mirror of
https://github.com/wazuh/wazuh-indexer-plugins.git
synced 2026-02-03 18:57:39 -06:00
b9c38fe477
* Add a design definition for resources managing API * Add fields for cti iocs * Add url iocs * Add IoCs to modules_list.txt * Add CTI IoC to schema generator script * Fix issues in subset.yml * Generate templates * Update module list * Update CHANGELOG.md * Update field counting script to use the new template format * Add field count to templates * Fix module list order * Fix module list order * Update the Wazuh Common Schema * Unify IoCs into single index * Modify scripts * delete per-ioc templates * Code clean-up * Update the Wazuh Common Schema * Fix subset.yml format * Fix subset format * Fix subset format * Modify index pattern * Update the Wazuh Common Schema * Add missing fields * Update the Wazuh Common Schema * Add all hash types * Update the Wazuh Common Schema * Use wildcard for hashes --------- Co-authored-by: Wazuh Indexer Bot <github_devel_xdrsiem_indexer@wazuh.com>
Wazuh Common Schema
Overview
The Wazuh Common Schema is a derivation of the Elastic Common Schema (ECS) providing a common data schema for the different central components of Wazuh.
The Wazuh Common Schema is structured in modules. For a detailed list of the available fields in a module and their description, please refer to the docs/ folder of the module. For example, states-inventory-packages.
References
Developer guide
Refer to the WCS generator documentation for details on how to generate and update the Wazuh Common Schema.