Skip to content

Commit

Permalink
Merge pull request #21 from query-ai/fix/1.2.2
Browse files Browse the repository at this point in the history 
QDM 1.2.2
  • Loading branch information
@query-jeremy
query-jeremy authored May 23, 2024
2 parents 08e7ed3 + a59cb90 commit e3a7e70
Show file tree
Hide file tree
Showing 68 changed files with 98,138 additions and 295 deletions.
48,825 changes: 48,825 additions & 0 deletions export/qdm-1.2.1.json
View file

Large diffs are not rendered by default.

48,941 changes: 48,941 additions & 0 deletions export/qdm-1.2.2.json
View file

Large diffs are not rendered by default.

509 changes: 313 additions & 196 deletions export/schema.json
View file

Large diffs are not rendered by default.

2 changes: 1 addition & 1 deletion extensions/archive/events/account_change.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -32,4 +32,4 @@
}
}
}
}
}
2 changes: 1 addition & 1 deletion extensions/archive/events/application.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -52,4 +52,4 @@
}
}
}
}
}
2 changes: 1 addition & 1 deletion extensions/archive/events/authentication.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -40,6 +40,6 @@
"description": "Used only by the System account, for example at system startup."
}
}
}
}
}
}
4 changes: 1 addition & 3 deletions extensions/archive/events/authorize_session.json
View file
Original file line number Diff line number Diff line change
@@ -1,5 +1,3 @@
{
"attributes": {

}
"attributes": {}
}
4 changes: 1 addition & 3 deletions extensions/archive/events/compliance_finding.json
View file
Original file line number Diff line number Diff line change
@@ -1,5 +1,3 @@
{
"attributes": {

}
"attributes": {}
}
2 changes: 1 addition & 1 deletion extensions/archive/events/config_state.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -30,6 +30,6 @@
"description": "The event severity is not known."
}
}
}
}
}
}
4 changes: 1 addition & 3 deletions extensions/archive/events/data_security_finding.json
View file
Original file line number Diff line number Diff line change
@@ -1,5 +1,3 @@
{
"attributes": {

}
"attributes": {}
}
2 changes: 1 addition & 1 deletion extensions/archive/events/datastore_activity.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -24,6 +24,6 @@
"description": "The datastore activity in the event pertains to a 'Delete' operation."
}
}
}
}
}
}
4 changes: 1 addition & 3 deletions extensions/archive/events/detection_finding.json
View file
Original file line number Diff line number Diff line change
@@ -1,5 +1,3 @@
{
"attributes": {

}
"attributes": {}
}
4 changes: 1 addition & 3 deletions extensions/archive/events/device_config_state_change.json
View file
Original file line number Diff line number Diff line change
@@ -1,5 +1,3 @@
{
"attributes": {

}
"attributes": {}
}
2 changes: 1 addition & 1 deletion extensions/archive/events/dhcp_activity.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -41,6 +41,6 @@
"description": "The event severity is not known."
}
}
}
}
}
}
2 changes: 1 addition & 1 deletion extensions/archive/events/discovery.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -52,6 +52,6 @@
"description": "The event severity is not known."
}
}
}
}
}
}
2 changes: 1 addition & 1 deletion extensions/archive/events/discovery_result.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -75,6 +75,6 @@
"description": "The target was found."
}
}
}
}
}
}
2 changes: 1 addition & 1 deletion extensions/archive/events/dns_activity.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -43,6 +43,6 @@
"description": "The event severity is not known."
}
}
}
}
}
}
2 changes: 1 addition & 1 deletion extensions/archive/events/email_activity.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -79,6 +79,6 @@
"description": "The event severity is not known."
}
}
}
}
}
}
2 changes: 1 addition & 1 deletion extensions/archive/events/email_file_activity.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -60,7 +60,7 @@
"description": "Requires reboot to finish the operation."
}
}
}
}
},
"associations": {
"device": [
Expand Down
2 changes: 1 addition & 1 deletion extensions/archive/events/email_url_activity.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -68,6 +68,6 @@
"description": "The event severity is not known."
}
}
}
}
}
}
4 changes: 1 addition & 3 deletions extensions/archive/events/entity_management.json
View file
Original file line number Diff line number Diff line change
@@ -1,5 +1,3 @@
{
"attributes": {

}
"attributes": {}
}
2 changes: 1 addition & 1 deletion extensions/archive/events/file_activity.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -43,6 +43,6 @@
"description": "The event severity is not known."
}
}
}
}
}
}
4 changes: 1 addition & 3 deletions extensions/archive/events/file_hosting.json
View file
Original file line number Diff line number Diff line change
@@ -1,5 +1,3 @@
{
"attributes": {

}
"attributes": {}
}
4 changes: 1 addition & 3 deletions extensions/archive/events/finding.json
View file
Original file line number Diff line number Diff line change
@@ -1,5 +1,3 @@
{
"attributes": {

}
"attributes": {}
}
2 changes: 1 addition & 1 deletion extensions/archive/events/ftp_activity.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -43,6 +43,6 @@
"description": "The event severity is not known."
}
}
}
}
}
}
4 changes: 1 addition & 3 deletions extensions/archive/events/group_management.json
View file
Original file line number Diff line number Diff line change
@@ -1,5 +1,3 @@
{
"attributes": {

}
"attributes": {}
}
2 changes: 1 addition & 1 deletion extensions/archive/events/http_activity.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -43,6 +43,6 @@
"description": "The event severity is not known."
}
}
}
}
}
}
4 changes: 1 addition & 3 deletions extensions/archive/events/iam.json
View file
Original file line number Diff line number Diff line change
@@ -1,5 +1,3 @@
{
"attributes": {

}
"attributes": {}
}
2 changes: 1 addition & 1 deletion extensions/archive/events/inventory_info.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -30,6 +30,6 @@
"description": "The event severity is not known."
}
}
}
}
}
}
2 changes: 1 addition & 1 deletion extensions/archive/events/kernel_activity.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -43,6 +43,6 @@
"description": "The event severity is not known."
}
}
}
}
}
}
2 changes: 1 addition & 1 deletion extensions/archive/events/kernel_extension.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -43,6 +43,6 @@
"description": "The event severity is not known."
}
}
}
}
}
}
2 changes: 1 addition & 1 deletion extensions/archive/events/memory_activity.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -43,6 +43,6 @@
"description": "The event severity is not known."
}
}
}
}
}
}
2 changes: 1 addition & 1 deletion extensions/archive/events/module_activity.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -43,6 +43,6 @@
"description": "The event severity is not known."
}
}
}
}
}
}
4 changes: 1 addition & 3 deletions extensions/archive/events/network.json
View file
Original file line number Diff line number Diff line change
@@ -1,5 +1,3 @@
{
"attributes": {

}
"attributes": {}
}
2 changes: 1 addition & 1 deletion extensions/archive/events/network_activity.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -43,6 +43,6 @@
"description": "Requires reboot to finish the operation."
}
}
}
}
}
}
2 changes: 1 addition & 1 deletion extensions/archive/events/network_file_activity.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,6 @@
"attributes": {
"connection_info": {
"group": "primary"
}
}
}
}
4 changes: 1 addition & 3 deletions extensions/archive/events/ntp_activity.json
View file
Original file line number Diff line number Diff line change
@@ -1,5 +1,3 @@
{
"attributes": {

}
"attributes": {}
}
4 changes: 1 addition & 3 deletions extensions/archive/events/patch_state.json
View file
Original file line number Diff line number Diff line change
@@ -1,5 +1,3 @@
{
"attributes": {

}
"attributes": {}
}
2 changes: 1 addition & 1 deletion extensions/archive/events/process_activity.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -43,6 +43,6 @@
"description": "The event severity is not known."
}
}
}
}
}
}
2 changes: 1 addition & 1 deletion extensions/archive/events/rdp_activity.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -43,6 +43,6 @@
"description": "The event severity is not known."
}
}
}
}
}
}
2 changes: 1 addition & 1 deletion extensions/archive/events/registry_key_activity.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -57,6 +57,6 @@
"description": "The event severity is not known."
}
}
}
}
}
}
2 changes: 1 addition & 1 deletion extensions/archive/events/registry_value_activity.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -56,6 +56,6 @@
"description": "The event severity is not known."
}
}
}
}
}
}
2 changes: 1 addition & 1 deletion extensions/archive/events/resource_activity.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -54,6 +54,6 @@
"description": "The event severity is not known."
}
}
}
}
}
}
4 changes: 1 addition & 3 deletions extensions/archive/events/scan_activity.json
View file
Original file line number Diff line number Diff line change
@@ -1,5 +1,3 @@
{
"attributes": {

}
"attributes": {}
}
2 changes: 1 addition & 1 deletion extensions/archive/events/scheduled_job_activity.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -43,7 +43,7 @@
"description": "Marked with extended attributes."
}
}
},
},
"actor": {
"group": "primary"
}
Expand Down
2 changes: 1 addition & 1 deletion extensions/archive/events/security_finding.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -101,6 +101,6 @@
"description": "The event severity is not known."
}
}
}
}
}
}
2 changes: 1 addition & 1 deletion extensions/archive/events/smb_activity.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -43,6 +43,6 @@
"description": "The event severity is not known."
}
}
}
}
}
}
2 changes: 1 addition & 1 deletion extensions/archive/events/ssh_activity.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -43,6 +43,6 @@
"description": "Requires reboot to finish the operation."
}
}
}
}
}
}
2 changes: 1 addition & 1 deletion extensions/archive/events/system.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -43,6 +43,6 @@
"description": "The event severity is not known."
}
}
}
}
}
}
Loading

0 comments on commit e3a7e70

Please sign in to comment.