Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Refactor product parsing rule ms graph (#33049)
* Change the product value of in the parsing rule. * Added release note. * Bump pack from version MicrosoftGraphSecurity to 2.2.10. --------- Co-authored-by: Content Bot <bot@demisto.com>
- Loading branch information
Showing
3 changed files
with
5 additions
and
2 deletions.
There are no files selected for viewing
2 changes: 1 addition & 1 deletion
2
Packs/MicrosoftGraphSecurity/ParsingRules/MicrosoftGraphSecurity/MicrosoftGraphSecurity.xif
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,3 +1,3 @@ | ||
[INGEST:vendor="msft", product="graph_security_alerts", target_dataset="msft_graph_security_alerts_raw", no_hit=keep] | ||
[INGEST:vendor="msft", product="Graph Security Alerts", target_dataset="msft_graph_security_alerts_raw", no_hit=keep] | ||
filter to_string(createdDateTime) ~= "\d{4}\-\d{2}\-\d{2}T\d{2}:\d{2}:\d{2}(\.\d+)?Z" | ||
| alter _time = parse_timestamp("%Y-%m-%dT%H:%M:%E*SZ", to_string(createdDateTime)); |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,3 @@ | ||
#### Parsing Rules | ||
##### Microsoft Graph Security Parsing Rules | ||
Fixed an issue with the product name. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters