Skip to content

Commit d6b17d0

Browse files
patel-bhavinpatel-bhavin
authored
Merge pull request #1010 from splunk/cisco_ios
adding snort test events for static tundra
2 parents adcb642 + 4654ed1 commit d6b17d0

File tree

2 files changed

+15
-0
lines changed

2 files changed

+15
-0
lines changed

datasets/cisco_secure_firewall_threat_defense/static_tundra/static_tundra.log

Lines changed: 3 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,3 @@
1+
version https://git-lfs.github.com/spec/v1
2+
oid sha256:37e5b7a2f14d0784ac0005bb6a71f446952e5552599d98bc2d47fcc9830bd45c
3+
size 4766

datasets/cisco_secure_firewall_threat_defense/static_tundra/static_tundra.yml

Lines changed: 12 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,12 @@
1+
author: Bhavin Patel, Michael Haag, Splunk
2+
id: 8d843885-584d-43ef-926c-03d04ec22639
3+
date: '2025-08-21'
4+
description: Synthetically generated datasets for testing Cisco Secure Firewall - Static Tundra Smart Install Abuse
5+
environment: manual simulations in a controlled lab environment
6+
mitre_technique:
7+
- T1190
8+
datasets:
9+
- name: static_tundra_snort_events
10+
path: /datasets/cisco_secure_firewall_threat_defense/static_tundra/static_tundra.log
11+
sourcetype: cisco:sfw:estreamer
12+
source: cisco:sfw:estreamer

0 commit comments

Comments
 (0)