Logo
  • What is Kestrel?
  • Installation And Setup
  • Threat Hunting Tutorial
  • Language Specification
    • Terminology and Concepts
    • Entity and Variable
    • Graph Pattern and Matching
    • Kestrel Command
    • Kestrel Interfaces
  • Configuration
  • Debug
  • Runtime API
  • Container Deployment
  • Theory Behind Kestrel
  • Talks and Demos
  • Contributing
  • Credits
Kestrel Threat Hunting Language
  • Language Specification
  • Edit on GitHub

Language Specification

  • Terminology and Concepts
    • Basic Terminology
    • Key Concepts
  • Entity and Variable
    • Entities in Kestrel
    • Kestrel Variable
    • Advanced Topics
  • Graph Pattern and Matching
    • Single Comparison Expression Pattern
    • Single Node Graph Pattern
    • Centered Graph Pattern
    • Pattern Matching Explained
    • Extended Centered Graph Pattern
    • Referring to a Variable
    • String and Raw String
    • Time Range
  • Kestrel Command
    • GET
    • FIND
    • NEW
    • APPLY
    • INFO
    • DISP
    • DESCRIBE
    • SORT
    • GROUP
    • SAVE
    • LOAD
    • ASSIGN
    • MERGE
    • JOIN
  • Kestrel Interfaces
    • Data Source Interfaces
    • Analytics Interfaces
Previous Next

© Copyright 2022 Open Cybersecurity Alliance. Revision 39d02388.

Built with Sphinx using a theme provided by Read the Docs.