SigmaHQ pySigma-backend-elasticsearch issues

SigmaHQ / pySigma-backend-elasticsearch

pySigma Elasticsearch backend

GNU Lesser General Public License v3.0

42 stars 26 forks source link

issues

Newest

Newest Most commented Recently updated Oldest Least commented Least recently updated

Add user.name mapping

#47 defensivedepth closed 8 months ago
1
Duplicate query when using multiple pipelines

#45 defensivedepth opened 9 months ago
1
build: 📦 Update dependencies to pySigma 0.11

#44 frack113 closed 9 months ago
1
Fixed issues with query strings containing spaces and/or wildcards for Lucene Backend

#43 Koen1999 closed 9 months ago
3
Kubernetes pipeline (audit logs)

#42 LAripping closed 9 months ago
1
Invalid EQL rule type and language

#41 FilipPwn closed 6 months ago
0
feat: add parsing of Mitre Att&ck tags into threat obj

#40 rkokkelk closed 10 months ago
0
Updates for EQL support

#39 defensivedepth closed 11 months ago
0
Update poetry

#38 frack113 closed 11 months ago
0
fix: add `elasticsearch` to the allowed backends in the pipeline config

#37 nasbench closed 1 year ago
0
Lucene Rule Generation Quotation Mark Issue

#36 LucaKuechler closed 4 months ago
3
How to close subfields when convert a sigma rule to dsl?

#35 leexuan closed 1 week ago
1
Solves sigma-cli/issues/29

#34 deibit closed 1 year ago
2
Transform current output formats to postprocessing

#33 andurin opened 1 year ago
2
Eql backend

#32 thomaspatzke closed 1 year ago
1
ecs_windows can not be use with lucene

#31 frack113 closed 1 year ago
1
Custom Attributes Problem

#30 Yuvijadeja closed 1 week ago
1
Converting sigma rule to elasticsearch, double quotation marks are inserted twice.

#29 KSHMK closed 4 months ago
1
Wildcard format issue

#28 eliranDream closed 4 months ago
4
Fix handling of angle brackets

#27 Technici4n closed 1 year ago
6
Incorrect conversion of > character in sigma rule for Elastic/ECS Windows type

#26 canilc closed 1 year ago
2
Fix #24: fix handling of null field conditions

#25 Technici4n closed 1 year ago
1
Bug with `NOT _exists_` query

#24 Technici4n closed 1 year ago
1
Queries fail for `IP` type

#23 cospirho closed 1 year ago
3
No support for multi-field mappings

#22 cospirho closed 1 year ago
2
Missing case-insensitive options

#21 cospirho closed 1 year ago
1
Support Case Insensitivity + Multi-Fields

#20 cospirho closed 1 year ago
0
Fix: Missing formats

#18 andurin closed 1 year ago
0
pySigma can produce invalid `NOT NOT` queries

#19 Technici4n closed 1 year ago
4
Missing formats in version 1.0.1

#17 gal-dd closed 1 year ago
1
Update for pysigma 0.9.* ?

#16 Asilias closed 1 year ago
1
Output formatter - double quotes

#15 DoggySmooth closed 1 year ago
8
re incorrectly escape of /

#14 gal-dd closed 1 year ago
1
Fixed regular expression escaping

#13 thomaspatzke closed 1 year ago
0
Fixing re double escape issue

#12 andurin closed 1 year ago
1
Elasticsearch query string Support

#11 frack113 closed 1 year ago
0
Elasticsearch DSL query Support

#10 frack113 closed 1 year ago
0
Conversion of empty strings in grouped OR expression

#8 canilc closed 1 year ago
4
[sigmac] conversion to [elasticsearch] is incorrectly escaped for regex rule

#9 canilc closed 1 year ago
6
Detection field containing '.' is not encapsulated with quotes

#6 Yadasko closed 1 year ago
3
Kibana - failed import target elasticsearch format kibana_ndjson

#7 si-ddb closed 1 year ago
2
Fix breakingchange 0.8.0

#5 andurin closed 2 years ago
0
Added Tests against real elasticsearch Instance

#4 andurin closed 2 years ago
0
Ndjson output

#3 andurin closed 2 years ago
0
Change ES precedence OR<->AND

#2 andurin closed 2 years ago
1
Added es-dsl output

#1 andurin closed 2 years ago
0