Skip to content

Commit

Permalink
Sigma Rule Supported Modifier Update (2024-10-28 21:11:59) (#759)
Browse files Browse the repository at this point in the history 
Co-authored-by: YamatoSecurity <[email protected]>
  • Loading branch information
@github-actions @YamatoSecurity
github-actions[bot] and YamatoSecurity authored Oct 28, 2024
1 parent 074d48d commit 4fee6bf
Showing 1 changed file with 4 additions and 4 deletions.
8 changes: 4 additions & 4 deletions doc/SupportedSigmaFieldModifiers.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5,11 +5,11 @@
| base64offsetǀcontains | 7 | 0 |
| cased | 0 | 0 |
| cidr | 34 | 0 |
| contains | 2752 | 21 |
| contains | 2754 | 21 |
| containsǀall | 975 | 0 |
| containsǀallǀwindash | 4 | 0 |
| containsǀwindash | 78 | 0 |
| endswith | 2908 | 271 |
| endswith | 2910 | 271 |
| endswithfield | 0 | 2 |
| endswithǀwindash | 2 | 0 |
| equalsfield | 0 | 1 |
Expand All @@ -20,7 +20,7 @@
| reǀi | 0 | 0 |
| reǀm | 0 | 0 |
| reǀs | 0 | 0 |
| startswith | 441 | 6 |
| startswith | 443 | 6 |

# Hayabusa unsupported field modifiers
| Field Modifier | Sigma Count | Hayabusa Count |
Expand Down Expand Up @@ -51,5 +51,5 @@
| temporal_count (with group-by) | 0 | 0 |

This document is being dynamically updated based on the latest rules.
Last Update: 2024/10/19
Last Update: 2024/10/28
Author: Fukusuke Takahashi

0 comments on commit 4fee6bf

Please sign in to comment.