-
-
Notifications
You must be signed in to change notification settings - Fork 18
Issues: SigmaHQ/pySigma-backend-splunk
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Author
Label
Projects
Milestones
Assignee
Sort
Issues list
Directly interact with savedsearches.conf fields when using the savedsearches format
#43
opened Jun 13, 2024 by
joshnck
Problem in logical operator execution order : WHERE vs SEARCH
bug
Something isn't working
#42
opened Jun 6, 2024 by
IgorHrkswxryski
Convert correlation in savedsearches mode
bug
Something isn't working
#41
opened May 7, 2024 by
IgorHrkswxryski
Request: Using the fields: key to define the values() from a |stats command in correlation searches
#40
opened Apr 17, 2024 by
joshnck
Splunk backend allegedly doesn't support or conditions in regex, but fails to detect them (and for some reason creates a newline before | regex)
bug
Something isn't working
#29
opened Jan 4, 2024 by
joshnck
Question: How to avoid processing the fields?
enhancement
New feature or request
#27
opened Oct 20, 2023 by
0xFustang
[sigmac] [splunk] Unescaped . in query
bug
Something isn't working
#15
opened Sep 30, 2022 by
phantinuss
ProTip!
Adding no:label will show everything without a label.