Azure
/
Azure-Sentinel
зеркало из
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
35 880 коммитов 3 464 Ветки 0 Теги 12 GiB
Граф коммитов

27 Коммитов

Автор SHA1 Сообщение Дата
DixitVedanshi 2ace3d8f45 version update 2023-03-01 17:36:16 +05:30
DixitVedanshi 95e1b043d3 detections files path update 2023-02-22 18:44:11 +05:30
pemontto 9a2be42b69
🐛 Fix malformed YAML in migrated analytics 2023-02-10 11:05:57 +11:00
v-sabiraj 8b7fe3757d Updating skip validations files 2022-11-16 23:51:22 +05:30
v-sabiraj e37b24c8a0 Updated SkipValidations 2022-11-15 23:16:25 +05:30
v-sabiraj 985582b75d Moving Analytic rules 2022-10-16 23:15:12 +05:30
Shain Wray (MSTIC) 7b703c9bcf version. 2021-11-29 14:07:36 -08:00
Shain Wray (MSTIC) 32f4021c3b Updating TI queries based on feedback and discussions on this PR - #3477 - and I don't want preferences for a specific environment to be included. This includes generic changes that need to be done. 2021-11-29 13:58:28 -08:00
Ajeet Prakash (MSTIC) 36bf081ec0 Updating Version Number 2021-11-12 14:57:17 -08:00
Ajeet Prakash (MSTIC) 16564be03e Updating the query so that only latest indicatorid is selected 2021-11-12 14:44:00 -08:00
Avinash Iyer 768e6f6806 updated version after rebase 2021-10-29 15:36:52 -07:00
Avinash Iyer 50e16b1b1d removed Preview from TI map rules 2021-10-29 15:06:06 -07:00
ShaniFelig afe1ba6969 add Scheduled kind to all exisitng templates (solutions + detections) 2021-10-19 16:51:50 +03:00
ShaniFelig 236af239c5 adding kind property to exisitng templates 2021-09-29 15:22:39 +03:00
t-shaviv 0c6c4fecb2 Merge branch 'master' into shaharBranch2 2021-05-19 10:12:21 +03:00
t-shaviv 4741982a7c fixed detection queries 2021-05-19 10:02:07 +03:00
Amit Bergman f63fc0ed91 changes 2021-05-11 08:52:54 +03:00
Amit Bergman 4eb9ad07b1 changes 2021-05-10 15:54:50 +03:00
Shain Wray (MSTIC) c49613c626 Add in filtering to make sure the TI match is active for when the log event occurred 2021-04-04 21:46:37 -07:00
laithhisham 9f0fa91b90
Feature/lahisham/migrate scheduled templates to new entity mapping (#1319) 
* migrate scheduled templates to new entity mapping model

* add validation for missing new entity mappings
 2020-11-17 17:27:25 +02:00
pemontto abbbc5d072
Add ThreatIntelligenceTaxii as data connector 2020-08-25 10:56:21 +01:00
Shain Wray (MSTIC) ba90e4555f Updating to include URLCustomEntity where available. 2019-12-23 10:38:26 -08:00
sagamzu 6fff1aaf6d
fix preview prefix (#312) 2019-09-10 11:50:36 +03:00
Shain Wray (MSTIC) 9195661492 Fixing typos and updating titles for TI to preview 2019-09-09 07:03:00 -07:00
Shain Wray (MSTIC) 22f8c81e31 A few more detection fix ups for adding in entities 2019-08-30 15:42:10 -07:00
Shain Wray (MSTIC) a2d554bb3d adding in TI datatype 2019-08-27 07:45:03 -07:00
Shain Wray (MSTIC) 2d9adff6b2 Initial TI mappings for IP 2019-08-26 17:11:38 -07:00