Flips comparison operator in time filters

Bert-JanP / Hunting-Queries-Detection-Rules

KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.

https://kqlquery.com

BSD 3-Clause "New" or "Revised" License

1.14k stars 213 forks source link

Flips comparison operator in time filters #9

Closed Korving-F closed 1 year ago

Korving-F commented 1 year ago

This PR flips the comparison operator in some of the SMB-related queries, otherwise the queries target all historic data except for in the defined timeframe.

Bert-JanP commented 1 year ago

Thank you! Will merge the request.

Korving-F commented 1 year ago

Thanks for the interesting ideas/repo! ^_^