Skip to content

Commit

Permalink
docs: update misp & thehive docs [skip ci]
Browse files Browse the repository at this point in the history
  • Loading branch information
ninoseki committed Jul 13, 2024
1 parent bd7f60f commit e3d6910
Show file tree
Hide file tree
Showing 2 changed files with 38 additions and 0 deletions.
19 changes: 19 additions & 0 deletions docs/emitters/hive.md
Original file line number Diff line number Diff line change
Expand Up @@ -8,6 +8,7 @@ This emitter creates an alert on TheHive. TheHive v5 is supported.
emitter: thehive
url: ...
api_key: ...
observable_tags: ...
```
## Components
Expand All @@ -27,3 +28,21 @@ api_key: ...
!!! note

`tags` of a rule are set as tags of an alert.

```yaml
id: ...
title: ...
description: ...
tags: # tags for an alert
- foo
queries:
- analyzer: ...
query: ...
emitters:
- emitter: database
- emitter: thehive
url: ...
api_key: ...
observable_tags: # tags for observable(s)
- bar
```
19 changes: 19 additions & 0 deletions docs/emitters/misp.md
Original file line number Diff line number Diff line change
Expand Up @@ -8,6 +8,7 @@ This emitter creates an event on MISP based on an alert. MISP v2 is supported.
emitter: misp
url: ...
api_key: ...
attribute_tags: ...
```
## Components
Expand All @@ -27,3 +28,21 @@ api_key: ...
!!! note

`tags` of a rule are set as tags of an event.

```yaml
id: ...
title: ...
description: ...
tags: # tags for an event
- foo
queries:
- analyzer: ...
query: ...
emitters:
- emitter: database
- emitter: misp
url: ...
api_key: ...
observable_tags: # tags for attribute(s)
- bar
```

0 comments on commit e3d6910

Please sign in to comment.