add file event dataset for cisco sfw

nasbench · nasbench · commit d190f5823ac5 · 2025-04-08T17:13:25.000+02:00
diff --git a/datasets/cisco_secure_firewall_threat_defense/connection_event/connection_events.yml b/datasets/cisco_secure_firewall_threat_defense/connection_event/connection_events.yml
@@ -7,4 +7,4 @@ dataset:
 sourcetypes:
 - cisco:sfw:estreamer
 references:
-- https://www.cisco.com/c/en/us/td/docs/security/firepower/741/api/FQE/secure_firewall_estreamer_fqe_guide_740.pdf
+- https://www.cisco.com/c/en/us/td/docs/security/firepower/741/api/FQE/secure_firewall_estreamer_fqe_guide_740.pdf
diff --git a/datasets/cisco_secure_firewall_threat_defense/file_event/file_events.log b/datasets/cisco_secure_firewall_threat_defense/file_event/file_events.log
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:9fe21ea764d791a5c00a3a0f9d5e4853697b84183758d0ba167b81f5507b49e6
+size 3928
diff --git a/datasets/cisco_secure_firewall_threat_defense/file_event/file_events.yml b/datasets/cisco_secure_firewall_threat_defense/file_event/file_events.yml
@@ -0,0 +1,10 @@
+author: Nasreddine Bencherchali, Splunk
+id: 24d68f64-426a-4774-9282-e2d01f4ad5f3
+date: '2025-04-04'
+description: Generated datasets for Cisco Secure Firewall Threat Defense File Event EventType.
+dataset:
+- https://media.githubusercontent.com/media/splunk/attack_data/master/datasets/cisco_secure_firewall_threat_defense/file_event/file_events.log
+sourcetypes:
+- cisco:sfw:estreamer
+references:
+- https://www.cisco.com/c/en/us/td/docs/security/firepower/741/api/FQE/secure_firewall_estreamer_fqe_guide_740.pdf

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,3 @@`
	`1`	`+version https://git-lfs.github.com/spec/v1`
	`2`	`+oid sha256:9fe21ea764d791a5c00a3a0f9d5e4853697b84183758d0ba167b81f5507b49e6`
	`3`	`+size 3928`