Solution Package for ttp changes - BitSight
This commit is contained in:
Vijay-Sodadasi
Родитель
6d97e89595
Коммит
1c1e7fd348
Двоичные данные
Solutions/BitSight/Package/3.0.2.zip
Двоичные данные
Solutions/BitSight/Package/3.0.2.zip
Двоичный файл не отображается.
|
|
@ -52,46 +52,46 @@
|
|||
"workspaceResourceId": "[resourceId('microsoft.OperationalInsights/Workspaces', parameters('workspace'))]",
|
||||
"_workbookcontentProductId1": "[concat(take(variables('_solutionId'),50),'-','wb','-', uniqueString(concat(variables('_solutionId'),'-','Workbook','-',variables('_workbookContentId1'),'-', variables('workbookVersion1'))))]",
|
||||
"analyticRuleObject1": {
|
||||
"analyticRuleVersion1": "1.0.0",
|
||||
"analyticRuleVersion1": "1.0.1",
|
||||
"_analyticRulecontentId1": "d8844f11-3a36-4b97-9062-1e6d57c00e37",
|
||||
"analyticRuleId1": "[resourceId('Microsoft.SecurityInsights/AlertRuleTemplates', 'd8844f11-3a36-4b97-9062-1e6d57c00e37')]",
|
||||
"analyticRuleTemplateSpecName1": "[concat(parameters('workspace'),'/Microsoft.SecurityInsights/',concat(parameters('workspace'),'-ar-',uniquestring('d8844f11-3a36-4b97-9062-1e6d57c00e37')))]",
|
||||
"_analyticRulecontentProductId1": "[concat(take(variables('_solutionId'),50),'-','ar','-', uniqueString(concat(variables('_solutionId'),'-','AnalyticsRule','-','d8844f11-3a36-4b97-9062-1e6d57c00e37','-', '1.0.0')))]"
|
||||
"_analyticRulecontentProductId1": "[concat(take(variables('_solutionId'),50),'-','ar','-', uniqueString(concat(variables('_solutionId'),'-','AnalyticsRule','-','d8844f11-3a36-4b97-9062-1e6d57c00e37','-', '1.0.1')))]"
|
||||
},
|
||||
"analyticRuleObject2": {
|
||||
"analyticRuleVersion2": "1.0.0",
|
||||
"analyticRuleVersion2": "1.0.1",
|
||||
"_analyticRulecontentId2": "a1275c5e-0ff4-4d15-a7b7-96018cd979f5",
|
||||
"analyticRuleId2": "[resourceId('Microsoft.SecurityInsights/AlertRuleTemplates', 'a1275c5e-0ff4-4d15-a7b7-96018cd979f5')]",
|
||||
"analyticRuleTemplateSpecName2": "[concat(parameters('workspace'),'/Microsoft.SecurityInsights/',concat(parameters('workspace'),'-ar-',uniquestring('a1275c5e-0ff4-4d15-a7b7-96018cd979f5')))]",
|
||||
"_analyticRulecontentProductId2": "[concat(take(variables('_solutionId'),50),'-','ar','-', uniqueString(concat(variables('_solutionId'),'-','AnalyticsRule','-','a1275c5e-0ff4-4d15-a7b7-96018cd979f5','-', '1.0.0')))]"
|
||||
"_analyticRulecontentProductId2": "[concat(take(variables('_solutionId'),50),'-','ar','-', uniqueString(concat(variables('_solutionId'),'-','AnalyticsRule','-','a1275c5e-0ff4-4d15-a7b7-96018cd979f5','-', '1.0.1')))]"
|
||||
},
|
||||
"analyticRuleObject3": {
|
||||
"analyticRuleVersion3": "1.0.0",
|
||||
"analyticRuleVersion3": "1.0.1",
|
||||
"_analyticRulecontentId3": "d68b758a-b117-4cb8-8e1d-dcab5a4a2f21",
|
||||
"analyticRuleId3": "[resourceId('Microsoft.SecurityInsights/AlertRuleTemplates', 'd68b758a-b117-4cb8-8e1d-dcab5a4a2f21')]",
|
||||
"analyticRuleTemplateSpecName3": "[concat(parameters('workspace'),'/Microsoft.SecurityInsights/',concat(parameters('workspace'),'-ar-',uniquestring('d68b758a-b117-4cb8-8e1d-dcab5a4a2f21')))]",
|
||||
"_analyticRulecontentProductId3": "[concat(take(variables('_solutionId'),50),'-','ar','-', uniqueString(concat(variables('_solutionId'),'-','AnalyticsRule','-','d68b758a-b117-4cb8-8e1d-dcab5a4a2f21','-', '1.0.0')))]"
|
||||
"_analyticRulecontentProductId3": "[concat(take(variables('_solutionId'),50),'-','ar','-', uniqueString(concat(variables('_solutionId'),'-','AnalyticsRule','-','d68b758a-b117-4cb8-8e1d-dcab5a4a2f21','-', '1.0.1')))]"
|
||||
},
|
||||
"analyticRuleObject4": {
|
||||
"analyticRuleVersion4": "1.0.0",
|
||||
"analyticRuleVersion4": "1.0.1",
|
||||
"_analyticRulecontentId4": "161ed3ac-b242-4b13-8c6b-58716e5e9972",
|
||||
"analyticRuleId4": "[resourceId('Microsoft.SecurityInsights/AlertRuleTemplates', '161ed3ac-b242-4b13-8c6b-58716e5e9972')]",
|
||||
"analyticRuleTemplateSpecName4": "[concat(parameters('workspace'),'/Microsoft.SecurityInsights/',concat(parameters('workspace'),'-ar-',uniquestring('161ed3ac-b242-4b13-8c6b-58716e5e9972')))]",
|
||||
"_analyticRulecontentProductId4": "[concat(take(variables('_solutionId'),50),'-','ar','-', uniqueString(concat(variables('_solutionId'),'-','AnalyticsRule','-','161ed3ac-b242-4b13-8c6b-58716e5e9972','-', '1.0.0')))]"
|
||||
"_analyticRulecontentProductId4": "[concat(take(variables('_solutionId'),50),'-','ar','-', uniqueString(concat(variables('_solutionId'),'-','AnalyticsRule','-','161ed3ac-b242-4b13-8c6b-58716e5e9972','-', '1.0.1')))]"
|
||||
},
|
||||
"analyticRuleObject5": {
|
||||
"analyticRuleVersion5": "1.0.0",
|
||||
"analyticRuleVersion5": "1.0.1",
|
||||
"_analyticRulecontentId5": "b11fdc35-6368-4cc0-8128-52cd2e2cdda0",
|
||||
"analyticRuleId5": "[resourceId('Microsoft.SecurityInsights/AlertRuleTemplates', 'b11fdc35-6368-4cc0-8128-52cd2e2cdda0')]",
|
||||
"analyticRuleTemplateSpecName5": "[concat(parameters('workspace'),'/Microsoft.SecurityInsights/',concat(parameters('workspace'),'-ar-',uniquestring('b11fdc35-6368-4cc0-8128-52cd2e2cdda0')))]",
|
||||
"_analyticRulecontentProductId5": "[concat(take(variables('_solutionId'),50),'-','ar','-', uniqueString(concat(variables('_solutionId'),'-','AnalyticsRule','-','b11fdc35-6368-4cc0-8128-52cd2e2cdda0','-', '1.0.0')))]"
|
||||
"_analyticRulecontentProductId5": "[concat(take(variables('_solutionId'),50),'-','ar','-', uniqueString(concat(variables('_solutionId'),'-','AnalyticsRule','-','b11fdc35-6368-4cc0-8128-52cd2e2cdda0','-', '1.0.1')))]"
|
||||
},
|
||||
"analyticRuleObject6": {
|
||||
"analyticRuleVersion6": "1.0.0",
|
||||
"analyticRuleVersion6": "1.0.1",
|
||||
"_analyticRulecontentId6": "a5526ba9-5997-47c6-bf2e-60a08b681e9b",
|
||||
"analyticRuleId6": "[resourceId('Microsoft.SecurityInsights/AlertRuleTemplates', 'a5526ba9-5997-47c6-bf2e-60a08b681e9b')]",
|
||||
"analyticRuleTemplateSpecName6": "[concat(parameters('workspace'),'/Microsoft.SecurityInsights/',concat(parameters('workspace'),'-ar-',uniquestring('a5526ba9-5997-47c6-bf2e-60a08b681e9b')))]",
|
||||
"_analyticRulecontentProductId6": "[concat(take(variables('_solutionId'),50),'-','ar','-', uniqueString(concat(variables('_solutionId'),'-','AnalyticsRule','-','a5526ba9-5997-47c6-bf2e-60a08b681e9b','-', '1.0.0')))]"
|
||||
"_analyticRulecontentProductId6": "[concat(take(variables('_solutionId'),50),'-','ar','-', uniqueString(concat(variables('_solutionId'),'-','AnalyticsRule','-','a5526ba9-5997-47c6-bf2e-60a08b681e9b','-', '1.0.1')))]"
|
||||
},
|
||||
"parserObject1": {
|
||||
"_parserName1": "[concat(parameters('workspace'),'/','BitSightAlerts')]",
|
||||
|
|
@ -191,7 +191,7 @@
|
|||
"[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
|
||||
],
|
||||
"properties": {
|
||||
"description": "BitSightWorkbook Workbook with template version 3.0.1",
|
||||
"description": "BitSightWorkbook Workbook with template version 3.0.2",
|
||||
"mainTemplate": {
|
||||
"$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
|
||||
"contentVersion": "[variables('workbookVersion1')]",
|
||||
|
|
@ -319,7 +319,7 @@
|
|||
"[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
|
||||
],
|
||||
"properties": {
|
||||
"description": "BitSightDropInCompanyRatings_AnalyticalRules Analytics Rule with template version 3.0.1",
|
||||
"description": "BitSightDropInCompanyRatings_AnalyticalRules Analytics Rule with template version 3.0.2",
|
||||
"mainTemplate": {
|
||||
"$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
|
||||
"contentVersion": "[variables('analyticRuleObject1').analyticRuleVersion1]",
|
||||
|
|
@ -347,13 +347,14 @@
|
|||
"status": "Available",
|
||||
"requiredDataConnectors": [
|
||||
{
|
||||
"connectorId": "BitSight",
|
||||
"dataTypes": [
|
||||
"BitSightGraphData"
|
||||
]
|
||||
],
|
||||
"connectorId": "BitSight"
|
||||
}
|
||||
],
|
||||
"tactics": [
|
||||
"Reconnaissance",
|
||||
"CommandAndControl"
|
||||
],
|
||||
"eventGroupingSettings": {
|
||||
|
|
@ -423,7 +424,7 @@
|
|||
"[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
|
||||
],
|
||||
"properties": {
|
||||
"description": "BitSightNewAlertFound_AnalyticalRules Analytics Rule with template version 3.0.1",
|
||||
"description": "BitSightNewAlertFound_AnalyticalRules Analytics Rule with template version 3.0.2",
|
||||
"mainTemplate": {
|
||||
"$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
|
||||
"contentVersion": "[variables('analyticRuleObject2').analyticRuleVersion2]",
|
||||
|
|
@ -451,24 +452,29 @@
|
|||
"status": "Available",
|
||||
"requiredDataConnectors": [
|
||||
{
|
||||
"connectorId": "BitSight",
|
||||
"dataTypes": [
|
||||
"BitSightAlerts"
|
||||
]
|
||||
],
|
||||
"connectorId": "BitSight"
|
||||
}
|
||||
],
|
||||
"tactics": [
|
||||
"Impact"
|
||||
"Impact",
|
||||
"InitialAccess"
|
||||
],
|
||||
"techniques": [
|
||||
"T1491",
|
||||
"T1190"
|
||||
],
|
||||
"entityMappings": [
|
||||
{
|
||||
"entityType": "URL",
|
||||
"fieldMappings": [
|
||||
{
|
||||
"identifier": "Url",
|
||||
"columnName": "CompanyURL"
|
||||
}
|
||||
]
|
||||
],
|
||||
"entityType": "URL"
|
||||
}
|
||||
],
|
||||
"eventGroupingSettings": {
|
||||
|
|
@ -476,8 +482,8 @@
|
|||
},
|
||||
"alertDetailsOverride": {
|
||||
"alertDescriptionFormat": "Alert generated on {{AlertDate}} in BitSight.\\n\\nCompany URL: {{CompanyURL}}\\nAlert GUID: {{GUID}}",
|
||||
"alertSeverityColumnName": "Severity",
|
||||
"alertDisplayNameFormat": "BitSight: Alert for {{Trigger}} in {{CompanyName}} from bitsight."
|
||||
"alertDisplayNameFormat": "BitSight: Alert for {{Trigger}} in {{CompanyName}} from bitsight.",
|
||||
"alertSeverityColumnName": "Severity"
|
||||
},
|
||||
"incidentConfiguration": {
|
||||
"createIncident": false
|
||||
|
|
@ -535,7 +541,7 @@
|
|||
"[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
|
||||
],
|
||||
"properties": {
|
||||
"description": "BitSightCompromisedSystemsDetected_AnalyticalRules Analytics Rule with template version 3.0.1",
|
||||
"description": "BitSightCompromisedSystemsDetected_AnalyticalRules Analytics Rule with template version 3.0.2",
|
||||
"mainTemplate": {
|
||||
"$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
|
||||
"contentVersion": "[variables('analyticRuleObject3').analyticRuleVersion3]",
|
||||
|
|
@ -563,10 +569,10 @@
|
|||
"status": "Available",
|
||||
"requiredDataConnectors": [
|
||||
{
|
||||
"connectorId": "BitSight",
|
||||
"dataTypes": [
|
||||
"BitSightFindingsData"
|
||||
]
|
||||
],
|
||||
"connectorId": "BitSight"
|
||||
}
|
||||
],
|
||||
"tactics": [
|
||||
|
|
@ -574,7 +580,6 @@
|
|||
],
|
||||
"entityMappings": [
|
||||
{
|
||||
"entityType": "Malware",
|
||||
"fieldMappings": [
|
||||
{
|
||||
"identifier": "Name",
|
||||
|
|
@ -584,7 +589,8 @@
|
|||
"identifier": "Category",
|
||||
"columnName": "RiskCategory"
|
||||
}
|
||||
]
|
||||
],
|
||||
"entityType": "Malware"
|
||||
}
|
||||
],
|
||||
"eventGroupingSettings": {
|
||||
|
|
@ -592,8 +598,8 @@
|
|||
},
|
||||
"alertDetailsOverride": {
|
||||
"alertDescriptionFormat": "Alert is generated for {{CompanyName}}.\\n\\nRisk Vector: {{RiskVector}}\\nTemporaryId: {{TemporaryId}}\\nRisk Category: Compromised Systems",
|
||||
"alertSeverityColumnName": "Severity",
|
||||
"alertDisplayNameFormat": "BitSight: Alert for {{RiskVector}} in {{CompanyName}} from BitSight"
|
||||
"alertDisplayNameFormat": "BitSight: Alert for {{RiskVector}} in {{CompanyName}} from BitSight",
|
||||
"alertSeverityColumnName": "Severity"
|
||||
},
|
||||
"incidentConfiguration": {
|
||||
"createIncident": true
|
||||
|
|
@ -651,7 +657,7 @@
|
|||
"[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
|
||||
],
|
||||
"properties": {
|
||||
"description": "BitSightDiligenceRiskCategoryDetected_AnalyticalRules Analytics Rule with template version 3.0.1",
|
||||
"description": "BitSightDiligenceRiskCategoryDetected_AnalyticalRules Analytics Rule with template version 3.0.2",
|
||||
"mainTemplate": {
|
||||
"$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
|
||||
"contentVersion": "[variables('analyticRuleObject4').analyticRuleVersion4]",
|
||||
|
|
@ -679,18 +685,18 @@
|
|||
"status": "Available",
|
||||
"requiredDataConnectors": [
|
||||
{
|
||||
"connectorId": "BitSight",
|
||||
"dataTypes": [
|
||||
"BitSightFindingsData"
|
||||
]
|
||||
],
|
||||
"connectorId": "BitSight"
|
||||
}
|
||||
],
|
||||
"tactics": [
|
||||
"Execution"
|
||||
"Execution",
|
||||
"Reconnaissance"
|
||||
],
|
||||
"entityMappings": [
|
||||
{
|
||||
"entityType": "Malware",
|
||||
"fieldMappings": [
|
||||
{
|
||||
"identifier": "Name",
|
||||
|
|
@ -700,7 +706,8 @@
|
|||
"identifier": "Category",
|
||||
"columnName": "RiskCategory"
|
||||
}
|
||||
]
|
||||
],
|
||||
"entityType": "Malware"
|
||||
}
|
||||
],
|
||||
"eventGroupingSettings": {
|
||||
|
|
@ -708,8 +715,8 @@
|
|||
},
|
||||
"alertDetailsOverride": {
|
||||
"alertDescriptionFormat": "Alert is generated for {{CompanyName}}.\\n\\nRisk Vector: {{RiskVector}}\\nTemporaryId: {{TemporaryId}}\\nRisk Category: Diligence",
|
||||
"alertSeverityColumnName": "Severity",
|
||||
"alertDisplayNameFormat": "BitSight: Alert for {{RiskVector}} in {{CompanyName}} from BitSight"
|
||||
"alertDisplayNameFormat": "BitSight: Alert for {{RiskVector}} in {{CompanyName}} from BitSight",
|
||||
"alertSeverityColumnName": "Severity"
|
||||
},
|
||||
"incidentConfiguration": {
|
||||
"createIncident": false
|
||||
|
|
@ -767,7 +774,7 @@
|
|||
"[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
|
||||
],
|
||||
"properties": {
|
||||
"description": "BitSightDropInHeadlineRating_AnalyticalRules Analytics Rule with template version 3.0.1",
|
||||
"description": "BitSightDropInHeadlineRating_AnalyticalRules Analytics Rule with template version 3.0.2",
|
||||
"mainTemplate": {
|
||||
"$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
|
||||
"contentVersion": "[variables('analyticRuleObject5').analyticRuleVersion5]",
|
||||
|
|
@ -795,13 +802,14 @@
|
|||
"status": "Available",
|
||||
"requiredDataConnectors": [
|
||||
{
|
||||
"connectorId": "BitSight",
|
||||
"dataTypes": [
|
||||
"BitSightGraphData"
|
||||
]
|
||||
],
|
||||
"connectorId": "BitSight"
|
||||
}
|
||||
],
|
||||
"tactics": [
|
||||
"Reconnaissance",
|
||||
"CommandAndControl"
|
||||
],
|
||||
"eventGroupingSettings": {
|
||||
|
|
@ -871,7 +879,7 @@
|
|||
"[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
|
||||
],
|
||||
"properties": {
|
||||
"description": "BitSightNewBreachFound_AnalyticalRules Analytics Rule with template version 3.0.1",
|
||||
"description": "BitSightNewBreachFound_AnalyticalRules Analytics Rule with template version 3.0.2",
|
||||
"mainTemplate": {
|
||||
"$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
|
||||
"contentVersion": "[variables('analyticRuleObject6').analyticRuleVersion6]",
|
||||
|
|
@ -899,24 +907,29 @@
|
|||
"status": "Available",
|
||||
"requiredDataConnectors": [
|
||||
{
|
||||
"connectorId": "BitSight",
|
||||
"dataTypes": [
|
||||
"BitSightBreaches"
|
||||
]
|
||||
],
|
||||
"connectorId": "BitSight"
|
||||
}
|
||||
],
|
||||
"tactics": [
|
||||
"Impact"
|
||||
"Impact",
|
||||
"InitialAccess"
|
||||
],
|
||||
"techniques": [
|
||||
"T1491",
|
||||
"T1190"
|
||||
],
|
||||
"entityMappings": [
|
||||
{
|
||||
"entityType": "URL",
|
||||
"fieldMappings": [
|
||||
{
|
||||
"identifier": "Url",
|
||||
"columnName": "PreviwURL"
|
||||
}
|
||||
]
|
||||
],
|
||||
"entityType": "URL"
|
||||
}
|
||||
],
|
||||
"eventGroupingSettings": {
|
||||
|
|
@ -924,8 +937,8 @@
|
|||
},
|
||||
"alertDetailsOverride": {
|
||||
"alertDescriptionFormat": "Alert is generated on {{DateCreated}} at BitSight.\\n\\nGUID: {{GUID}}\\nPreview URL: {{PreviwURL}}",
|
||||
"alertSeverityColumnName": "Severity",
|
||||
"alertDisplayNameFormat": "BitSight: Alert for new breach in {{Companyname}}."
|
||||
"alertDisplayNameFormat": "BitSight: Alert for new breach in {{Companyname}}.",
|
||||
"alertSeverityColumnName": "Severity"
|
||||
},
|
||||
"incidentConfiguration": {
|
||||
"createIncident": false
|
||||
|
|
@ -983,7 +996,7 @@
|
|||
"[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
|
||||
],
|
||||
"properties": {
|
||||
"description": "BitSightAlerts Data Parser with template version 3.0.1",
|
||||
"description": "BitSightAlerts Data Parser with template version 3.0.2",
|
||||
"mainTemplate": {
|
||||
"$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
|
||||
"contentVersion": "[variables('parserObject1').parserVersion1]",
|
||||
|
|
@ -1115,7 +1128,7 @@
|
|||
"[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
|
||||
],
|
||||
"properties": {
|
||||
"description": "BitSightBreaches Data Parser with template version 3.0.1",
|
||||
"description": "BitSightBreaches Data Parser with template version 3.0.2",
|
||||
"mainTemplate": {
|
||||
"$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
|
||||
"contentVersion": "[variables('parserObject2').parserVersion2]",
|
||||
|
|
@ -1247,7 +1260,7 @@
|
|||
"[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
|
||||
],
|
||||
"properties": {
|
||||
"description": "BitSightCompanyDetails Data Parser with template version 3.0.1",
|
||||
"description": "BitSightCompanyDetails Data Parser with template version 3.0.2",
|
||||
"mainTemplate": {
|
||||
"$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
|
||||
"contentVersion": "[variables('parserObject3').parserVersion3]",
|
||||
|
|
@ -1379,7 +1392,7 @@
|
|||
"[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
|
||||
],
|
||||
"properties": {
|
||||
"description": "BitSightCompanyRatings Data Parser with template version 3.0.1",
|
||||
"description": "BitSightCompanyRatings Data Parser with template version 3.0.2",
|
||||
"mainTemplate": {
|
||||
"$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
|
||||
"contentVersion": "[variables('parserObject4').parserVersion4]",
|
||||
|
|
@ -1511,7 +1524,7 @@
|
|||
"[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
|
||||
],
|
||||
"properties": {
|
||||
"description": "BitSightDiligenceHistoricalStatistics Data Parser with template version 3.0.1",
|
||||
"description": "BitSightDiligenceHistoricalStatistics Data Parser with template version 3.0.2",
|
||||
"mainTemplate": {
|
||||
"$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
|
||||
"contentVersion": "[variables('parserObject5').parserVersion5]",
|
||||
|
|
@ -1643,7 +1656,7 @@
|
|||
"[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
|
||||
],
|
||||
"properties": {
|
||||
"description": "BitSightDiligenceStatistics Data Parser with template version 3.0.1",
|
||||
"description": "BitSightDiligenceStatistics Data Parser with template version 3.0.2",
|
||||
"mainTemplate": {
|
||||
"$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
|
||||
"contentVersion": "[variables('parserObject6').parserVersion6]",
|
||||
|
|
@ -1775,7 +1788,7 @@
|
|||
"[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
|
||||
],
|
||||
"properties": {
|
||||
"description": "BitSightFindingsData Data Parser with template version 3.0.1",
|
||||
"description": "BitSightFindingsData Data Parser with template version 3.0.2",
|
||||
"mainTemplate": {
|
||||
"$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
|
||||
"contentVersion": "[variables('parserObject7').parserVersion7]",
|
||||
|
|
@ -1907,7 +1920,7 @@
|
|||
"[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
|
||||
],
|
||||
"properties": {
|
||||
"description": "BitSightFindingsSummary Data Parser with template version 3.0.1",
|
||||
"description": "BitSightFindingsSummary Data Parser with template version 3.0.2",
|
||||
"mainTemplate": {
|
||||
"$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
|
||||
"contentVersion": "[variables('parserObject8').parserVersion8]",
|
||||
|
|
@ -2039,7 +2052,7 @@
|
|||
"[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
|
||||
],
|
||||
"properties": {
|
||||
"description": "BitSightGraphData Data Parser with template version 3.0.1",
|
||||
"description": "BitSightGraphData Data Parser with template version 3.0.2",
|
||||
"mainTemplate": {
|
||||
"$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
|
||||
"contentVersion": "[variables('parserObject9').parserVersion9]",
|
||||
|
|
@ -2171,7 +2184,7 @@
|
|||
"[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
|
||||
],
|
||||
"properties": {
|
||||
"description": "BitSightIndustrialStatistics Data Parser with template version 3.0.1",
|
||||
"description": "BitSightIndustrialStatistics Data Parser with template version 3.0.2",
|
||||
"mainTemplate": {
|
||||
"$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
|
||||
"contentVersion": "[variables('parserObject10').parserVersion10]",
|
||||
|
|
@ -2303,7 +2316,7 @@
|
|||
"[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
|
||||
],
|
||||
"properties": {
|
||||
"description": "BitSightObservationStatistics Data Parser with template version 3.0.1",
|
||||
"description": "BitSightObservationStatistics Data Parser with template version 3.0.2",
|
||||
"mainTemplate": {
|
||||
"$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
|
||||
"contentVersion": "[variables('parserObject11').parserVersion11]",
|
||||
|
|
@ -2435,7 +2448,7 @@
|
|||
"[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
|
||||
],
|
||||
"properties": {
|
||||
"description": "BitSight data connector with template version 3.0.1",
|
||||
"description": "BitSight data connector with template version 3.0.2",
|
||||
"mainTemplate": {
|
||||
"$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
|
||||
"contentVersion": "[variables('dataConnectorVersion1')]",
|
||||
|
|
|
|||
|
|
@ -1,5 +1,6 @@
|
|||
| **Version** | **Date Modified (DD-MM-YYYY)** | **Change History** |
|
||||
|-------------|--------------------------------|--------------------------------------------------------------------|
|
||||
| 3.0.2 | 26-07-2024 | Update **Analytic rules** for missing TTP |
|
||||
| 3.0.1 | 15-04-2024 | Added Bitsight prefix in data tables name |
|
||||
| 3.0.0 | 23-01-2024 | Updated **Data Connector** code with the fix of Pagination and Checkpoint related issue |
|
||||
|
||||
|
|
|
|||
Загрузка…
Ссылка в новой задаче