LICENSE
README.md
pyproject.toml
src/logstory/__init__.py
src/logstory/logstory.py
src/logstory/logtypes_entities_timestamps.yaml
src/logstory/logtypes_events_timestamps.yaml
src/logstory/main.py
src/logstory.egg-info/PKG-INFO
src/logstory.egg-info/SOURCES.txt
src/logstory.egg-info/dependency_links.txt
src/logstory.egg-info/entry_points.txt
src/logstory.egg-info/requires.txt
src/logstory.egg-info/top_level.txt
src/logstory/usecases/__init__.py
src/logstory/usecases/NETWORK_ANALYSIS/NETWORK_ANALYSIS.md
src/logstory/usecases/NETWORK_ANALYSIS/__init__.py
src/logstory/usecases/NETWORK_ANALYSIS/EVENTS/BRO_JSON.log
src/logstory/usecases/NETWORK_ANALYSIS/RULES/network_analysis.yl2
src/logstory/usecases/NETWORK_ANALYSIS/SEARCH/Zeek_Investigative_Search.json
src/logstory/usecases/RULES_SEARCH_WORKSHOP/RULES_SEARCH_WORKSHOP.md
src/logstory/usecases/RULES_SEARCH_WORKSHOP/ENTITIES/WINDOWS_AD.log
src/logstory/usecases/RULES_SEARCH_WORKSHOP/EVENTS/POWERSHELL.log
src/logstory/usecases/RULES_SEARCH_WORKSHOP/EVENTS/WINDOWS_DEFENDER_AV.log
src/logstory/usecases/RULES_SEARCH_WORKSHOP/EVENTS/WINDOWS_SYSMON.log
src/logstory/usecases/RULES_SEARCH_WORKSHOP/EVENTS/WINEVTLOG.log
src/logstory/usecases/RULES_SEARCH_WORKSHOP/PARSER_EXTENSIONS/WINDOWS_AD.proto
src/logstory/usecases/RULES_SEARCH_WORKSHOP/RULES/mitre_attack_T1021_002_windows_admin_share_basic.yl2
src/logstory/usecases/RULES_SEARCH_WORKSHOP/RULES/rw_mimikatz_T1003.yl2
src/logstory/usecases/RULES_SEARCH_WORKSHOP/RULES/win_password_spray.yl2
src/logstory/usecases/RULES_SEARCH_WORKSHOP/RULES/win_repeatedAuthFailure_thenSuccess.yl2
tests/test_logstory.py
tests/test_yaml.py