Skip to content

Commit 2bd425d

Browse files
committed
Merge branch 'main' into megha-mdelinuxarm
2 parents e832fa3 + 497b600 commit 2bd425d

21 files changed

+41
-37
lines changed

CloudAppSecurityDocs/api-alerts.md

Lines changed: 0 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -53,7 +53,6 @@ The response object defines the following properties.
5353
| intent | list | A field that specifies the kill chain related intent behind the alert. Multiple values can be reported in this field. The **intent** enumeration values follow the [MITRE att@ck enterprise matrix model](https://attack.mitre.org/matrices/enterprise/). Further guidance on the different techniques that make up each intent can be found in MITRE's documentation.<br> Possible values include:<br/><br>**0**: UNKNOWN<br />**1**: PREATTACK<br />**2**: INITIAL_ACCESS<br />**3**: PERSISTENCE<br />**4**: PRIVILEGE_ESCALATION<br />**5**: DEFENSE_EVASION<br />**6**: CREDENTIAL_ACCESS<br />**7**: DISCOVERY<br />**8**: LATERAL_MOVEMENT<br />**9**: EXECUTION<br />**10**: COLLECTION<br />**11**: EXFILTRATION<br />**12**: COMMAND_AND_CONTROL<br />**13**: IMPACT |
5454
| isPreview | bool | Alerts that have been recently released as GA |
5555
| audits *(optional)* | list | List of event IDs that are related to the alert |
56-
| threatScore | int | User investigation priority |
5756

5857
## Filters
5958

CloudAppSecurityDocs/api-entities.md

Lines changed: 0 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -37,6 +37,5 @@ The following table describes the supported filters:
3737
| domain | string | eq, neq, isset, isnotset | The entity's related domain |
3838
| organization | string | eq, neq, isset, isnotset | Filter entities with the specified organization unit |
3939
| status | string | eq, neq | Filter entities by status. Possible values include:<br /><br />**0**: N/A<br />**1**: Staged<br />**2**: Active<br />**3**: Suspended<br />**4**: Deleted |
40-
| score | integer | lt, gt, isset, isnotset | Filter entities by their Investigation Priority Score |
4140

4241
[!INCLUDE [Open support ticket](includes/support.md)]

defender-xdr/advanced-hunting-devicebaselinecomplianceassessment-table.md

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -45,7 +45,7 @@ For information on other tables in the advanced hunting schema, see [the advance
4545
| `OSVersion` | `string` | Version of the operating system running on the device |
4646
| `ConfigurationId` | `string` | Unique identifier for a specific configuration |
4747
| `ProfileId` | `string` | Unique identifier for the profile |
48-
| `IsCompliant` | `nullable` | Indicates whether the device that initiated the event is compliant or not |
48+
| `IsCompliant` | `nullable bool` | Indicates whether the device that initiated the event is compliant or not |
4949
| `IsApplicable` | `boolean` | Indicates whether the configuration or policy is applicable |
5050
| `Source` | `dynamic` | The registry path or other location used to determine the current device setting |
5151
| `RecommendedValue` | `dynamic` | Set of expected values for the current device setting to be compliant |
41.1 KB
Loading
114 KB
Loading
41.8 KB
Loading
110 KB
Loading
34.5 KB
Loading
84 KB
Loading
37.6 KB
Loading

0 commit comments

Comments
 (0)