diff --git a/docs/assistant/ai-alert-triage.asciidoc b/docs/AI-for-security/ai-alert-triage.asciidoc similarity index 100% rename from docs/assistant/ai-alert-triage.asciidoc rename to docs/AI-for-security/ai-alert-triage.asciidoc diff --git a/docs/assistant/ai-esql-queries.asciidoc b/docs/AI-for-security/ai-esql-queries.asciidoc similarity index 100% rename from docs/assistant/ai-esql-queries.asciidoc rename to docs/AI-for-security/ai-esql-queries.asciidoc diff --git a/docs/AI-for-security/ai-for-security.asciidoc b/docs/AI-for-security/ai-for-security.asciidoc new file mode 100644 index 0000000000..0a08f8d4da --- /dev/null +++ b/docs/AI-for-security/ai-for-security.asciidoc @@ -0,0 +1,24 @@ +[[ai-for-security]] += AI for security + +:frontmatter-description: Learn to use AI capabilities in {elastic-sec}. +:frontmatter-tags-products: [security] +:frontmatter-tags-content-type: [overview] +:frontmatter-tags-user-goals: [get-started] + +You can use {elastic-sec}'s built-in AI tools to speed up your work and augment your team's capabilities. The pages in this section describe <>, which answers questions and enhances your workflows throughout {elastic-sec}, and <>, which speeds up the triage process by finding patterns and identifying attacks spanning multiple alerts. + +include::security-assistant.asciidoc[leveloffset=+1] +include::attack-discovery.asciidoc[leveloffset=+1] + +include::llm-connector-guides.asciidoc[leveloffset=+1] +include::azure-openai-setup.asciidoc[leveloffset=+2] +include::connect-to-bedrock.asciidoc[leveloffset=+2] +include::connect-to-openai.asciidoc[leveloffset=+2] + +include::ai-use-cases.asciidoc[leveloffset=+1] +include::ai-alert-triage.asciidoc[leveloffset=+2] +include::use-attack-discovery-ai-assistant-incident-reporting.asciidoc[leveloffset=+2] +include::ai-esql-queries.asciidoc[leveloffset=+2] + +include::llm-performance-matrix.asciidoc[leveloffset=+1] diff --git a/docs/AI-for-security/ai-use-cases.asciidoc b/docs/AI-for-security/ai-use-cases.asciidoc new file mode 100644 index 0000000000..5d73139ead --- /dev/null +++ b/docs/AI-for-security/ai-use-cases.asciidoc @@ -0,0 +1,10 @@ +[[assistant-use-cases]] += Use cases + +The guides in this section describe use cases for AI Assistant and Attack discovery. Refer to them for examples of each tool's individual capabilities and of what they can do together. + +* <> +* <> +* <> + +For general information, refer to <> or <>. \ No newline at end of file diff --git a/docs/attack-discovery/attack-discovery.asciidoc b/docs/AI-for-security/attack-discovery.asciidoc similarity index 100% rename from docs/attack-discovery/attack-discovery.asciidoc rename to docs/AI-for-security/attack-discovery.asciidoc diff --git a/docs/assistant/azure-openai-setup.asciidoc b/docs/AI-for-security/azure-openai-setup.asciidoc similarity index 100% rename from docs/assistant/azure-openai-setup.asciidoc rename to docs/AI-for-security/azure-openai-setup.asciidoc diff --git a/docs/assistant/connect-to-bedrock.asciidoc b/docs/AI-for-security/connect-to-bedrock.asciidoc similarity index 100% rename from docs/assistant/connect-to-bedrock.asciidoc rename to docs/AI-for-security/connect-to-bedrock.asciidoc diff --git a/docs/assistant/connect-to-openai.asciidoc b/docs/AI-for-security/connect-to-openai.asciidoc similarity index 100% rename from docs/assistant/connect-to-openai.asciidoc rename to docs/AI-for-security/connect-to-openai.asciidoc diff --git a/docs/assistant/images/add-alert-context.gif b/docs/AI-for-security/images/add-alert-context.gif similarity index 100% rename from docs/assistant/images/add-alert-context.gif rename to docs/AI-for-security/images/add-alert-context.gif diff --git a/docs/attack-discovery/images/add-discovery-to-assistant.gif b/docs/AI-for-security/images/add-discovery-to-assistant.gif similarity index 100% rename from docs/attack-discovery/images/add-discovery-to-assistant.gif rename to docs/AI-for-security/images/add-discovery-to-assistant.gif diff --git a/docs/assistant/images/ai-assistant-button.png b/docs/AI-for-security/images/ai-assistant-button.png similarity index 100% rename from docs/assistant/images/ai-assistant-button.png rename to docs/AI-for-security/images/ai-assistant-button.png diff --git a/docs/assistant/images/ai-triage-add-to-case.png b/docs/AI-for-security/images/ai-triage-add-to-case.png similarity index 100% rename from docs/assistant/images/ai-triage-add-to-case.png rename to docs/AI-for-security/images/ai-triage-add-to-case.png diff --git a/docs/assistant/images/assistant-anonymization-menu.png b/docs/AI-for-security/images/assistant-anonymization-menu.png similarity index 100% rename from docs/assistant/images/assistant-anonymization-menu.png rename to docs/AI-for-security/images/assistant-anonymization-menu.png diff --git a/docs/assistant/images/assistant-basic-view.png b/docs/AI-for-security/images/assistant-basic-view.png similarity index 100% rename from docs/assistant/images/assistant-basic-view.png rename to docs/AI-for-security/images/assistant-basic-view.png diff --git a/docs/assistant/images/assistant-settings-menu.png b/docs/AI-for-security/images/assistant-settings-menu.png similarity index 100% rename from docs/assistant/images/assistant-settings-menu.png rename to docs/AI-for-security/images/assistant-settings-menu.png diff --git a/docs/assistant/images/assistant.gif b/docs/AI-for-security/images/assistant.gif similarity index 100% rename from docs/assistant/images/assistant.gif rename to docs/AI-for-security/images/assistant.gif diff --git a/docs/attack-discovery/images/attack-discovery-full-card.png b/docs/AI-for-security/images/attack-discovery-full-card.png similarity index 100% rename from docs/attack-discovery/images/attack-discovery-full-card.png rename to docs/AI-for-security/images/attack-discovery-full-card.png diff --git a/docs/assistant/images/attck-disc-11-alerts-disc.png b/docs/AI-for-security/images/attck-disc-11-alerts-disc.png similarity index 100% rename from docs/assistant/images/attck-disc-11-alerts-disc.png rename to docs/AI-for-security/images/attck-disc-11-alerts-disc.png diff --git a/docs/assistant/images/attck-disc-esql-query-gen-example.png b/docs/AI-for-security/images/attck-disc-esql-query-gen-example.png similarity index 100% rename from docs/assistant/images/attck-disc-esql-query-gen-example.png rename to docs/AI-for-security/images/attck-disc-esql-query-gen-example.png diff --git a/docs/assistant/images/icon-add-note.png b/docs/AI-for-security/images/icon-add-note.png similarity index 100% rename from docs/assistant/images/icon-add-note.png rename to docs/AI-for-security/images/icon-add-note.png diff --git a/docs/assistant/images/icon-add-to-case.png b/docs/AI-for-security/images/icon-add-to-case.png similarity index 100% rename from docs/assistant/images/icon-add-to-case.png rename to docs/AI-for-security/images/icon-add-to-case.png diff --git a/docs/assistant/images/icon-add-to-timeline.png b/docs/AI-for-security/images/icon-add-to-timeline.png similarity index 100% rename from docs/assistant/images/icon-add-to-timeline.png rename to docs/AI-for-security/images/icon-add-to-timeline.png diff --git a/docs/assistant/images/icon-clear-red.png b/docs/AI-for-security/images/icon-clear-red.png similarity index 100% rename from docs/assistant/images/icon-clear-red.png rename to docs/AI-for-security/images/icon-clear-red.png diff --git a/docs/assistant/images/icon-copy.png b/docs/AI-for-security/images/icon-copy.png similarity index 100% rename from docs/assistant/images/icon-copy.png rename to docs/AI-for-security/images/icon-copy.png diff --git a/docs/assistant/images/icon-settings.png b/docs/AI-for-security/images/icon-settings.png similarity index 100% rename from docs/assistant/images/icon-settings.png rename to docs/AI-for-security/images/icon-settings.png diff --git a/docs/assistant/images/icon-system-prompt.png b/docs/AI-for-security/images/icon-system-prompt.png similarity index 100% rename from docs/assistant/images/icon-system-prompt.png rename to docs/AI-for-security/images/icon-system-prompt.png diff --git a/docs/assistant/images/knowledge-base-settings.png b/docs/AI-for-security/images/knowledge-base-settings.png similarity index 100% rename from docs/assistant/images/knowledge-base-settings.png rename to docs/AI-for-security/images/knowledge-base-settings.png diff --git a/docs/assistant/images/quick-prompts.png b/docs/AI-for-security/images/quick-prompts.png similarity index 100% rename from docs/assistant/images/quick-prompts.png rename to docs/AI-for-security/images/quick-prompts.png diff --git a/docs/attack-discovery/images/select-model-empty-state.png b/docs/AI-for-security/images/select-model-empty-state.png similarity index 100% rename from docs/attack-discovery/images/select-model-empty-state.png rename to docs/AI-for-security/images/select-model-empty-state.png diff --git a/docs/assistant/images/system-prompt.gif b/docs/AI-for-security/images/system-prompt.gif similarity index 100% rename from docs/assistant/images/system-prompt.gif rename to docs/AI-for-security/images/system-prompt.gif diff --git a/docs/assistant/llm-connector-guides.asciidoc b/docs/AI-for-security/llm-connector-guides.asciidoc similarity index 100% rename from docs/assistant/llm-connector-guides.asciidoc rename to docs/AI-for-security/llm-connector-guides.asciidoc diff --git a/docs/assistant/llm-performance-matrix.asciidoc b/docs/AI-for-security/llm-performance-matrix.asciidoc similarity index 100% rename from docs/assistant/llm-performance-matrix.asciidoc rename to docs/AI-for-security/llm-performance-matrix.asciidoc diff --git a/docs/assistant/security-assistant.asciidoc b/docs/AI-for-security/security-assistant.asciidoc similarity index 96% rename from docs/assistant/security-assistant.asciidoc rename to docs/AI-for-security/security-assistant.asciidoc index a5aaf2c4d7..503b0b837c 100644 --- a/docs/assistant/security-assistant.asciidoc +++ b/docs/AI-for-security/security-assistant.asciidoc @@ -189,14 +189,3 @@ In addition to practical advice, AI Assistant can offer conceptual advice, tips, * “I need to monitor for unusual file creation patterns that could indicate ransomware activity. How would I construct this query using EQL?” -include::assistant-use-cases.asciidoc[leveloffset=+1] -include::ai-alert-triage.asciidoc[leveloffset=+2] -include::use-attack-discovery-ai-assistant-incident-reporting.asciidoc[leveloffset=+2] -include::ai-esql-queries.asciidoc[leveloffset=+2] - -include::llm-connector-guides.asciidoc[leveloffset=+1] -include::azure-openai-setup.asciidoc[leveloffset=+2] -include::connect-to-openai.asciidoc[leveloffset=+2] -include::connect-to-bedrock.asciidoc[leveloffset=+2] - -include::llm-performance-matrix.asciidoc[leveloffset=+1] diff --git a/docs/assistant/use-attack-discovery-ai-assistant-incident-reporting.asciidoc b/docs/AI-for-security/use-attack-discovery-ai-assistant-incident-reporting.asciidoc similarity index 100% rename from docs/assistant/use-attack-discovery-ai-assistant-incident-reporting.asciidoc rename to docs/AI-for-security/use-attack-discovery-ai-assistant-incident-reporting.asciidoc diff --git a/docs/assistant/assistant-use-cases.asciidoc b/docs/assistant/assistant-use-cases.asciidoc deleted file mode 100644 index 5a92f80197..0000000000 --- a/docs/assistant/assistant-use-cases.asciidoc +++ /dev/null @@ -1,10 +0,0 @@ -[[assistant-use-cases]] -= AI Assistant use cases - -Elastic AI Assistant's flexibility means you can use it for many different purposes. These topics describe some of the possible uses for AI Assistant within {elastic-sec}: - -* <> -* <> -* <> - -For general information about AI Assistant, refer to <>. \ No newline at end of file diff --git a/docs/attack-discovery/images/icon-add-to-timeline.png b/docs/attack-discovery/images/icon-add-to-timeline.png deleted file mode 100644 index c01802253c..0000000000 Binary files a/docs/attack-discovery/images/icon-add-to-timeline.png and /dev/null differ diff --git a/docs/attack-discovery/images/icon-copy.png b/docs/attack-discovery/images/icon-copy.png deleted file mode 100644 index e0a53121d9..0000000000 Binary files a/docs/attack-discovery/images/icon-copy.png and /dev/null differ diff --git a/docs/index.asciidoc b/docs/index.asciidoc index d64655893d..6791f36c90 100644 --- a/docs/index.asciidoc +++ b/docs/index.asciidoc @@ -18,9 +18,7 @@ include::getting-started/index.asciidoc[] include::getting-started/security-ui.asciidoc[] -include::assistant/security-assistant.asciidoc[] - -include::attack-discovery/attack-discovery.asciidoc[] +include::AI-for-security/ai-for-security.asciidoc[] include::dashboards/dashboards-overview.asciidoc[]