CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 17:22:49 +01:00
Code Issues Packages Projects Releases Wiki Activity

Fix source.ip

Browse Source
This commit is contained in:
Josh Brower
2024-02-22 14:01:02 -05:00
parent c886e72793
commit d04aa06455
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
salt/soc/files/soc/sigma_so_pipeline.yaml
View File

@@ -12,7 +12,7 @@ transformations:
sid: rule.uuid sid: rule.uuid
answer: answers answer: answers
query: dns.query.name query: dns.query.name
src_ip: destination.ip.keyword src_ip: source.ip.keyword
src_port: source.port src_port: source.port
dst_ip: destination.ip.keyword dst_ip: destination.ip.keyword
dst_port: destination.port dst_port: destination.port