-
Notifications
You must be signed in to change notification settings - Fork 137
ocsf ocsf-schema Discussions
Sort by:
Latest activity
Categories, most helpful, and community links
Categories
Community links
Discussions
-
You must be logged in to vote 👻 Re-name Fingerprint to Hash in OCSF as well as change ja3s_fingerprint to be a string
breakingAny breaking, non backwards compatible changes -
You must be logged in to vote 👻 Add new object Analytic and attribute analytic
enhancementNew feature or request non_breakingNon Breaking, backwards compatible changes -
You must be logged in to vote 🗳️ -
You must be logged in to vote 💬 -
You must be logged in to vote 👻 Further Enhance the Modified Resource Object (refer to Proposal #499)
enhancementNew feature or request iamIssues related to Identity & Access Management Category maintainersIssues that require attention from all maintainers breakingAny breaking, non backwards compatible changes -
You must be logged in to vote 👻 Update the Security Finding class with attributes from the Splunk Detection Report extension class (Part 2)
non_breakingNon Breaking, backwards compatible changes -
You must be logged in to vote 👻 Extension labeling and versioning in Metadata
enhancementNew feature or request frameworkStructures, conventions, requirements, data types, etc. -
You must be logged in to vote 👻 -
You must be logged in to vote 👻 Modify the URL class by replacing the text attribute with the src_url attribute.
grammar_consistencyIssues related to the attribute grammar consistency work-stream breakingAny breaking, non backwards compatible changes -
You must be logged in to vote 💬 HTTP Activity Class - Multiple Issues
iamIssues related to Identity & Access Management Category network_activityIssues related to Network Activity Category breakingAny breaking, non backwards compatible changes -
You must be logged in to vote 👻 Update the Security Finding class by changing the activity_id enum label
non_breakingNon Breaking, backwards compatible changes -
You must be logged in to vote 👻 Update the Security Finding class with attributes from the Splunk Detection Report extension class.
non_breakingNon Breaking, backwards compatible changes -
👻 Description update for rcode.
network_activityIssues related to Network Activity Category grammar_consistencyIssues related to the attribute grammar consistency work-stream non_breakingNon Breaking, backwards compatible changes -
You must be logged in to vote 🙏 -
You must be logged in to vote 👻 A new field in the packages object
findingsIssues related to Findings Category non_breakingNon Breaking, backwards compatible changes -
👻 A new field in the vulnerability object
findingsIssues related to Findings Category non_breakingNon Breaking, backwards compatible changes -
👻 Use SemVer RC versioning
documentationImprovements or additions to documentation -
You must be logged in to vote 🙏 -
You must be logged in to vote 💡 activity vs disposition vs status
enhancementNew feature or request frameworkStructures, conventions, requirements, data types, etc. -
You must be logged in to vote 👻 -
👻 Process Object: Requiring either PID or UID
system_activityIssues related to System Activity Category -
You must be logged in to vote 🗳️ -
You must be logged in to vote 🙏