Eg: norestored.

And until then, change the man page to say that it is incomplete, and to look in examples and the changelog. Are there configuration settings that are only documented in code?

Hi, im trying to use Hashids with Typescript and Node.

import Hashids from 'hashids';

I'm not getting any Typescript errors in the editor, but Im getting this error when the code is compiled.

Using ts-node version 8.5.4, typescript version 3.7.5

`Error: No valid exports main found for 'node_modules\hashids'
at resolveExportsTarget (internal/modules/cjs/loader.js:625:9)

An increasing number of sites are supporting HTTP 2.0 which manifests very different than HTTP 1.* traffic. This analyzer adds an http2 log as well as intel framework extensions. Because it is an analyzer it requires access to the compiled source of Bro to be compiled itself as opposed to a regular bro script.

https://github.com/MITRECND/bro-http2

As the http2 analyzer documentation states

Someone should map publicly available EVTX samples to Sigma rules. This would enable us to automatically test the correctness of generated queries.

Known security-related EVTX repositories:

• https://github.com/sbousseaden/EVTX-ATTACK-SAMPLES
• https://github.com/Cyb3rWard0g/mordor

Feel free to extend the list.

Mapping should be:

Sigma rule -> Repository/EVTX ( -> expected matched

Description

When we have an automatic email reports configuration and there are no alerts to be reported that day (e.g the rule or group of rules that we have configured in reports have not triggered during the day), the report will not be sent.

This is not good behavior because it can lead the user to think that the automatic reports are not working.

Let's also say that I have to sen

Hi team,

I have noticed that the log examples found in 0610-win-ms_logs_rules.xml don't match their rules.
It is due the fields providerName and channel aren't correct.

https://github.com/wazuh/wazuh-ruleset/blob/725a0155cfde0a849729d9d174f03e1453e31242/rules/0610-win-ms_logs_rules.xml#L37-L63

To match rules 63103, 63104 and 63105, the logs must have matched before rules `60

It would be great if we could attach notes to particular IPs without clicking through to see the entire history or the individual IP report. A small note with a hover indicating this is eg "Ubuntu Repo" would be a quick way to archive from the single click-through or even from the Inbo

Is your feature request related to a problem? Please describe.

I have some issues around the "date" and "time" fields which come from syslog, either as pipe-delimited fields or as mapped JSON fields.

The fundamental question is: are these fields actually used for anything, apart from being included in alert messages? And does it matter if the format is not YYYY-MM-DD or HH:MM:SS?

**

Hello folks,

I think it'd be great if every ENV VAR used in the images would be explained in the README.md, and also it can be included in the Wazuh official documentation once they're ready.

Feel free to share your thoughts on this here.

Regards

Description
Letters will move around as you hover over items in the Kibana App using Firefox.
This is most notable in the Management tab and when the window size is somewhat small.

Steps to reproduce
With Firefox

1. Go to Management
2. Hover over the different dashboard buttons
3. Resize browser win

Many examples in OISF ruleset[0] primarily stream-event, app-layer-event, decoder-event etc.)
Probably most of these can just be tags? Documentation is rather sparse on some of these.

[0] https://github.com/OISF/suricata/tree/master/rules

Hello team!

According to https://www.elastic.co/guide/en/elasticsearch/reference/7.2/security-api-put-user.html it's possible to manage Elastic users by using API like the following example:

curl -X POST "localhost:9200/_security/user/jacknich" -H 'Content-Type: application/json' -d' 

Elastic tasks can be enhanced by allowing to create users and manage their attributes and pas