issues
search
ocsf
/
ocsf-schema
OCSF Schema
Apache License 2.0
617
stars
130
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Enhancement to load_balancer object
#1138
pagbabian-splunk
closed
2 months ago
0
Adding credential_uid as an observable type, misc Changelog fixes
#1137
floydtree
closed
2 months ago
2
feat: [1122]-ldap and user extension + AD profile
#1136
PavelJurka
opened
3 months ago
2
feat: [1131]-k8s-basic
#1135
PavelJurka
closed
3 months ago
0
New Discovery software inventory class
#1134
jasonbreimer
closed
3 months ago
3
1131 k8s basic
#1133
PavelJurka
closed
3 months ago
0
adding state_id IDs
#1132
SashaSelin
closed
2 months ago
0
Kubernetes extension - the initial shape
#1131
PavelJurka
opened
3 months ago
0
Added job attribute to Evidence Artifacts object.
#1130
davemcatcisco
closed
2 months ago
2
1122 user ldap person asure ad support
#1127
PavelJurka
closed
3 months ago
0
New Timespan object to encapsulate average durations.
#1125
pagbabian-splunk
closed
2 months ago
1
Evidence Artifacts object doesn't have attribute to describe target job of a Scheduled Job Activity
#1124
davemcatcisco
closed
2 months ago
0
Should Http response and Http request be present together?
#1123
zschmerber
opened
3 months ago
0
USER, LDAP Person extension by useful fields + cloud profile added to support Azure AD
#1122
PavelJurka
opened
3 months ago
1
Add router, ids, and ips entries to type_id enum in the Endpoint object
#1121
zl551q
closed
2 months ago
0
Additional types for device (endpoint) object
#1120
zl551q
closed
2 months ago
1
Adding the Startup Application Query event class in the discovery category.
#1119
maxhotta
closed
1 month ago
3
The Job object cannot adequately describe Windows scheduled jobs
#1118
davemcatcisco
opened
3 months ago
0
change the duration attribute to long_t
#1117
jasonbreimer
closed
3 months ago
5
Fix duration to long_t
#1116
jasonbreimer
closed
3 months ago
0
Backwards Compatibility Workflow
#1115
query-jeremy
closed
1 month ago
1
Adjust Entity Management class (3004) to be aligned with Windows event 4662
#1114
eliraz-levi
closed
2 months ago
1
Adjust Entity Management class (3004) to be aligned with Windows event 4662
#1113
eliraz-levi
closed
3 months ago
0
Mapping for mailbox rule events
#1112
eliraz-levi
opened
3 months ago
2
Improve and fix enum declarations
#1111
mlmitch
closed
3 months ago
4
Feat: [#1109] - extended compliance finding - compliance by adding co…
#1110
PavelJurka
closed
3 months ago
0
Extend compliance by Compliance references KB Articles and Compliance standards KB Articles
#1109
PavelJurka
opened
3 months ago
0
Add `grandparent_process` into `process`, fight process-related recursion
#1108
jonrau-at-queryai
closed
1 month ago
0
User should have an array of Account objects
#1107
sonnens
opened
4 months ago
0
User object should include an Enabled / Disabled state.
#1106
pagbabian-splunk
opened
4 months ago
1
Adjust Entity Management class (3004) to be aligned with Windows event 4662
#1105
eliraz-levi
closed
3 months ago
0
Reputation Object and base_score
#1104
lcostantino
opened
4 months ago
0
Added 'Windows Service Activity' event.
#1103
davemcatcisco
closed
3 months ago
6
Clarify what the domain attribute entails
#1102
pagbabian-splunk
opened
4 months ago
1
Increasing ocsf-validator dependency to 0.2.x
#1101
query-jeremy
closed
4 months ago
0
Corrected the bad link in the d3fend object description
#1100
pagbabian-splunk
closed
4 months ago
0
Fix typo in actor desc
#1099
mikeradka
closed
4 months ago
0
Add query tld, parent domain, and subdomain to the dns_activity class
#1097
hal308
opened
4 months ago
1
Add missing domain attribute to URL object
#1096
mikeradka
closed
4 months ago
0
Add activities to Entity Management class
#1095
mikeradka
closed
4 months ago
1
Enhance Managed Entity
#1094
pagbabian-splunk
closed
4 months ago
1
Feat: [#1091] - extension of package by vendor_name and type
#1093
PavelJurka
closed
4 months ago
1
Add Query length & Answer length to dns_activity class
#1092
zschmerber
opened
4 months ago
1
Package extension (affected packages) by vendor name and type
#1091
PavelJurka
opened
4 months ago
0
Adjust Windows Resource Activity class (201003) to be aligned with Windows event 4662
#1090
eliraz-levi
opened
4 months ago
3
Adjust Windows Resource Activity class (201003) to be aligned with Windows event 4662
#1089
eliraz-levi
closed
4 months ago
2
Improvements to Operating System Patch State 5004
#1088
jasonbreimer
closed
3 months ago
16
Fixed patch_state profile construction; Removed requirement overrides from _resource.
#1087
pagbabian-splunk
closed
4 months ago
0
_resource object has optional constrained fields of name and uid - should be recommended
#1086
pagbabian-splunk
opened
4 months ago
0
Create storage bucket.json
#1085
vabmalikusa
closed
3 months ago
2
Previous
Next