Skip to content

Commit

Permalink
Merge pull request #12724 from Security-Onion-Solutions/dougburks-pat…
Browse files Browse the repository at this point in the history 
…ch-1

FEATURE: Add Events table columns for event.module strelka #12716
  • Loading branch information
@dougburks
dougburks authored Apr 2, 2024
2 parents 55e71c8 + b2b54cc commit a678a5a
Showing 1 changed file with 10 additions and 1 deletion.
11 changes: 10 additions & 1 deletion salt/soc/defaults.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -1893,7 +1893,16 @@ soc:
- event_data.destination.host
- event_data.destination.port
- event_data.process.executable
- event_data.process.pid
- event_data.process.pid
':strelka:':
- soc_timestamp
- file.name
- file.size
- hash.md5
- file.source
- file.mime_type
- log.id.fuid
- event.dataset
queryBaseFilter: tags:alert
queryToggleFilters:
- name: acknowledged
Expand Down

0 comments on commit a678a5a

Please sign in to comment.