UncoderIO Uncoder_IO issues

UncoderIO / Uncoder_IO

An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.

https://uncoder.io

Other

133 stars 23 forks source link

issues

Newest

Newest Most commented Recently updated Oldest Least commented Least recently updated

GIS-8085 Improve StrictPlatformException and mapping

#158 nazargesyk closed 5 months ago
0
Gis 7997

#157 alexvolha closed 5 months ago
0
Initial LogRhythm SIEM JSON Search API

#156 jkaufman-LogRhythm closed 5 months ago
0
query parts join method

#155 alexvolha closed 5 months ago
0
Gis 7956

#154 tarnopolskyi closed 5 months ago
0
fix field SubjectAccountName

#153 spsocprime closed 5 months ago
0
Gis 7984

#152 alexvolha closed 5 months ago
0
not able to login to uncoder web

#151 cgisesoc opened 5 months ago
2
Gis 7222

#150 alexvolha closed 5 months ago
0
Fix empty index field in elastic rule

#149 nazargesyk closed 5 months ago
0
mappings added and fix 7

#148 rm-socprime closed 5 months ago
0
Fix issue with int in the contains all modifier

#147 saltar-ua closed 5 months ago
0
Splunk Mapping reverts to default source of WinEventLog regardless of RootA configuration

#146 britton-from-notion opened 5 months ago
1
Add context vars

#145 saltar-ua closed 5 months ago
0
Updated qradar and palo_alto mappings

#144 nazargesyk closed 5 months ago
0
mappings improvement from 7989

#143 spsocprime closed 5 months ago
0
XQL mappings update

#142 saltar-ua closed 5 months ago
0
mappings update

#141 rm-socprime closed 5 months ago
0
Mappings5

#140 rm-socprime closed 5 months ago
0
Fix bug related to the raw log fields. Allow list of mapped fields

#139 saltar-ua closed 5 months ago
0
For raw log fields add field type. Add and improve mappings

#138 saltar-ua closed 5 months ago
0
add and fix mapping

#137 rm-socprime closed 5 months ago
0
mapping improvement - stats from 05.06.24

#136 spsocprime closed 5 months ago
0
upd field TaskName aql

#135 spsocprime closed 5 months ago
0
mappings update4

#134 saltar-ua closed 5 months ago
0
mappings update4

#133 rm-socprime closed 5 months ago
0
Add XQL mappings

#132 saltar-ua closed 5 months ago
0
update mappings

#131 rm-socprime closed 5 months ago
0
aql, xql str value managers, func data classes

#130 alexvolha closed 6 months ago
0
preset xdr_event_log

#129 rm-socprime closed 6 months ago
0
Add vscode dir to gitignore

#128 saltar-ua closed 6 months ago
0
New mappings; Fix mappings; XQL suport datamodel + (preset, dataset)

#127 saltar-ua closed 6 months ago
0
Improve mappings

#126 saltar-ua closed 6 months ago
0
update mappings

#125 rm-socprime closed 6 months ago
0
OriginalFileName proc_cr

#124 rm-socprime closed 6 months ago
0
Qradar AQL mapping improvements

#123 saltar-ua closed 6 months ago
0
Improve mappings

#122 saltar-ua closed 6 months ago
0
minor fixes

#121 rm-socprime closed 6 months ago
0
Int value with Contains operator

#120 saltar-ua closed 6 months ago
0
Fix AQL mapping logic for default mapping

#119 saltar-ua closed 6 months ago
0
Improve AQL mapping logic; Palo Alto add support keywords; Sigma add …

#118 saltar-ua closed 6 months ago
0
Palo Alto. Escape characters: *, "

#117 saltar-ua closed 6 months ago
0
Palo Alto. Switch operator contains --> ~= when field value has slash

#116 saltar-ua closed 6 months ago
0
upd qradar linux auditd config

#115 spsocprime closed 6 months ago
0
Created base platform: aql. And fixes for qradar

#114 nazargesyk closed 6 months ago
0
add webserver and slack

#113 rm-socprime closed 6 months ago
0
Improve AQL mapping method is_suitable

#112 saltar-ua closed 6 months ago
0
Palo Alto Cortex XSIAM: add support array of default logsources

#111 saltar-ua closed 6 months ago
0
Cortex XSIAM, add escape to equal_modifier method

#110 saltar-ua closed 6 months ago
0
hunters query render

#109 alexvolha closed 6 months ago
0

Previous Next