Data

Tools

Indexes

Applications

Experiments

Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / bradleyjkemp/sigma-go issues and pull requests

#46 - fix bug: get event value with key

Pull Request - State: open - Opened by konoha279 6 months ago

#45 - Implement more efficient batch rule evaluator

Pull Request - State: closed - Opened by bradleyjkemp 11 months ago

#44 - Sigma filters

Issue - State: open - Opened by myoung34 11 months ago - 1 comment

#43 - fix for issue #42

Pull Request - State: closed - Opened by 262nos over 1 year ago

#42 - RuleEvaluator crashes when comparing numeric values

Issue - State: closed - Opened by 262nos over 1 year ago - 2 comments

#40 - Add information about the type of the search(conjunction/disjunction)…

Pull Request - State: closed - Opened by dithmer over 1 year ago - 1 comment

#39 - Add JSON struct tags

Pull Request - State: closed - Opened by scudette almost 2 years ago

#38 - README.md refers to a sigmac tool but this had been removed.

Issue - State: closed - Opened by scudette almost 2 years ago - 3 comments

#37 - RuleEvaluator matcher.Values doesn't handle "Attribute: null"

Issue - State: open - Opened by veramine almost 2 years ago - 1 comment

#36 - Add option to disable case insensitivity

Pull Request - State: closed - Opened by bradleyjkemp almost 2 years ago

#35 - Migrate modifiers to an exported interface

Pull Request - State: closed - Opened by bradleyjkemp about 2 years ago

#34 - Expose position information for key rule parts

Pull Request - State: closed - Opened by bradleyjkemp about 2 years ago

#33 - Draft: parse correlation rules

Pull Request - State: open - Opened by AnthonyAspen over 2 years ago - 2 comments

#32 - Implement numeric comparison modifiers (>, >=, <, <=)

Pull Request - State: closed - Opened by bradleyjkemp over 2 years ago

#31 - [feature] Type-Aware Field Matcher

Pull Request - State: closed - Opened by calebstewart over 2 years ago - 1 comment

#30 - [IDEA] Type-Aware Rule Parsing

Issue - State: closed - Opened by calebstewart over 2 years ago - 2 comments

#29 - Add ability to save rules from memory to sigma

Pull Request - State: closed - Opened by calebstewart over 2 years ago - 2 comments

#28 - Parse the Rule's 'related' keyword as slice of maps

Pull Request - State: closed - Opened by veramine over 2 years ago - 1 comment

#27 - Fix bug in unhandled JSONPath error

Pull Request - State: closed - Opened by bradleyjkemp over 2 years ago

#25 - Bug demo

Pull Request - State: closed - Opened by lmoz25 over 2 years ago - 1 comment

#24 - Make value comparisons case insensitive

Pull Request - State: closed - Opened by bradleyjkemp over 2 years ago

#23 - Condition|endswith is not matching case insensitive

Issue - State: closed - Opened by veramine over 2 years ago - 1 comment

#22 - Add `AdditionalFields` to `Logsource`

Pull Request - State: closed - Opened by calebstewart almost 3 years ago

#21 - Improved Comparator and Modifier Handling

Issue - State: open - Opened by calebstewart almost 3 years ago - 3 comments

#20 - invalid token '*' in certain condition strings

Issue - State: open - Opened by veramine almost 3 years ago - 3 comments

#19 - Error parsing "related" with a map of id and type

Issue - State: closed - Opened by veramine almost 3 years ago

#18 - Support lists of maps in detections

Pull Request - State: closed - Opened by bradleyjkemp almost 3 years ago

#17 - Segfault when matching detection with a % symbol

Issue - State: open - Opened by veramine almost 3 years ago - 2 comments

#15 - Add support for the `cidr` modifier

Issue - State: closed - Opened by bradleyjkemp about 3 years ago - 1 comment
Labels: enhancement

#14 - Gracefully handle rules containing invalid search conditions

Issue - State: open - Opened by bradleyjkemp about 3 years ago - 1 comment
Labels: help wanted, good first issue

#13 - Add Nested Field support to Sigma Evaluations

Pull Request - State: closed - Opened by liamn over 3 years ago

#12 - Fix aggregations using <= and >= operators

Pull Request - State: closed - Opened by bradleyjkemp over 3 years ago

#11 - Fix aggregations where the threshold is 0

Pull Request - State: closed - Opened by bradleyjkemp over 3 years ago

#10 - Add preliminary support for placeholder expansion

Pull Request - State: closed - Opened by bradleyjkemp over 3 years ago

#9 - Error parsing detections with list of maps

Issue - State: closed - Opened by pathtofile over 3 years ago - 10 comments

#8 - Export a function to obtain actual values from an event field

Pull Request - State: closed - Opened by Rinaldyr over 3 years ago

#7 - Make Rule Level a supported Top Level field

Pull Request - State: closed - Opened by liamn over 3 years ago

#6 - Add InferFileType helper function

Pull Request - State: closed - Opened by bradleyjkemp about 4 years ago

#5 - Update README with the new `Match()` signature

Issue - State: open - Opened by bradleyjkemp over 4 years ago

#4 - Plumb errors through the aggregators and surface to the caller

Pull Request - State: closed - Opened by bradleyjkemp over 4 years ago

#3 - Add fuzzit.dev integration

Pull Request - State: closed - Opened by bradleyjkemp almost 5 years ago

#1 - Add (out-of-spec) support for JSONPath in fieldmappings

Pull Request - State: closed - Opened by bradleyjkemp almost 5 years ago