From cd6deae0a78a84fec44d42c6d15716817de11dfe Mon Sep 17 00:00:00 2001
From: Josh Patterson <josh.patterson@securityonionsolutions.com>
Date: Wed, 2 Apr 2025 11:20:12 -0400
Subject: [PATCH] add missing strelka backend scanners to SOC UI annotation
 file

---
 salt/strelka/soc_strelka.yaml | 20 +++++++++++++++++++-
 1 file changed, 19 insertions(+), 1 deletion(-)

diff --git a/salt/strelka/soc_strelka.yaml b/salt/strelka/soc_strelka.yaml
index 609223db6..1a5db261b 100644
--- a/salt/strelka/soc_strelka.yaml
+++ b/salt/strelka/soc_strelka.yaml
@@ -64,7 +64,7 @@ strelka:
             helpLink: strelka.html
             advanced: True
         scanners:
-          'ScanBase64': &scannerOptions
+          'ScanBase64PE': &scannerOptions
             description: Configuration options for this scanner.
             readonly: False
             global: False
@@ -73,37 +73,53 @@ strelka:
             forcedType: "[]{}"
             syntax: json
           'ScanBatch': *scannerOptions
+          'ScanBmpEof': *scannerOptions
           'ScanBzip2': *scannerOptions
+          'ScanDmg': *scannerOptions
           'ScanDocx': *scannerOptions
+          'ScanDonut': *scannerOptions
           'ScanElf': *scannerOptions
           'ScanEmail': *scannerOptions
+          'ScanEncryptedDoc': *scannerOptions
+          'ScanEncryptedZip': *scannerOptions
           'ScanEntropy': *scannerOptions
           'ScanExiftool': *scannerOptions
+          'ScanFooter': *scannerOptions
           'ScanGif': *scannerOptions
           'ScanGzip': *scannerOptions
           'ScanHash': *scannerOptions
           'ScanHeader': *scannerOptions
           'ScanHtml': *scannerOptions
           'ScanIni': *scannerOptions
+          'ScanIqy': *scannerOptions
+          'ScanIso': *scannerOptions
           'ScanJarManifest': *scannerOptions
           'ScanJavascript': *scannerOptions
           'ScanJpeg': *scannerOptions
           'ScanJson': *scannerOptions
           'ScanLibarchive': *scannerOptions
+          'ScanLNK': *scannerOptions
+          'ScanLsb': *scannerOptions
           'ScanLzma': *scannerOptions
           'ScanMacho': *scannerOptions
+          'ScanManifest': *scannerOptions
+          'ScanMsi': *scannerOptions
           'ScanOcr': *scannerOptions
           'ScanOle': *scannerOptions
+          'ScanOnenote': *scannerOptions
           'ScanPdf': *scannerOptions
           'ScanPe': *scannerOptions
           'ScanPgp': *scannerOptions
           'ScanPhp': *scannerOptions
           'ScanPkcs7': *scannerOptions
           'ScanPlist': *scannerOptions
+          'ScanPngEof': *scannerOptions
+          'ScanQr': *scannerOptions
           'ScanRar': *scannerOptions
           'ScanRpm': *scannerOptions
           'ScanRtf': *scannerOptions
           'ScanRuby': *scannerOptions
+          'ScanSevenZip': *scannerOptions
           'ScanSwf': *scannerOptions
           'ScanTar': *scannerOptions
           'ScanTnef': *scannerOptions
@@ -111,6 +127,8 @@ strelka:
           'ScanUrl': *scannerOptions
           'ScanVb': *scannerOptions
           'ScanVba': *scannerOptions
+          'ScanVhd': *scannerOptions
+          'ScanVsto': *scannerOptions
           'ScanX509': *scannerOptions
           'ScanXml': *scannerOptions
           'ScanYara': *scannerOptions