Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Extend vulnerability states template for a new field in wazuh.manager.name #157

Closed
Dwordcito opened this issue Feb 19, 2024 · 0 comments · Fixed by #158 or wazuh/wazuh#21983
Closed

Extend vulnerability states template for a new field in wazuh.manager.name #157

Dwordcito opened this issue Feb 19, 2024 · 0 comments · Fixed by #158 or wazuh/wazuh#21983
Assignees
@AlexRuiz7
Labels
level/task Task issue type/enhancement Enhancement issue

Comments

@Dwordcito
Copy link
Member

Dwordcito commented Feb 19, 2024
edited
Loading

Description

This issue involves enhancing the Wazuh index template used by the Wazuh-Indexer to include the 'wazuh.manager.name' field in the states related to vulnerability detection. The 'wazuh.manager.name' field will provide additional context by indicating the name of the Wazuh Manager associated with each vulnerability detection state.

Proposed Changes

The following changes will be made to the Wazuh index template:

  1. Field Addition: Add the 'wazuh.manager.name' field to the states related to vulnerability detection.

Implementation Steps

The implementation process will involve the following steps:

  1. Template Modification: Update the Wazuh index template to include the 'wazuh.manager.name' field in the relevant states.

  2. Testing: Conduct testing to ensure that the modified template functions correctly and that the 'wazuh.manager.name' field is populated accurately.

Impact

  • Improved Context: Including the 'wazuh.manager.name' field in vulnerability detection states provides valuable context about the Wazuh Manager associated with each detection event.

Definition of Done

  • The Wazuh index template is updated to include the 'wazuh.manager.name' field in vulnerability detection states.
  • Testing is conducted to verify the functionality and accuracy of the modified template.
@Dwordcito Dwordcito mentioned this issue Feb 19, 2024
Closed
@AlexRuiz7 AlexRuiz7 transferred this issue from wazuh/wazuh Feb 19, 2024
@AlexRuiz7 AlexRuiz7 added level/task Task issue type/enhancement Enhancement issue labels Feb 19, 2024
@wazuhci wazuhci moved this to Backlog in Release 4.8.0 Feb 19, 2024
@AlexRuiz7 AlexRuiz7 self-assigned this Feb 20, 2024
@wazuhci wazuhci moved this from Backlog to In progress in Release 4.8.0 Feb 20, 2024
This was referenced Feb 20, 2024
Merged
Merged
@AlexRuiz7 AlexRuiz7 linked a pull request Feb 20, 2024 that will close this issue
Update legacy-template.json wazuh/wazuh#21983
Merged
28 tasks
@wazuhci wazuhci moved this from In progress to Pending final review in Release 4.8.0 Feb 20, 2024
@wazuhci wazuhci moved this from Pending final review to Done in Release 4.8.0 Feb 20, 2024
@AlexandrBubenchikov AlexandrBubenchikov mentioned this issue Dec 28, 2024
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@AlexRuiz7 AlexRuiz7

Labels
level/task Task issue type/enhancement Enhancement issue
Projects
No open projects
Release 4.8.0
Status: Done
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Add wazuh.manager.name to VD mappings wazuh/wazuh-indexer
Update legacy-template.json
2 participants
@Dwordcito @AlexRuiz7