[FR] Document Supported Definition File Fields

redcanaryco / surveyor

A cross-platform baselining, threat hunting, and attack surface analysis tool for security teams.

MIT License

169 stars 59 forks source link

[FR] Document Supported Definition File Fields #80

Closed rc-csmith closed 1 year ago

rc-csmith commented 1 year ago

Which category is the feature part of?

[x] Definition File
[ ] Code Feature
[ ] Other (please explain)

Which product is the feature part of?

[x] All products
[ ] Carbon Black Response
[ ] Threat Hunter
[ ] Defender for Endpoint
[ ] Sentinel1

Use Cases

Proposal Document supported definition file fields. Currently, there is no easy way to tell what fields are supported by surveyor in general vs. what each EDR is able to use.

Additional context N/A

rc-csmith commented 1 year ago

New wiki page can be found here: https://github.com/redcanaryco/surveyor/wiki/Definition-Files