.. |
Group IB TIA
|
update Group IB TIA playbooks for solutions package + logo + sample data
|
2021-06-22 12:36:22 +03:00 |
ApacheHTTPServer_CL.json
|
Apache HTTP Server Data Connector (#1373)
|
2020-12-08 17:32:56 -08:00 |
BSMmacOS_CL.json
|
NXLog BSM macOS (Custom) data connector
|
2021-01-07 12:35:54 -06:00 |
BetterMTDAppLog_CL.csv
|
Added BETTER MTD sample data for each custom logs
|
2020-10-13 22:59:36 +04:00 |
BetterMTDAppLog_CL.json
|
Added json sample BETTER MTD data
|
2020-10-28 11:35:36 +03:00 |
BetterMTDDeviceLog_CL.csv
|
Added BETTER MTD sample data for each custom logs
|
2020-10-13 22:59:36 +04:00 |
BetterMTDDeviceLog_CL.json
|
Added json sample BETTER MTD data
|
2020-10-28 11:35:36 +03:00 |
BetterMTDIncidentLog_CL.csv
|
Added BETTER MTD sample data for each custom logs
|
2020-10-13 22:59:36 +04:00 |
BetterMTDIncidentLog_CL.json
|
Added json sample BETTER MTD data
|
2020-10-28 11:35:36 +03:00 |
BetterMTDNetflowLog_CL.csv
|
Added missing fields in Better MTD sample data
|
2020-11-12 16:29:19 +03:00 |
BetterMTDNetflowLog_CL.json
|
Added missing fields in Better MTD sample data
|
2020-11-12 16:29:19 +03:00 |
BoxEvents_CL.json
|
box data conn - added sample data
|
2021-02-19 16:10:19 +02:00 |
CarbonBlackAuditLogs_CL.json
|
ACNCD_Custom_DataConnector_v2 (#729)
|
2020-06-19 14:00:16 -07:00 |
CarbonBlackEvents_CL.json
|
ACNCD_Custom_DataConnector_v2 (#729)
|
2020-06-19 14:00:16 -07:00 |
CarbonBlackNotifications_CL.json
|
ACNCD_Custom_DataConnector_v2 (#729)
|
2020-06-19 14:00:16 -07:00 |
CiscoDuo_CL.json
|
cisco duo - update sample data
|
2021-07-06 13:48:37 +03:00 |
Cisco_Umbrella_cloudfirewall_CL.json
|
Cisco umbrella connector (#1261)
|
2020-11-13 07:16:25 -08:00 |
Cisco_Umbrella_dns_CL.json
|
Cisco umbrella connector (#1261)
|
2020-11-13 07:16:25 -08:00 |
Cisco_Umbrella_ip_CL.json
|
Cisco umbrella connector (#1261)
|
2020-11-13 07:16:25 -08:00 |
Cisco_Umbrella_proxy_CL.json
|
Cisco umbrella connector (#1261)
|
2020-11-13 07:16:25 -08:00 |
Cloudflare_CL.json
|
cloudflare - updated sample data
|
2021-03-19 17:52:16 +02:00 |
CognniIncidents_CL.json
|
Add Cognni data connector including:
|
2021-02-22 10:43:16 +02:00 |
Confluence_Audit_CL.json
|
ConfluenceAudit: table schema,parser,samples
|
2021-03-22 15:34:21 +02:00 |
Corelight_CL.json
|
Corelight: change sample file
|
2021-03-16 10:19:21 +02:00 |
CrowdstrikeReplicatorLogs_CL.json
|
CrowdstrikeFDR: Samples,parser,table-schema
|
2021-03-09 12:33:14 +02:00 |
CyberpionActionItems_CL.json
|
Fixed sample data format
|
2020-12-23 14:05:10 +02:00 |
DNS_Logs_CL.json
|
NXLog LinuxAudit data connector: Initial Commit (#1280)
|
2020-12-01 23:44:20 -08:00 |
DuoSecurityAdministrator_CL.json
|
adding sample data
|
2021-02-19 15:54:16 +00:00 |
DuoSecurityAuthentication_CL.json
|
adding sample data
|
2021-02-19 15:54:16 +00:00 |
DuoSecurityOfflineEnrollment_CL.json
|
adding sample data
|
2021-02-19 15:54:16 +00:00 |
DuoSecurityTelephony_CL.json
|
adding sample data
|
2021-02-19 15:54:16 +00:00 |
DuoSecurityTrustMonitor_CL.json
|
adding sample data
|
2021-02-19 15:54:16 +00:00 |
ESETEnterpriseInspector_CL.csv
|
Add ESET Enterprise Inspector REST API connector (#1417)
|
2020-12-11 15:58:33 -08:00 |
ESETEnterpriseInspector_CL.json
|
Add ESET Enterprise Inspector REST API connector (#1417)
|
2020-12-11 15:58:33 -08:00 |
Firework_CL.json
|
Solutions: Add Flare Systems Firework connector
|
2021-05-20 16:23:40 -04:00 |
ForcepointDLPEvents_CL.json
|
update custom file name (#660)
|
2020-05-06 15:39:58 -07:00 |
GCP_DNS_CL.json
|
gcp dns - update sample data
|
2021-06-23 11:50:04 +03:00 |
GCP_IAM_CL.json
|
GCP IAM - add sample data
|
2021-06-07 16:15:01 +03:00 |
GCP_MONITORING_CL.json
|
gcp monitor - update sample data
|
2021-06-22 11:33:16 +03:00 |
GWorkspace_ReportsAPI_admin_CL.json
|
G workspace reports connector (#1320)
|
2020-11-25 14:00:19 -08:00 |
GWorkspace_ReportsAPI_calendar_CL.json
|
G workspace reports connector (#1320)
|
2020-11-25 14:00:19 -08:00 |
GWorkspace_ReportsAPI_drive_CL.json
|
G workspace reports connector (#1320)
|
2020-11-25 14:00:19 -08:00 |
GWorkspace_ReportsAPI_login_CL.json
|
G workspace reports connector (#1320)
|
2020-11-25 14:00:19 -08:00 |
GWorkspace_ReportsAPI_mobile_CL.json
|
G workspace reports connector (#1320)
|
2020-11-25 14:00:19 -08:00 |
GWorkspace_ReportsAPI_token_CL.json
|
G workspace reports connector (#1320)
|
2020-11-25 14:00:19 -08:00 |
GWorkspace_ReportsAPI_user_accounts_CL.json
|
G workspace reports connector (#1320)
|
2020-11-25 14:00:19 -08:00 |
ImpervaWAFCloud_CL.json
|
ImpervaWAF:add log samples
|
2021-07-20 16:11:03 +02:00 |
Jira_Audit_CL.json
|
JiraAudit: data sample
|
2021-01-28 16:47:35 +02:00 |
JuniperIDP_CL.json
|
JuniperIDP: data connector, parser, samples
|
2021-06-07 12:02:25 +03:00 |
LinuxAudit_CL.json
|
NXLog LinuxAudit data connector: Initial Commit (#1280)
|
2020-12-01 23:44:20 -08:00 |
Lookout_CL.json
|
Ent name added into parser and sample data
|
2021-07-16 17:05:26 +05:30 |
NCProtectUAL_CL.csv
|
Update sample data in csv
|
2021-04-14 13:12:24 +05:30 |
NCProtectUAL_CL.json
|
Change in sample data
|
2021-04-14 13:04:45 +05:30 |
NGINX_CL.json
|
Added NGINX data connector
|
2021-01-20 14:14:14 +02:00 |
Nessus_VM_CL
|
TenableNessus: link change
|
2021-06-11 09:30:29 +03:00 |
Netskope_CL.json
|
ACN_CD_Netskope_DataConnector01 (#1313)
|
2020-11-24 14:29:06 -08:00 |
NexposeInsightVMCloud_assets_CL.json
|
InsightVMCloud: fixes
|
2021-06-23 10:31:15 +03:00 |
NexposeInsightVMCloud_vulnerabilities_CL.json
|
InsightVMCloud: data_connector,parsers,datasamples
|
2021-06-17 15:09:20 +03:00 |
Okta_CL.json
|
ACNCD_DataConnectors_final (#767)
|
2020-07-07 15:25:53 -07:00 |
OracleWebLogicServer_CL.json
|
oracle web logic server - rename sample file
|
2021-03-31 10:41:41 +03:00 |
OrcaAlerts_CL.json
|
Orca SEcurity REST API connector (#721)
|
2020-06-19 14:03:45 -07:00 |
PaloAltoPrismaCloudAlert_CL.json
|
prisma cloud - update sample data
|
2021-04-08 11:14:08 +03:00 |
PaloAltoPrismaCloudAudit_CL.json
|
updated sample data
|
2021-04-09 11:30:43 +05:30 |
ProofPointTAPClicksBlocked_CL_sample_data.json
|
ACNCD_Custom_DataConnector_v2 (#729)
|
2020-06-19 14:00:16 -07:00 |
ProofPointTAPClicksPermitted_CL_sample_data.json
|
ACNCD_Custom_DataConnector_v2 (#729)
|
2020-06-19 14:00:16 -07:00 |
ProofPointTAPMessagesBlocked_CL_sample_data.json
|
Modifying the sample data to sanitize it of any possible PII information.
|
2021-07-21 11:27:02 -07:00 |
ProofPointTAPMessagesDelivered_CL_sample_data.json
|
ACNCD_Custom_DataConnector_v2 (#729)
|
2020-06-19 14:00:16 -07:00 |
ProofpointPOD_maillog_CL.json
|
Proofpoint POD Connector (#1293)
|
2020-11-20 17:30:04 -08:00 |
ProofpointPOD_message_CL.json
|
Proofpoint POD Connector (#1293)
|
2020-11-20 17:30:04 -08:00 |
QualysHostDetection_CL.json
|
ACNCD_Custom_DataConnector_v2 (#729)
|
2020-06-19 14:00:16 -07:00 |
QualysKB_CL.json
|
qualys KB parser
|
2020-12-04 22:56:36 -08:00 |
ReadMe.md
|
Structuring sample data
|
2020-05-01 07:15:41 -07:00 |
SalesforceServiceCloud_CL.json
|
Salesforce Service Cloud Connector (#1292)
|
2020-11-16 19:31:20 -08:00 |
SenservaPro_CL.json
|
Updating sample data per request
|
2021-06-14 10:00:14 -05:00 |
SentinelOne_CL.json
|
SentinelOne: Samples+ fixes
|
2021-03-30 15:40:18 +03:00 |
SlackAudit_CL.json
|
SlackAudit: Datasample added
|
2021-02-23 16:09:15 +02:00 |
SophosCloudOptix_CL.json
|
Sophos cloud optix (#1391)
|
2020-12-08 08:27:37 -08:00 |
SophosEP_CL.json
|
Sophos EP - update sample data
|
2021-07-01 16:47:51 +03:00 |
SophosXGFirewall.json
|
ACNCD_DataConnectors_final (#767)
|
2020-07-07 15:25:53 -07:00 |
SquidProxy.json
|
Squid Proxy Connector (#1231)
|
2020-11-10 17:08:31 -08:00 |
Tomcat_CL.json
|
tomcat - add sample data
|
2021-03-22 13:17:36 +02:00 |
TrendMicro_XDR_CL.json
|
Trend Micro XDR Initial Commit (#1353)
|
2020-12-09 18:57:49 -08:00 |
UbiquitiAuditEvent.json
|
ubiquiti - added sample data
|
2021-03-12 16:51:23 +02:00 |
Workplace_Facebook_CL.json
|
WorkplaceFacebook: connector json and samples
|
2021-04-01 16:54:29 +03:00 |
ZPA_CL.json
|
zpa - add sample data
|
2021-03-23 19:19:26 +02:00 |
ZimperiumMitigationLog_CL.csv
|
Modify sample data file names to match their data types (#656)
|
2020-05-06 00:39:46 -07:00 |
ZimperiumMitigationLog_CL.json
|
Modify sample data file names to match their data types (#656)
|
2020-05-06 00:39:46 -07:00 |
ZimperiumThreatLog_CL.csv
|
Modify sample data file names to match their data types (#656)
|
2020-05-06 00:39:46 -07:00 |
ZimperiumThreatLog_CL.json
|
Modify sample data file names to match their data types (#656)
|
2020-05-06 00:39:46 -07:00 |
Zoom_CL.json
|
ZoomReports: table, parser, sample
|
2021-03-22 16:23:57 +02:00 |
alcide_kaudit_activity_1_CL.json
|
move files in right folders (#642)
|
2020-05-04 06:11:31 -07:00 |
alcide_kaudit_detections_1_CL.json
|
move files in right folders (#642)
|
2020-05-04 06:11:31 -07:00 |
alcide_kaudit_selections_count_1_CL.json
|
move files in right folders (#642)
|
2020-05-04 06:11:31 -07:00 |
alcide_kaudit_selections_details_1_CL.json
|
move files in right folders (#642)
|
2020-05-04 06:11:31 -07:00 |
beSECURE_Audit_CL.json
|
Beyond Security beSECURE patch (#745)
|
2020-07-01 16:48:34 -07:00 |
beSECURE_ScanEvent_CL.json
|
Beyond Security beSECURE patch (#745)
|
2020-07-01 16:48:34 -07:00 |
beSECURE_ScanResults_CL.json
|
Beyond Security beSECURE patch (#745)
|
2020-07-01 16:48:34 -07:00 |
secRMM_CL.json
|
Modify sample data file names to match their data types (#656)
|
2020-05-06 00:39:46 -07:00 |
vmray_emails_CL.json
|
sample data: Replace all email adresses with 'sanitize@sanitize.com'
|
2021-08-18 13:37:38 +02:00 |