-
|
HI. sigma is grate. We are useing sigma to Hayabusa. There is some regex engine. |
Beta Was this translation helpful? Give feedback.
Replies: 1 comment 3 replies
-
|
From https://github.com/SigmaHQ/sigma-specification/blob/main/Sigma_1_0_1.md#modifier-types As the backend are in python for sigmac and Pysigma , python ? |
Beta Was this translation helpful? Give feedback.
-
|
Also, take a look at the answer from Thomas in this issue SigmaHQ/sigma-specification#25 |
Beta Was this translation helpful? Give feedback.
-
|
Oh. I see. |
Beta Was this translation helpful? Give feedback.
-
|
No worries. If this answers your question. Could you please mark the issue as answered. Thanks. |
Beta Was this translation helpful? Give feedback.
From https://github.com/SigmaHQ/sigma-specification/blob/main/Sigma_1_0_1.md#modifier-types
re: value is handled as regular expression by backends. Currently, this is only supported by the Elasticsearch query string backend (es-qs). Further (like Splunk) are planned or have to be implemented by contributors with access to the target systemsAs the backend are in python for sigmac and Pysigma , python ?
Try a regex from a rule in https://regex101.com/r/MgB2Nt/1 , only .Net C# did not works.