Skip to content
This repository has been archived by the owner on Aug 3, 2024. It is now read-only.

Releases: SigmaHQ/legacy-sigmatools

Sigma tool release 0.12.1

03 Apr 07:10
@phantinuss phantinuss
0.12.1
940c36a
Compare
Choose a tag to compare
Sigma tool release 0.12.1

Note
Original Release Date: Nov 30, 2019
Original Release Author: @thomaspatzke

Fixed

  • Missing build dependency

Contributors

thomaspatzke
Assets 2
Loading

Sigma tool release 0.12

03 Apr 07:08
@phantinuss phantinuss
0.12
d588568
Compare
Choose a tag to compare
Sigma tool release 0.12

Note
Original Release Date: Nov 30, 2019
Original Release Author: @thomaspatzke

Added

  • Usage of Channel field in ELK Windows configuration
  • Fields to mappings
  • xpack-watcher actions index and webhook
  • Config for Winlogbeat 7.x
  • Value modifiers
    • contains
    • alt
    • base64
    • base64offset
    • re
  • Regular expression support with value modifier re

Changed

  • Warning/error messages
  • Sumologic value cleaning
  • Explicit OR for Elasticsearch query strings
  • Listing of available configurations on missing configuration error

Fixed

  • Conditions in es-dsl backend
  • Sumologic handling of null values
  • Ignore timeframe detection keyword in all/any of conditions

Contributors

thomaspatzke
Assets 2
Loading