splunk security_content issues

splunk / security_content

Splunk Security Content

https://research.splunk.com

Apache License 2.0

1.3k stars 362 forks source link

issues

Newest

Newest Most commented Recently updated Oldest Least commented Least recently updated

Update- Short Lived Windows Accounts

#3208 patel-bhavin opened 3 days ago
0
update version and date

#3207 patel-bhavin closed 3 days ago
0
Automated Splunk TA Update 84

#3206 patel-bhavin closed 3 days ago
0
Fix date so its not in the future

#3205 ljstella closed 4 days ago
0
RBA Migration

#3204 ljstella opened 4 days ago
2
Haaglumination

#3203 MHaggis opened 4 days ago
1
Strict yml fields

#3202 pyth0n1c opened 5 days ago
0
CIM to 6.0.0

#3201 patel-bhavin closed 5 days ago
1
9.0.1 win

#3200 patel-bhavin closed 5 days ago
0
Minor fixes

#3198 patel-bhavin closed 1 week ago
0
Datasource dependabot feat. contentctl.yml

#3197 patel-bhavin closed 1 week ago
0
Standardize data_source fieldname

#3196 ljstella closed 1 week ago
2
[BUG] research.splunk.com not showing datasources correctly when looking at a specific detection

#3195 isakhansson closed 1 week ago
2
Data Source mapping improvements

#3194 P4T12ICK opened 1 week ago
0
Automated Splunk TA Update 76

#3193 patel-bhavin closed 1 week ago
0
Automated Splunk TA Update 75

#3192 patel-bhavin closed 1 week ago
0
Updates to apps in contentctl to use latest

#3191 patel-bhavin closed 1 week ago
0
update score

#3190 patel-bhavin closed 2 weeks ago
0
Sourcetype caps

#3189 patel-bhavin closed 2 weeks ago
2
Update MITRE aws_defense_evasion_putbucketlifecycle.yml

#3188 BlackB0lt closed 2 weeks ago
1
Alerts- update risk_score

#3187 patel-bhavin closed 2 weeks ago
0
Powershell detection sourcetypes

#3186 patel-bhavin closed 1 week ago
2
Defender alerts

#3185 bpluta-splunk opened 2 weeks ago
0
App update in ctl.yml

#3184 patel-bhavin closed 2 weeks ago
0
Updated fallback lookup

#3183 ljstella closed 1 week ago
1
updating contentctl.yml

#3182 patel-bhavin closed 2 weeks ago
0
Azure AD Authentication Failed During MFA Challenge

#3181 0xC0FFEEEE closed 1 week ago
2
Automated Splunk TA Update 70

#3180 patel-bhavin closed 2 weeks ago
0
Only for sysmon sources

#3179 patel-bhavin closed 2 weeks ago
0
Test 10 detections

#3178 patel-bhavin closed 2 weeks ago
0
Test - Sysmon sourcetypes

#3177 patel-bhavin closed 2 weeks ago
1
Automated Splunk TA Update 69

#3176 patel-bhavin closed 2 weeks ago
0
Alerts detection update

#3175 patel-bhavin closed 2 weeks ago
0
Automated Splunk TA Update 63

#3174 patel-bhavin closed 3 weeks ago
0
remove endhoursago=1 from drilldown searches

#3173 patel-bhavin closed 2 weeks ago
0
Update erroneous cloud security_domain

#3172 pyth0n1c closed 3 weeks ago
1
[BUG] Missing wildcard for -type parameter detection 2452e632-9e0d-11eb-bacd-acde48001122

#3171 Wouter-Jansen closed 3 weeks ago
0
Add missing wildcard to -type parameter for detection 2452e632-9e0d-11eb-bacd-acde48001122

#3170 Wouter-Jansen closed 3 weeks ago
1
Automated Splunk TA Update 61

#3169 patel-bhavin closed 3 weeks ago
1
add missing summariesonly macro

#3168 pyth0n1c closed 2 weeks ago
1
[BUG] Detect Outbound LDAP Traffic, missing dm summary macro

#3167 DipsyTipsy closed 1 week ago
2
Testing 3 containers

#3166 patel-bhavin closed 3 weeks ago
0
Appinspect

#3165 patel-bhavin closed 1 month ago
1
Small tweak about what ref to checkout

#3164 ljstella closed 1 month ago
0
Shrink trigger events to avoid duplicates

#3163 ljstella closed 1 month ago
1
fix misisng version for one analytic story

#3162 pyth0n1c closed 1 month ago
0
braodo_stealer

#3161 tccontre closed 1 week ago
1
Add "Inactive Account Have Activity Detected"

#3160 zake1god closed 2 weeks ago
13
Add Detection for Inactive Users with a Certain Period Who Suddenly Have Activity

#3159 zake1god closed 1 month ago
3
Ad find detection update

#3158 patel-bhavin closed 1 month ago
1