Handle mitre filters in queries

2026-04-29 23:49:33 +00:00 · 2024-08-06 16:58:52 +02:00 · 2024-08-06 16:58:52 +02:00 · 287c3e1806
commit 287c3e1806
parent 6d7e24e06a
3 changed files with 26 additions and 0 deletions
--- a/scripts/lua/modules/http_lint.lua
+++ b/scripts/lua/modules/http_lint.lua
@ -1994,6 +1994,10 @@ local known_parameters = {
   ["delete_vlan"] = validateSingleWord, -- A Traffic Profile to delete
   ["alert_id"] = validateListOfTypeInline(validateFilters(validateNumber)), -- An alert type enum
   ["alert_category"] = validateListOfTypeInline(validateFilters(validateNumber)), -- An alert category enum
+   ["mitre_id"] = validateListOfTypeInline(validateFilters(validateSingleWord)),
+   ["mitre_tactic"] = validateListOfTypeInline(validateFilters(validateNumber)),
+   ["mitre_technique"] = validateListOfTypeInline(validateFilters(validateNumber)),
+   ["mitre_subtechnique"] = validateListOfTypeInline(validateFilters(validateNumber)),
   ["description"] = validateUnquoted,
   ["alert_l7_proto"] = validateNumber, -- An alert l7 protocol
   ["alert_subtype"] = validateSingleWord, -- An alert subtype string