Azure-Sentinel

История

v-jayakal 726596bd48 Merge pull request #3623 from avital-m/private/avital/DSTIM Contribute DSTIM workbook		2021-12-20 21:59:01 -08:00
..
AADUserInfo	…
ASim	[Chore] Changed name to ASimDisabledParsers plural	2021-11-25 10:37:56 +01:00
ASim Microsoft Defender for IoT - Endpoint	Rename product	2021-11-03 10:40:18 +02:00
ASim Sysmon for Linux	Rename product	2021-11-03 10:40:18 +02:00
ASim Sysmon for Windows	Rename product	2021-11-03 10:40:18 +02:00
ASim WindowsEvent	Rename product	2021-11-03 10:40:18 +02:00
ASimAuthentication	Parser version due to (#3450 )	2021-11-17 10:07:30 +02:00
ASimDns	Changing parsers description (#3755 )	2021-12-19 10:05:25 +02:00
ASimFileEvent	Rename product	2021-11-03 10:40:18 +02:00
ASimNetworkSession	Merge pull request #3701 from Azure:dev/normalization/proxy-parsers	2021-12-16 10:35:08 +02:00
ASimProcessEvent	Fixes broken parser due to missing commas.	2021-11-15 12:22:41 +02:00
ASimRegistry	Rename product	2021-11-03 10:40:18 +02:00
ASimWebSession	Additional review comments	2021-12-15 12:32:42 +02:00
Akamai	…
Alsid	…
Apache	…
ArubaClearPass	…
Barracuda	…
CassandraDB	switch from yaml to txt	2021-10-11 01:11:10 -04:00
CiscoISE	…
CiscoMeraki	…
CiscoUCS	…
CiscoUmbrella	fixed comma issues	2021-10-22 16:33:53 +05:30
ConfluenceAudit	…
CyberArk	…
CylancePROTECT	…
DSTIM	Fix comments	2021-12-19 08:52:06 +02:00
Duo Security	…
Exabeam	…
GWorkspaceReports	GWorkspace: map time_id to TImeGenerated in script	2021-10-11 11:53:04 +03:00
GitHub	…
InfobloxNIOS	…
JiraAudit	…
JuniperSRX	…
Logstash	…
MCAS	…
Morphisec	…
NGINX	…
Netskope	New columns	2021-12-16 01:15:50 -08:00
OSSEC	…
Onapsis	…
OneLogin	…
OracleWebLogicServer	…
ProofpointPOD	adding isfuzzy=true for scneario when the table does not exists	2021-12-16 18:45:10 -08:00
PulseConnectSecure	…
QualysKB	…
SQLSever	…
SalesforceServiceCloud	…
SentinelOne	…
SophosXGFirewall	…
SquidProxy	…
SymantecDLP	…
SymantecEndpointProtection	…
SymantecProxySG	…
SymantecVIP	…
SyslogAUOMS	…
Sysmon	…
Tomcat	…
TrendMicro	…
VMwareESXi	…
WorkplaceFacebook	…
ZPA	…
ZScaler	…
ZoomReports	…
pfsense	…
AwsS3BucketAPILogsParser.txt	…
Cisco_ISEParser.txt	…
CommonSecurityLogs-AdditionalExtensionParser.txt	…
Epic_Parser.csl	…
ForgeRockParser.txt	…
KVPairExtraction	…
Netscaler_parser.csl	…
OneIdentity_Safeguard.txt	…
PAN_Parser.csl	…
Readme	…
RemoteDesktopServices-RdpCoreTS-parser.txt	…
Teams_parser.txt	…
WatchGuardFirebox.txt	…
Zoom_parser.txt	…
bind9_syslog.txt	…
squid_parser.txt	…

Readme

For details on creating a Parsers, see the Contribution guidance - https://github.com/Azure/Azure-Sentinel/wiki/Contribute-to-Sentinel-GitHub-Community-of-Queries#example-parser