-
The test FQDN to test outgoing Threat Intelligence filtering does not seem to work (see also older issues on this documentation page). Could someone clarify, how the result should look like?
- At t…
-
Swagger LInk: https://github.com/Azure/azure-rest-api-specs/blob/main/specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2022-10-01-preview/AlertRules.json#L1375
Thi…
-
### Problem description
I deployed the ELK stack as described:
1) git clone `https://github.com/deviantony/docker-elk.git`
2) `cd /opt/docker-elk/`
3) `docker compose up setup`
4) `docker…
-
From: https://github.com/nextdns/metadata/pull/1012
> - https://blocklistproject.github.io/Lists/alt-version/ransomware-nl.txt
> - https://blocklistproject.github.io/Lists/alt-version/scam-nl.txt
…
-
Hi,
Thank you for your work!
I've forked and refactored your code a bit, but I keep running into a permissions issue when querying in `__get_misp_ids_of_recent_ioc_in_sentinel`.
I've assigned the…
-
swagger defination: https://github.com/Azure/azure-rest-api-specs/blob/main/specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2022-10-01-preview/dataConnectors.json#L1…
-
Hello,
it looks like it is impossible to install Splunk Enterprise Security thru ansible step:
```
TASK [splunk_deployer : Determine installed apps] ******************************
ok: [localhos…
-
I'm writing a TI module to enrich analysis using an internal data source. I implemented both "ioc_submission" and "ioc_lookup" methods. How can I test this now? Nothing in the interface shows up simil…
-
Current map from o365audit.RecordType only maps up to 66 -> "MicrosoftForms"
Microsoft now defines audit log record types up to 148 as per: [https://docs.microsoft.com/en-us/office/office-365-manag…
-
**Describe the bug**
When trying to add a new domain-name indicator with a hyphen to the threat intelligence page the error: "is not a valid domain name' is returned
**To Reproduce**
Steps to rep…