Labels

• ci

  Anything CI (Continuous Integration) related
• dependencies

  Pull requests that update a dependency file
• deps

  Anything related to dependencies
• events: alpc

  Anything related to ALPC events
• events: driver

  Anything related to driver events
• events: mem

  Anything related to memory events
• github_actions

  Pull requests that update GitHub Actions code
• good first issue
• needs: config

  Indicates the issue requires changes in the config file/flags
• needs: docs

  Indicates that the issue needs documentation updates
• needs: filters

  Indicates that new filters should be added
• output: kafka

  Anything related to Kafka output
• output: mongo

  Anything related to Mongo output
• output: splunk

  Anything related to Splunk output
• rule-engine

  Anything related to the rule engine
• rules

  Anything related to detection rules
• scope: alertsenders

  Anything related to alert senders
• scope: capture

  Anything related to captures
• scope: cli

  Anything related to CLI
• scope: config

  Anything related to config management
• scope: events

  Anything related to kernel events
• scope: filaments

  Anything related to filaments
• scope: filters

  Anything related to filters
• scope: handle

  Anything related to handles
• scope: installer

  Anything installer related
• scope: outputs

  Anything related to output sinks
• scope: pe

  Anything related to PE introspection
• scope: process

  Anything related to process state
• scope: rate limiting

  Anything related to rate limiting features
• scope: serializers

  Anything related to serializers