9ebddcc8a4
* [ML] Initial commit for auditbeat hosts ECS Rename fields for ECS Rework dashboards due to bwc * [ML] Further auditbeat tidy up and consistency changes Custom urls should link to saved search, not discover Ensure savedSearchId is used for visualizations Ensure filter terms are consistent TODO Decide if we should rename to auditd module TODO Fix for new saved object format * [ML] Refinements for auditbeat host module Remove duplicated title from visState Shrink panel heights in row 1 * [ML] Refinements to auditbeat module Update module name from auditd to auditbeat Add useMargins true for dashboards Add filter to custom url for exists auditd.data.syscall not exists container.runtime event.module: auditd * [ML] Initial commit for auditbeat_process_docker_ecs Update for ECS using container.name (instead of container.id) container.runtime: docker process.executable event.module: auditd auditd.data.syscall exists TODOs Use auditd.message_type: syscall (instead of auditd.data.syscall) Possibly combine with auditbeat hosts saved objects (depending on host.name being shared) Possibly combine to single dashboard Test against live auditbeat data collection |
||
|---|---|---|
| .. | ||
| annotation_service | ||
| bucket_span_estimator | ||
| calculate_model_memory_limit | ||
| calendar | ||
| data_recognizer | ||
| data_visualizer | ||
| fields_service | ||
| file_data_visualizer | ||
| filter | ||
| job_audit_messages | ||
| job_service | ||
| job_validation | ||
| results_service | ||