Releases · 7RedViolin/pySigma-backend-cortexxdr · GitHub

24 Aug 17:10

7RedViolin

v0.1.4 Latest

Latest

What's Changed

Fix for backend & pipeline crash with recent pySigma versions by @jgubler in #16

Full Changelog: v0.1.3...v0.1.4

Contributors

jgubler

Assets 2

28 Mar 13:39

7RedViolin

v0.1.3

What's Changed

Update poetry dependencies by @frack113 in #9
Fix Integrity Level Translations by @7RedViolin in #10
Add Support for Datasets and Presets by @7RedViolin in #13
Update Field Mappings by @7RedViolin in #14

New Contributors

@frack113 made their first contribution in #9

Full Changelog: v0.1.2...v0.1.3

Contributors

$@frack113$

frack113 and 7RedViolin

Assets 2

10 Nov 02:15

7RedViolin

v0.1.2

What's Changed

Update dependencies to support pySigma 0.10.X by @7RedViolin in #7

Full Changelog: v0.1.1...v0.1.2

Contributors

7RedViolin

Assets 2

24 Jul 20:27

7RedViolin

v0.1.1

What's Changed

Fix Numbers Incorrectly Cast as Strings by @7RedViolin in #2

New Contributors

@7RedViolin made their first contribution in #2

Full Changelog: v0.1.0...v0.1.1

Contributors

7RedViolin

Assets 2

01 Jul 16:30

7RedViolin

Initial Release

General

First release of pysigma-backend-cortexxdr.

Backend

Output formats include plaintext and JSON (includes query and rule metadata)
Uses Cortex XDR XQL syntax

Pipelines

Supports linux, windows, and macos product types
Supports the following category types for field mappings
- process_creation
- file_event
- file_change
- file_rename
- file_delete
- image_load
- registry_add
- registry_delete
- registry_event
- registry_set
- network_connection
- firewall
  Any unsupported fields or categories will throw errors

Assets 2