-
Related to #2012.
Secops are going to start publishing actionable events for the customs server to consume, e.g. to block a given IP address. We should handle them but we should also put that handl…
-
As an operations team member I would like an automation playbook that is used to configure all Aporeto namespace with the desired authentication user & role mapping. This should be stored in Git for v…
-
For unidirectional flows it only populates the `network.bytes` and `network.packets`. I think also populating `source.bytes/packets` would make the data a little more consistent with other data source…
-
When in the IP Details view, the only place the IP address is shown is in the header, but it's not draggable to the Timeline. It should be.
cwurm updated
5 years ago
-
Hello! This is your neighborhood secops team looking out for you!
The production branch on this repository is no longer protected against force pushes. This setting is recommended as part of [Mozilla…
-
The default global daterange within the SIEM App is the past 24hrs. For some users this time period may result in a _large_ amount data, and thus either cause the app to timeout or be very slow on ini…
spong updated
5 years ago
-
1. Installing fresh forseti
1. ```hcl
module "forseti" {
source = "git@github.com:forseti-security/terraform-google-forseti.git?ref=v5.0.0"
gsuite_admin_email =…
-
The newer ``codeRepositories`` object in the metadata has a field ``status`` that is not part of the current upload.
Without this data, repositories that have the status value ``deprecated`` cannot…
hwine updated
4 years ago
-
As a user I want to be able to ingest logs from Palo Alto PAN-OS. Of the available [log types](https://www.paloaltonetworks.com/documentation/71/pan-os/pan-os/monitoring/log-types-and-severity-levels)…
-
I am a ServiceNow dev with no experience in ruby development.
we have the Nexpose integration setup with ServiceNow using the Rapid7 Nexpose ruby gems and its been working fine since 11/2018 b…
ravio updated
5 years ago