cloudbeat icon indicating copy to clipboard operation
cloudbeat copied to clipboard
verified publisher icon elastic

Analyze Findings Usage for ECS

Open orouz opened this issue 2 years ago • 1 comments

as part of the work being done in https://github.com/elastic/security-team/issues/7658

@tinnytintin10 made a list of all the fields that may end up in the Findings ECS schema

this issue is meant to track the effort for analyzing cloudbeat's current findings in comparison to the suggested ECS schema, specifically - indicating what data is already being sent and does it match the relevant ECS schema

orouz avatar Jan 24 '24 16:01 orouz

evaluation at https://docs.google.com/spreadsheets/d/1p7m6c-sPn_Orgfc-jwJod9wupvF-2Qp7SDrDLle15_8/edit#gid=713700531

waiting for product to review + select an existing integration to compare with the suggested schema.

orouz avatar Mar 10 '24 10:03 orouz