New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Additional questions in scan wizard #1207

Closed

YamatoSecurity opened this issue Oct 31, 2023 · 0 comments · Fixed by #1208

Assignees

Labels

Milestone

Collaborator

YamatoSecurity commented Oct 31, 2023

Add the following questions to the scan wizard:
Include deprecated rules? ( xxxx rules) (y/n) (default: no)
=> If yes is chosen then perform -D logic

Include noisy rules? ( xxxx rules) (y/n) (default: no)
=> If yes is chosen then perform -n logic

Include unsupported rules? ( xxxx rules) (y/n) (default: no)
=> If yes is chosen then perform -u logic

Include sysmon rules? ( xxxx rules) (y/n) (default: yes)
=> If no is chosen then perform --exclude-tag sysmon logic

Note: These questions should be asked not only with 1-3 but also if 4 & 5 are chosen:

  4. All alert rules ( status: * | level: low+ )
  5. All event and alert rules ( status: * | level: informational+ )

The text was updated successfully, but these errors were encountered:

hitenkoku self-assigned this

hitenkoku added the enhancement label

hitenkoku added this to the v2.11.0 milestone

hitenkoku added a commit that referenced this issue


          feat(main): added question in scan wizard #1207

hitenkoku linked a pull request

that will close this issue

Added question in scan wizard #1208

Merged

hitenkoku closed this as completed in #1208

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment