maxmustermann/kibana
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity
kibana/x-pack/plugins/ml/server
History
Sophie Chang 9ebddcc8a4 [ML] Update auditbeat modules for ECS (#29934) 
* [ML] Initial commit for auditbeat hosts ECS

Rename fields for ECS
Rework dashboards due to bwc

* [ML] Further auditbeat tidy up and consistency changes

Custom urls should link to saved search, not discover
Ensure savedSearchId is used for visualizations
Ensure filter terms are consistent

TODO Decide if we should rename to auditd module
TODO Fix for new saved object format

* [ML] Refinements for auditbeat host module

Remove duplicated title from visState
Shrink panel heights in row 1

* [ML] Refinements to auditbeat module

Update module name from auditd to auditbeat
Add useMargins true for dashboards
Add filter to custom url for
   exists auditd.data.syscall
   not exists container.runtime
   event.module: auditd

* [ML] Initial commit for auditbeat_process_docker_ecs

Update for ECS using
  container.name (instead of container.id)
  container.runtime: docker
  process.executable
  event.module: auditd
  auditd.data.syscall exists

TODOs
Use auditd.message_type: syscall (instead of auditd.data.syscall)
Possibly combine with auditbeat hosts saved objects (depending on host.name being shared)
Possibly combine to single dashboard
Test against live auditbeat data collection
2019-02-05 19:06:25 +00:00
..
client [ML] Job deleting optimisations (#29848) 2019-02-05 12:29:01 +00:00
lib [ML] Fixes annotations integrity check. (#30102) 2019-02-05 19:45:14 +01:00
models [ML] Update auditbeat modules for ECS (#29934) 2019-02-05 19:06:25 +00:00
routes [ML] Fixes annotations integrity check. (#30102) 2019-02-05 19:45:14 +01:00