contentctl 5.5.10__py3-none-any.whl → 5.5.12__py3-none-any.whl
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- contentctl/output/templates/savedsearches_detections.j2 +6 -0
- contentctl/templates/app_template/metadata/default.meta +6 -15
- {contentctl-5.5.10.dist-info → contentctl-5.5.12.dist-info}/METADATA +1 -1
- {contentctl-5.5.10.dist-info → contentctl-5.5.12.dist-info}/RECORD +7 -7
- {contentctl-5.5.10.dist-info → contentctl-5.5.12.dist-info}/WHEEL +1 -1
- {contentctl-5.5.10.dist-info → contentctl-5.5.12.dist-info}/entry_points.txt +0 -0
- {contentctl-5.5.10.dist-info → contentctl-5.5.12.dist-info}/licenses/LICENSE.md +0 -0
|
@@ -1,5 +1,11 @@
|
|
|
1
|
+
[default]
|
|
2
|
+
disabled = 1
|
|
3
|
+
description = "This search was removed in a previous release, or is otherwise not present."
|
|
4
|
+
search = | makeresults | eval text = "This search was removed in a previous release, or is otherwise not present."
|
|
5
|
+
|
|
1
6
|
### {{app.label}} DETECTIONS ###
|
|
2
7
|
|
|
8
|
+
|
|
3
9
|
{% for detection in objects %}
|
|
4
10
|
[{{ detection.get_conf_stanza_name(app) }}]
|
|
5
11
|
action.escu = 0
|
|
@@ -6,18 +6,9 @@ export = system
|
|
|
6
6
|
[savedsearches]
|
|
7
7
|
owner = admin
|
|
8
8
|
|
|
9
|
-
##
|
|
10
|
-
|
|
11
|
-
|
|
12
|
-
|
|
13
|
-
[
|
|
14
|
-
|
|
15
|
-
|
|
16
|
-
## Managed Configurations
|
|
17
|
-
[managed_configurations]
|
|
18
|
-
access = read : [ * ], write : [ * ]
|
|
19
|
-
|
|
20
|
-
## Postprocess
|
|
21
|
-
[postprocess]
|
|
22
|
-
access = read : [ * ], write : [ * ]
|
|
23
|
-
|
|
9
|
+
## DO NOT EXPORT THE [default] stanza, and the [default] stanza alone.
|
|
10
|
+
## Because this comes later in the default.meta file, it overrides the
|
|
11
|
+
## export = system for [] above.
|
|
12
|
+
## We MAY want to consider change the access, like making this stanza read-only or similar
|
|
13
|
+
[savedsearches/default]
|
|
14
|
+
export = none
|
|
@@ -124,7 +124,7 @@ contentctl/output/templates/header.j2,sha256=3usV7jm1q6J-QNnQrZzII9cN0XEGQjg_eVK
|
|
|
124
124
|
contentctl/output/templates/macros.j2,sha256=SLcQQ5X7TZS8j-2qP06BTXqdIcnwoYqTAaBLX2Dge7Y,390
|
|
125
125
|
contentctl/output/templates/panel.j2,sha256=Cw_W6p-14n6UivVfpS75KKJiJ2VpdGsSBceYsUYe9gk,221
|
|
126
126
|
contentctl/output/templates/savedsearches_baselines.j2,sha256=WHZB4e0vmeym8832VxRmuUfDJ-YRYt6emcYaJrghI58,1709
|
|
127
|
-
contentctl/output/templates/savedsearches_detections.j2,sha256=
|
|
127
|
+
contentctl/output/templates/savedsearches_detections.j2,sha256=2QqPIPt8TNIpOfNCbJAaFHOqE-u2DyKSYaWywDDZK_g,5558
|
|
128
128
|
contentctl/output/templates/savedsearches_fbds.j2,sha256=iYjuEESKzSVyornnBfcR_JPafHHAlff_G2LeXQRGMzc,132
|
|
129
129
|
contentctl/output/templates/savedsearches_investigations.j2,sha256=KH2r8SgyAMiettSHypSbA2-1XmQ_8_8xzk3BkbZ1Re4,1196
|
|
130
130
|
contentctl/output/templates/server.conf.j2,sha256=sPZUkiuJNGm9R8rpjfRKyuAvmmQb0C4w9Q6hpmvmPeU,127
|
|
@@ -144,7 +144,7 @@ contentctl/templates/app_template/default/data/ui/views/escu_summary.xml,sha256=
|
|
|
144
144
|
contentctl/templates/app_template/default/data/ui/views/feedback.xml,sha256=uM71EMK2uFz8h68nOTNKGnYxob3HhE_caSL6yA-3H-k,696
|
|
145
145
|
contentctl/templates/app_template/default/use_case_library.conf,sha256=zWuCOOl8SiP7Kit2s-de4KRu3HySLtBSXcp1QnJx0ec,168
|
|
146
146
|
contentctl/templates/app_template/lookups/mitre_enrichment.csv,sha256=tifPQjFoQHtvpb78hxSP2fKHnHeehNbZDwUjdvc0aEM,66072
|
|
147
|
-
contentctl/templates/app_template/metadata/default.meta,sha256=
|
|
147
|
+
contentctl/templates/app_template/metadata/default.meta,sha256=JUcThUfajDTW3ZrybyD9ILCThnNIRTcoezdFzpRZV-c,446
|
|
148
148
|
contentctl/templates/app_template/static/appIcon.png,sha256=jcJ1PNdkBX7Kl_y9Tf0SZ55OJYA2PpwjvkVvBt9_OoE,3658
|
|
149
149
|
contentctl/templates/app_template/static/appIconAlt.png,sha256=uRXjoHQQjs0-BxcK-3KNBEdck1adDNTHMvV14xR4W0g,2656
|
|
150
150
|
contentctl/templates/app_template/static/appIconAlt_2x.png,sha256=I0m-CPRqq7ak9NJQZGGmz6Ac4pmzFV_SonOUxOEDOFs,7442
|
|
@@ -165,8 +165,8 @@ contentctl/templates/detections/web/.gitkeep,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRk
|
|
|
165
165
|
contentctl/templates/macros/security_content_ctime.yml,sha256=Gg1YNllHVsX_YB716H1SJLWzxXZEfuJlnsgB2fuyoHU,159
|
|
166
166
|
contentctl/templates/macros/security_content_summariesonly.yml,sha256=9BYUxAl2E4Nwh8K19F3AJS8Ka7ceO6ZDBjFiO3l3LY0,162
|
|
167
167
|
contentctl/templates/stories/cobalt_strike.yml,sha256=uj8idtDNOAIqpZ9p8usQg6mop1CQkJ5TlB4Q7CJdTIE,3082
|
|
168
|
-
contentctl-5.5.
|
|
169
|
-
contentctl-5.5.
|
|
170
|
-
contentctl-5.5.
|
|
171
|
-
contentctl-5.5.
|
|
172
|
-
contentctl-5.5.
|
|
168
|
+
contentctl-5.5.12.dist-info/METADATA,sha256=mKOH-t5eMxtplKdZiNuQhYpfe_4gIA_9hMPfe-ug5nM,5144
|
|
169
|
+
contentctl-5.5.12.dist-info/WHEEL,sha256=kJCRJT_g0adfAJzTx2GUMmS80rTJIVHRCfG0DQgLq3o,88
|
|
170
|
+
contentctl-5.5.12.dist-info/entry_points.txt,sha256=5bjZ2NkbQfSwK47uOnA77yCtjgXhvgxnmCQiynRF_-U,57
|
|
171
|
+
contentctl-5.5.12.dist-info/licenses/LICENSE.md,sha256=hQWUayRk-pAiOZbZnuy8djmoZkjKBx8MrCFpW-JiOgo,11344
|
|
172
|
+
contentctl-5.5.12.dist-info/RECORD,,
|
|
File without changes
|
|
File without changes
|