mozilla
/
MozDef
зеркало из https://github.com/mozilla/MozDef.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
5 608 коммитов 4 Ветки 53 Теги 68 MiB
Граф коммитов

117 Коммитов

Автор SHA1 Сообщение Дата
Michal Purzynski e15d4afb1f style fixups 2019-11-11 16:16:39 -08:00
Michal Purzynski 7a7b66a02c A new version of the guardduty plugin and a dedicated worker 2019-11-11 15:17:35 -08:00
Phrozyn c6030ad4d7
removes mapping change in favor of rewriting summary 2019-10-25 11:57:07 -05:00
Phrozyn 381fc69c91
updating broFixup to not using details.tls, but details.tls_encrypted as boolean 2019-10-17 18:23:20 -05:00
Phrozyn 53e75bf3f9
adding unit test for fixup. 2019-10-17 14:24:41 -05:00
Phrozyn 8bdecab4a9
adding plugin test 2019-10-17 11:23:45 -05:00
Phrozyn c1947ea8e1
adds hostname to event 2019-10-14 16:54:45 -05:00
Phrozyn 8c46b6a35e
Removing operator object from account_id dedupe test 2019-10-11 18:15:52 -05:00
Phrozyn f4595d7e51
removes participant object from unit test for operator 2019-10-11 18:00:57 -05:00
Phrozyn 4ff0e4fc32
adds tests for additional summary and deduplication of field data 2019-10-11 14:15:35 -05:00
Phrozyn 9dcf7f69aa
adding summary user_name plugin test 2019-10-10 18:39:08 -05:00
Phrozyn c6a13ddbb3
modifying test messages to include summary 2019-10-10 16:54:28 -05:00
Phrozyn 7ae8de8a67
adding missing comma 2019-10-08 09:36:21 -05:00
Phrozyn ae68146394
removing erroneous comma 2019-10-08 09:21:33 -05:00
Phrozyn f6cb9fab7a
adding test and fixing flake8 errro 2019-10-04 15:51:25 -05:00
Brandon Myers e79c290094
Remove sys.path from mq plugin tests 2019-08-07 16:32:56 -05:00
Jan Andre Ikenmeyer 51822417a3
Update MPL license to https 2019-08-02 01:41:37 +02:00
Brandon Myers 3f7ce2bf7d
Fix invalid escape sequence for slash 2019-07-31 18:07:34 -05:00
Michal Purzynski ccac371ca0 adjust unit tests to reality 2019-07-31 13:54:00 -07:00
Michal Purzynski 450e714cab adjust unit tests to reality 2019-07-31 13:40:46 -07:00
Brandon Myers 6e0ee8d0a0
Merge remote-tracking branch 'origin/master' into python_3_upgrade 2019-07-08 10:48:19 -05:00
Michal Purzynski a17366eb06 whitespaces are killing me 2019-07-03 10:24:35 -07:00
Brandon Myers ed6c3f6abe
Remove escaped quotes from 2to3 tool 2019-07-01 17:32:21 -05:00
Brandon Myers 9a075dcbe0
Remove unicode-u keyword 2019-06-29 15:11:00 -05:00
Michal Purzynski 0b2f738662 Upgrade the DHCP message format to Zeek's format 2019-06-28 14:53:24 -07:00
Brandon Myers 1fd0fad7dd
Readd verify_metadata function to mq plugin tests 2019-05-02 14:17:29 -05:00
Brandon Myers a94349e812
Remove _type from suricata fixup plugin tests 2019-05-02 14:03:01 -05:00
Brandon Myers 485fc2aa0d
Remove _type references from github webhooks tests 2019-05-02 14:02:08 -05:00
Brandon Myers 3e7986fec8
Remove doc_type from mq plugins tests 2019-05-02 14:01:16 -05:00
Brandon Myers 12fbcf7cac
Update vulnerability plugin test 2019-04-11 14:09:28 -05:00
Brandon Myers fa19ebf666
Fix mq plugin tests 2019-04-11 13:57:35 -05:00
Phrozyn 7da9ba2044
Updating squidFixup to include a summary. 2019-04-04 13:49:27 -05:00
Phrozyn 12b9e9ef0e
adding tags assertions to tests. 2019-04-02 12:50:19 -05:00
Phrozyn 025f8440a4
Adding additional event formats to parse_sshd unittest. 2019-03-15 16:07:56 -05:00
Brandon Myers 1d38a41369
Exclude auth_success field if not present on message bro ssh logs 2019-02-13 12:11:08 -06:00
Michal Purzynski de0af2c54c Whatever 2019-01-24 19:47:17 -08:00
Michal Purzynski 6f18480102 PEP8 changes 2019-01-24 15:52:25 -08:00
Michal Purzynski f8bf40e35e Remove dead code 2019-01-23 12:32:19 -08:00
Michal Purzynski 75649e7f72 More tests 2019-01-23 12:22:09 -08:00
Michal Purzynski 529dfa45e4 Changed the data model, added heuristics to figure the destination in case of denies 2019-01-22 10:21:46 -08:00
Brandon Myers 0f014f152f
Fixup filterlog mq plugin 2019-01-14 12:12:43 -06:00
Michal Purzynski d93b2cbb29 Work around the lower_case plugin changes 2018-12-26 14:43:29 -08:00
A Smith 7215580095
Merge pull request #964 from mozilla/lower_keys 
Lower keys
 2018-12-18 17:41:27 -06:00
Brandon Myers 97409a248c
Merge pull request #995 from mozilla/add_port_details_root 
Move source port and destination port to details root
 2018-12-18 12:48:56 -06:00
Brandon Myers 09989706a0
Fixup closing bracket indentation not matching original 2018-12-14 12:39:23 -06:00
Brandon Myers fc771bd531
Remove unused import statements 2018-12-14 11:34:42 -06:00
Michal Purzynski 9693dfa58e Address nits from the review - use mozdef_util instead of changing the path, remove unnecessary config file 2018-12-12 12:47:12 -08:00
Brandon Myers 4e28602162
Move source port and destination port to details root 2018-12-10 01:55:54 -05:00
Michal Purzynski 2548178183 Merge remote-tracking branch 'upstream/master' into githubevent_pr 2018-11-29 13:44:16 -08:00
Phrozyn 307d65165d
lowering keys that the lower_keys plugin will affect, and removing unused details.Random field. 2018-11-26 18:38:51 -06:00