Filebeat 7.x and 8.x crowdstrike module references a missing dashboard

wasserman commented 1 year ago

I noticed that there is a reference to a Dashboard for Crowdstrike that doesn't exist at https://github.com/elastic/beats/blob/main/x-pack/filebeat/module/crowdstrike/module.yml

dashboards:
- id: Filebeat-crowdstrike-falcon-Dashboard
  file: Filebeat-crowdstrike-falcon.json

The docs refer to SIEM views, not classic Dashboards: https://www.elastic.co/guide/en/beats/filebeat/current/filebeat-module-crowdstrike.html

Should this reference be removed in the module.yml file or are there associated files missing that could be included and deployed via Filebeat and/or Elastic Agent.

For confirmed bugs, please report:

Version: 7.x, 8.x
Operating System: n/a
Discuss Forum URL: n/a
Steps to Reproduce: Just look here - https://github.com/elastic/beats/blob/main/x-pack/filebeat/module/crowdstrike/module.yml

elasticmachine commented 1 year ago

Pinging @elastic/security-external-integrations (Team:Security-External Integrations)

elasticmachine commented 9 months ago

Pinging @elastic/security-service-integrations (Team:Security-Service Integrations)

elastic / beats

Filebeat 7.x and 8.x crowdstrike module references a missing dashboard #36104