectId to the schema
2022-01-18 12:48:14 +02:00
3c7ae13065
Add MailRisk by SecurePractice connector, logo and sample data.
2022-01-14 13:20:16 +01:00
f6208271fa
Merge remote-tracking branch 'origin/master' into redcanary_solution
2022-01-10 11:21:21 -05:00
07017791df
Update sample email to sanitized@sanitized.com.
2022-01-10 17:33:27 +08:00
32095cec05
Fix sample data format.
2022-01-10 17:20:45 +08:00
222cdc4528
Merge pull request #3744 from udanashivm/BoschAIShield_connector
...
Bosch AIShield Solution
2022-01-10 13:48:52 +05:30
b7d50da4b8
Update new version data connector.
2022-01-10 15:09:16 +08:00
f18adf6c4d
Add sample data
2022-01-05 15:21:34 -05:00
d0f1e2d7ae
Update DSTIM workbook to work with injectes log analytics queries
2022-01-03 23:07:23 +02:00
ee97399b42
Revert "Revert "Merge branch 'master' of https://github.com/Azure/Azure-Sentinel ""
...
This reverts commit ff69f85224
2022-01-03 16:21:46 +02:00
ff69f85224
Revert "Merge branch 'master' of https://github.com/Azure/Azure-Sentinel "
...
This reverts commit c929df845a53e6c92e3e
2022-01-03 16:04:13 +02:00
726596bd48
Merge pull request #3623 from avital-m/private/avital/DSTIM
...
Contribute DSTIM workbook
2021-12-20 21:59:01 -08:00
fa9bd8750b
Bosch AIShield connector, parser, Analytics Rules
2021-12-17 19:04:46 +05:30
1c04798822
change email to sanitized@sanitized.com.
2021-12-16 21:14:10 +02:00
6c44fd51c7
Fix comments
2021-12-12 13:46:17 +02:00
599d61906e
create LastPass Solution
2021-12-10 09:21:55 +01:00
f2fff9b5db
Add custom functions
2021-12-08 18:00:58 +02:00
e353596bbb
merge from master
2021-12-08 17:13:09 +02:00
4fe6085bd1
Adddatasamplesforcutom logs
2021-12-08 14:46:37 +02:00
e3aeb1c6fa
slack connector - add sample data
2021-12-01 13:47:59 +02:00
2114331e72
add def and sample
2021-11-22 17:02:22 +11:00
220d843b3e
Merge pull request #3115 from Azure/v-maudan/CiscoUmbrealla_VersionUpdate
...
Updated Cisco Umbrella connector code to support Version 5 and Version 6
2021-11-17 15:40:23 +05:30
c1b9e8b211
Merge pull request #3237 from cyberpion-yizhar/cyberpion-add-acknowledgment-fields
...
add is_acknowledged, acknowledged_by, acknowledged_reason, acknowledg…
2021-11-01 15:24:40 -07:00
68bc12988c
Merge pull request #3140 from tyng94/AbnormalSecurity
...
Abnormal Security Sentinel Integration
2021-10-28 00:43:24 -07:00
2129b74c1c
Merge pull request #3322 from socprime/apigeex_connector_function_app
...
ApigeeX Data Connector
2021-10-27 23:48:29 -07:00
3103da693c
apigeex - add sample data
2021-10-27 18:39:30 +03:00
149427e1aa
Merge pull request #2939 from NikitaGrunskyHolm/holmsecurity
...
Files to deploy azure function
2021-10-26 23:30:00 -07:00
6a079840dc
Merge pull request #3179 from sailpoint-tech-partner-eng/SailPointIdentityNow
...
SailPoint IdentityNow
2021-10-26 03:07:36 -07:00
31b39c676d
Merge pull request #3114 from daenyel/InfoSecGlobal
...
Initial commit for InfoSec Global
2021-10-25 19:38:51 +05:30
71719271e8
Merge remote-tracking branch 'upstream/master' into AbnormalSecurity
2021-10-22 16:27:18 +08:00
ac5cf6da3d
SailPoint IdentityNow Updates
2021-10-20 08:39:58 -05:00
f63920eb8b
add is_acknowledged, acknowledged_by, acknowledged_reason, acknowledged_date to action item's fields
2021-10-18 10:18:37 +03:00
d2180dd037
Merge pull request #3141 from socprime/jboss_connector
...
JBoss Data Connector
2021-10-15 01:08:44 -07:00
7023017323
Merge pull request #3102 from socprime/elastic_agent_connector
...
Elastic Agent Data Connector
2021-10-15 01:06:08 -07:00
2fa8ec7854
Merge pull request #3146 from socprime/snowflake_connector
...
Snowflake Data Connector
2021-10-14 21:09:55 -07:00
a778b2b5d8
Merge pull request #3113 from socprime/ImpervaCloudWAF_parse_CEF_inside_function
...
ImpervaCloudWAF: add CEF parsing inside the function
2021-10-14 19:48:30 -07:00
f4b9f2a358
Merge pull request #3164 from socprime/cisco_secure_endpoint_connector
...
Cisco Secure Endpoint Data Connector
2021-10-13 22:36:15 -07:00
2fb52d9c72
Merge pull request #3101 from socprime/Bitglass
...
Bitglass Data Connector
2021-10-13 22:29:41 -07:00
43dea2f039
Merge pull request #3162 from socprime/TheHive
...
TheHive: first commit
2021-10-13 22:09:26 -07:00
2b0b98ed73
PR Updates
2021-10-12 18:09:29 -05:00
687f7a62d1
sanitised more emails
2021-10-11 16:19:24 +08:00
d30f54c2dd
sanitized emails
2021-10-11 16:12:58 +08:00
ba91cfc328
re-sanitized email addresses
2021-10-11 16:06:50 +08:00
a3daebc35e
fix messages json
2021-10-11 15:56:26 +08:00
7b099f5ad6
add sample data
2021-10-11 12:16:40 +08:00
53544b249e
Merge pull request #3047 from socprime/TrendMicroCAS
...
TrendMicroCAS:first commit
2021-10-09 19:19:25 -07:00
ed744b5514
Merge pull request #3056 from techwriter-dev/nxlog-dns-logs-solution
...
Nxlog dns logs solution
2021-10-06 22:38:11 -07:00
228d404ad3
Merge pull request #2968 from techwriter-dev/nxlog-aix-audit-solution
...
Initial attempt to package the NXLog AIX Audit solution
2021-10-06 22:37:31 -07:00
0702ec5655
Merge pull request #2995 from armorblox/master
...
Data Connector for Armorblox Solution
2021-10-06 06:04:03 -07:00
JustasZDT
sean.macdonald
NikTripathi
Brandon Wise
Kate
spsocprime
Justas Zaborovskis
Rogier Dijkman (Azurekid)
v-dvedak
Alex Collins
Oleh Speka
Donny Maasland
Ingebrigt Nygård
Sreedhar Ande
Vitalii Uslystyi
Anki Narravula
Devika Mehra
sp
Alex Verbniak
shikhin
shikhin-metron
Prashant Kagwad
SecurityJedi
ThijsLecomte-TC
Frozen Strawberries
xoriant-prateekg
adam_c_huang
Ankita Sharma
v-rucdu
David O'Brien
Junaid
Avital Merberg
rc-iwoodley
Ofer Shezaf
v-jayakal
Mallikarjun Udanashiv
Avital Merberg
ThijsLecomte
Tze Yang Ng
yizhar