Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add File Attribute to Various Network Event Classes #985

Closed
Aniak5 opened this issue Mar 13, 2024 · 1 comment
Closed

Add File Attribute to Various Network Event Classes #985

Aniak5 opened this issue Mar 13, 2024 · 1 comment
Assignees
@Aniak5
Labels
application_activity Issues related to Application Activity Category network_activity Issues related to Network Activity Category v1.2.0 Changes marked for version v1.2.0 of OCSF

Comments

@Aniak5
Copy link
Contributor

Aniak5 commented Mar 13, 2024
edited

The logs within the network and API category event classes could have enriched file information. Add optional file attribute to http, rdp, smb, ssh, and ftp network event classes
@Aniak5 Aniak5 added network_activity Issues related to Network Activity Category application_activity Issues related to Application Activity Category labels Mar 13, 2024
@Aniak5 Aniak5 self-assigned this Mar 13, 2024
@Aniak5 Aniak5 mentioned this issue Mar 19, 2024
Merged
@Aniak5
Copy link
Contributor Author

Aniak5 commented Mar 19, 2024

Do we want to add this profile to all application category event classes? @pladam @floydtree @pagbabian-splunk @zschmerber @mikeradka

@Aniak5 Aniak5 changed the title Create File Profile Add File Attribute to Various Network Event Classes Mar 27, 2024
@mikeradka mikeradka added the v1.2.0 Changes marked for version v1.2.0 of OCSF label May 1, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@Aniak5 Aniak5

Labels
application_activity Issues related to Application Activity Category network_activity Issues related to Network Activity Category v1.2.0 Changes marked for version v1.2.0 of OCSF
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@Aniak5 @mikeradka