TA-Sigma-Searches icon indicating copy to clipboard operation
TA-Sigma-Searches copied to clipboard

Published 20 hours ago verified publisher icon dstaulcu

Metadata

A Splunk app with saved reports derived from Sigma rules

Results 3 TA-Sigma-Searches issues
Sort by recently updated
recently updated
newest added

Are the fields/logsources correct?

1 comment

Hey @dstaulcu, Just a couple of items I found with the conversions. The only field that's changed in https://github.com/dstaulcu/TA-Sigma-Searches/blob/245dd779072623530bad74a2e7f8e6cd5ceb80d0/Update_SavedSearches_From_Sigma_YML.ps1 is `EventID` to `EventCode`. Are there more fields that are incorrectly...

sifex avatar sifex

Correct issue with GitHub automation preventing updates

fixed, tested, closed.

dstaulcu avatar dstaulcu

Add comment to top of savedsearches.conf file having last update date

dstaulcu avatar dstaulcu

Metadata

68
Stars
12
Forks
Watchers

Owner

verified publisher icon dstaulcu

Metadata

A Splunk app with saved reports derived from Sigma rules

Back