add command patterns for convert rule and sigma-stats
This commit is contained in:
Charlotte Croce
parent
181eade8c4
commit
d839089153
1 changed files with 41 additions and 43 deletions
|
|
@ -17,62 +17,60 @@
|
||||||
const commandPatterns = [
|
const commandPatterns = [
|
||||||
// Sigma details patterns
|
// Sigma details patterns
|
||||||
{
|
{
|
||||||
name: 'sigma-details-direct',
|
name: 'sigma-details-direct',
|
||||||
regex: /^(explain|get|show|display|details|info|about)\s+(rule|detection)\s+(from\s+)?sigma\s+(where\s+)?(id=|id\s+is\s+|with\s+id\s+)(.+)$/i,
|
regex: /^(explain|get|show|display|details|info|about)\s+(rule|detection)\s+(from\s+)?sigma\s+(where\s+)?(id=|id\s+is\s+|with\s+id\s+)(.+)$/i,
|
||||||
action: 'details',
|
action: 'details',
|
||||||
module: 'sigma',
|
module: 'sigma',
|
||||||
params: [6] // rule ID is in capturing group 6
|
params: [6] // rule ID is in capturing group 6
|
||||||
},
|
},
|
||||||
{
|
{
|
||||||
name: 'sigma-details-simple',
|
name: 'sigma-details-simple',
|
||||||
regex: /^(details|explain)\s+(.+)$/i,
|
regex: /^(details|explain)\s+(.+)$/i,
|
||||||
action: 'details',
|
action: 'details',
|
||||||
module: 'sigma',
|
module: 'sigma',
|
||||||
params: [2] // rule ID is in capturing group 2
|
params: [2] // rule ID is in capturing group 2
|
||||||
},
|
},
|
||||||
|
|
||||||
// Sigma search patterns
|
// Sigma search patterns
|
||||||
{
|
{
|
||||||
name: 'sigma-search',
|
name: 'sigma-search',
|
||||||
regex: /^(search|find|look\s+for)\s+(rules|detections)?\s*(in|from)?\s*sigma\s+(for|where|with)?\s+(.+)$/i,
|
regex: /^(search|find|look\s+for)\s+(rules|detections)?\s*(in|from)?\s*sigma\s+(for|where|with)?\s+(.+)$/i,
|
||||||
action: 'search',
|
action: 'search',
|
||||||
module: 'sigma',
|
module: 'sigma',
|
||||||
params: [5] // search query is in capturing group 5
|
params: [5] // search query is in capturing group 5
|
||||||
},
|
},
|
||||||
{
|
{
|
||||||
name: 'sigma-search-simple',
|
name: 'sigma-search-simple',
|
||||||
regex: /^(search|find)\s+(.+)$/i,
|
regex: /^(search|find)\s+(.+)$/i,
|
||||||
action: 'search',
|
action: 'search',
|
||||||
module: 'sigma',
|
module: 'sigma',
|
||||||
params: [2] // search query is in capturing group 2
|
params: [2] // search query is in capturing group 2
|
||||||
},
|
},
|
||||||
|
|
||||||
// Sigma create patterns
|
// Sigma create patterns
|
||||||
{
|
{
|
||||||
name: 'sigma-create',
|
name: 'sigma-create',
|
||||||
regex: /^(create|new|add)\s+(rule|detection)\s+(in|to|for)?\s*sigma\s+(with|using)?\s+(.+)$/i,
|
regex: /^(create|convert)\s+sigma\s+rule\s+where\s+id=(.+)$/i,
|
||||||
action: 'create',
|
action: 'create',
|
||||||
module: 'sigma',
|
module: 'sigma',
|
||||||
params: [5] // creation parameters in capturing group 5
|
params: [2] // rule ID is in capturing group 2
|
||||||
},
|
},
|
||||||
|
|
||||||
// Sigma stats patterns
|
// Sigma stats patterns
|
||||||
{
|
{
|
||||||
name: 'sigma-stats',
|
name: 'sigma-stats-first',
|
||||||
regex: /^(stats|statistics|metrics|counts)\s+(for|about|on|of)?\s*sigma$/i,
|
regex: /^sigma\s+stats$/i,
|
||||||
action: 'stats',
|
action: 'stats',
|
||||||
module: 'sigma',
|
module: 'sigma',
|
||||||
params: []
|
params: []
|
||||||
},
|
},
|
||||||
{
|
{
|
||||||
name: 'sigma-stats-show',
|
name: 'sigma-stats-second',
|
||||||
regex: /^(show|get|display)\s+(stats|statistics|metrics|counts)\s+(for|about|on|of)?\s*sigma$/i,
|
regex: /^stats\s+sigma$/i,
|
||||||
action: 'stats',
|
action: 'stats',
|
||||||
module: 'sigma',
|
module: 'sigma',
|
||||||
params: []
|
params: []
|
||||||
}
|
}
|
||||||
|
];
|
||||||
// Additional command patterns for other modules can be added here
|
|
||||||
];
|
module.exports = commandPatterns;
|
||||||
|
|
||||||
module.exports = commandPatterns;
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue