[Backport 2.x] add mitre attack based auto-correlations support in correlation engine #540
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
![opensearch-trigger-bot[bot]](https://avatars.githubusercontent.com/u/80134844?s=60&v=4){kind=small}
#532) Signed-off-by: Subhobrata Dey <[email protected]> (cherry picked from commit 32d5aa1)
Signed-off-by: Subhobrata Dey <[email protected]>
Codecov Report
@@ Coverage Diff @@
## 2.x #540 +/- ##
============================================
- Coverage 25.78% 25.48% -0.31%
Complexity 940 940
============================================
Files 252 253 +1
Lines 10770 10897 +127
Branches 1197 1223 +26
============================================
Hits 2777 2777
- Misses 7746 7873 +127
Partials 247 247
|
riysaxen-amzn
pushed a commit
to riysaxen-amzn/security-analytics
that referenced
this pull request
Feb 20, 2024
* Correlation engine ux (opensearch-project#524) * wip Signed-off-by: Amardeepsingh Siglani <[email protected]> * completed rules page; added placeholder for findings flyout tabs Signed-off-by: Amardeepsingh Siglani <[email protected]> * reverted change to show empty table Signed-off-by: Amardeepsingh Siglani <[email protected]> * updated rule type Signed-off-by: Amardeepsingh Siglani <[email protected]> * updated create correlation rule page Signed-off-by: Amardeepsingh Siglani <[email protected]> * correlation page wip Signed-off-by: Amardeepsingh Siglani <[email protected]> * Correlation store and API services Signed-off-by: Jovan Cvetkovic <[email protected]> * Correlation store and API services Signed-off-by: Jovan Cvetkovic <[email protected]> * Correlation store and API services Signed-off-by: Jovan Cvetkovic <[email protected]> * Correlation store and API services Signed-off-by: Jovan Cvetkovic <[email protected]> * Correlation store and API services Signed-off-by: Jovan Cvetkovic <[email protected]> * updated correlations page Signed-off-by: Amardeepsingh Siglani <[email protected]> * updated store interfaces Signed-off-by: Amardeepsingh Siglani <[email protected]> * fixed correlation store Signed-off-by: Amardeepsingh Siglani <[email protected]> * added api for all correlations Signed-off-by: Amardeepsingh Siglani <[email protected]> * added filter support for correlations Signed-off-by: Amardeepsingh Siglani <[email protected]> * using apis; added validation Signed-off-by: Amardeepsingh Siglani <[email protected]> * Implemented logic to populate correlations tables data. Signed-off-by: AWSHurneyt <[email protected]> * restricted to AND Signed-off-by: Amardeepsingh Siglani <[email protected]> * log type clearable Signed-off-by: Amardeepsingh Siglani <[email protected]> * code cleanup Signed-off-by: Jovan Cvetkovic <[email protected]> * fixed API issue Signed-off-by: Amardeepsingh Siglani <[email protected]> * updated snapshots Signed-off-by: Amardeepsingh Siglani <[email protected]> * ux improvements Signed-off-by: Amardeepsingh Siglani <[email protected]> * code cleanup Signed-off-by: Jovan Cvetkovic <[email protected]> * removed redundant code Signed-off-by: Amardeepsingh Siglani <[email protected]> * removed unwanted param Signed-off-by: Amardeepsingh Siglani <[email protected]> * connected refresh Signed-off-by: Amardeepsingh Siglani <[email protected]> --------- Signed-off-by: Amardeepsingh Siglani <[email protected]> Signed-off-by: Jovan Cvetkovic <[email protected]> Signed-off-by: AWSHurneyt <[email protected]> Co-authored-by: Jovan Cvetkovic <[email protected]> Co-authored-by: AWSHurneyt <[email protected]> (cherry picked from commit f565a923c6bfec1b8a69128d21e5d823a50cb142) * Removed duplicate import for EuiSpacer (opensearch-project#538) (opensearch-project#540) * removed duplicate import * updated snapshots --------- Signed-off-by: Amardeepsingh Siglani <[email protected]> * Pinned babel traverse and core (opensearch-project#539) (opensearch-project#544) * pinned babel traverse and core * removed cyclic dependency * added types for vis * refactored code --------- Signed-off-by: Amardeepsingh Siglani <[email protected]> --------- Signed-off-by: Amardeepsingh Siglani <[email protected]> Co-authored-by: Amardeepsingh Siglani <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Backport 32d5aa1 from #532