-
Notifications
You must be signed in to change notification settings - Fork 140
Pull requests: ocsf/ocsf-schema
Author
Label
Projects
Milestones
Reviews
Assignee
Sort
Pull requests list
Issue #1289: Add Application Error event class.
#1299
opened Dec 23, 2024 by
rmouritzen-splunk
Loading…
Issue #1291: Add url attribute to file object
#1298
opened Dec 23, 2024 by
rmouritzen-splunk
Loading…
Issue #1296: Add File Access Check event class
#1297
opened Dec 23, 2024 by
rmouritzen-splunk
Loading…
Issue #1294: Add a generic event class for each category
#1295
opened Dec 23, 2024 by
rmouritzen-splunk
Loading…
Create an Incident profile
description_updates
Issues related to missing/incorrect/lacking descriptions of attributes
findings
Issues related to Findings Category
non_breaking
Non Breaking, backwards compatible changes
v1.4.0 or later
Changes marked for versions beyond v1.3.0 of OCSF
#1293
opened Dec 19, 2024 by
pagbabian-splunk
Loading…
Update Actor description to distinguish from a campaign threat actor
description_updates
Issues related to missing/incorrect/lacking descriptions of attributes
v1.4.0 or later
Changes marked for versions beyond v1.3.0 of OCSF
#1290
opened Dec 18, 2024 by
pagbabian-splunk
Loading…
Add ancestors uids to process object
enhancement
New feature or request
system_activity
Issues related to System Activity Category
v1.4.0 or later
Changes marked for versions beyond v1.3.0 of OCSF
#1276
opened Dec 9, 2024 by
lcostantino
Loading…
Add Event family meta schema keyword and Discovery classes
metaschema
v1.4.0 or later
Changes marked for versions beyond v1.3.0 of OCSF
#1260
opened Nov 20, 2024 by
pagbabian-splunk
•
Draft
Add Common Process Identifier (CPID) field to process
enhancement
New feature or request
v1.5.0 or later
feat: [1122]-ldap and user extension + AD profile
enhancement
New feature or request
non_breaking
Non Breaking, backwards compatible changes
v1.4.0 or later
Changes marked for versions beyond v1.3.0 of OCSF
#1136
opened Jul 2, 2024 by
PavelJurka
•
Draft
Replace reg_value.type_id with official Microsoft Windows specification
breaking
Any breaking, non backwards compatible changes
enhancement
New feature or request
system_activity
Issues related to System Activity Category
v2.0 and later
Changes marked for v2.0 of OCSF, due to their breaking nature
#865
opened Nov 21, 2023 by
alvinnieto
Loading…
ProTip!
Adding no:label will show everything without a label.