This repository was archived by the owner on Dec 27, 2023. It is now read-only.
This repository was archived by the owner on Dec 27, 2023. It is now read-only.
[bug] eq operator =~ errors in Sentinel #4
Open
Description
Description
Hi! When converting windows/process_creation and applying the azure_windows pipeline, the expression EventID =~ 4688 triggers the following error in Sentinel: The operator '=~' is not defined for the operand types int and long.
Is this error normal? If not, changing the eq_token would probably resolve the issue.
Metadata
Metadata
Assignees
Labels
No labels