Expand description
PostgreSQL/TimescaleDB backend for Sigma rule conversion.
Converts Sigma detection rules into PostgreSQL SQL queries, leveraging
PostgreSQL-native features: ILIKE for case-insensitive matching,
~*/~ for regex, inet/cidr for network address matching,
tsvector/tsquery for full-text keyword search, and JSONB for
semi-structured event data.
Structs§
- Postgres
Backend - PostgreSQL/TimescaleDB backend for Sigma rule conversion.