contentctl 5.5.4__py3-none-any.whl → 5.5.6__py3-none-any.whl
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- contentctl/objects/lookup.py +7 -0
- contentctl/objects/macro.py +1 -0
- contentctl/output/attack_nav_output.py +1 -1
- {contentctl-5.5.4.dist-info → contentctl-5.5.6.dist-info}/METADATA +2 -2
- {contentctl-5.5.4.dist-info → contentctl-5.5.6.dist-info}/RECORD +8 -8
- {contentctl-5.5.4.dist-info → contentctl-5.5.6.dist-info}/LICENSE.md +0 -0
- {contentctl-5.5.4.dist-info → contentctl-5.5.6.dist-info}/WHEEL +0 -0
- {contentctl-5.5.4.dist-info → contentctl-5.5.6.dist-info}/entry_points.txt +0 -0
contentctl/objects/lookup.py
CHANGED
|
@@ -65,6 +65,13 @@ LOOKUPS_TO_IGNORE.add(
|
|
|
65
65
|
# Special case for the Detection "Exploit Public Facing Application via Apache Commons Text"
|
|
66
66
|
LOOKUPS_TO_IGNORE.add("=")
|
|
67
67
|
LOOKUPS_TO_IGNORE.add("other_lookups")
|
|
68
|
+
LOOKUPS_TO_IGNORE.add(
|
|
69
|
+
"asn_lookup_by_cidr"
|
|
70
|
+
) # Provided by SA-ThreatIntelligence, part of Enterprise Security
|
|
71
|
+
|
|
72
|
+
LOOKUPS_TO_IGNORE.add(
|
|
73
|
+
"mitre_attack_lookup"
|
|
74
|
+
) # KVStore provided by SA-ThreatIntelligence, part of Enterprise Security
|
|
68
75
|
|
|
69
76
|
|
|
70
77
|
class Lookup_Type(StrEnum):
|
contentctl/objects/macro.py
CHANGED
|
@@ -26,6 +26,7 @@ MACROS_TO_IGNORE.add(
|
|
|
26
26
|
) # SA-ThreatIntelligence, part of Enterprise Security
|
|
27
27
|
MACROS_TO_IGNORE.add("cim_corporate_web_domain_search") # Part of CIM/Splunk_SA_CIM
|
|
28
28
|
# MACROS_TO_IGNORE.add("prohibited_processes")
|
|
29
|
+
MACROS_TO_IGNORE.add("globedistance") # Part of SA-Utils, part of Enterprise Security
|
|
29
30
|
|
|
30
31
|
|
|
31
32
|
class Macro(SecurityContentObject):
|
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
Metadata-Version: 2.3
|
|
2
2
|
Name: contentctl
|
|
3
|
-
Version: 5.5.
|
|
3
|
+
Version: 5.5.6
|
|
4
4
|
Summary: Splunk Content Control Tool
|
|
5
5
|
License: Apache 2.0
|
|
6
6
|
Author: STRT
|
|
@@ -27,7 +27,7 @@ Requires-Dist: semantic-version (>=2.10.0,<3.0.0)
|
|
|
27
27
|
Requires-Dist: setuptools (>=69.5.1,<81.0.0)
|
|
28
28
|
Requires-Dist: splunk-sdk (>=2.0.2,<3.0.0)
|
|
29
29
|
Requires-Dist: tqdm (>=4.66.5,<5.0.0)
|
|
30
|
-
Requires-Dist: tyro (>=0.9.2,<0.
|
|
30
|
+
Requires-Dist: tyro (>=0.9.2,<0.9.23)
|
|
31
31
|
Requires-Dist: xmltodict (>=0.13,<0.15)
|
|
32
32
|
Description-Content-Type: text/markdown
|
|
33
33
|
|
|
@@ -66,8 +66,8 @@ contentctl/objects/integration_test.py,sha256=TYjKyH4YinUnYXOse5BQGCa4-ez_5mtoMw
|
|
|
66
66
|
contentctl/objects/integration_test_result.py,sha256=_uUSgqgjFhEZM8UwOJI6Q9K-ekIrbKU6OPdqHZycl-s,279
|
|
67
67
|
contentctl/objects/investigation.py,sha256=GZsvhSZO7ZSmhg2ZeT-kPMqDG-GYpTXIvGBgV1H2lwQ,4030
|
|
68
68
|
contentctl/objects/investigation_tags.py,sha256=qDGNusrWDvCX_GcBEzag2MydSV0LIhGxoXZGgxDXfHA,1317
|
|
69
|
-
contentctl/objects/lookup.py,sha256=
|
|
70
|
-
contentctl/objects/macro.py,sha256=
|
|
69
|
+
contentctl/objects/lookup.py,sha256=zIfPwzWNObn78wreTYw6078dhqu6T7vnYgdxXgfQ1MU,15869
|
|
70
|
+
contentctl/objects/macro.py,sha256=0moVvTFUvApwoT1WI4lcwElXQqay9mwsN33_Amy_MzI,4138
|
|
71
71
|
contentctl/objects/manual_test.py,sha256=cx_XAtQ8VG8Ui_F553Xnut75vFEOtRwm1dDIIWNpOaM,952
|
|
72
72
|
contentctl/objects/manual_test_result.py,sha256=FyCVVf-f1DKs-qBkM4tbKfY6mkrW25NcIEBqyaDC2rE,156
|
|
73
73
|
contentctl/objects/mitre_attack_enrichment.py,sha256=PCakRksW5qrTENIZ7JirEZplE9xpmvSvX2GKv7N8j_k,3683
|
|
@@ -92,7 +92,7 @@ contentctl/objects/unit_test.py,sha256=-rtSmZ8N2UZ4NkDsfzNXzXiF6dTDwt_jsQ_14xp0h
|
|
|
92
92
|
contentctl/objects/unit_test_baseline.py,sha256=ezg8Ctih_3che2ln2tuVCAtRPHaf5tDMR3dGb34MqaA,287
|
|
93
93
|
contentctl/objects/unit_test_result.py,sha256=gqHqYN5XGBKdV-mdKhAdwfOw4_PpN3i9z_b6ciByDSc,2928
|
|
94
94
|
contentctl/output/api_json_output.py,sha256=AwuXFVzg3bY0DUsYaEGM73LAr9mJ5nxkOmUdVJgTzRs,8563
|
|
95
|
-
contentctl/output/attack_nav_output.py,sha256
|
|
95
|
+
contentctl/output/attack_nav_output.py,sha256=-zK9zxBFWQooLjfLeCJaKARemA1BhoiEYLYYT2Or9PQ,7088
|
|
96
96
|
contentctl/output/attack_nav_writer.py,sha256=AiQU3q8hzz_lJECI-sjyqOsWx64HUugg3aAHEeZl-qM,2750
|
|
97
97
|
contentctl/output/conf_output.py,sha256=OJ4u38FEkuBHvIiK_57HoxUJasWV2rkX2abVamKh3Qg,11045
|
|
98
98
|
contentctl/output/conf_writer.py,sha256=9eqt2tm1xjs397pwWLz5oPJcMHbs62ejRG7KghGQQCI,15137
|
|
@@ -164,8 +164,8 @@ contentctl/templates/detections/web/.gitkeep,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRk
|
|
|
164
164
|
contentctl/templates/macros/security_content_ctime.yml,sha256=Gg1YNllHVsX_YB716H1SJLWzxXZEfuJlnsgB2fuyoHU,159
|
|
165
165
|
contentctl/templates/macros/security_content_summariesonly.yml,sha256=9BYUxAl2E4Nwh8K19F3AJS8Ka7ceO6ZDBjFiO3l3LY0,162
|
|
166
166
|
contentctl/templates/stories/cobalt_strike.yml,sha256=uj8idtDNOAIqpZ9p8usQg6mop1CQkJ5TlB4Q7CJdTIE,3082
|
|
167
|
-
contentctl-5.5.
|
|
168
|
-
contentctl-5.5.
|
|
169
|
-
contentctl-5.5.
|
|
170
|
-
contentctl-5.5.
|
|
171
|
-
contentctl-5.5.
|
|
167
|
+
contentctl-5.5.6.dist-info/LICENSE.md,sha256=hQWUayRk-pAiOZbZnuy8djmoZkjKBx8MrCFpW-JiOgo,11344
|
|
168
|
+
contentctl-5.5.6.dist-info/METADATA,sha256=zYEuLYx4cHqnppYBeMdv0dLG-rL_BYU7jyHv_qe6dWQ,5134
|
|
169
|
+
contentctl-5.5.6.dist-info/WHEEL,sha256=b4K_helf-jlQoXBBETfwnf4B04YC67LOev0jo4fX5m8,88
|
|
170
|
+
contentctl-5.5.6.dist-info/entry_points.txt,sha256=5bjZ2NkbQfSwK47uOnA77yCtjgXhvgxnmCQiynRF_-U,57
|
|
171
|
+
contentctl-5.5.6.dist-info/RECORD,,
|
|
File without changes
|
|
File without changes
|
|
File without changes
|