Mika Ayenson, PhD

icon indicating a website link https://ayenson.com

icon company @elastic icon location Elastic Threat Research & Detection Engineering - Team Lead🏴‍☠️

Results 12 issues of Mika Ayenson, PhD

Update HTTPsC2DoneRight.sh

1 comment

Add support for code signing.

[FR] Add TomlLoader document loader

1 comment

# Summary Adds a new document loader called `TomlLoader` which loads toml files (either file or directory of toml files). ## Usage ```python from from langchain.document_loaders import TomlLoader # Initialize...

lgtm

AttributeError: can't set attribute (on option attribute)

4 comment

```python >>> from metasploit.msfrpc import MsfRpcClient >>> client = MsfRpcClient('1oP619Xd', server='10.0.0.42', port=55553, ssl=False) >>> client.modules.use('exploit', 'exploit/windows/smb/ms08_067_netapi') Traceback (most recent call last): File "", line 1, in client.modules.use('exploit', 'osx/browser/software_update') File "/Library/Python/2.7/site-packages/metasploit/msfrpc.py",...

[FR] Deprecate Experimental ML Logic

4 comment

### Repository Feature Core Repo - (rule management, validation, testing, lib, cicd, etc.) ### Problem Description We still have logic marked as experimental within our repo that should be deprecated...

enhancement
Team: TRADE

[Meta] Refactor Rule Loader and Validation for Optimizations

2 comment

## Parent Epic (If Applicable) https://github.com/elastic/security-team/issues/8718 ## Meta Summary The detection rules loader is extremely slow. While we're planning on tackling the loader for potential optimizations, we should clean up...

enhancement
python
backlog
Team: TRADE
Meta

[Bug] Missing Related Integrations and Required Fields for ESQL Rules

2 comment

### Describe the Bug Since we do not have an ESQL parser that can pull out `event.datasource` and we do not include `index` since it is duplicative with the query,...

bug
Team: TRADE

Review Linux and macOS rules for Endgame compatibility

3 comment

## Description Review rules for Endgame compatibility and add index. - Create an endgame stack for testing purposes. - Check datasets and make sure our rule query aligns. - Check...

OS: Linux
OS: macOS
Rule: Tuning
backlog

[FR] Unit Test for elastic_endpoint_security Rule ID Change

### Repository Feature Core Repo - (rule management, validation, testing, lib, cicd, etc.) ### Problem Description Based on recent changes in Kibana, the solution now expects us to preserve the...

enhancement
Team: TRADE

[FR] Create Unit Test for non-ecs-schema.json

1 comment

**Is your feature request related to a problem? Please describe.** https://github.com/elastic/detection-rules/pull/2319 https://github.com/elastic/detection-rules/pull/2319#pullrequestreview-1116099473 **Describe the solution you'd like** - Unit test to check for duplicates - Check if the field is...

enhancement
python
backlog

[New Rules] Add MITRE ATLAS framework support and GenAI threat detection rules

6 comment

# Pull Request *Issue link(s)*: Related https://github.com/elastic/security-team/issues/9809 ## Summary - What I changed This PR adds MITRE ATLAS framework support to the detection-rules repository and introduces five new Generative AI...

enhancement
Rule: New
python
patch