Config Hive¶
The Config Hive is LimaCharlie's hierarchical configuration store. It provides a centralized way to manage configurations that can be referenced across the platform.
Hive Types¶
- D&R Rules - Detection and response rule storage
- Lookups - Key-value lookup tables for enrichment
- Secrets - Secure credential management
- YARA - YARA rule storage and management
- Cloud Sensors - Cloud sensor configurations
- Investigation - Investigation data storage
Usage¶
Hive records can be:
- Referenced in D&R rules using the
hive://prefix - Managed via the web interface, CLI, or API
- Version controlled using the Git Sync extension