SigmaConverttoQuery
This Script is part of the Sigma Pack.#
Supported versions
Available on Cortex XSOAR (versions 6.10.0 and later) and Cortex XSIAM.
Allows converting a Sigma Rule indicator into a SIEM query.
Script Data#
| Name | Description |
|---|---|
| Script Type | python3 |
| Tags | Sigma |
Inputs#
| Argument Name | Description |
|---|---|
| indicator | The Sigma Rule indicator to convert to a query |
| SIEM |
Outputs#
There are no outputs for this script.