Skip to content

Commit

Permalink
fix(Intakes): update documentations for intakes
Browse files Browse the repository at this point in the history
  • Loading branch information
@squioc
squioc committed Dec 2, 2024
1 parent fb0b271 commit bf614bb
Show file tree
Hide file tree
Showing 22 changed files with 11,164 additions and 592 deletions.
495 changes: 492 additions & 3 deletions ...perations_center/integrations/generated/04d36706-ee4a-419b-906d-f92f3a46bcdd.md
View file

Large diffs are not rendered by default.

1,105 changes: 1,015 additions & 90 deletions ...ns_center/integrations/generated/04d36706-ee4a-419b-906d-f92f3a46bcdd_sample.md
View file

Large diffs are not rendered by default.

1,072 changes: 922 additions & 150 deletions ...perations_center/integrations/generated/05e6f36d-cee0-4f06-b575-9e43af779f9f.md
View file

Large diffs are not rendered by default.

806 changes: 742 additions & 64 deletions ...ns_center/integrations/generated/05e6f36d-cee0-4f06-b575-9e43af779f9f_sample.md
View file

Large diffs are not rendered by default.

6 changes: 4 additions & 2 deletions ...perations_center/integrations/generated/10999b99-9a8d-4b92-9fbd-01e3fac01cd5.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -1165,7 +1165,6 @@ This section demonstrates how the raw logs will be transformed by our parsers. I
"id": "111111111111111"
},
"crowdstrike": {
"base_filename": "svchost.exe",
"customer_id": "222222222222222222222"
},
"file": {
Expand All @@ -1181,6 +1180,10 @@ This section demonstrates how the raw logs will be transformed by our parsers. I
"platform": "win"
}
},
"process": {
"command_line": "svchost.exe",
"name": "svchost.exe"
},
"related": {
"ip": [
"4.3.2.1"
Expand Down Expand Up @@ -2396,7 +2399,6 @@ The following table lists the fields that are extracted, normalized under the EC
|`@timestamp` | `date` | Date/time when the event originated. |
|`agent.id` | `keyword` | Unique identifier of this agent. |
|`agent.version` | `keyword` | Version of the agent. |
|`crowdstrike.base_filename` | `keyword` | Base Filename |
|`crowdstrike.customer_id` | `keyword` | Customer ID (cid) |
|`crowdstrike.gateway_ip` | `ip` | Gateway IP |
|`crowdstrike.gateway_mac` | `keyword` | Gateway MAC |
Expand Down
196 changes: 196 additions & 0 deletions ...perations_center/integrations/generated/3c7057d3-4689-4fae-8033-6f1f887a70f2.md
View file

Large diffs are not rendered by default.

260 changes: 260 additions & 0 deletions ...ns_center/integrations/generated/3c7057d3-4689-4fae-8033-6f1f887a70f2_sample.md
View file

Large diffs are not rendered by default.

21 changes: 2 additions & 19 deletions ...perations_center/integrations/generated/6b8cb346-6605-4240-ac15-3828627ba899.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -44,8 +44,7 @@ This section demonstrates how the raw logs will be transformed by our parsers. I
},
"user": {
"name": "root"
},
"wallix": {}
}
}
```
Expand All @@ -68,8 +67,7 @@ This section demonstrates how the raw logs will be transformed by our parsers. I
},
"user": {
"name": "wabuser"
},
"wallix": {}
}
}
```
Expand Down Expand Up @@ -155,21 +153,6 @@ This section demonstrates how the raw logs will be transformed by our parsers. I
```


=== "rexec.json"

```json

{
"message": "rexec line 15: Deprecated option UsePrivilegeSeparation",
"event": {
"provider": "sshd"
},
"wallix": {}
}
```


=== "session_integrity.json"

```json
Expand Down
8 changes: 0 additions & 8 deletions ...ns_center/integrations/generated/6b8cb346-6605-4240-ac15-3828627ba899_sample.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -40,14 +40,6 @@ In this section, you will find examples of raw logs as generated natively by the



=== "rexec"

```
rexec line 15: Deprecated option UsePrivilegeSeparation
```



=== "session_integrity"

```
Expand Down
Loading

0 comments on commit bf614bb

Please sign in to comment.