contentctl 4.0.2__py3-none-any.whl → 4.0.4__py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (6) hide show
  1. contentctl/output/finding_report_writer.py +3 -3
  2. {contentctl-4.0.2.dist-info → contentctl-4.0.4.dist-info}/METADATA +4 -3
  3. {contentctl-4.0.2.dist-info → contentctl-4.0.4.dist-info}/RECORD +6 -6
  4. {contentctl-4.0.2.dist-info → contentctl-4.0.4.dist-info}/LICENSE.md +0 -0
  5. {contentctl-4.0.2.dist-info → contentctl-4.0.4.dist-info}/WHEEL +0 -0
  6. {contentctl-4.0.2.dist-info → contentctl-4.0.4.dist-info}/entry_points.txt +0 -0
contentctl/output/finding_report_writer.py CHANGED
@@ -59,9 +59,9 @@ class FindingReportObject():
59
59
  detection.tags.risk_level = "Critical"
60
60
 
61
61
  evidence_str = "{"
62
- for i in range(len(detection.tags.observable)):
63
- evidence_str = evidence_str + '"' + detection.tags.observable[i]["name"] + '": ' + detection.tags.observable[i]["name"].replace(".", "_")
64
- if not i == (len(detection.tags.observable) - 1):
62
+ for i in range(len(detection.tags.required_fields)):
63
+ evidence_str = evidence_str + '"' + detection.tags.required_fields[i] + '": ' + detection.tags.required_fields[i].replace(".", "_")
64
+ if not i == (len(detection.tags.required_fields) - 1):
65
65
  evidence_str = evidence_str + ', '
66
66
 
67
67
  evidence_str = evidence_str + ', "sourceType": metadata.source_type, "source": metadata.source}'
{contentctl-4.0.2.dist-info → contentctl-4.0.4.dist-info}/METADATA RENAMED
@@ -1,6 +1,6 @@
1
1
  Metadata-Version: 2.1
2
2
  Name: contentctl
3
- Version: 4.0.2
3
+ Version: 4.0.4
4
4
  Summary: Splunk Content Control Tool
5
5
  License: Apache 2.0
6
6
  Author: STRT
@@ -14,7 +14,7 @@ Requires-Dist: Jinja2 (>=3.1.2,<4.0.0)
14
14
  Requires-Dist: PyYAML (>=6.0.1,<7.0.0)
15
15
  Requires-Dist: attackcti (>=0.3.7,<0.4.0)
16
16
  Requires-Dist: bottle (>=0.12.25,<0.13.0)
17
- Requires-Dist: docker (>=6.1.3,<7.0.0)
17
+ Requires-Dist: docker (>=7.1.0,<8.0.0)
18
18
  Requires-Dist: gitpython (>=3.1.43,<4.0.0)
19
19
  Requires-Dist: pycvesearch (>=1.2,<2.0)
20
20
  Requires-Dist: pydantic (>=2.5.1,<3.0.0)
@@ -22,8 +22,9 @@ Requires-Dist: pygit2 (>=1.14.1,<2.0.0)
22
22
  Requires-Dist: pysigma (>=0.10.8,<0.11.0)
23
23
  Requires-Dist: pysigma-backend-splunk (>=1.0.3,<2.0.0)
24
24
  Requires-Dist: questionary (>=2.0.1,<3.0.0)
25
- Requires-Dist: requests (>=2.31.0,<3.0.0)
25
+ Requires-Dist: requests (>=2.32.2,<2.33.0)
26
26
  Requires-Dist: semantic-version (>=2.10.0,<3.0.0)
27
+ Requires-Dist: setuptools (>=69.5.1,<70.0.0)
27
28
  Requires-Dist: splunk-sdk (>=2.0.1,<3.0.0)
28
29
  Requires-Dist: tqdm (>=4.66.1,<5.0.0)
29
30
  Requires-Dist: tyro (>=0.8.3,<0.9.0)
{contentctl-4.0.2.dist-info → contentctl-4.0.4.dist-info}/RECORD RENAMED
@@ -93,7 +93,7 @@ contentctl/output/conf_output.py,sha256=qCRT77UKNFCe4AufeBV8Uz9lkPqgpGzU1Y149RuE
93
93
  contentctl/output/conf_writer.py,sha256=2TaCAPEtU-bMa7A2m7xOxh93PMpzIdhwiHiPLUCeCB4,8281
94
94
  contentctl/output/detection_writer.py,sha256=AzxbssNLmsNIOaYKotew5-ONoyq1cQpKSGy3pe191B0,960
95
95
  contentctl/output/doc_md_output.py,sha256=gf7osH1uSrC6js3D_I72g4uDe9TaB3tsvtqCHi5znp0,3238
96
- contentctl/output/finding_report_writer.py,sha256=Me6FtvDbmSSRqYr5rtrtuc5YVze48PyPbrjyAXJ-V4A,3935
96
+ contentctl/output/finding_report_writer.py,sha256=bjJR7NAxLE8vt8uU3zSDhazQzqzOdtCsUu95lVdzU_w,3939
97
97
  contentctl/output/jinja_writer.py,sha256=bdiqr9FaXYxth4wZ1A52zTMAS5stHNGpezTkaS5pres,1119
98
98
  contentctl/output/json_writer.py,sha256=Z-iVLnZb8tzYATxbQtXax0dz572lVPFMNVTx-vWbnog,1007
99
99
  contentctl/output/new_content_yml_output.py,sha256=ktZ9miHluqkw8jD-pn-62bjVp1sQqqQ7B53xy18DHU8,2321
@@ -161,8 +161,8 @@ contentctl/templates/detections/anomalous_usage_of_7zip.yml,sha256=hkN214ZOqbQPW
161
161
  contentctl/templates/macros/security_content_ctime.yml,sha256=Gg1YNllHVsX_YB716H1SJLWzxXZEfuJlnsgB2fuyoHU,159
162
162
  contentctl/templates/macros/security_content_summariesonly.yml,sha256=9BYUxAl2E4Nwh8K19F3AJS8Ka7ceO6ZDBjFiO3l3LY0,162
163
163
  contentctl/templates/stories/cobalt_strike.yml,sha256=rlaXxMN-5k8LnKBLPafBoksyMtlmsPMHPJOjTiMiZ-M,3063
164
- contentctl-4.0.2.dist-info/LICENSE.md,sha256=hQWUayRk-pAiOZbZnuy8djmoZkjKBx8MrCFpW-JiOgo,11344
165
- contentctl-4.0.2.dist-info/METADATA,sha256=xGbT6aNeYGB-__vB1wrMih-Jz2Sb_A8xKb-x3i39QGY,19705
166
- contentctl-4.0.2.dist-info/WHEEL,sha256=sP946D7jFCHeNz5Iq4fL4Lu-PrWrFsgfLXbbkciIZwg,88
167
- contentctl-4.0.2.dist-info/entry_points.txt,sha256=5bjZ2NkbQfSwK47uOnA77yCtjgXhvgxnmCQiynRF_-U,57
168
- contentctl-4.0.2.dist-info/RECORD,,
164
+ contentctl-4.0.4.dist-info/LICENSE.md,sha256=hQWUayRk-pAiOZbZnuy8djmoZkjKBx8MrCFpW-JiOgo,11344
165
+ contentctl-4.0.4.dist-info/METADATA,sha256=quZj1WvlwYP3QddPZkNrHE8i3AlLaD-oa_nQqNZakmE,19751
166
+ contentctl-4.0.4.dist-info/WHEEL,sha256=sP946D7jFCHeNz5Iq4fL4Lu-PrWrFsgfLXbbkciIZwg,88
167
+ contentctl-4.0.4.dist-info/entry_points.txt,sha256=5bjZ2NkbQfSwK47uOnA77yCtjgXhvgxnmCQiynRF_-U,57
168
+ contentctl-4.0.4.dist-info/RECORD,,