pySigma Splunk backend

Navigation

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for thomaspatzke from gravatar.com thomaspatzke

Unverified details

These details have not been verified by PyPI
Meta
  • License: OSI Approved (LGPL-2.1-only)
  • Author: Thomas Patzke
  • Requires: Python <4.0, >=3.10
Classifiers
Report project as malware

Project description

Tests Coverage Badge Status

pySigma Splunk Backend

This is the Splunk backend for pySigma. It provides the package sigma.backends.splunk with the SplunkBackend class. Further, it contains the following processing pipelines in sigma.pipelines.splunk:

  • splunk_windows_pipeline: Splunk Windows log support
  • splunk_windows_sysmon_acceleration_keywords: Adds fiels name keyword search terms to generated query to accelerate search.

It supports the following output formats:

  • default: plain Splunk queries
  • savedsearches: Splunk savedsearches.conf format.

This backend is currently maintained by:

Project details

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for thomaspatzke from gravatar.com thomaspatzke

Unverified details

These details have not been verified by PyPI
Meta
  • License: OSI Approved (LGPL-2.1-only)
  • Author: Thomas Patzke
  • Requires: Python <4.0, >=3.10
Classifiers

Release history Release notifications | RSS feed

This version

2.0.0

1.1.3

1.1.2

1.1.0

1.0.3

1.0.2

1.0.1

1.0.0

0.3.7

0.3.6

0.3.5

0.3.4

0.3.3

0.3.2

0.3.1

0.3.0

0.2.3

0.2.2

0.2.0

0.1.2

0.1.1

0.1.0

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

pysigma_backend_splunk-2.0.0.tar.gz (16.6 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

pysigma_backend_splunk-2.0.0-py3-none-any.whl (17.8 kB view details)

Uploaded Python 3

File details

Details for the file pysigma_backend_splunk-2.0.0.tar.gz.

File metadata

  • Download URL: pysigma_backend_splunk-2.0.0.tar.gz
  • Upload date:
  • Size: 16.6 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.7

File hashes

Hashes for pysigma_backend_splunk-2.0.0.tar.gz
Algorithm Hash digest
SHA256 083d012d6ca616a661f02259dfa738c01f841cdb3f3c7bf7776cb299a4c99ef2
MD5 685087af284f76c8415ba60620dd2f02
BLAKE2b-256 0b33d4444bf069aae4230f2b4e603ef88d6f2b456a25621c8aff5dbb6cad2d1f

See more details on using hashes here.

Provenance

The following attestation bundles were made for pysigma_backend_splunk-2.0.0.tar.gz:

Publisher: release.yml on SigmaHQ/pySigma-backend-splunk

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file pysigma_backend_splunk-2.0.0-py3-none-any.whl.

File metadata

File hashes

Hashes for pysigma_backend_splunk-2.0.0-py3-none-any.whl
Algorithm Hash digest
SHA256 795cfaff990bfe42e8ee4402c24ce77737b08f3dbdcf667afb37084ba9a7c298
MD5 d071373b96a67f88a2507b3999506888
BLAKE2b-256 d9f9046ca8dbe1cb2f97c0e023010e0d2f3135363a355717ff2d5ebb570d6bbe

See more details on using hashes here.

Provenance

The following attestation bundles were made for pysigma_backend_splunk-2.0.0-py3-none-any.whl:

Publisher: release.yml on SigmaHQ/pySigma-backend-splunk

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page