DCSO / TIE-Splunk-TA

DCSO Threat Intelligence Engine (TIE) Add-On for Splunk v8

BSD 3-Clause "New" or "Revised" License

3 stars 2 forks source link

[Feat] IoC Filter for Severity and Confidence via Web UI #6

Closed 8ear closed 4 years ago

8ear commented 5 years ago

Why

It is uncomfortable and not always possible that the Splunk user can change the severity and confidence via shell on the server itself.

What

The min/max severity and confidence should be able to setup in the Web UI. This settings should only be available if the user activate additional settings.

How

[ ] ...

geertjanvdk commented 4 years ago

This is now supported in 2.0.0b1. Min/Max can be used as well as setting a particular value for severity and confidence.