pySigma Splunk backend

Navigation

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for thomaspatzke from gravatar.com thomaspatzke

Unverified details

These details have not been verified by PyPI
Meta
  • License: OSI Approved (LGPL-2.1-only)
  • Author: Thomas Patzke
  • Requires: Python <4.0, >=3.10
Classifiers
Report project as malware

Project description

Tests Coverage Badge Status

pySigma Splunk Backend

This is the Splunk backend for pySigma. It provides the package sigma.backends.splunk with the SplunkBackend class. Further, it contains the following processing pipelines in sigma.pipelines.splunk:

  • splunk_windows_pipeline: Splunk Windows log support
  • splunk_windows_sysmon_acceleration_keywords: Adds fiels name keyword search terms to generated query to accelerate search.

It supports the following output formats:

  • default: plain Splunk queries
  • savedsearches: Splunk savedsearches.conf format.

This backend is currently maintained by:

Project details

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for thomaspatzke from gravatar.com thomaspatzke

Unverified details

These details have not been verified by PyPI
Meta
  • License: OSI Approved (LGPL-2.1-only)
  • Author: Thomas Patzke
  • Requires: Python <4.0, >=3.10
Classifiers

Release history Release notifications | RSS feed

This version

2.1.0

2.0.0

1.1.3

1.1.2

1.1.0

1.0.3

1.0.2

1.0.1

1.0.0

0.3.7

0.3.6

0.3.5

0.3.4

0.3.3

0.3.2

0.3.1

0.3.0

0.2.3

0.2.2

0.2.0

0.1.2

0.1.1

0.1.0

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

pysigma_backend_splunk-2.1.0.tar.gz (18.7 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

pysigma_backend_splunk-2.1.0-py3-none-any.whl (21.1 kB view details)

Uploaded Python 3

File details

Details for the file pysigma_backend_splunk-2.1.0.tar.gz.

File metadata

  • Download URL: pysigma_backend_splunk-2.1.0.tar.gz
  • Upload date:
  • Size: 18.7 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.7

File hashes

Hashes for pysigma_backend_splunk-2.1.0.tar.gz
Algorithm Hash digest
SHA256 ca4d2d0e4c7f766a4daf551489ab20366578163e6ac838fc59bb6d3f2a1423e9
MD5 604d5d517cdc87e4a34fd69c0c716ced
BLAKE2b-256 57f2a7bd243d9d597b52658cfb1c7bea415ffe7cb864cd12c5630e13f026781b

See more details on using hashes here.

Provenance

The following attestation bundles were made for pysigma_backend_splunk-2.1.0.tar.gz:

Publisher: release.yml on SigmaHQ/pySigma-backend-splunk

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file pysigma_backend_splunk-2.1.0-py3-none-any.whl.

File metadata

File hashes

Hashes for pysigma_backend_splunk-2.1.0-py3-none-any.whl
Algorithm Hash digest
SHA256 90da654b17c7a396ba23af14a29ed559c562ae5bb60c4ceda47cd9744dd3581c
MD5 0f5ea044a7b5c10f545cf184266866f4
BLAKE2b-256 4138a2c7d959abcd6690f10d430707be1ed60de3ca406e0bd6af8f59e0a72439

See more details on using hashes here.

Provenance

The following attestation bundles were made for pysigma_backend_splunk-2.1.0-py3-none-any.whl:

Publisher: release.yml on SigmaHQ/pySigma-backend-splunk

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page