New Features - Data query library supporting multiple data providers (kqlmagic, Odata...). - Query definitions are stored in YAML files in data/queries. Allowing default parameters and replaceable parameters at runtime.
Fixes - Updates to IocExtract and base64unpack.
0.1.7
Not secure
New Features - Updated README with links to documentation and sample notebooks. - Added links to code and documentation in setup.py allowing links to appear in the PyPI repo side menu.
Fixes - Fixed a broken project url in setup.py.
0.1.6
Not secure
New Features Adding Sphinx documentation for Read the docs Numpy docstrings should now be used (almost) everywhere Added function to kql.py execute simple kql string query. Added function to auditdextract.py to read audit logs from file. Added these HowTo docs to repo:
- Jupyter And Security - Azure Sentinel and Jupyter - Enabling Auditd on Linux in Azure Sentinel
Fixes Fixing some errors in iocextract Pylint and Flake8 warnings (mostly reducing line length to < 90)
0.1.5
Not secure
New Features --------------- Added observationlist module
Fixes ----- Fixing linting warnings. Adding unittests test_event_cluster, test_observationlist, test_security_event + test data Miscellaneous small fixes and improvements.
0.1.4
Not secure
New Features Added several doc notebooks for components Updated Readme.md Initial refactoring of docstrings to use numpy standard format. Additional unit tests.
Fixes Fixing some bugs found while doing the documentation.