Skip to content

feat(soc-sentinelone): add SentinelOne V2 correlation and modeling rules#952

Merged
scottbrumley merged 1 commit into
mainfrom
chore/s1-rules
Jun 18, 2026
Merged

feat(soc-sentinelone): add SentinelOne V2 correlation and modeling rules#952
scottbrumley merged 1 commit into
mainfrom
chore/s1-rules

Conversation

@scottbrumley

Copy link
Copy Markdown
Contributor

No description provided.

- <rule>: <what it correlates / models>
- <rule>: <...>

Vendor pack holds correlation + modeling rules only — no
integrations, action playbooks, Universal Command bindings, or
normalizers (those are framework-level in soc-optimization-unified).

Not included:
- <any deferred rule / threat-scoped content and why>
@scottbrumley scottbrumley added the version:patch Bug fix or hotfix → x.x.N label Jun 18, 2026
@scottbrumley scottbrumley merged commit e3b13fc into main Jun 18, 2026
2 of 12 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

version:patch Bug fix or hotfix → x.x.N

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants