-
### Packages tests metrics information
|||
| :-- | :-- |
| **Main release stage issue** | #24417 …
-
Questions and suggestions regarding modular armor are frequently brought up on discord, here's an issue to gather ideas but also to present the issues that we need to solve. Some of this stuff is assu…
-
_This issue is part of the ongoing_ quantitative testing _natural language FPs improvement task. See the main issue for details: #3392_
### Description
Rule 932240 struggles with false positives…
-
**Discussion**
Information about the MITRE phases has been included in Falco rules' tags for a while. More recently, TTP (Tactics, Techniques, and Procedures) tags were added. The initial iteration…
-
## Description
In order to help reduce the performance impact of rule execution on a cluster where ingested data contains future timestamps, detection rules should be configured with `"timestamp_over…
-
### Packages tests metrics information
|||
| :-- | :-- |
| **Main release stage issue** | #25332 …
-
|Epic issue|Branch|
|---|---|
|#3709|[3.10-mitre](https://github.com/wazuh/wazuh/compare/3.10...3.10-mitre)|
We need to extend rule parser to support references to MITRE attack technique IDs.
…
-
I used obfuscate option but still got detected.
-
## Tests information
| | |
|--------------------------------------|--------------------------------------------|
| …
-
## Meta Summary
The goal of this meta is to create ~20 Linux ES|QL hunts.
## Estimated Time to Complete
1 sprint - 2 weeks
## Tasklist
```[tasklist]
### Meta Tasks
- [ ] Provide Week 1 Update Comme…