Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[New Rule] Elastic Endpoint and External Alerts #42

Merged
merged 13 commits into from
Jul 9, 2020
Prev Previous commit
Next Next commit
Fixing test for unrequired default
  • Loading branch information
spong committed Jul 9, 2020
commit c17ea374f594cea699d3642c75a66af217058d38
1 change: 0 additions & 1 deletion rules/endpoint/elastic_endpoint.toml
Original file line number Diff line number Diff line change
@@ -13,7 +13,6 @@ immediately begin investigating your Elastic Endpoint alerts.
enabled = true
from = "now-10m"
index = ["logs-*"]
spong marked this conversation as resolved.
Show resolved Hide resolved
interval = "5m"
language = "kuery"
license = "Elastic License"
name = "Elastic Endpoint"