CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 09:12:45 +01:00
Code Issues Packages Projects Releases Wiki Activity

Update mappings for detection fields

Browse Source
This commit is contained in:
Wes
2024-05-01 20:11:56 +00:00
parent 72b2503b49
commit 3285ae9366
1 changed files with 19 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

23
salt/elasticsearch/templates/component/so/detection-mappings.json
View File

@@ -20,10 +20,12 @@
"so_detection": { "so_detection": {
"properties": { "properties": {
"publicId": { "publicId": {
"type": "text" "ignore_above": 1024,
"type": "keyword"
}, },
"title": { "title": {
"type": "text" "ignore_above": 1024,
"type": "keyword"
}, },
"severity": { "severity": {
"ignore_above": 1024, "ignore_above": 1024,
@@ -36,6 +38,18 @@
"description": { "description": {
"type": "text" "type": "text"
}, },
"category": {
"ignore_above": 1024,
"type": "keyword"
},
"product": {
"ignore_above": 1024,
"type": "keyword"
},
"service": {
"ignore_above": 1024,
"type": "keyword"
},
"content": { "content": {
"type": "text" "type": "text"
}, },
@@ -49,7 +63,8 @@
"type": "boolean" "type": "boolean"
}, },
"tags": { "tags": {
"type": "text" "ignore_above": 1024,
"type": "keyword"
}, },
"ruleset": { "ruleset": {
"ignore_above": 1024, "ignore_above": 1024,
@@ -136,4 +151,4 @@
"_meta": { "_meta": {
"ecs_version": "1.12.2" "ecs_version": "1.12.2"
} }
} }