Ecosyste.ms: Issues
An open API service for providing issue and pull request metadata for open source projects.
GitHub / splunk/security_content issues and pull requests
#3158 - Ad find detection update
Pull Request -
State: closed - Opened by patel-bhavin 4 months ago
- 1 comment
Labels: Detections
#3157 - fix_change_file_owner_to_root
Pull Request -
State: closed - Opened by tccontre 4 months ago
Labels: Detections
#3156 - Automated Splunk TA Update 48
Pull Request -
State: closed - Opened by patel-bhavin 4 months ago
Labels: Datasource
#3155 - Automated Splunk TA Update 47
Pull Request -
State: closed - Opened by patel-bhavin 5 months ago
Labels: Datasource
#3154 - Automated Splunk TA Update 46
Pull Request -
State: closed - Opened by patel-bhavin 5 months ago
Labels: Datasource
#3153 - Automated Splunk TA Update 45
Pull Request -
State: closed - Opened by patel-bhavin 5 months ago
Labels: Datasource
#3152 - Automated Splunk TA Update 44
Pull Request -
State: closed - Opened by patel-bhavin 5 months ago
Labels: Datasource
#3151 - Remove _time span
Pull Request -
State: closed - Opened by tccontre 5 months ago
- 1 comment
Labels: Detections
#3150 - Automated Splunk TA Update 43
Pull Request -
State: closed - Opened by patel-bhavin 5 months ago
Labels: Datasource
#3149 - --suppress-missing-content-exceptions
Pull Request -
State: closed - Opened by patel-bhavin 5 months ago
#3148 - Remove confs files that are either old and no longer used or that are now dynamically generated.
Pull Request -
State: closed - Opened by pyth0n1c 5 months ago
#3147 - PSWA Updates
Pull Request -
State: closed - Opened by MHaggis 5 months ago
- 1 comment
Labels: Detections, Stories
#3146 - Add 2 drilldowns
Pull Request -
State: closed - Opened by patel-bhavin 5 months ago
- 3 comments
Labels: Detections
#3145 - Adding drilldowns -3
Pull Request -
State: closed - Opened by patel-bhavin 5 months ago
Labels: Detections
#3144 - Update misnamed eventid
Pull Request -
State: closed - Opened by pyth0n1c 5 months ago
- 1 comment
Labels: Detections, Datasource
#3143 - Add two drilldowns to application detections
Pull Request -
State: closed - Opened by patel-bhavin 5 months ago
Labels: Detections
#3142 - Version failures
Pull Request -
State: closed - Opened by patel-bhavin 5 months ago
Labels: Detections
#3141 - Expand CIM Web Datamodel
Issue -
State: closed - Opened by dluxtron 5 months ago
- 1 comment
Labels: enhancement
#3140 - DLUX_4 - Updating detections and adding a new one
Pull Request -
State: closed - Opened by dluxtron 5 months ago
- 3 comments
Labels: Detections, Macros
#3139 - Fix dates, fields with spaces, and update verisons for many detections
Pull Request -
State: closed - Opened by pyth0n1c 5 months ago
- 1 comment
Labels: Detections, Stories
#3138 - inspect --enable-metadata-validation
Pull Request -
State: closed - Opened by patel-bhavin 5 months ago
#3137 - Valleyrat fixes!
Pull Request -
State: closed - Opened by patel-bhavin 5 months ago
- 1 comment
Labels: Detections
#3136 - auditd_sourcetype_update
Pull Request -
State: open - Opened by tccontre 5 months ago
- 1 comment
Labels: WIP, Macros, Datasource
#3134 - [BUG] Azure MFA failure detections logic flaw
Issue -
State: closed - Opened by 0xC0FFEEEE 5 months ago
- 2 comments
Labels: bug
#3133 - Enrichments CI update
Pull Request -
State: closed - Opened by patel-bhavin 5 months ago
#3132 - Automated Splunk TA Update 27
Pull Request -
State: closed - Opened by patel-bhavin 5 months ago
- 1 comment
Labels: Datasource
#3131 - [community request] Update Ransomware Extensions Lookup
Issue -
State: closed - Opened by ljstella 5 months ago
- 1 comment
Labels: enhancement
#3130 - Application drilldowns
Pull Request -
State: closed - Opened by patel-bhavin 5 months ago
- 1 comment
Labels: Detections
#3129 - valleyrat
Pull Request -
State: closed - Opened by tccontre 5 months ago
Labels: Detections, Stories
#3128 - Automated Splunk TA Update 25
Pull Request -
State: closed - Opened by patel-bhavin 5 months ago
Labels: Datasource
#3127 - Automated Splunk TA Update 24
Pull Request -
State: closed - Opened by patel-bhavin 5 months ago
Labels: Datasource
#3126 - Automated Splunk TA Update 23
Pull Request -
State: closed - Opened by patel-bhavin 5 months ago
Labels: Datasource
#3125 - Automated Splunk TA Update 22
Pull Request -
State: closed - Opened by patel-bhavin 5 months ago
Labels: Datasource
#3124 - K8 - add deprecate detection note
Pull Request -
State: closed - Opened by patel-bhavin 5 months ago
Labels: Detections
#3123 - Add drilldowns to application detections
Pull Request -
State: closed - Opened by patel-bhavin 5 months ago
- 1 comment
Labels: Detections
#3122 - Automated Splunk TA Update 21
Pull Request -
State: closed - Opened by patel-bhavin 5 months ago
Labels: Datasource
#3121 - Bump peter-evans/create-pull-request from 6 to 7
Pull Request -
State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies
#3120 - linux auditd fixes
Pull Request -
State: closed - Opened by patel-bhavin 6 months ago
Labels: Detections
#3119 - Linux Auditd Fix
Pull Request -
State: closed - Opened by patel-bhavin 6 months ago
Labels: Detections
#3118 - Automated Splunk TA Update 14
Pull Request -
State: closed - Opened by patel-bhavin 6 months ago
Labels: Datasource
#3117 - README - Getting started
Pull Request -
State: closed - Opened by patel-bhavin 6 months ago
- 3 comments
#3116 - Update feedback center test
Pull Request -
State: closed - Opened by patel-bhavin 6 months ago
#3115 - The Haag Element: Breaking Down AA24-241A
Pull Request -
State: closed - Opened by MHaggis 6 months ago
- 1 comment
Labels: Detections, Stories
#3114 - Add data sources dependabot
Pull Request -
State: closed - Opened by patel-bhavin 6 months ago
#3113 - Automated Splunk TA Update 13
Pull Request -
State: closed - Opened by patel-bhavin 6 months ago
Labels: Datasource
#3112 - Automated Splunk TA Update 11
Pull Request -
State: closed - Opened by patel-bhavin 6 months ago
Labels: Datasource
#3111 - Automated Splunk TA Update 10
Pull Request -
State: closed - Opened by patel-bhavin 6 months ago
Labels: Datasource
#3110 - updating version for patch release of dashbaords
Pull Request -
State: closed - Opened by patel-bhavin 6 months ago
- 1 comment
#3109 - updated aws TA version
Pull Request -
State: closed - Opened by patel-bhavin 6 months ago
- 1 comment
Labels: Datasource
#3108 - More Observable cleanup
Pull Request -
State: closed - Opened by ljstella 6 months ago
- 1 comment
Labels: Detections
#3107 - Improvements AWS ASL detection
Pull Request -
State: closed - Opened by P4T12ICK 6 months ago
- 2 comments
Labels: Detections, Datasource
#3106 - Improved how_to_implement for k8s detections
Pull Request -
State: closed - Opened by P4T12ICK 6 months ago
- 1 comment
Labels: Detections
#3105 - No More Haag-gling with BlackSuit: A Tailored Analytic Story
Pull Request -
State: closed - Opened by MHaggis 6 months ago
Labels: Detections, Stories
#3104 - 4.39.0 integration fixes
Pull Request -
State: closed - Opened by patel-bhavin 6 months ago
Labels: Detections
#3103 - Remove outdated files
Pull Request -
State: closed - Opened by patel-bhavin 6 months ago
#3102 - remove reporting
Pull Request -
State: closed - Opened by patel-bhavin 6 months ago
#3101 - remove tab
Pull Request -
State: closed - Opened by tjgeorgen 6 months ago
Labels: Detections
#3100 - wrong keys in the yaml
Pull Request -
State: closed - Opened by patel-bhavin 6 months ago
Labels: Detections
#3099 - Weird formatting
Pull Request -
State: closed - Opened by ljstella 6 months ago
Labels: Detections
#3098 - [BUG] Whitespace `\t` in several YAML rule files causing YAML load errors
Issue -
State: closed - Opened by brokensound77 6 months ago
- 2 comments
Labels: bug
#3097 - Adding Aws Datasources
Pull Request -
State: closed - Opened by patel-bhavin 6 months ago
- 1 comment
Labels: needs-more-info, Datasource
#3096 - Testing Data Source validation
Pull Request -
State: closed - Opened by patel-bhavin 6 months ago
#3095 - moon_peak_coverage
Pull Request -
State: closed - Opened by tccontre 6 months ago
Labels: Detections, Stories
#3094 - Remove Duplicate Obs
Pull Request -
State: closed - Opened by patel-bhavin 6 months ago
- 1 comment
Labels: Detections
#3093 - Guardians of the Haaglaxy
Pull Request -
State: closed - Opened by MHaggis 6 months ago
- 2 comments
Labels: Detections, Stories, Macros, Datasource
#3092 - Fix potential input output lookup issues
Pull Request -
State: closed - Opened by pyth0n1c 6 months ago
- 1 comment
Labels: WIP, Detections, Lookups
#3091 - Marked two detections as manual_test
Pull Request -
State: closed - Opened by pyth0n1c 6 months ago
- 2 comments
Labels: Detections
#3090 - Update linux_hosts.yml
Pull Request -
State: closed - Opened by MHaggis 6 months ago
Labels: Macros
#3089 - linux_auditd_detection
Pull Request -
State: closed - Opened by tccontre 7 months ago
- 1 comment
Labels: Detections, Stories, Macros
#3088 - add missing version and id fields to story
Pull Request -
State: closed - Opened by pyth0n1c 7 months ago
Labels: Stories
#3087 - auditd_data_source
Pull Request -
State: closed - Opened by tccontre 7 months ago
Labels: Datasource
#3086 - ESCU dashboard updates:
Pull Request -
State: closed - Opened by patel-bhavin 7 months ago
#3085 - Updating risk_message
Pull Request -
State: closed - Opened by patel-bhavin 7 months ago
Labels: Detections
#3084 - Data Source Bug Fix
Pull Request -
State: closed - Opened by P4T12ICK 7 months ago
Labels: Datasource
#3083 - Azure AD updates
Pull Request -
State: closed - Opened by patel-bhavin 7 months ago
Labels: Detections
#3082 - Fix and Update Data Sources
Pull Request -
State: closed - Opened by pyth0n1c 7 months ago
- 1 comment
Labels: Datasource
#3081 - testing from fork
Pull Request -
State: closed - Opened by patel-bhavin 7 months ago
Labels: Detections
#3080 - trigger condition and remove contentctl version variable
Pull Request -
State: closed - Opened by patel-bhavin 7 months ago
#3079 - Bump actions/checkout from 2 to 4
Pull Request -
State: closed - Opened by dependabot[bot] 7 months ago
- 2 comments
Labels: dependencies
#3078 - RMM Must Die #3 - Dashboarding the carnage
Pull Request -
State: closed - Opened by nterl0k 7 months ago
- 4 comments
#3077 - Adding new label for data_source changes
Pull Request -
State: closed - Opened by ljstella 7 months ago
- 1 comment
#3076 - Fixing TA for CS data
Pull Request -
State: closed - Opened by ljstella 7 months ago
- 1 comment
Labels: Datasource
#3075 - Adding App Inspect CI job
Pull Request -
State: closed - Opened by patel-bhavin 7 months ago
#3074 - crowstrikes_analytics
Pull Request -
State: closed - Opened by tccontre 7 months ago
- 1 comment
Labels: Detections, Stories, Macros
#3073 - handala_wiper
Pull Request -
State: closed - Opened by tccontre 7 months ago
- 1 comment
Labels: Detections, Stories
#3072 - Improve TA names to match the naming in Splunk
Pull Request -
State: closed - Opened by P4T12ICK 7 months ago
- 1 comment
Labels: Datasource
#3071 - testing from fork
Pull Request -
State: closed - Opened by patel-bhavin 7 months ago
- 1 comment
Labels: Detections
#3070 - Unit-test for forks
Pull Request -
State: closed - Opened by patel-bhavin 7 months ago
#3069 - Create windows_privileged_group_modification.yml
Pull Request -
State: closed - Opened by MHaggis 7 months ago
- 1 comment
Labels: Detections
#3068 - fix some names and data sources
Pull Request -
State: closed - Opened by pyth0n1c 7 months ago
- 1 comment
Labels: Detections
#3067 - Create new detection for CVE-2024-37085
Pull Request -
State: closed - Opened by TheLawsOfChaos 7 months ago
- 1 comment
Labels: Detections
#3066 - A Haag of Your Own
Pull Request -
State: closed - Opened by MHaggis 7 months ago
Labels: Detections, Stories
#3065 - Re adding 2 detections:
Pull Request -
State: closed - Opened by patel-bhavin 7 months ago
Labels: Detections
#3064 - minor sysmon datasource update
Pull Request -
State: closed - Opened by patel-bhavin 7 months ago
Labels: Detections
#3063 - Datestamped Azure lookup
Pull Request -
State: closed - Opened by ljstella 7 months ago
- 1 comment
Labels: Lookups
#3062 - Remove extra fields from YMLs
Pull Request -
State: closed - Opened by pyth0n1c 7 months ago
- 2 comments
Labels: WIP, Detections, Lookups, Stories
#3061 - Updated Observable config
Pull Request -
State: closed - Opened by ljstella 7 months ago
- 4 comments
Labels: Detections
#3060 - Accidentally an extra risk object
Pull Request -
State: closed - Opened by ljstella 7 months ago
Labels: Detections
#3059 - Haag's Guided Adventures
Pull Request -
State: closed - Opened by MHaggis 7 months ago
Labels: Detections, Stories
#3058 - Critical Alerts detection - Microsoft Defender
Pull Request -
State: closed - Opened by gowthamarajr 7 months ago
- 2 comments
Labels: Detections, Stories, Datasource