Sigma Alert Group Metrics not working #14217
Replies: 1 comment
-
|
Here the log for the query |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
-
Hi, I'm on SO 2.4.110
I have problem with group metrics on sigma alerts, suricata works fine but sigma seems in some way broken
I added the * after event.module, event.security_label and rule.uuid and see the data as *Missing, but in the Alerts section I have data with all the fields populated.
On Kibana I see no mapping conflicts or other errors.
Here a screenshot of the problem.
Beta Was this translation helpful? Give feedback.
All reactions