Skip to main content

Roadmap

v1.1 - Validation and Schemas

Expand JSON Schemas for all core registers.
Add stricter Sigma and SIEM query validation.
Add automated ATT&CK mapping checks.

v1.2 - Replay and Telemetry

Add replay examples for Splunk, Sentinel, and Elastic.
Add OCSF and ECS telemetry schema examples.
Add detection-as-code CI examples.

v1.3 - Multi-Scenario Library

Add additional worked cases for endpoint, SaaS, identity, and network telemetry.
Add scenario comparison and prioritization examples.

Future Modules

MISP export examples.
STIX 2.1 bundle examples.
TAXII publication pattern.
Purple-team replay package.
PDF/EPUB book build pipeline.

v1.1 - Validation and Schemas
v1.2 - Replay and Telemetry
v1.3 - Multi-Scenario Library
Future Modules