You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
DOCS-587 - Make terms lowercase in Cloud SIEM - Getting started, records, ingestion, and rules sections (#4887)
* Make terms lowercase in 'Get Started' section
* Change terms to lowercase in 'Records, Signals, Entities, and Insights' section
* Make terms lowercase in 'Ingestion' section
* Make terms lowercase in 'Rules' section
* Fix spelling error
@@ -39,7 +39,7 @@ Here’s one row from the List view. The numbered definitions below correspond t
39
39
1.**Global Confidence**. If sufficient data is available, a [Global Confidence score](/docs/cse/records-signals-entities-insights/global-intelligence-security-insights/) for the insight is shown.
40
40
1.**Assignee**. The analyst assigned to the Incident.
41
41
1. The [MITRE ATT&CK](https://attack.mitre.org/) tactics and techniques exhibited by the insight.
42
-
1.**Severity**. The severity of the insight. The value is a function of the configured Entity Activity Score threshold for insight generation. For more information, see [About Insight Severity](/docs/cse/get-started-with-cloud-siem/insight-generation-process#about-insight-severity).
42
+
1.**Severity**. The severity of the insight. The value is a function of the configured entity activity score threshold for insight generation. For more information, see [About insight severity](/docs/cse/get-started-with-cloud-siem/insight-generation-process#about-insight-severity).
43
43
1.**Entity**. The entity associated with the insight.
44
44
1.**Signal Data**. This area has three bits of information:
45
45
* The count of signals that caused the insight to be created.
@@ -62,7 +62,7 @@ You can switch back to the list view by clicking the **Show List** icon, near th
62
62
You can use the **Filters** area near the top of the page to narrow down the insights that appear on the insights page. You can filter by:
1.**Actions.** The [Insight Actions](/docs/cse/administration/create-cse-actions#insight-actions) defined in your environment.
94
+
1.**Actions.** The [insight actions](/docs/cse/administration/create-cse-actions#insight-actions) defined in your environment.
95
95
1.**Close Insight.** Use this option to close an insight. When you click this option, you’re prompted to select an insight resolution.
96
96
1.**Delete Icon.** Use this option to delete an insight. You’ll be prompted to confirm your choice.
97
97
1.**Status.** Current status of the insight.
@@ -138,7 +138,7 @@ Below the signal timeline, you’ll see a list of signals. By default, only atta
138
138
139
139
<img src={useBaseUrl('img/cse/signal-list-area.png')} alt="Signal list area" style={{border: '1px solid gray'}} width="600"/>
140
140
141
-
1.**Remove** button. Removes multiple signals selected with the checkbox. You cannot select all signals for removal. If you do, the **Remove** button is disabled and this message appears when you hover over it with your mouse: **Bulk removal of signals is disabled as a minimum of 1 signal must be attached to the Insight. Deselect 1 or more signals to enable bulk removal.**
141
+
1.**Remove** button. Removes multiple signals selected with the checkbox. You cannot select all signals for removal. If you do, the **Remove** button is disabled and this message appears when you hover over it with your mouse: **Bulk removal of signals is disabled as a minimum of 1 signal must be attached to the insight. Deselect 1 or more signals to enable bulk removal.**
142
142
1.**Checkbox**. Click to select multiple signals for removal.
143
143
1.**Signal name**. Click to view signal details.
144
144
1.**Remove** button. Removes an individual signal.
@@ -255,8 +255,8 @@ When you select an entity on the page, the right pane displays details about tha
255
255
* Geographic location
256
256
* Suppression Status
257
257
* Tags
258
-
*[Entity Criticality](/docs/cse/records-signals-entities-insights/entity-criticality), if it is set to something other than the default
259
-
* Metadata such as geographic location, Inventory information, the [Network Blocks](/docs/cse/administration/create-use-network-blocks) it falls within, as applicable, and so on.
258
+
*[Entity criticality](/docs/cse/records-signals-entities-insights/entity-criticality), if it is set to something other than the default
259
+
* Metadata such as geographic location, Inventory information, the [network blocks](/docs/cse/administration/create-use-network-blocks) it falls within, as applicable, and so on.
260
260
* A signal graph if the entity was the primary entity in any signals during the detection window (time/date is the horizontal axis and severity of each signal is the vertical axis; the icon/color for each point depends on the signal type)
261
261
* Lists of the recent signals and insights the entity has been associated with, and links to each object’s details page.
Copy file name to clipboardExpand all lines: docs/cse/get-started-with-cloud-siem/cloud-siem-content-catalog.md
+1-1Lines changed: 1 addition & 1 deletion
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -7,7 +7,7 @@ description: The Cloud SIEM Content Catalog shows the out-of-the-box Rules, Sche
7
7
8
8
import useBaseUrl from '@docusaurus/useBaseUrl';
9
9
10
-
The Cloud SIEM Content Catalog is a public GitHub repository of Cloud SIEM's Rules, Schema, Mappings, and Parsers. This repository serves as a single place to view Cloud SIEM content in both markdown form and CSVs. This catalog is automatically generated based on content included out-of-the-box as it is released.
10
+
The Cloud SIEM Content Catalog is a public GitHub repository of Cloud SIEM's rules, schema, mappings, and parsers. This repository serves as a single place to view Cloud SIEM content in both markdown form and CSVs. This catalog is automatically generated based on content included out-of-the-box as it is released.
0 commit comments