Repackaging Azure Kubernetes

2023-02-02 16:36:08 +05:30 · 2023-02-02 16:36:08 +05:30 · 6645054a83
--- a/Connectors/AzureKubernetes.JSON
+++ b/Connectors/AzureKubernetes.JSON
@ -20,7 +20,7 @@
  "publisher": "Microsoft",
  "logo": "AzureKubernetes.svg",
  "lastDataReceivedInfoBalloon": "If no new data has been received in the last 14 days, the connector will display as being \"not connected.\" When the connector will recive data , the \"connected\" status will return.",
-  "descriptionMarkdown": "Azure Kubernetes Service (AKS) is an open-source, fully-managed container orchestration service that allows you to deploy, scale, and manage Docker containers and container-based applications in a cluster environment. This connector lets you stream your Azure Kubernetes Service (AKS) diagnostics logs into Microsoft Sentinel, allowing you to continuously monitor activity in all your instances. For more information, see the [Microsoft Sentinel documentation >](https://go.microsoft.com/fwlink/p/?linkid=2219762&wt.mc_id=sentinel_dataconnectordocs_content_cnl_csasci).",
+  "descriptionMarkdown": "Azure Kubernetes Service (AKS) is an open-source, fully-managed container orchestration service that allows you to deploy, scale, and manage Docker containers and container-based applications in a cluster environment. This connector lets you stream your Azure Kubernetes Service (AKS) diagnostics logs into Microsoft Sentinel, allowing you to continuously monitor activity in all your instances. For more information, see the [Microsoft Sentinel documentation](https://go.microsoft.com/fwlink/p/?linkid=2219762&wt.mc_id=sentinel_dataconnectordocs_content_cnl_csasci).",
  "graphQueries": [
    {
      "metricName": "Total data received",
--- a/Service/Data/Solution_AzurekubernetesService.json
+++ b/Service/Data/Solution_AzurekubernetesService.json
@ -14,8 +14,8 @@
    "Data Connectors/AzureKubernetes.json"
  ],
  "Metadata": "SolutionMetadata.json",
-  "BasePath": "C:\\GitHub\\Azure-Sentinel\\Solutions\\Azure kubernetes Service",
-  "Version": "2.0.1",
+  "BasePath": "C:\\One\\Azure\\Azure-Sentinel\\Solutions\\Azure kubernetes Service",
+  "Version": "2.0.2",
  "TemplateSpec": true,
  "Is1Pconnector": true
 }
--- a/Service/Package/2.0.2.zip
+++ b/Service/Package/2.0.2.zip
--- a/Service/Package/createUiDefinition.json
+++ b/Service/Package/createUiDefinition.json
@ -112,7 +112,7 @@
            "name": "huntingqueries-text",
            "type": "Microsoft.Common.TextBlock",
            "options": {
-              "text": "This solution installs the following hunting queries. After installing the solution, run these hunting queries to hunt for threats in Manage solution view."
+              "text": "This solution installs the following hunting queries. After installing the solution, run these hunting queries to hunt for threats in Manage solution view. "
            }
          },
          {
@ -134,7 +134,7 @@
                "name": "huntingquery1-text",
                "type": "Microsoft.Common.TextBlock",
                "options": {
-                  "text": "This query determines the cluster-admin role assigned to users and applied to resources across the entire cluster  It depends on the AzureKubernetes data connector and AzureDiagnostics data type"
+                  "text": "This query determines the cluster-admin role assigned to users and applied to resources across the entire cluster . This hunting query depends on AzureKubernetes data connector (AzureDiagnostics Parser or Table)"
                }
              }
            ]
@ -148,7 +148,7 @@
                "name": "huntingquery2-text",
                "type": "Microsoft.Common.TextBlock",
                "options": {
-                  "text": "Query get the details of role created for kube-audit It depends on the AzureKubernetes data connector and AzureDiagnostics data type"
+                  "text": "Query get the details of role created for kube-audit. This hunting query depends on AzureKubernetes data connector (AzureDiagnostics Parser or Table)"
                }
              }
            ]
--- a/Service/Package/mainTemplate.json
+++ b/Service/Package/mainTemplate.json
@ -95,7 +95,7 @@
        "[resourceId('Microsoft.Resources/templateSpecs', variables('workbookTemplateSpecName1'))]"
      ],
      "properties": {
-        "description": "AksSecurityWorkbook Workbook with template version 2.0.1",
+        "description": "AksSecurityWorkbook Workbook with template version 2.0.2",
        "mainTemplate": {
          "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
          "contentVersion": "[variables('workbookVersion1')]",
@ -198,7 +198,7 @@
        "[resourceId('Microsoft.Resources/templateSpecs', variables('huntingQueryTemplateSpecName1'))]"
      ],
      "properties": {
-        "description": "AKS-clusterrolebinding_HuntingQueries Hunting Query with template version 2.0.1",
+        "description": "AKS-clusterrolebinding_HuntingQueries Hunting Query with template version 2.0.2",
        "mainTemplate": {
          "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
          "contentVersion": "[variables('huntingQueryVersion1')]",
@ -219,7 +219,7 @@
                "tags": [
                  {
                    "name": "description",
-                    "value": "This query determines the cluster-admin role assigned to users and applied to resources across the entire cluster "
+                    "value": "This query determines the cluster-admin role assigned to users and applied to resources across the entire cluster ."
                  },
                  {
                    "name": "tactics",
@ -290,7 +290,7 @@
        "[resourceId('Microsoft.Resources/templateSpecs', variables('huntingQueryTemplateSpecName2'))]"
      ],
      "properties": {
-        "description": "AKS-Rbac_HuntingQueries Hunting Query with template version 2.0.1",
+        "description": "AKS-Rbac_HuntingQueries Hunting Query with template version 2.0.2",
        "mainTemplate": {
          "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
          "contentVersion": "[variables('huntingQueryVersion2')]",
@ -311,7 +311,7 @@
                "tags": [
                  {
                    "name": "description",
-                    "value": "Query get the details of role created for kube-audit"
+                    "value": "Query get the details of role created for kube-audit."
                  },
                  {
                    "name": "tactics",
@ -382,7 +382,7 @@
        "[resourceId('Microsoft.Resources/templateSpecs', variables('dataConnectorTemplateSpecName1'))]"
      ],
      "properties": {
-        "description": "Azure kubernetes Service data connector with template version 2.0.1",
+        "description": "Azure kubernetes Service data connector with template version 2.0.2",
        "mainTemplate": {
          "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
          "contentVersion": "[variables('dataConnectorVersion1')]",
@ -400,7 +400,7 @@
                  "id": "[variables('_uiConfigId1')]",
                  "title": "Azure Kubernetes Service (AKS)",
                  "publisher": "Microsoft",
-                  "descriptionMarkdown": "Azure Kubernetes Service (AKS) is an open-source, fully-managed container orchestration service that allows you to deploy, scale, and manage Docker containers and container-based applications in a cluster environment. This connector lets you stream your Azure Kubernetes Service (AKS) diagnostics logs into Microsoft Sentinel, allowing you to continuously monitor activity in all your instances.",
+                  "descriptionMarkdown": "Azure Kubernetes Service (AKS) is an open-source, fully-managed container orchestration service that allows you to deploy, scale, and manage Docker containers and container-based applications in a cluster environment. This connector lets you stream your Azure Kubernetes Service (AKS) diagnostics logs into Microsoft Sentinel, allowing you to continuously monitor activity in all your instances. For more information, see the [Microsoft Sentinel documentation](https://go.microsoft.com/fwlink/p/?linkid=2219762&wt.mc_id=sentinel_dataconnectordocs_content_cnl_csasci).",
                  "graphQueries": [
                    {
                      "metricName": "Total data received",
@ -555,7 +555,7 @@
        "connectorUiConfig": {
          "title": "Azure Kubernetes Service (AKS)",
          "publisher": "Microsoft",
-          "descriptionMarkdown": "Azure Kubernetes Service (AKS) is an open-source, fully-managed container orchestration service that allows you to deploy, scale, and manage Docker containers and container-based applications in a cluster environment. This connector lets you stream your Azure Kubernetes Service (AKS) diagnostics logs into Microsoft Sentinel, allowing you to continuously monitor activity in all your instances.",
+          "descriptionMarkdown": "Azure Kubernetes Service (AKS) is an open-source, fully-managed container orchestration service that allows you to deploy, scale, and manage Docker containers and container-based applications in a cluster environment. This connector lets you stream your Azure Kubernetes Service (AKS) diagnostics logs into Microsoft Sentinel, allowing you to continuously monitor activity in all your instances. For more information, see the [Microsoft Sentinel documentation](https://go.microsoft.com/fwlink/p/?linkid=2219762&wt.mc_id=sentinel_dataconnectordocs_content_cnl_csasci).",
          "graphQueries": [
            {
              "metricName": "Total data received",
@ -646,7 +646,7 @@
      "apiVersion": "2022-01-01-preview",
      "location": "[parameters('workspace-location')]",
      "properties": {
-        "version": "2.0.1",
+        "version": "2.0.2",
        "kind": "Solution",
        "contentSchemaVersion": "2.0.0",
        "contentId": "[variables('_solutionId')]",