Open wasserman opened 1 year ago
I noticed that there is a reference to a Dashboard for Crowdstrike that doesn't exist at https://github.com/elastic/beats/blob/main/x-pack/filebeat/module/crowdstrike/module.yml
dashboards: - id: Filebeat-crowdstrike-falcon-Dashboard file: Filebeat-crowdstrike-falcon.json
The docs refer to SIEM views, not classic Dashboards: https://www.elastic.co/guide/en/beats/filebeat/current/filebeat-module-crowdstrike.html
Should this reference be removed in the module.yml file or are there associated files missing that could be included and deployed via Filebeat and/or Elastic Agent.
For confirmed bugs, please report:
Pinging @elastic/security-external-integrations (Team:Security-External Integrations)
Pinging @elastic/security-service-integrations (Team:Security-Service Integrations)
I noticed that there is a reference to a Dashboard for Crowdstrike that doesn't exist at https://github.com/elastic/beats/blob/main/x-pack/filebeat/module/crowdstrike/module.yml
The docs refer to SIEM views, not classic Dashboards: https://www.elastic.co/guide/en/beats/filebeat/current/filebeat-module-crowdstrike.html
Should this reference be removed in the module.yml file or are there associated files missing that could be included and deployed via Filebeat and/or Elastic Agent.
For confirmed bugs, please report: