15 Коммитов

Автор	SHA1	Сообщение	Дата
Shain Wray (MSTIC)	32f4021c3b	Updating TI queries based on feedback and discussions on this PR - #3477 - and I don't want preferences for a specific environment to be included. This includes generic changes that need to be done.	2021-11-29 13:58:28 -08:00
Pete Bryan	8c900dafa2	Sylog to Zoom	2021-08-06 13:39:23 -07:00
Pete Bryan	a10c26d96c	Hunting Query TimeFrame Updates	2021-04-15 17:52:25 -07:00
Shain Wray (MSTIC)	c49613c626	Add in filtering to make sure the TI match is active for when the log event occurred	2021-04-04 21:46:37 -07:00
pemontto	abbbc5d072	Add ThreatIntelligenceTaxii as data connector	2020-08-25 10:56:21 +01:00
Shain Wray (MSTIC)	ba90e4555f	Updating to include URLCustomEntity where available.	2019-12-23 10:38:26 -08:00
Sara Gamzu	c743164b28	Fix datatypes indentations	2019-12-09 11:52:08 +02:00
Shain Wray (MSTIC)	82da523765	Fixing missing Cisco and TrendMicro references for connectorID and updating connectorId's for VMConnection, WireData and W3CIISLog datatypes	2019-12-05 06:57:51 -08:00
Shain Wray (MSTIC)	9195661492	Fixing typos and updating titles for TI to preview	2019-09-09 07:03:00 -07:00
Shain Wray (MSTIC)	c008bc79ad	Updating entity and to yaml format	2019-09-04 08:26:55 -07:00
Shain Wray (MSTIC)	1b366b2ef1	Moving some files as it conflicted in the last PR for some reason, and adding in a variable to hold the Operations value for ease of change/addition to the list at a later date	2019-08-29 07:19:58 -07:00
Shain Wray (MSTIC)	a7eebcca3b	Looks like some kind of conflict, moving 3 files back for now	2019-08-29 06:28:48 -07:00
Shain Wray (MSTIC)	66db835dfe	Moving File to Hunting per discussion with Jwes, these can be noisy, we will look at FileHash to replace these in Detections. And a couple of bugs.	2019-08-29 06:19:24 -07:00
juliango2100	4e579fe6d5	Update DNSEventsMatchToThreatIntel.txt	2019-08-22 13:26:21 -07:00
juliango2100	d7863cc11e	Create DNSEventsMatchToThreatIntel.txt	2019-08-21 17:38:03 -07:00