Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Rename osquery alerts fields reference #196

Merged
merged 1 commit into from
Sep 20, 2018
Merged

Rename osquery alerts fields reference #196

merged 1 commit into from
Sep 20, 2018

Conversation

vikman90
Copy link
Member

This PR introduces two changes:

  1. Replaces the alert description "osquery data grouped" with "osquery: *** query result".
  2. Adds 9 specific rules with a group for the predefined osquery packs.

Related core PR: wazuh/wazuh#1369

@vikman90 vikman90 added this to In progress in Wazuh 3.7 via automation Sep 20, 2018
@albertomn86 albertomn86 merged commit 4e29851 into 3.7 Sep 20, 2018
Wazuh 3.7 automation moved this from In progress to Done Sep 20, 2018
@albertomn86 albertomn86 deleted the 3.7-osquery-improvements branch September 20, 2018 19:09
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jesuslinares jesuslinares Awaiting requested review from jesuslinares

Assignees

@albertomn86 albertomn86

Labels
enhancement
Projects
No open projects
Wazuh 3.7
  
Done
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@vikman90 @albertomn86