langchain/docs/extras/integrations/document_loaders/example_data/fake_rule.toml

[internal]
creation_date = "2023-05-01"
updated_date = "2022-05-01"
release = ["release_type"]
min_endpoint_version = "some_semantic_version"
os_list = ["operating_system_list"]

[rule]
uuid = "some_uuid"
name = "Fake Rule Name"
description = "Fake description of rule"
query = '''
process where process.name : "somequery"
'''

[[rule.threat]]
framework = "MITRE ATT&CK"

  [rule.threat.tactic]
  name = "Execution"
  id = "TA0002"
  reference = "https://attack.mitre.org/tactics/TA0002/"
Harrison/toml loader (#4090) Co-authored-by: Mika Ayenson <Mikaayenson@users.noreply.github.com> 2023-05-04 06:14:39 +00:00			`[internal]`
			`creation_date = "2023-05-01"`
			`updated_date = "2022-05-01"`
			`release = ["release_type"]`
			`min_endpoint_version = "some_semantic_version"`
			`os_list = ["operating_system_list"]`

			`[rule]`
			`uuid = "some_uuid"`
			`name = "Fake Rule Name"`
			`description = "Fake description of rule"`
			`query = '''`
			`process where process.name : "somequery"`
			`'''`

			`[[rule.threat]]`
			`framework = "MITRE ATT&CK"`

			`[rule.threat.tactic]`
			`name = "Execution"`
			`id = "TA0002"`
			`reference = "https://attack.mitre.org/tactics/TA0002/"`