Skip to content

McAfee SIEM API Python wrapper 0.2.2
Compare
Choose a tag to compare
@tristanlatr tristanlatr released this 21 Jan 05:25
0.2.2
e208f2e
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode. 
New features:
	- More comprehensive usage of Event dictionnary. This means that you can use Event object with the same keys you requested when doing a query. Before you had to add the table prefix like 'Alert.<field>', or event use a completely different key like 'Alert.BIN(7)' when you requested 'UserIDSrc', now you can use the same fields that you requested (hopefully) with the Event objects. Note that all matching is done statically with a very big mapping of all known fields, it may contain bug or be imcomplete... Methods __getitem__, __contains__, __setitem__ and __delitem__ have been rewrote in order to offer this feature.

Fixes:
	- Event fields would not be queried as expected when using EventManager query splitting feature
	- Other minor event fixes
Assets 2
Loading