├── .githooks └── pre-commit ├── .github ├── CODEOWNERS ├── dependabot.yml ├── workflows │ ├── codeql.yml │ ├── integration.yml │ ├── mark-as-done.yaml │ ├── release.yml │ ├── test.yml │ └── validate-renovate.yml └── zizmor.yml ├── .gitignore ├── LICENSE ├── README.md ├── agpl-3.0.txt ├── getting_started.md ├── mypy.ini ├── poetry.lock ├── pyproject.toml ├── renovate.json ├── sigma ├── backends │ └── loki │ │ ├── __init__.py │ │ ├── deferred.py │ │ └── loki.py ├── pipelines │ └── loki │ │ ├── __init__.py │ │ └── loki.py └── shared.py └── tests ├── sigma_backend_tester.py ├── test_backend_loki.py ├── test_backend_loki_add_line_filters.py ├── test_backend_loki_add_line_filters_case_insensitive.py ├── test_backend_loki_case_sensitive.py ├── test_backend_loki_event_count_correlation.py ├── test_backend_loki_field_modifiers.py ├── test_backend_loki_fieldref.py ├── test_backend_loki_value_count_correlation.py ├── test_backend_negation_loki.py ├── test_pipelines_loki.py ├── test_pysigma_integration.py ├── test_sigma_cli_integration.sh └── test_sigma_rule.yml /.githooks/pre-commit: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/grafana/pySigma-backend-loki/HEAD/.githooks/pre-commit -------------------------------------------------------------------------------- /.github/CODEOWNERS: -------------------------------------------------------------------------------- 1 | * @grafana/security-operations 2 | -------------------------------------------------------------------------------- /.github/dependabot.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/grafana/pySigma-backend-loki/HEAD/.github/dependabot.yml -------------------------------------------------------------------------------- /.github/workflows/codeql.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/grafana/pySigma-backend-loki/HEAD/.github/workflows/codeql.yml -------------------------------------------------------------------------------- /.github/workflows/integration.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/grafana/pySigma-backend-loki/HEAD/.github/workflows/integration.yml -------------------------------------------------------------------------------- /.github/workflows/mark-as-done.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/grafana/pySigma-backend-loki/HEAD/.github/workflows/mark-as-done.yaml -------------------------------------------------------------------------------- /.github/workflows/release.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/grafana/pySigma-backend-loki/HEAD/.github/workflows/release.yml -------------------------------------------------------------------------------- /.github/workflows/test.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/grafana/pySigma-backend-loki/HEAD/.github/workflows/test.yml -------------------------------------------------------------------------------- /.github/workflows/validate-renovate.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/grafana/pySigma-backend-loki/HEAD/.github/workflows/validate-renovate.yml -------------------------------------------------------------------------------- /.github/zizmor.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/grafana/pySigma-backend-loki/HEAD/.github/zizmor.yml -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/grafana/pySigma-backend-loki/HEAD/.gitignore -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/grafana/pySigma-backend-loki/HEAD/LICENSE -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/grafana/pySigma-backend-loki/HEAD/README.md -------------------------------------------------------------------------------- /agpl-3.0.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/grafana/pySigma-backend-loki/HEAD/agpl-3.0.txt -------------------------------------------------------------------------------- /getting_started.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/grafana/pySigma-backend-loki/HEAD/getting_started.md -------------------------------------------------------------------------------- /mypy.ini: -------------------------------------------------------------------------------- 1 | [mypy] 2 | ignore_missing_imports = True 3 | -------------------------------------------------------------------------------- /poetry.lock: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/grafana/pySigma-backend-loki/HEAD/poetry.lock -------------------------------------------------------------------------------- /pyproject.toml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/grafana/pySigma-backend-loki/HEAD/pyproject.toml -------------------------------------------------------------------------------- /renovate.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/grafana/pySigma-backend-loki/HEAD/renovate.json -------------------------------------------------------------------------------- /sigma/backends/loki/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/grafana/pySigma-backend-loki/HEAD/sigma/backends/loki/__init__.py -------------------------------------------------------------------------------- /sigma/backends/loki/deferred.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/grafana/pySigma-backend-loki/HEAD/sigma/backends/loki/deferred.py -------------------------------------------------------------------------------- /sigma/backends/loki/loki.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/grafana/pySigma-backend-loki/HEAD/sigma/backends/loki/loki.py -------------------------------------------------------------------------------- /sigma/pipelines/loki/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/grafana/pySigma-backend-loki/HEAD/sigma/pipelines/loki/__init__.py -------------------------------------------------------------------------------- /sigma/pipelines/loki/loki.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/grafana/pySigma-backend-loki/HEAD/sigma/pipelines/loki/loki.py -------------------------------------------------------------------------------- /sigma/shared.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/grafana/pySigma-backend-loki/HEAD/sigma/shared.py -------------------------------------------------------------------------------- /tests/sigma_backend_tester.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/grafana/pySigma-backend-loki/HEAD/tests/sigma_backend_tester.py -------------------------------------------------------------------------------- /tests/test_backend_loki.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/grafana/pySigma-backend-loki/HEAD/tests/test_backend_loki.py -------------------------------------------------------------------------------- /tests/test_backend_loki_add_line_filters.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/grafana/pySigma-backend-loki/HEAD/tests/test_backend_loki_add_line_filters.py -------------------------------------------------------------------------------- /tests/test_backend_loki_add_line_filters_case_insensitive.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/grafana/pySigma-backend-loki/HEAD/tests/test_backend_loki_add_line_filters_case_insensitive.py -------------------------------------------------------------------------------- /tests/test_backend_loki_case_sensitive.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/grafana/pySigma-backend-loki/HEAD/tests/test_backend_loki_case_sensitive.py -------------------------------------------------------------------------------- /tests/test_backend_loki_event_count_correlation.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/grafana/pySigma-backend-loki/HEAD/tests/test_backend_loki_event_count_correlation.py -------------------------------------------------------------------------------- /tests/test_backend_loki_field_modifiers.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/grafana/pySigma-backend-loki/HEAD/tests/test_backend_loki_field_modifiers.py -------------------------------------------------------------------------------- /tests/test_backend_loki_fieldref.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/grafana/pySigma-backend-loki/HEAD/tests/test_backend_loki_fieldref.py -------------------------------------------------------------------------------- /tests/test_backend_loki_value_count_correlation.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/grafana/pySigma-backend-loki/HEAD/tests/test_backend_loki_value_count_correlation.py -------------------------------------------------------------------------------- /tests/test_backend_negation_loki.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/grafana/pySigma-backend-loki/HEAD/tests/test_backend_negation_loki.py -------------------------------------------------------------------------------- /tests/test_pipelines_loki.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/grafana/pySigma-backend-loki/HEAD/tests/test_pipelines_loki.py -------------------------------------------------------------------------------- /tests/test_pysigma_integration.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/grafana/pySigma-backend-loki/HEAD/tests/test_pysigma_integration.py -------------------------------------------------------------------------------- /tests/test_sigma_cli_integration.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/grafana/pySigma-backend-loki/HEAD/tests/test_sigma_cli_integration.sh -------------------------------------------------------------------------------- /tests/test_sigma_rule.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/grafana/pySigma-backend-loki/HEAD/tests/test_sigma_rule.yml --------------------------------------------------------------------------------