Skip to content

Commit

Permalink
Merge pull request #2116 from SEKOIA-IO/regex_additional_info
Browse files Browse the repository at this point in the history 
add syntax info about the regex we support
  • Loading branch information
@pbivic
pbivic authored Dec 3, 2024
2 parents 2a70dba + 45f9479 commit 177af2a
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion docs/xdr/features/detect/sigma.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -72,7 +72,7 @@ Here is the list of supported modifiers:
- `base64`: match the value encoded with Base64
- `endswith`: the value is expected at the end of the field's content (replaces e.g. `*\cmd.exe`)
- `startswith`: the value is expected at the beginning of the field's content. (replaces e.g. `adm*`)
- `re`: the value is a regular expression. Regular expressions are case sensitive by default
- `re`: the value is a [regular expression](https://github.com/andreasvc/pyre2). Regular expressions are case sensitive by default
- `cidr`: the value is a subnet in CIDR notation (e.g. `192.168.1.0/24`) the IP address should belong to
- `lt`: less than this value
- `lte`: less than or equal to this value
Expand Down

0 comments on commit 177af2a

Please sign in to comment.