Skip to content

Commit 61c7918

Browse files
PavanContrastPavanContrast
authored
Merge branch 'Azure:master' into master
2 parents 5dc1302 + f8ecc6e commit 61c7918

File tree

511 files changed

+68435
-13877
lines changed

Some content is hidden

Large Commits have some content hidden by default. Use the searchbox below for content that may be hidden.

511 files changed

+68435
-13877
lines changed

.script/tests/KqlvalidationsTests/CustomFunctions/CorelightAggregationsEnrichment1.json

+74
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,74 @@
1+
{
2+
"FunctionName": "CorelightAggregationsEnrichment1",
3+
"FunctionParameters": [],
4+
"FunctionResultColumns": [
5+
{
6+
"Name": "sid",
7+
"Type": "string"
8+
},
9+
{
10+
"Name": "attack_phase",
11+
"Type": "string"
12+
},
13+
{
14+
"Name": "technique_name",
15+
"Type": "string"
16+
},
17+
{
18+
"Name": "technique_number",
19+
"Type": "string"
20+
},
21+
{
22+
"Name": "sub_technique_name",
23+
"Type": "string"
24+
},
25+
{
26+
"Name": "sub_technique_number",
27+
"Type": "string"
28+
},
29+
{
30+
"Name": "attack_reason",
31+
"Type": "string"
32+
},
33+
{
34+
"Name": "traffic_direction",
35+
"Type": "string"
36+
},
37+
{
38+
"Name": "cve_number",
39+
"Type": "string"
40+
},
41+
{
42+
"Name": "cve_creation_date",
43+
"Type": "string"
44+
},
45+
{
46+
"Name": "cve_impact_score",
47+
"Type": "string"
48+
},
49+
{
50+
"Name": "cve_exploitability_score",
51+
"Type": "string"
52+
},
53+
{
54+
"Name": "cve_description",
55+
"Type": "string"
56+
},
57+
{
58+
"Name": "impact_score",
59+
"Type": "string"
60+
},
61+
{
62+
"Name": "category",
63+
"Type": "string"
64+
},
65+
{
66+
"Name": "impact_score_reason",
67+
"Type": "string"
68+
},
69+
{
70+
"Name": "tags",
71+
"Type": "string"
72+
}
73+
]
74+
}

.script/tests/KqlvalidationsTests/CustomFunctions/CorelightAggregationsEnrichment2.json

+74
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,74 @@
1+
{
2+
"FunctionName": "CorelightAggregationsEnrichment2",
3+
"FunctionParameters": [],
4+
"FunctionResultColumns": [
5+
{
6+
"Name": "sid",
7+
"Type": "string"
8+
},
9+
{
10+
"Name": "attack_phase",
11+
"Type": "string"
12+
},
13+
{
14+
"Name": "technique_name",
15+
"Type": "string"
16+
},
17+
{
18+
"Name": "technique_number",
19+
"Type": "string"
20+
},
21+
{
22+
"Name": "sub_technique_name",
23+
"Type": "string"
24+
},
25+
{
26+
"Name": "sub_technique_number",
27+
"Type": "string"
28+
},
29+
{
30+
"Name": "attack_reason",
31+
"Type": "string"
32+
},
33+
{
34+
"Name": "traffic_direction",
35+
"Type": "string"
36+
},
37+
{
38+
"Name": "cve_number",
39+
"Type": "string"
40+
},
41+
{
42+
"Name": "cve_creation_date",
43+
"Type": "string"
44+
},
45+
{
46+
"Name": "cve_impact_score",
47+
"Type": "string"
48+
},
49+
{
50+
"Name": "cve_exploitability_score",
51+
"Type": "string"
52+
},
53+
{
54+
"Name": "cve_description",
55+
"Type": "string"
56+
},
57+
{
58+
"Name": "impact_score",
59+
"Type": "string"
60+
},
61+
{
62+
"Name": "category",
63+
"Type": "string"
64+
},
65+
{
66+
"Name": "impact_score_reason",
67+
"Type": "string"
68+
},
69+
{
70+
"Name": "tags",
71+
"Type": "string"
72+
}
73+
]
74+
}

.script/tests/KqlvalidationsTests/CustomFunctions/corelight_bacnet.json

+4
Original file line numberDiff line numberDiff line change
@@ -61,6 +61,10 @@
6161
{
6262
"Name": "data",
6363
"Type": "String"
64+
},
65+
{
66+
"Name": "sid",
67+
"Type": "String"
6468
}
6569
]
6670
}

0 commit comments

Comments
 (0)