[Detection Rules] Adding Documents for v8.13.22 Pre-Built Detection Rules #6101
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
* brings page to parity with ESS * minor tweak * Update docs/cloud-native-security/vuln-management-findings.mdx Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/cloud-native-security/cspm-findings-page.mdx Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/cloud-native-security/vuln-management-findings.mdx Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/cloud-native-security/vuln-management-findings.mdx Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/cloud-native-security/vuln-management-findings.mdx Co-authored-by: Nastasha Solomon <[email protected]> * incorporates Stash's feedback --------- Co-authored-by: Nastasha Solomon <[email protected]>
* adds knowledge base content * fixes build error * minor edit
…le types (#321) * First draft * Fixing conflict * Minor typo * Adding input from Vitalii * Update docs/alerts/alert-suppression.mdx * Update docs/alerts/alert-suppression.mdx Co-authored-by: Benjamin Ironside Goldstein <[email protected]> * Update docs/alerts/alert-suppression.mdx Co-authored-by: Benjamin Ironside Goldstein <[email protected]> * Update docs/alerts/alert-suppression.mdx Co-authored-by: Benjamin Ironside Goldstein <[email protected]> * Adding suppression steps * Vitalii's feedback * Update docs/alerts/alert-suppression.mdx * Update docs/alerts/alert-suppression.mdx * Update docs/alerts/alert-suppression.mdx Co-authored-by: Benjamin Ironside Goldstein <[email protected]> * Update docs/alerts/alert-suppression.mdx --------- Co-authored-by: Benjamin Ironside Goldstein <[email protected]>
…e types (#5057) * Update alert-suppression.asciidoc * Update docs/detections/alert-suppression.asciidoc * Adding more to draft * Minor typo * Aligning with Serverless docs * Update docs/detections/alert-suppression.asciidoc Co-authored-by: Ryland Herrick <[email protected]> * Update docs/detections/api/rules/rules-api-create.asciidoc * Updating update api * Fixed formatting error * Ben's input pt 1 * Ref suppression docs Ref suppression docs in steps for creating new terms and eql rules * Re-adding content to avoid conflict * Update docs/detections/api/rules/rules-api-create.asciidoc * Updating titles * Vitalii's input * ben's input * Update docs/detections/api/rules/rules-api-update.asciidoc Co-authored-by: Benjamin Ironside Goldstein <[email protected]> * Update docs/detections/api/rules/rules-api-create.asciidoc Co-authored-by: Benjamin Ironside Goldstein <[email protected]> * Update docs/detections/alert-suppression.asciidoc Co-authored-by: Benjamin Ironside Goldstein <[email protected]> * Update docs/detections/api/rules/rules-api-create.asciidoc Co-authored-by: Benjamin Ironside Goldstein <[email protected]> * Update docs/detections/api/rules/rules-api-update.asciidoc Co-authored-by: Benjamin Ironside Goldstein <[email protected]> --------- Co-authored-by: Ryland Herrick <[email protected]> Co-authored-by: Benjamin Ironside Goldstein <[email protected]>
…custom query rule (#330) * First draft * Removes tp badge from custom rules * Removing tag from custom rule
…ustom query rule (#5114) * Updates tech preview text * Removing tag from custom query rule * Reverting change to lang Suppression page has the updated tech preview label lang. No need to change it elsewhere. * Update docs/detections/rules-ui-create.asciidoc Co-authored-by: Joe Peeples <[email protected]> * Update docs/detections/rules-ui-create.asciidoc Co-authored-by: Joe Peeples <[email protected]> --------- Co-authored-by: Joe Peeples <[email protected]>
* Asset criticality file upload * Updates navigation --------- Co-authored-by: Joe Peeples <[email protected]>
Co-authored-by: Joe Peeples <[email protected]>
* First draft * Remove support section (belongs in general docs) * Edits * Apply suggestions from review Co-authored-by: DeDe Morton <[email protected]> * Removed sections * Rename to "billing", other lil fix * Change headings to title case to match UI options --------- Co-authored-by: Kaarina Tungseth <[email protected]> Co-authored-by: DeDe Morton <[email protected]>
* First draft * Additional revisions * Update docs/release-notes/8.13.asciidoc Co-authored-by: Joe Peeples <[email protected]> * vitalii's input --------- Co-authored-by: Joe Peeples <[email protected]>
* Creates new page detailing Bedrock connector setup * Update docs/assistant/connect-to-bedrock.asciidoc Co-authored-by: Joe Peeples <[email protected]> * Update docs/assistant/connect-to-bedrock.asciidoc Co-authored-by: Joe Peeples <[email protected]> * Update docs/assistant/connect-to-bedrock.asciidoc Co-authored-by: Joe Peeples <[email protected]> * Update docs/assistant/connect-to-bedrock.asciidoc Co-authored-by: Joe Peeples <[email protected]> * adds information about provisioned throughput * sentence edits * incorporates Charles' review * adds context to each section * adds video embeds * Update docs/assistant/connect-to-bedrock.asciidoc * Update docs/assistant/connect-to-bedrock.asciidoc * Update docs/assistant/connect-to-bedrock.asciidoc * Update docs/assistant/connect-to-bedrock.asciidoc * minor format fix * update heading * Update docs/assistant/connect-to-bedrock.asciidoc * Formatting fix --------- Co-authored-by: Joe Peeples <[email protected]>
* Adds step by step instructions for connecting to Azure OpenAI * adjust headings * fixes slug * adds intro paragraph * Update docs/assistant/azure-openai-setup.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/assistant/azure-openai-setup.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/assistant/azure-openai-setup.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/assistant/azure-openai-setup.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/assistant/azure-openai-setup.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/assistant/azure-openai-setup.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Incorporates Charles' review. Thanks Charles! * line edit * Update docs/assistant/azure-openai-setup.asciidoc Co-authored-by: Janeen Mikell Roberts <[email protected]> * Update docs/assistant/azure-openai-setup.asciidoc Co-authored-by: Janeen Mikell Roberts <[email protected]> * Update docs/assistant/azure-openai-setup.asciidoc Co-authored-by: Janeen Mikell Roberts <[email protected]> --------- Co-authored-by: Nastasha Solomon <[email protected]> Co-authored-by: Janeen Mikell Roberts <[email protected]>
* [Detection Engine] removes tech preview from ES|QL rule type * Removing additional preview labels * Removes note about FF * Re-adding Timeline content Keeping this PR to rule-related changes only * Moving para to correct place --------- Co-authored-by: nastasha.solomon <[email protected]> Co-authored-by: Nastasha Solomon <[email protected]>
* Updates requirements section for CNVM and CSPM * minor updates - adds attribute
* adds requirement to CNVM and CSPM pages * updates KSPM req
* First draft * Re-ordering * Adding image * Adds comma * Examples of KQL queries * Reordering info * Updating text and images * Additional screenshot updates * Update docs/rules/value-lists-exceptions.mdx Co-authored-by: natasha-moore-elastic <[email protected]> * Update docs/rules/value-lists-exceptions.mdx * Ksennia's input * Update docs/rules/value-lists-exceptions.mdx * Joe's input --------- Co-authored-by: natasha-moore-elastic <[email protected]>
…tant's ES|QL-query-generating functionality (#339) * First draft * Small style fix * Update docs/assistant/ai-assistant.mdx
* First draft * Fix
…ant's ES|QL-query-generating functionality (#5105)
#341) * First draft * Refreshing screenshots * Refreshed gif * Fixed reference * Fixed ref and formatting * Re-adds screenshot * Re-refreshed images * ESQL image
…to GA (#5139) * Removing notes for tab and ES|QL * Removed tech preview note * Refreshed images * Updates gif * Re-added intro * First batch of re-refreshed images * Updated ES|QL tab image
* Adds LLM connector step-by-step guides * minor edits * fix heading sizes * finishes UI updates for AI Assistant page * troubleshoot embedded video * updates video embeds * updates old gif * Incorporates Dhru's feedback * incorporates Joe's feedback on openAI onboarding doc * Update docs/assistant/ai-assistant.mdx Co-authored-by: Joe Peeples <[email protected]> * Update docs/assistant/ai-assistant.mdx Co-authored-by: Joe Peeples <[email protected]> --------- Co-authored-by: Joe Peeples <[email protected]>
* incorporates Dhru's first review * Adds page for OpenAI connector setup * Minor edit * Update docs/assistant/connect-to-openai.asciidoc Co-authored-by: Joe Peeples <[email protected]> * Update docs/assistant/connect-to-openai.asciidoc Co-authored-by: Joe Peeples <[email protected]> * removes unused image --------- Co-authored-by: Joe Peeples <[email protected]>
* creates stub page * updates feature name * update screenshot * Adds Attack Discovery ESS page * adds attack discovery to index * troubleshoots build error * troubleshoots ToC issue * troubleshoots build errors * incorporates Joe's edits --------- Co-authored-by: Janeen Mikell Roberts <[email protected]>
* first draft * troubleshoots docnav * updates Docnav * incorporates Dhru's feedback * minor edits * line edit * Removes unnecessary link * Update docs/attack-discovery/attack-discovery.mdx Co-authored-by: Janeen Mikell Roberts <[email protected]> * Update docs/attack-discovery/attack-discovery.mdx Co-authored-by: Janeen Mikell Roberts <[email protected]> * Update docs/attack-discovery/attack-discovery.mdx Co-authored-by: Janeen Mikell Roberts <[email protected]> * Update docs/attack-discovery/attack-discovery.mdx Co-authored-by: Janeen Mikell Roberts <[email protected]> * Update docs/attack-discovery/attack-discovery.mdx Co-authored-by: Janeen Mikell Roberts <[email protected]> * Update docs/attack-discovery/attack-discovery.mdx Co-authored-by: Janeen Mikell Roberts <[email protected]> * Update docs/attack-discovery/attack-discovery.mdx Co-authored-by: Janeen Mikell Roberts <[email protected]> * Update docs/attack-discovery/attack-discovery.mdx Co-authored-by: Janeen Mikell Roberts <[email protected]> * incorporates Janeen's review * Update docs/attack-discovery/attack-discovery.mdx Co-authored-by: Nastasha Solomon <[email protected]> * incorporates Nastasha's feedback * removes unnecessary link * Incorporates Joe's review * Adds note to AI Assistant page * fixes note * minor updates * moves period * adds missing "to" * Incorporates Janeen's feedback --------- Co-authored-by: Janeen Mikell Roberts <[email protected]> Co-authored-by: Nastasha Solomon <[email protected]>
* First draft * Hide note (doesn't apply to serverless?) * Update docs/rules/rules-ui-create.mdx Co-authored-by: Nastasha Solomon <[email protected]> * Remove hidden note * Revise alert suppression refs of max_signals * Fix repetition typo * Update docs/alerts/alert-suppression.mdx Co-authored-by: Benjamin Ironside Goldstein <[email protected]> --------- Co-authored-by: Nastasha Solomon <[email protected]> Co-authored-by: Benjamin Ironside Goldstein <[email protected]>
* Revises 8.x-8.x upgrade guide * Address editorial feedback * Applies feedback to 7.17 guide * Updates section name
* BYO LLM 8.16 updates * Update docs/AI-for-security/connect-to-byo.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> --------- Co-authored-by: Nastasha Solomon <[email protected]>
* Asset criticality navigation change * Typo
…l preview + advanced setting (#5963) * First draft * Fixed headings * Updates admonition type * anotha draft * removed extra chars * Fixing size * Minor fixes * Fixed session view name * Update docs/detections/alerts-view-details.asciidoc Co-authored-by: natasha-moore-elastic <[email protected]> * Update docs/detections/alerts-view-details.asciidoc Co-authored-by: natasha-moore-elastic <[email protected]> * Update docs/detections/alerts-view-details.asciidoc * Update docs/detections/visual-event-analyzer.asciidoc Co-authored-by: natasha-moore-elastic <[email protected]> * Update docs/getting-started/advanced-setting.asciidoc Co-authored-by: natasha-moore-elastic <[email protected]> * Update docs/getting-started/advanced-setting.asciidoc Co-authored-by: natasha-moore-elastic <[email protected]> * Adds link --------- Co-authored-by: natasha-moore-elastic <[email protected]>
* Update .mergify.yml * Update .mergify.yml Co-authored-by: Joe Peeples <[email protected]> --------- Co-authored-by: Joe Peeples <[email protected]> Co-authored-by: Janeen Mikell Roberts <[email protected]>
* Add previously omitted spaces page, align with ESS * Fix typo in description frontmatter * Minor edit * Update "Data views in Elastic Security" Align across platforms, and omit "feature visibility" since it's unavailable in security * Update "Timeline" * Update "Timeline templates" * Update link to general docs on spaces This link will be broken until elastic/docs-content#55 is merged * Fix links: targets from stateful to serverless
#5980) * Navigation changes: Upgrade Security, post-upgrade steps, endpoint protection, explore, and EA sections * Changes main menu to navigation menu
* migrate mdx to asciidoc * clean up landing page * remove duplicate ids * clean up links * fix attributes in parentheses * fix invalid ids * qa security * clean post rebase and qa * restructure index * update readme * revert edits to non-serverless files * add missing duplicate pages * use asciidoc-dir * comment out description and keywords
* First draft * First draft * Updates titles * Fixes toc and introduces images * Fixes serverless toc * Adds missing image * Typo * Adds more images and content * Removes kib ref * Removed extra kib ref * Adjusted image name * Completed ref link * Adds ref to adv setting * Removed unnecessary ref * Missing s * More minor adjustments * first draft of flyout changes * Fix image size * Moves image over even more * Update docs/events/add-manage-notes.asciidoc * Incorporates dev input - ESS * Serverless changes * removed extra space * fixes serverless doc bugs * One more small fix * Missing s * Adds missing image * Update docs/events/add-manage-notes.asciidoc * Revision round two * Added image ext * Adds nav instructions * Fixes styling * Removed extra s * Removed tab * Removing asset criticality adv setting again * Removes comment for now * Update docs/events/add-manage-notes.asciidoc Co-authored-by: natasha-moore-elastic <[email protected]> * Update docs/events/add-manage-notes.asciidoc * Adds icon names to Serverless docs * update serverless asciidoc file instead of mdx file * trigger checks --------- Co-authored-by: natasha-moore-elastic <[email protected]> Co-authored-by: Colleen McGinnis <[email protected]>
…sc updates (#6072) * Re-adds images * Adds notes to landing page for investigative tools * Fix Serverless TOC * Fixes threat intel images * Adds size configs * fixes file name * Minor tweaks
…topics (#5979) * First draft * Second draft * Fix refs * Addresses comments * removes additional comment * Changes menu to navigation * re-adds menu after nav * Removes main * Revisiting instructions to rules page * remove duplicate 'the' --------- Co-authored-by: Colleen McGinnis <[email protected]>
* [8.16] Adds entity store docs * Updates screenshots * Updates references to ers requirements * Address feedback
…lyouts (#6080) * updates host details flyout * fixes image reference * Updates User details flyout * fix broken ref in serverless version * Apply suggestions from code review incorporates Nat's review Co-authored-by: natasha-moore-elastic <[email protected]> --------- Co-authored-by: natasha-moore-elastic <[email protected]>
* ESS and Serverless AI usecase updates * fixes reference to number of alerts * tweaks image size
* Remove statement on rule type limitations * update serverless asciidoc file instead of mdx file --------- Co-authored-by: Colleen McGinnis <[email protected]>
* First draft * Update serverless docs * trigger checks * Revise wording here and there
…opics (#6000) * First draft * Fixed outdated instruction * More updates * Updates to cases * Last update * Updates instructions for cases * Update docs/osquery/invest-guide-run-osquery.asciidoc Co-authored-by: natasha-moore-elastic <[email protected]> * Update docs/osquery/invest-guide-run-osquery.asciidoc Co-authored-by: natasha-moore-elastic <[email protected]> * Nat's edit --------- Co-authored-by: natasha-moore-elastic <[email protected]>
* [8.16][serverless] Adds Knowledge Base page and updates AI Assistant doc * Update knowledge-base.mdx * ESS updates * fix broken image refs * minor updates * typo fix * updates from Charles' Feedback * Update knowledge-base-assistant-menu-dropdown.png * Adds Garrett's query for retrieving 8.15 knowledge * removes query * Delete docs/serverless/AI-for-security/ai-for-security-landing-pg.mdx remove .mdx file * Removes MDX files from PR * removes mdx docnav changes * Adds note about accessing anonymization settings * Incorporates Janeen's review * Incorporates Nat's review * Incorporates Nat's review * Update docs/AI-for-security/knowledge-base.asciidoc * Update docs/AI-for-security/knowledge-base.asciidoc
|
A documentation preview will be available soon. Request a new doc build by commenting
If your PR continues to fail for an unknown reason, the doc build pipeline may be broken. Elastic employees can check the pipeline status here. |
Contributor
|
This pull request is now in conflicts. Could you fix it @protectionsmachine? 🙏 |
shashank-elastic
deleted the
update-security-docs-prebuilt-rules-8.13.22
branch
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Security Doc updates for prebuilt security rule integration package version v8.13.22. Please note these are meant to merge into main only and not backport.