Skip to content

Commit

Permalink
Update ootb-ml-jobs-siem.asciidoc
Browse files Browse the repository at this point in the history 
Correction to path for link to Linux ML Job for network configuration discovery.
  • Loading branch information
@tammytorbert
tammytorbert authored Dec 10, 2024
1 parent e136717 commit 6879a0a
Showing 1 changed file with 2 additions and 2 deletions.
4 changes: 2 additions & 2 deletions docs/en/stack/ml/anomaly-detection/ootb-ml-jobs-siem.asciidoc
View file
Original file line number Diff line number Diff line change
Expand Up @@ -158,7 +158,7 @@ for data that matches the query.
|v3_linux_network_configuration_discovery
|Looks for commands related to system network configuration discovery from an unusual user context. This can be due to uncommon troubleshooting activity or due to a compromised account. A compromised account may be used by a threat actor to engage in system network configuration discovery to increase their understanding of connected networks and hosts. This information may be used to shape follow-up behaviors such as lateral movement or additional discovery.
|https://github.com/elastic/kibana/blob/{branch}/x-pack/plugins/ml/server/models/data_recognizer/modules/security_linux/ml/v3_linux_network_configuration_discovery.json[image:images/link.svg[A link icon]]
|https://github.com/elastic/kibana/blob/{branch}/x-pack/plugins/ml/server/models/data_recognizer/modules/security_linux/ml/v3_datafeed_linux_network_configuration_discovery.json[image:images/link.svg[A link icon]]
|https://github.com/elastic/kibana/blob/{branch}/x-pack/plugins/ml/server/models/data_recognizer/modules/security_linux/ml/datafeed_v3_linux_network_configuration_discovery.json[image:images/link.svg[A link icon]]

|v3_linux_network_connection_discovery
|Looks for commands related to system network connection discovery from an unusual user context. This can be due to uncommon troubleshooting activity or due to a compromised account. A compromised account may be used by a threat actor to engage in system network connection discovery to increase their understanding of connected services and systems. This information may be used to shape follow-up behaviors such as lateral movement or additional discovery.
Expand Down Expand Up @@ -548,4 +548,4 @@ The job configurations and datafeeds can be found
https://github.com/elastic/integrations/blob/main/packages/lmd/kibana/ml_module/lmd-ml.json[here].

// end::security-windows-jobs[]
// end::siem-jobs[]
// end::siem-jobs[]

0 comments on commit 6879a0a

Please sign in to comment.