Skip to content

Navigation Menu

Explore
By company size
By use case
By industry
View all solutions
Topics
- AI
- DevOps
- Security
- Software Development
- View all
Explore
- GitHub Sponsors
  Fund open source developers
- The ReadME Project
  GitHub community articles
Repositories
- Enterprise platform
  AI-powered developer platform
Available add-ons
Pricing

Search code, repositories, users, issues, pull requests...

Search

Clear

Search syntax tips

Provide feedback

We read every piece of feedback, and take your input very seriously.

Include my email address so I can be contacted

Saved searches

Use saved searches to filter your results more quickly

Name

Query

To see all available qualifiers, see our documentation.

You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session. You switched accounts on another tab or window. Reload to refresh your session.

Dismiss alert

colvert-project / colvert Public

Notifications You must be signed in to change notification settings
Fork 0
Star 1

Code
Issues 15
Pull requests
Discussions
Actions
Projects
Security
Insights

Additional navigation options

Code
Issues
Pull requests
Discussions
Actions
Projects
Security
Insights

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Use Cases - Basics #12

Open

18 tasks

styx0x6 opened this issue Oct 21, 2024 · 1 comment

Open

18 tasks

Use Cases - Basics #12

styx0x6 opened this issue Oct 21, 2024 · 1 comment

Assignees

Labels

New main feature

Milestone

Comments

Copy link

Member

styx0x6 commented Oct 21, 2024 •

edited

Loading

Add / Delete / Modify Detection Use Cases:
- Including data from local and a provider (that will come later with connectors)
- New ideas.
  - Mapping ideas with implemented Use Cases when they appear from connector:
    - if 'not_implemented' status => Just a new DUC in the catalog.
    - if 'requested' or else to check => Should map a DEF the first time.
- Fields from vendor versus added-value fields.
- Added-value fields:
  - Use Cases scoring:
    - Basic Scoring System
  - Documentation as full rich text (What to detect, How to implement, How to test, Whitelists, etc.)
  - Ability to attach external documentation to Use Cases, or to set an external reference
  - Mapping and documentation of source logs (required events, required source)
  - Basic development planning & follow-up (in use case).
  - DUC related playbook for security analyst
    - Detection rule documentation: queries and threshold that permit to trigger the DUC
    - Runbook: analysis documentation used to launch a deeper analysis, queries, etc. to more understand the related context and launch the IR.
- Ability to store external general documentation, or to set an external reference
- Basic development planning & follow-up as a general overview (like Open Points tasks list)
- Search and filtering out in Detection Use Cases list

The text was updated successfully, but these errors were encountered:

All reactions

styx0x6 added the main feature New main feature label

styx0x6 self-assigned this

styx0x6 added this to the First Conceptual Basic Version milestone

Copy link

Member Author

styx0x6 commented Oct 22, 2024

https://github.com/colvert-project/colvert/blob/main/README.md#key-features

All reactions

Sorry, something went wrong.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Assignees

Labels

New main feature

Projects

None yet

Milestone

Version 0.1.0

Development

No branches or pull requests

1 participant

Footer

© 2025 GitHub, Inc.

Footer navigation

Terms
Privacy
Security
Status
Docs
Contact

You can’t perform that action at this time.