Azure
/
Azure-Sentinel
зеркало из
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность

replace DevOps template

This commit is contained in:
ngchi 2020-07-27 14:45:01 -07:00
Родитель f271d82ac1
Коммит a5797524e2
17 изменённых файлов: 3198 добавлений и 0 удалений
Показать статистику Скачать Patch файл Скачать Diff файл Показать все файлы Свернуть все файлы

Двоичные данные
Tools/Azure Sentinel DevOps Template/AzureSentinelDevOpsTemplate.zip
Просмотреть файл

Двоичный файл не отображается.

44
Tools/AzureSentinelDevopsBoardTemplate/Extensions.json Normal file
Просмотреть файл

@ -0,0 +1,44 @@
{
"Extensions": [
{
"extensionName": "Files and Folders View for Test Attachments",
"link": "<a href='https://marketplace.visualstudio.com/items?itemName=asg-cloudtest.asg-cloudtest-attachments' target='_blank'><b>Files and Folders View for Test Attachments</b></a>",
"publisherId": "asg-cloudtest",
"extensionId": "asg-cloudtest-attachments",
"publisherName": "CloudTest",
"License": "<a href='https://marketplace.visualstudio.com/items?itemName=asg-cloudtest.asg-cloudtest-attachments' target='_blank'>License Terms</a>"
},
{
"extensionName": "Product Catalog",
"link": "<a href='https://marketplace.visualstudio.com/items?itemName=ms.product-catalog' target='_blank'><b>Product Catalog</b></a>",
"publisherId": "ms",
"extensionId": "product-catalog",
"publisherName": "Microsoft",
"License": "<a href='https://marketplace.visualstudio.com/items?itemName=ms.product-catalog' target='_blank'>License Terms</a>"
},
{
"extensionName": "Component Governance Build Task",
"link": "<a href='https://marketplace.visualstudio.com/items?itemName=ms.vss-governance-buildtask' target='_blank'><b>Component Governance Build Task</b></a>",
"publisherId": "ms",
"extensionId": "vss-governance-buildtask",
"publisherName": "Microsoft",
"License": "<a href='https://marketplace.visualstudio.com/items?itemName=ms.vss-governance-buildtask' target='_blank'>License Terms</a>"
},
{
"extensionName": "Microsoft Component Policies",
"link": "<a href='https://marketplace.visualstudio.com/items?itemName=ms-compliance.microsoft-component-policies' target='_blank'><b>Microsoft Component Policies</b></a>",
"publisherId": "ms-compliance",
"extensionId": "microsoft-component-policies",
"publisherName": "Compliance Partners",
"License": "<a href='https://marketplace.visualstudio.com/items?itemName=ms-compliance.microsoft-component-policies' target='_blank'>License Terms</a>"
},
{
"extensionName": "Component Governance",
"link": "<a href='https://marketplace.visualstudio.com/items?itemName=ms.vss-governance-web' target='_blank'><b>Component Governance</b></a>",
"publisherId": "ms",
"extensionId": "vss-governance-web",
"publisherName": "Microsoft",
"License": "<a href='https://marketplace.visualstudio.com/items?itemName=ms.vss-governance-web' target='_blank'>License Terms</a>"
}
]
}

9
Tools/AzureSentinelDevopsBoardTemplate/ImportSourceCode/Azure Sentinel Template.json Normal file
Просмотреть файл

@ -0,0 +1,9 @@
{
"parameters": {
"gitSource": {
"url": "https://dev.azure.com/crmuno/AzureSentinelDeployment/_git/Azure Sentinel Template"
},
"serviceEndpointId": "$Azure Sentinel Template-code$",
"deleteServiceEndpointAfterImportIsDone": true
}
}

22
Tools/AzureSentinelDevopsBoardTemplate/Iterations.json Normal file
Просмотреть файл

@ -0,0 +1,22 @@
{
"children": [
{
"name": "Iteration 1",
"structureType": "iteration",
"hasChildren": false
},
{
"name": "Iteration 2",
"structureType": "iteration",
"hasChildren": false
},
{
"name": "Iteration 3",
"structureType": "iteration",
"hasChildren": false
}
],
"name": "AzureSentinelDeployment",
"structureType": "iteration",
"hasChildren": true
}

5
Tools/AzureSentinelDevopsBoardTemplate/ProjectSettings.json Normal file
Просмотреть файл

@ -0,0 +1,5 @@
{
"type": "Agile",
"id": "adcc42ab-9882-485e-a3ed-7678f01f66bc",
"users": []
}

19
Tools/AzureSentinelDevopsBoardTemplate/ProjectTemplate.json Normal file
Просмотреть файл

@ -0,0 +1,19 @@
{
"Description": "Generated by Azure DevOps Demo Generator",
"Teams": "Teams.json",
"BoardColumns": "BoardColumns.json",
"ProjectSettings": "ProjectSettings.json",
"CardStyle": "UpdateCardStyles.json",
"CardField": "UpdateCardFields.json",
"BugfromTemplate": "Bug.json",
"EpicfromTemplate": "Epic.json",
"FeaturefromTemplate": "Feature.json",
"PBIfromTemplate": "ProductBacklogItem.json",
"UserStoriesFromTemplate": "UserStory.json",
"TaskfromTemplate": "Task.json",
"TestCasefromTemplate": "TestCase.json",
"SetEpic": "EnableEpic.json",
"TeamArea": "TeamArea.json",
"IsPrivate": "true",
"TemplateVersion": "2.0"
}

16
Tools/AzureSentinelDevopsBoardTemplate/ServiceEndpoints/Azure Sentinel Template-code.json Normal file
Просмотреть файл

@ -0,0 +1,16 @@
{
"data": {},
"name": "Azure Sentinel Template-code",
"type": "git",
"url": "https://dev.azure.com/vandyr/Azure Sentinel Template/_git/Azure Sentinel Template",
"authorization": {
"parameters": {
"username": "",
"password": "password"
},
"scheme": "UsernamePassword"
},
"isShared": false,
"isReady": true,
"owner": "Library"
}

9
Tools/AzureSentinelDevopsBoardTemplate/TeamArea.json Normal file
Просмотреть файл

@ -0,0 +1,9 @@
{
"defaultValue": "$ProjectName$\\$AreaName$",
"values": [
{
"value": "$ProjectName$\\$AreaName$",
"includeChildren": false
}
]
}

125
Tools/AzureSentinelDevopsBoardTemplate/Teams/AzureSentinelDeployment Team/BoardColumns.json Normal file
Просмотреть файл

@ -0,0 +1,125 @@
[
{
"BoardName": "Epics",
"value": [
{
"name": "New",
"itemLimit": 0,
"stateMappings": {
"Epic": "New"
},
"columnType": "incoming"
},
{
"name": "Active",
"itemLimit": 5,
"stateMappings": {
"Epic": "Active"
},
"columnType": "inProgress",
"isSplit": false,
"description": ""
},
{
"name": "Resolved",
"itemLimit": 5,
"stateMappings": {
"Epic": "Resolved"
},
"columnType": "inProgress",
"isSplit": false,
"description": ""
},
{
"name": "Closed",
"itemLimit": 0,
"stateMappings": {
"Epic": "Closed"
},
"columnType": "outgoing"
}
]
},
{
"BoardName": "Features",
"value": [
{
"name": "New",
"itemLimit": 0,
"stateMappings": {
"Feature": "New"
},
"columnType": "incoming"
},
{
"name": "Active",
"itemLimit": 5,
"stateMappings": {
"Feature": "Active"
},
"columnType": "inProgress",
"isSplit": false,
"description": ""
},
{
"name": "Resolved",
"itemLimit": 5,
"stateMappings": {
"Feature": "Resolved"
},
"columnType": "inProgress",
"isSplit": false,
"description": ""
},
{
"name": "Closed",
"itemLimit": 0,
"stateMappings": {
"Feature": "Closed"
},
"columnType": "outgoing"
}
]
},
{
"BoardName": "Stories",
"value": [
{
"name": "New",
"itemLimit": 0,
"stateMappings": {
"User Story": "New"
},
"columnType": "incoming"
},
{
"name": "Active",
"itemLimit": 5,
"stateMappings": {
"User Story": "Active"
},
"columnType": "inProgress",
"isSplit": false,
"description": ""
},
{
"name": "Resolved",
"itemLimit": 5,
"stateMappings": {
"User Story": "Resolved"
},
"columnType": "inProgress",
"isSplit": false,
"description": ""
},
{
"name": "Closed",
"itemLimit": 0,
"stateMappings": {
"User Story": "Closed"
},
"columnType": "outgoing"
}
]
}
]

29
Tools/AzureSentinelDevopsBoardTemplate/Teams/AzureSentinelDeployment Team/BoardRows.json Normal file
Просмотреть файл

@ -0,0 +1,29 @@
[
{
"BoardName": "Epics",
"value": [
{
"id": "00000000-0000-0000-0000-000000000000",
"name": null
}
]
},
{
"BoardName": "Features",
"value": [
{
"id": "00000000-0000-0000-0000-000000000000",
"name": null
}
]
},
{
"BoardName": "Stories",
"value": [
{
"id": "00000000-0000-0000-0000-000000000000",
"name": null
}
]
}
]

74
Tools/AzureSentinelDevopsBoardTemplate/Teams/AzureSentinelDeployment Team/CardFields.json Normal file
Просмотреть файл

@ -0,0 +1,74 @@
[
{
"cards": {
"Epic": [
{
"fieldIdentifier": "System.Id"
},
{
"fieldIdentifier": "System.Title"
},
{
"fieldIdentifier": "System.AssignedTo",
"displayFormat": "AvatarAndFullName"
},
{
"fieldIdentifier": "System.Tags"
},
{
"fieldIdentifier": "System.State"
}
]
},
"BoardName": "Epics"
},
{
"cards": {
"Feature": [
{
"fieldIdentifier": "System.Id"
},
{
"fieldIdentifier": "System.Title"
},
{
"fieldIdentifier": "System.AssignedTo",
"displayFormat": "AvatarAndFullName"
},
{
"fieldIdentifier": "System.Tags"
},
{
"fieldIdentifier": "System.State"
}
]
},
"BoardName": "Features"
},
{
"cards": {
"User Story": [
{
"fieldIdentifier": "System.Id"
},
{
"fieldIdentifier": "System.Title"
},
{
"fieldIdentifier": "System.AssignedTo",
"displayFormat": "AvatarAndFullName"
},
{
"fieldIdentifier": "System.Tags"
},
{
"fieldIdentifier": "System.State"
},
{
"fieldIdentifier": "Microsoft.VSTS.Scheduling.StoryPoints"
}
]
},
"BoardName": "Stories"
}
]

26
Tools/AzureSentinelDevopsBoardTemplate/Teams/AzureSentinelDeployment Team/CardStyles.json Normal file
Просмотреть файл

@ -0,0 +1,26 @@
[
{
"url": "",
"rules": {
"tagStyle": []
},
"_links": "{}",
"BoardName": "Epics"
},
{
"url": "",
"rules": {
"tagStyle": []
},
"_links": "{}",
"BoardName": "Features"
},
{
"url": "",
"rules": {
"tagStyle": []
},
"_links": "{}",
"BoardName": "Stories"
}
]

8
Tools/AzureSentinelDevopsBoardTemplate/Teams/AzureSentinelDeployment Team/TeamSetting.json Normal file
Просмотреть файл

@ -0,0 +1,8 @@
{
"bugsBehavior": "asTasks",
"backlogVisibilities": {
"Microsoft.EpicCategory": true,
"Microsoft.FeatureCategory": true,
"Microsoft.RequirementCategory": true
}
}

8
Tools/AzureSentinelDevopsBoardTemplate/Teams/Teams.json Normal file
Просмотреть файл

@ -0,0 +1,8 @@
[
{
"id": "8edca2f3-18c7-416b-9739-1e294543fa11",
"name": "AzureSentinelDeployment Team",
"description": "The default project team.",
"isDefault": "true"
}
]

567
Tools/AzureSentinelDevopsBoardTemplate/WorkItems/Feature.json Normal file
Просмотреть файл

@ -0,0 +1,567 @@
{
"count": 11,
"value": [
{
"id": 241,
"rev": 9,
"fields": {
"System.AreaPath": "AzureSentinelDeployment",
"System.TeamProject": "AzureSentinelDeployment",
"System.IterationPath": "$ProjectName$\\Iteration 3",
"System.WorkItemType": "Feature",
"System.State": "New",
"System.Reason": "Moved to the backlog",
"System.CreatedDate": "2020-06-03T14:58:45.553Z",
"System.CreatedBy": "Cristhofer Munoz <crmuno@microsoft.com>",
"System.ChangedDate": "2020-07-13T19:26:08.433Z",
"System.ChangedBy": "Cristhofer Munoz <crmuno@microsoft.com>",
"System.Title": "1. Define Use Cases",
"Microsoft.VSTS.Scheduling.Effort": 0.0,
"System.Description": "<div><p style=\"margin:0px 0px 30px;box-sizing:border-box;font-variant:normal;font-weight:400;font-size:16px;font-family:ubuntu, Verdana, Arial, sans-serif;letter-spacing:0.2px;\"><span style=\"margin:0px;box-sizing:border-box;\">A well-structured approach to use case definition and application expertise are needed to ensure an efficient deployment of Azure Sentinel.</span></p><p style=\"margin:0px 0px 30px;box-sizing:border-box;font-variant:normal;font-weight:400;font-size:16px;font-family:ubuntu, Verdana, Arial, sans-serif;letter-spacing:0.2px;\"><span style=\"margin:0px;box-sizing:border-box;\">Gartner -&nbsp;<a href=\"https://www.gartner.com/en/documents/3950486/how-to-build-security-use-cases-for-your-siem\">https://www.gartner.com/en/documents/3950486/how-to-build-security-use-cases-for-your-siem</a></span></p><br></div>",
"System.AssignedTo": "Cristhofer Munoz <crmuno@microsoft.com>",
"Microsoft.VSTS.Scheduling.RemainingWork": 0.0,
"Microsoft.VSTS.Common.Priority": 2.0,
"System.BoardLane": null,
"System.Tags": null,
"Microsoft.VSTS.TCM.Steps": null,
"Microsoft.VSTS.TCM.Parameters": null,
"Microsoft.VSTS.TCM.LocalDataSource": null,
"Microsoft.VSTS.TCM.AutomationStatus": null,
"System.History": null
},
"relations": null,
"url": "https://dev.azure.com/crmuno/_apis/wit/workItems/241"
},
{
"id": 42,
"rev": 7,
"fields": {
"System.AreaPath": "AzureSentinelDeployment",
"System.TeamProject": "AzureSentinelDeployment",
"System.IterationPath": "$ProjectName$\\Iteration 2",
"System.WorkItemType": "Feature",
"System.State": "New",
"System.Reason": "New",
"System.CreatedDate": "2020-05-11T19:22:59.993Z",
"System.CreatedBy": "Cristhofer Munoz <crmuno@microsoft.com>",
"System.ChangedDate": "2020-07-13T19:26:15.44Z",
"System.ChangedBy": "Cristhofer Munoz <crmuno@microsoft.com>",
"System.Title": "2. Get Started with Azure Sentinel | Tutorials",
"Microsoft.VSTS.Scheduling.Effort": 0.0,
"System.Description": null,
"System.AssignedTo": null,
"Microsoft.VSTS.Scheduling.RemainingWork": 0.0,
"Microsoft.VSTS.Common.Priority": 2.0,
"System.BoardLane": null,
"System.Tags": null,
"Microsoft.VSTS.TCM.Steps": null,
"Microsoft.VSTS.TCM.Parameters": null,
"Microsoft.VSTS.TCM.LocalDataSource": null,
"Microsoft.VSTS.TCM.AutomationStatus": null,
"System.History": null
},
"relations": [
{
"rel": "System.LinkTypes.Hierarchy-Forward",
"url": "https://dev.azure.com/crmuno/_apis/wit/workItems/18",
"attributes": {
"isLocked": "false",
"name": "Child"
}
},
{
"rel": "System.LinkTypes.Hierarchy-Forward",
"url": "https://dev.azure.com/crmuno/_apis/wit/workItems/40",
"attributes": {
"isLocked": "false",
"name": "Child"
}
}
],
"url": "https://dev.azure.com/crmuno/_apis/wit/workItems/42"
},
{
"id": 8,
"rev": 8,
"fields": {
"System.AreaPath": "AzureSentinelDeployment",
"System.TeamProject": "AzureSentinelDeployment",
"System.IterationPath": "AzureSentinelDeployment",
"System.WorkItemType": "Feature",
"System.State": "New",
"System.Reason": "Moved to the backlog",
"System.CreatedDate": "2020-05-11T19:08:57.737Z",
"System.CreatedBy": "Cristhofer Munoz <crmuno@microsoft.com>",
"System.ChangedDate": "2020-07-13T19:26:21.677Z",
"System.ChangedBy": "Cristhofer Munoz <crmuno@microsoft.com>",
"System.Title": "3. On-board Azure Sentinel - Prerequisites",
"Microsoft.VSTS.Scheduling.Effort": 0.0,
"System.Description": "<div><span style=\"\">Pre-requisites to on-board Azure Sentinel</span><br></div><div><span style=\"\"><a href=\"https://docs.microsoft.com/en-us/azure/sentinel/quickstart-onboard\" style=\"box-sizing:border-box;text-decoration:underline;cursor:pointer;\">https://docs.microsoft.com/en-us/azure/sentinel/quickstart-onboard</a><br></span></div>",
"System.AssignedTo": null,
"Microsoft.VSTS.Scheduling.RemainingWork": 0.0,
"Microsoft.VSTS.Common.Priority": 2.0,
"System.BoardLane": null,
"System.Tags": null,
"Microsoft.VSTS.TCM.Steps": null,
"Microsoft.VSTS.TCM.Parameters": null,
"Microsoft.VSTS.TCM.LocalDataSource": null,
"Microsoft.VSTS.TCM.AutomationStatus": null,
"System.History": null
},
"relations": [
{
"rel": "System.LinkTypes.Hierarchy-Forward",
"url": "https://dev.azure.com/crmuno/_apis/wit/workItems/23",
"attributes": {
"isLocked": "false",
"comment": "Making a new link for the dependency",
"name": "Child"
}
}
],
"url": "https://dev.azure.com/crmuno/_apis/wit/workItems/8"
},
{
"id": 11,
"rev": 5,
"fields": {
"System.AreaPath": "AzureSentinelDeployment",
"System.TeamProject": "AzureSentinelDeployment",
"System.IterationPath": "$ProjectName$\\Iteration 1",
"System.WorkItemType": "Feature",
"System.State": "New",
"System.Reason": "Moved to the backlog",
"System.CreatedDate": "2020-05-11T19:08:58.19Z",
"System.CreatedBy": "Cristhofer Munoz <crmuno@microsoft.com>",
"System.ChangedDate": "2020-07-13T19:26:28.913Z",
"System.ChangedBy": "Cristhofer Munoz <crmuno@microsoft.com>",
"System.Title": "4. Azure Sentinel Architecture",
"Microsoft.VSTS.Scheduling.Effort": 0.0,
"System.Description": "",
"System.AssignedTo": null,
"Microsoft.VSTS.Scheduling.RemainingWork": 0.0,
"Microsoft.VSTS.Common.Priority": 2.0,
"System.BoardLane": null,
"System.Tags": null,
"Microsoft.VSTS.TCM.Steps": null,
"Microsoft.VSTS.TCM.Parameters": null,
"Microsoft.VSTS.TCM.LocalDataSource": null,
"Microsoft.VSTS.TCM.AutomationStatus": null,
"System.History": null
},
"relations": [
{
"rel": "System.LinkTypes.Hierarchy-Forward",
"url": "https://dev.azure.com/crmuno/_apis/wit/workItems/37",
"attributes": {
"isLocked": "false",
"comment": "Making a new link for the dependency",
"name": "Child"
}
},
{
"rel": "System.LinkTypes.Hierarchy-Forward",
"url": "https://dev.azure.com/crmuno/_apis/wit/workItems/38",
"attributes": {
"isLocked": "false",
"comment": "Making a new link for the dependency",
"name": "Child"
}
}
],
"url": "https://dev.azure.com/crmuno/_apis/wit/workItems/11"
},
{
"id": 48,
"rev": 4,
"fields": {
"System.AreaPath": "AzureSentinelDeployment",
"System.TeamProject": "AzureSentinelDeployment",
"System.IterationPath": "$ProjectName$\\Iteration 2",
"System.WorkItemType": "Feature",
"System.State": "New",
"System.Reason": "New",
"System.CreatedDate": "2020-05-19T14:56:05.97Z",
"System.CreatedBy": "Cristhofer Munoz <crmuno@microsoft.com>",
"System.ChangedDate": "2020-07-13T19:26:52.76Z",
"System.ChangedBy": "Cristhofer Munoz <crmuno@microsoft.com>",
"System.Title": "5. Setup Azure Sentinel",
"Microsoft.VSTS.Scheduling.Effort": 0.0,
"System.Description": null,
"System.AssignedTo": null,
"Microsoft.VSTS.Scheduling.RemainingWork": 0.0,
"Microsoft.VSTS.Common.Priority": 2.0,
"System.BoardLane": null,
"System.Tags": null,
"Microsoft.VSTS.TCM.Steps": null,
"Microsoft.VSTS.TCM.Parameters": null,
"Microsoft.VSTS.TCM.LocalDataSource": null,
"Microsoft.VSTS.TCM.AutomationStatus": null,
"System.History": null
},
"relations": [
{
"rel": "System.LinkTypes.Hierarchy-Forward",
"url": "https://dev.azure.com/crmuno/_apis/wit/workItems/242",
"attributes": {
"isLocked": "false",
"name": "Child"
}
},
{
"rel": "System.LinkTypes.Hierarchy-Forward",
"url": "https://dev.azure.com/crmuno/_apis/wit/workItems/49",
"attributes": {
"isLocked": "false",
"name": "Child"
}
},
{
"rel": "System.LinkTypes.Hierarchy-Forward",
"url": "https://dev.azure.com/crmuno/_apis/wit/workItems/52",
"attributes": {
"isLocked": "false",
"name": "Child"
}
},
{
"rel": "System.LinkTypes.Hierarchy-Forward",
"url": "https://dev.azure.com/crmuno/_apis/wit/workItems/34",
"attributes": {
"isLocked": "false",
"name": "Child"
}
}
],
"url": "https://dev.azure.com/crmuno/_apis/wit/workItems/48"
},
{
"id": 1,
"rev": 8,
"fields": {
"System.AreaPath": "AzureSentinelDeployment",
"System.TeamProject": "AzureSentinelDeployment",
"System.IterationPath": "AzureSentinelDeployment",
"System.WorkItemType": "Feature",
"System.State": "New",
"System.Reason": "New",
"System.CreatedDate": "2020-05-11T19:08:55.427Z",
"System.CreatedBy": "Cristhofer Munoz <crmuno@microsoft.com>",
"System.ChangedDate": "2020-07-13T19:27:02.25Z",
"System.ChangedBy": "Cristhofer Munoz <crmuno@microsoft.com>",
"System.Title": "6. Data Collection ",
"Microsoft.VSTS.Scheduling.Effort": 0.0,
"System.Description": "<b><span style=\"font-size:9.0pt;font-family:&quot;Segoe UI&quot;,sans-serif;text-transform:uppercase;\">DATA Collection is FUNDAMENTAL</span></b><div><span style=\"font-size:9.0pt;font-family:&quot;Segoe UI&quot;,sans-serif;\"><span style=\"text-transform:uppercase;\"><b><br></b></span>Azure Sentinel improves the ability to collect and use data from a variety of sources to unblock\ncustomer deployments and unlock full SIEM value. Azure Sentinel supports a\nset of standard patterns for ingesting data at scale. Customers have the ability to easily onboard data sources via an extensive gallery of connectors.</span><br></div>",
"System.AssignedTo": null,
"Microsoft.VSTS.Scheduling.RemainingWork": 0.0,
"Microsoft.VSTS.Common.Priority": 2.0,
"System.BoardLane": null,
"System.Tags": null,
"Microsoft.VSTS.TCM.Steps": null,
"Microsoft.VSTS.TCM.Parameters": null,
"Microsoft.VSTS.TCM.LocalDataSource": null,
"Microsoft.VSTS.TCM.AutomationStatus": null,
"System.History": null
},
"relations": [
{
"rel": "System.LinkTypes.Hierarchy-Forward",
"url": "https://dev.azure.com/crmuno/_apis/wit/workItems/58",
"attributes": {
"isLocked": "false",
"name": "Child"
}
},
{
"rel": "System.LinkTypes.Hierarchy-Forward",
"url": "https://dev.azure.com/crmuno/_apis/wit/workItems/53",
"attributes": {
"isLocked": "false",
"name": "Child"
}
},
{
"rel": "System.LinkTypes.Hierarchy-Forward",
"url": "https://dev.azure.com/crmuno/_apis/wit/workItems/55",
"attributes": {
"isLocked": "false",
"name": "Child"
}
}
],
"url": "https://dev.azure.com/crmuno/_apis/wit/workItems/1"
},
{
"id": 9,
"rev": 5,
"fields": {
"System.AreaPath": "AzureSentinelDeployment",
"System.TeamProject": "AzureSentinelDeployment",
"System.IterationPath": "$ProjectName$\\Iteration 1",
"System.WorkItemType": "Feature",
"System.State": "New",
"System.Reason": "New",
"System.CreatedDate": "2020-05-11T19:08:57.87Z",
"System.CreatedBy": "Cristhofer Munoz <crmuno@microsoft.com>",
"System.ChangedDate": "2020-07-13T19:27:08.327Z",
"System.ChangedBy": "Cristhofer Munoz <crmuno@microsoft.com>",
"System.Title": "7. Visualize your security data with Workbooks",
"Microsoft.VSTS.Scheduling.Effort": 0.0,
"System.Description": "<div>To visualize and get analysis of what's happening on your environment, first, take a look at the overview dashboard to get an idea of the security posture of your organization. You can click on each element of these tiles to drill down to the raw data from which they are created. To help you reduce noise and minimize the number of alerts you have to review and investigate, Azure Sentinel uses a fusion technique to correlate alerts into incidents. incidents are groups of related alerts that together create an actionable incident that you can investigate and resolve.<br></div><div><a href=\"https://docs.microsoft.com/en-us/azure/sentinel/quickstart-get-visibility\">https://docs.microsoft.com/en-us/azure/sentinel/quickstart-get-visibility</a><br></div>",
"System.AssignedTo": null,
"Microsoft.VSTS.Scheduling.RemainingWork": 0.0,
"Microsoft.VSTS.Common.Priority": 2.0,
"System.BoardLane": null,
"System.Tags": null,
"Microsoft.VSTS.TCM.Steps": null,
"Microsoft.VSTS.TCM.Parameters": null,
"Microsoft.VSTS.TCM.LocalDataSource": null,
"Microsoft.VSTS.TCM.AutomationStatus": null,
"System.History": null
},
"relations": [
{
"rel": "System.LinkTypes.Hierarchy-Forward",
"url": "https://dev.azure.com/crmuno/_apis/wit/workItems/17",
"attributes": {
"isLocked": "false",
"comment": "Making a new link for the dependency",
"name": "Child"
}
}
],
"url": "https://dev.azure.com/crmuno/_apis/wit/workItems/9"
},
{
"id": 10,
"rev": 6,
"fields": {
"System.AreaPath": "AzureSentinelDeployment",
"System.TeamProject": "AzureSentinelDeployment",
"System.IterationPath": "$ProjectName$\\Iteration 1",
"System.WorkItemType": "Feature",
"System.State": "New",
"System.Reason": "New",
"System.CreatedDate": "2020-05-11T19:08:58.05Z",
"System.CreatedBy": "Cristhofer Munoz <crmuno@microsoft.com>",
"System.ChangedDate": "2020-07-13T19:27:14.447Z",
"System.ChangedBy": "Cristhofer Munoz <crmuno@microsoft.com>",
"System.Title": "8. Enabling Analytics",
"Microsoft.VSTS.Scheduling.Effort": 0.0,
"System.Description": "<div>After you connected your data sources to Azure Sentinel, you want to be notified when something suspicious happens. To enable you to do this, Azure Sentinel provides you with out-of-the-box built-in templates. These templates were designed by Microsoft's team of security experts and analysts based on known threats, common attack vectors, and suspicious activity escalation chains. After enabling these templates, they will automatically search for any activity that looks suspicious across your environment. Many of the templates can be customized to search for, or filter out, activities, according to your needs. The alerts generated by these templates will create incidents that you can assign and investigate in your environment.<br></div><div><br></div><div><a href=\"https://docs.microsoft.com/en-us/azure/sentinel/tutorial-detect-threats-built-in\">https://docs.microsoft.com/en-us/azure/sentinel/tutorial-detect-threats-built-in</a><br></div>",
"System.AssignedTo": null,
"Microsoft.VSTS.Scheduling.RemainingWork": 0.0,
"Microsoft.VSTS.Common.Priority": 2.0,
"System.BoardLane": null,
"System.Tags": null,
"Microsoft.VSTS.TCM.Steps": null,
"Microsoft.VSTS.TCM.Parameters": null,
"Microsoft.VSTS.TCM.LocalDataSource": null,
"Microsoft.VSTS.TCM.AutomationStatus": null,
"System.History": null
},
"relations": [
{
"rel": "System.LinkTypes.Hierarchy-Forward",
"url": "https://dev.azure.com/crmuno/_apis/wit/workItems/20",
"attributes": {
"isLocked": "false",
"comment": "Making a new link for the dependency",
"name": "Child"
}
},
{
"rel": "System.LinkTypes.Hierarchy-Forward",
"url": "https://dev.azure.com/crmuno/_apis/wit/workItems/21",
"attributes": {
"isLocked": "false",
"comment": "Making a new link for the dependency",
"name": "Child"
}
}
],
"url": "https://dev.azure.com/crmuno/_apis/wit/workItems/10"
},
{
"id": 5,
"rev": 5,
"fields": {
"System.AreaPath": "AzureSentinelDeployment",
"System.TeamProject": "AzureSentinelDeployment",
"System.IterationPath": "AzureSentinelDeployment",
"System.WorkItemType": "Feature",
"System.State": "New",
"System.Reason": "New",
"System.CreatedDate": "2020-05-11T19:08:56.84Z",
"System.CreatedBy": "Cristhofer Munoz <crmuno@microsoft.com>",
"System.ChangedDate": "2020-07-13T19:27:31.77Z",
"System.ChangedBy": "Cristhofer Munoz <crmuno@microsoft.com>",
"System.Title": "9. Respond to threats",
"Microsoft.VSTS.Scheduling.Effort": 0.0,
"System.Description": "<div><div style=\"box-sizing:border-box;font-family:Calibri, sans-serif;font-size:14.6667px;text-align:left;\"><span>Use security playbooks in Azure Sentinel to set automated threat responses to security-related issues detected by Azure Sentinel.<br></span><div><br></div><div>Understand playbooks<br></div><div>Create a playbook<br></div><div>Run a playbook<br></div><span>Automate threat responses</span></div><div style=\"box-sizing:border-box;font-family:Calibri, sans-serif;font-size:14.6667px;text-align:left;\"><span><br></span></div><a href=\"https://docs.microsoft.com/en-us/azure/sentinel/tutorial-respond-threats-playbook\">https://docs.microsoft.com/en-us/azure/sentinel/tutorial-respond-threats-playbook</a><br></div>",
"System.AssignedTo": null,
"Microsoft.VSTS.Scheduling.RemainingWork": 0.0,
"Microsoft.VSTS.Common.Priority": 2.0,
"System.BoardLane": null,
"System.Tags": null,
"Microsoft.VSTS.TCM.Steps": null,
"Microsoft.VSTS.TCM.Parameters": null,
"Microsoft.VSTS.TCM.LocalDataSource": null,
"Microsoft.VSTS.TCM.AutomationStatus": null,
"System.History": null
},
"relations": [
{
"rel": "System.LinkTypes.Hierarchy-Forward",
"url": "https://dev.azure.com/crmuno/_apis/wit/workItems/27",
"attributes": {
"isLocked": "false",
"comment": "Making a new link for the dependency",
"name": "Child"
}
},
{
"rel": "System.LinkTypes.Hierarchy-Forward",
"url": "https://dev.azure.com/crmuno/_apis/wit/workItems/240",
"attributes": {
"isLocked": "false",
"name": "Child"
}
},
{
"rel": "System.LinkTypes.Hierarchy-Forward",
"url": "https://dev.azure.com/crmuno/_apis/wit/workItems/25",
"attributes": {
"isLocked": "false",
"comment": "Making a new link for the dependency",
"name": "Child"
}
},
{
"rel": "AttachedFile",
"url": "https://dev.azure.com/crmuno/_apis/wit/attachments/22d26ba3-a7c7-430f-b021-c6c66e028469",
"attributes": {
"authorizedDate": "2020-05-19T20:17:20.2Z",
"id": "2813193",
"resourceCreatedDate": "2020-05-19T20:17:17.15Z",
"resourceModifiedDate": "2020-05-11T14:36:17.95Z",
"revisedDate": "9999-01-01T00:00:00Z",
"resourceSize": "199027",
"name": "CrossWS.gif"
}
}
],
"url": "https://dev.azure.com/crmuno/_apis/wit/workItems/5"
},
{
"id": 6,
"rev": 5,
"fields": {
"System.AreaPath": "AzureSentinelDeployment",
"System.TeamProject": "AzureSentinelDeployment",
"System.IterationPath": "AzureSentinelDeployment",
"System.WorkItemType": "Feature",
"System.State": "New",
"System.Reason": "New",
"System.CreatedDate": "2020-05-11T19:08:57.063Z",
"System.CreatedBy": "Cristhofer Munoz <crmuno@microsoft.com>",
"System.ChangedDate": "2020-07-13T19:27:39.697Z",
"System.ChangedBy": "Cristhofer Munoz <crmuno@microsoft.com>",
"System.Title": "10. Proactive Threat Hunting",
"Microsoft.VSTS.Scheduling.Effort": 0.0,
"System.Description": "<div>Azure Sentinel powerful hunting search and query tools to hunt for security threats across your organizations data sources. <br></div><div><a href=\"https://docs.microsoft.com/en-us/azure/sentinel/hunting\">https://docs.microsoft.com/en-us/azure/sentinel/hunting</a><br></div><br>",
"System.AssignedTo": null,
"Microsoft.VSTS.Scheduling.RemainingWork": 0.0,
"Microsoft.VSTS.Common.Priority": 2.0,
"System.BoardLane": null,
"System.Tags": null,
"Microsoft.VSTS.TCM.Steps": null,
"Microsoft.VSTS.TCM.Parameters": null,
"Microsoft.VSTS.TCM.LocalDataSource": null,
"Microsoft.VSTS.TCM.AutomationStatus": null,
"System.History": null
},
"relations": [
{
"rel": "System.LinkTypes.Hierarchy-Forward",
"url": "https://dev.azure.com/crmuno/_apis/wit/workItems/29",
"attributes": {
"isLocked": "false",
"comment": "Making a new link for the dependency",
"name": "Child"
}
},
{
"rel": "System.LinkTypes.Hierarchy-Forward",
"url": "https://dev.azure.com/crmuno/_apis/wit/workItems/30",
"attributes": {
"isLocked": "false",
"comment": "Making a new link for the dependency",
"name": "Child"
}
},
{
"rel": "System.LinkTypes.Hierarchy-Forward",
"url": "https://dev.azure.com/crmuno/_apis/wit/workItems/33",
"attributes": {
"isLocked": "false",
"comment": "Making a new link for the dependency",
"name": "Child"
}
},
{
"rel": "System.LinkTypes.Hierarchy-Forward",
"url": "https://dev.azure.com/crmuno/_apis/wit/workItems/28",
"attributes": {
"isLocked": "false",
"comment": "Making a new link for the dependency",
"name": "Child"
}
}
],
"url": "https://dev.azure.com/crmuno/_apis/wit/workItems/6"
},
{
"id": 43,
"rev": 4,
"fields": {
"System.AreaPath": "AzureSentinelDeployment",
"System.TeamProject": "AzureSentinelDeployment",
"System.IterationPath": "$ProjectName$\\Iteration 2",
"System.WorkItemType": "Feature",
"System.State": "New",
"System.Reason": "New",
"System.CreatedDate": "2020-05-11T19:28:00.723Z",
"System.CreatedBy": "Cristhofer Munoz <crmuno@microsoft.com>",
"System.ChangedDate": "2020-07-13T19:27:45.587Z",
"System.ChangedBy": "Cristhofer Munoz <crmuno@microsoft.com>",
"System.Title": "11. Advanced Topics ",
"Microsoft.VSTS.Scheduling.Effort": 0.0,
"System.Description": null,
"System.AssignedTo": null,
"Microsoft.VSTS.Scheduling.RemainingWork": 0.0,
"Microsoft.VSTS.Common.Priority": 2.0,
"System.BoardLane": null,
"System.Tags": null,
"Microsoft.VSTS.TCM.Steps": null,
"Microsoft.VSTS.TCM.Parameters": null,
"Microsoft.VSTS.TCM.LocalDataSource": null,
"Microsoft.VSTS.TCM.AutomationStatus": null,
"System.History": null
},
"relations": [
{
"rel": "System.LinkTypes.Hierarchy-Forward",
"url": "https://dev.azure.com/crmuno/_apis/wit/workItems/36",
"attributes": {
"isLocked": "false",
"name": "Child"
}
}
],
"url": "https://dev.azure.com/crmuno/_apis/wit/workItems/43"
}
],
"HttpStatusCode": 0,
"Message": null
}

1125
Tools/AzureSentinelDevopsBoardTemplate/WorkItems/Task.json Normal file
Просмотреть файл

Различия файлов скрыты, потому что одна или несколько строк слишком длинны

1112
Tools/AzureSentinelDevopsBoardTemplate/WorkItems/User Story.json Normal file
Просмотреть файл

Разница между файлами не показана из-за своего большого размера Загрузить разницу