Small question for adding Implementations in Analytics

mitre-attack / car

Cyber Analytics Repository

Apache License 2.0

895 stars 304 forks source link

Small question for adding Implementations in Analytics #88

Closed d4rk-d4nph3 closed 3 years ago

d4rk-d4nph3 commented 3 years ago

Noob question -

I see Splunk, EQL, DNIF, etc in Implementations section of Analytics. Can I contribute to adding queries for LogPoint SIEM as LogPoint has extensive support for the ATT&CK framework.

ikiril01 commented 3 years ago

@d4rk-d4nph3 absolutely, we're happy to take any other implementations for existing analytics. All of our analytics are stored natively in YAML so feel free to submit a pull request.