pySigma OCSF pipeline

Navigation

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for thomaspatzke from gravatar.com thomaspatzke

Unverified details

These details have not been verified by PyPI
Meta
  • License: MIT License (MIT)
  • Author: Hendrik Baecker
  • Requires: Python <4.0, >=3.9
Classifiers
Report project as malware

Project description

Tests Coverage Badge Status

pySigma ocsf Backend

This is the OCSF processing pipeline for pySigma. It provides the package sigma.pipeline.ocsf with the ocsf_pipeline function that returns a ProcessingPipeline object.

Currently the pipeline adds support for the following event types (Sigma logsource category to OCSF class mapping):

  • application
  • antivirus
  • create_stream_hash
  • dns
  • dns_query
  • driver_load
  • firewall
  • file_access
  • file_change
  • file_delete
  • file_event
  • file_executable_detected
  • file_rename
  • image_load
  • network_connection
  • process_access
  • process_creation
  • process_tampering
  • process_termination
  • registry_add
  • registry_delete
  • registry_event
  • registry_rename
  • registry_set
  • sysmon_error

This pipeline is currently maintained by:

Project details

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for thomaspatzke from gravatar.com thomaspatzke

Unverified details

These details have not been verified by PyPI
Meta
  • License: MIT License (MIT)
  • Author: Hendrik Baecker
  • Requires: Python <4.0, >=3.9
Classifiers

Release history Release notifications | RSS feed

This version

0.1.1

0.1.0

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

pysigma_pipeline_ocsf-0.1.1.tar.gz (6.7 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

pysigma_pipeline_ocsf-0.1.1-py3-none-any.whl (7.2 kB view details)

Uploaded Python 3

File details

Details for the file pysigma_pipeline_ocsf-0.1.1.tar.gz.

File metadata

  • Download URL: pysigma_pipeline_ocsf-0.1.1.tar.gz
  • Upload date:
  • Size: 6.7 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.7

File hashes

Hashes for pysigma_pipeline_ocsf-0.1.1.tar.gz
Algorithm Hash digest
SHA256 a305b3fbca472661144223e66df0acc4e0d62417b433fddb739aeccde78764f3
MD5 549e2d5b20b938aaf301b843d1ad9f43
BLAKE2b-256 0c62cf9a453350f31109ceb8b082ce5834eecf977b1a2d31ebdde17242215f31

See more details on using hashes here.

Provenance

The following attestation bundles were made for pysigma_pipeline_ocsf-0.1.1.tar.gz:

Publisher: release.yml on SigmaHQ/pySigma-pipeline-ocsf

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file pysigma_pipeline_ocsf-0.1.1-py3-none-any.whl.

File metadata

File hashes

Hashes for pysigma_pipeline_ocsf-0.1.1-py3-none-any.whl
Algorithm Hash digest
SHA256 f921f13410a3a0bd307ef6259a525670505d3ae27cdd3302f00712c3c50c2429
MD5 9b48c0043941f56dd3fb99567fa8ad33
BLAKE2b-256 c601925b5953548c7a81d861709032c8212e0fd80de60ad3ec616a520d48d32b

See more details on using hashes here.

Provenance

The following attestation bundles were made for pysigma_pipeline_ocsf-0.1.1-py3-none-any.whl:

Publisher: release.yml on SigmaHQ/pySigma-pipeline-ocsf

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page