Skip to content

Commit 9bf521b

Browse files
nastasha-solomonnastasha-solomon
committed
Minor tweaks
1 parent f86f34d commit 9bf521b

File tree

5 files changed

+11
-11
lines changed

5 files changed

+11
-11
lines changed

docs/detections/alerts-view-details.asciidoc

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -67,13 +67,13 @@ The left panel provides an expanded view of what's shown in the right panel. To
6767
+
6868

6969
[role="screenshot"]
70-
image::images/expand-details-button.png[Expand details button at the top of the alert details flyout, 45%]
70+
image::images/expand-details-button.png[Expand details button at the top of the alert details flyout, 65%]
7171

7272
* Click one of the section titles on the **Overview** tab within the right panel.
7373
+
7474

7575
[role="screenshot"]
76-
image::images/alert-details-flyout-left-panel.png[Left panel of the alert details flyout, 45%]
76+
image::images/alert-details-flyout-left-panel.png[Left panel of the alert details flyout, 65%]
7777

7878
[discrete]
7979
[[about-section]]
@@ -201,7 +201,7 @@ From the right panel, click **Threat intelligence** to open the expanded Threat
201201
NOTE: The expanded threat intelligence view queries indices specified in the `securitySolution:defaultThreatIndex` advanced setting. Refer to <<update-threat-intel-indices, Update default Elastic Security threat intelligence indices>> to learn more about threat intelligence indices.
202202

203203
[role="screenshot"]
204-
image::images/expanded-threat-intelligence-view.png[Expanded view of threat intelligence on the alert, 70%]
204+
image::images/expanded-threat-intelligence-view.png[Expanded view of threat intelligence on the alert, 80%]
205205

206206
The expanded Threat intelligence view shows individual indicators within the alert document. You can expand and collapse indicator details by clicking the arrow button at the end of the indicator label. Each indicator is labeled with values from the `matched.field` and `matched.atomic` fields and displays the threat intelligence provider.
207207

@@ -256,7 +256,7 @@ NOTE: To access data about alerts related by process ancestry, you must have a h
256256
From the right panel, click **Correlations** to open the expanded Correlations view within the left panel.
257257

258258
[role="screenshot"]
259-
image::images/expanded-correlations-view.png[Expanded view of correlation data, 65%]
259+
image::images/expanded-correlations-view.png[Expanded view of correlation data, 75%]
260260

261261
In the expanded view, corelation data is organized into several tables:
262262

docs/events/timeline-ui-overview.asciidoc

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -101,7 +101,7 @@ TIP: Collapse the query builder to provide more space for Timeline results by cl
101101
Click a filter to access additional operations such as *Add filter*, *Clear all*, *Load saved query*, and more:
102102

103103
[role="screenshot"]
104-
image::images/timeline-ui-filter-options.png[width=30%]
104+
image::images/timeline-ui-filter-options.png[width=60%]
105105

106106
Here are examples of various types of filters:
107107

docs/serverless/alerts/view-alert-details.asciidoc

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -75,11 +75,11 @@ The left panel provides an expanded view of what's shown in the right panel. To
7575
* Click **Expand details** at the top of the right panel.
7676
+
7777
[role="screenshot"]
78-
image:images/view-alert-details/-detections-expand-details-button.png[Expand details button at the top of the alert details flyout, 45%]
78+
image:images/view-alert-details/-detections-expand-details-button.png[Expand details button at the top of the alert details flyout, 65%]
7979
* Click one of the section titles on the **Overview** tab within the right panel.
8080
+
8181
[role="screenshot"]
82-
image:images/view-alert-details/-detections-alert-details-flyout-left-panel.png[Left panel of the alert details flyout]
82+
image:images/view-alert-details/-detections-alert-details-flyout-left-panel.png[Left panel of the alert details flyout, 65%]
8383

8484
[discrete]
8585
[[about-section]]
@@ -210,7 +210,7 @@ The expanded threat intelligence view queries indices specified in the `security
210210
====
211211

212212
[role="screenshot"]
213-
image::images/view-alert-details/-detections-expanded-threat-intelligence-view.png[Expanded view of threat intelligence on the alert, 70%]
213+
image::images/view-alert-details/-detections-expanded-threat-intelligence-view.png[Expanded view of threat intelligence on the alert, 80%]
214214

215215
The expanded Threat intelligence view shows individual indicators within the alert document. You can expand and collapse indicator details by clicking the arrow button at the end of the indicator label. Each indicator is labeled with values from the `matched.field` and `matched.atomic` fields and displays the threat intelligence provider.
216216

@@ -266,7 +266,7 @@ The Correlations overview provides the following information:
266266
From the right panel, click **Correlations** to open the expanded Correlations view within the left panel.
267267

268268
[role="screenshot"]
269-
image::images/view-alert-details/-detections-expanded-correlations-view.png[Expanded view of correlation data, 65%]
269+
image::images/view-alert-details/-detections-expanded-correlations-view.png[Expanded view of correlation data, 75%]
270270

271271
In the expanded view, corelation data is organized into several tables:
272272

docs/serverless/investigate/timelines-ui.asciidoc

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -112,7 +112,7 @@ Collapse the query builder and provide more space for Timeline results by clicki
112112
Click a filter to access additional operations such as **Add filter**, **Clear all**, **Load saved query**, and more:
113113

114114
[role="screenshot"]
115-
image::images/timelines-ui/-events-timeline-ui-filter-options.png[width=30%]
115+
image::images/timelines-ui/-events-timeline-ui-filter-options.png[width=60%]
116116

117117
Here are examples of various types of filters:
118118

docs/serverless/rules/interactive-investigation-guides.asciidoc

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -9,7 +9,7 @@ preview:[]
99
Detection rule investigation guides suggest steps for triaging, analyzing, and responding to potential security issues. For custom rules, you can create an interactive investigation guide that includes buttons for launching runtime queries in <<security-timelines-ui,Timeline>>, using alert data and hard-coded literal values. This allows you to start detailed Timeline investigations directly from an alert using relevant data.
1010

1111
[role="screenshot"]
12-
image::images/interactive-investigation-guides/-detections-ig-alert-flyout.png[Alert details flyout with interactive investigation guide]
12+
image::images/interactive-investigation-guides/-detections-ig-alert-flyout.png[Alert details flyout with interactive investigation guide,400]
1313

1414
Under the Investigation section, click **Show investigation guide** to open the **Investigation** tab in the left panel of the alert details flyout.
1515

0 commit comments

Comments
 (0)