-
See #1
-
**Is your feature request related to a problem? Please describe.**
To efficiently simulate systems beyond a few dozen qubits, alternative methods are necessary due to the exponential increase in co…
-
We should include out-of-the-box detection rules in Matano so users do not have to start from scratch for detection engineering. Similar to other vendors like Elastic, Chronicle, etc. we should also i…
-
For future version 1.07.2, I would like to suggest to edit the sequence and description of tautomerism options in the reference executable.
The reference executable (v1.07.1, 64bit, Linux) lists pr…
-
**Describe the bug**
In the SIGMA parser on the TSCTL importer, there are certain filters that are not supported by Timesketch. These are removed from the YAML data on load.
However, when attempti…
-
### Rule UUID
ed965133-513f-41d9-a441-e38076a0798f
### Example EventLog
ScriptBlockText: `powershell.exe -EncodedCommand aGVsbG8gd29ybGQ= -windowstyle hidden -noninteractive`
### Description
Th…
-
I'm using sigma-go along with the public Sigma process_creation rules and found several that segfault like this:
```
panic: runtime error: invalid memory address or nil pointer dereference
[signa…
-
As suggested by @mietek: it would be nice to be able to declare DISPLAY rules for
the special case where a function is constant. For instance:
```agda
open import Agda.Builtin.Sigma
open import …
-
## Background
The previously proposed work discussed building techniques for getting a CFG representation of our data flow to be able to apply static analysis on these and prevent data races:
-…
-
With Using the default Core sigma rule set there is an issue with the following rule when its translated:
Original Sigma rule:
https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_cr…