Thomas Patzke
Thomas Patzke
Can't confirm, works here.
Yes, it's exactly as @phantinuss said...we made it mandatory in the repository to have a certain level of rule hygiene, but private repositories might decide otherwise. Anyways, I would add...
Please provide this as pull request.
Hi all! It makes definitive sense to create generic log sources for network protocols and map them via configurations to specific network or endpoint detection log sources like Zeek, Suricata...
I think that's a good idea, something like this: ``` reference: - https://# ```
Hi! YAML is fine with spaces in field names as long as they are quoted. I would prefer the space instead of creating a special case because pySigma also supports...
> This is a trouble with `es-dsl` . > Field with space must be echape in elastic. Never was aware that this is the case for DSL. In query strings...
In the issue they talk about query strings, where escaping is obviously requires for syntactical reasons. Query DSL is the way to express queries in a structured way and at...
I fully agree with @f-block and disagree with the decisions made in #2139 (unfortunately I've missed this discussion) for some reasons: - There is no technical reason for forbidding white...
TLDR: once the information (white spaces) is lost, it can be used anymore. So we should have a good reason for dropping it and I don't see it 😉