Add dataTypes in examples

utmstack · Feb 6, 2024 · 6a20356 · 6a20356
1 parent 7edfe7c
commit 6a20356
Show file tree

Hide file tree

Showing 3 changed files with 5 additions and 4 deletions.
diff --git a/Correlation Rules/README.md b/Correlation Rules/README.md
@@ -339,6 +339,7 @@ We recommend using search when the analysis period exceeds 1h or the rule's comp
   solution: Refer to NIST guidelines when creating password policies and set account lockout policies after a certain number of failed login attempts to prevent passwords from being guessed. Too strict a policy may create a denial of service condition and render environments un-usable, with all accounts used in the brute force being locked-out.
   category: User Account Authentication
   tactic: "Brute Force: Password Guessing"
+  dataTypes: ["wineventlog"]
   reference: 
     - "https://attack.mitre.org/techniques/T1110/001/"
   frequency: 10

diff --git a/_site/Installation/FederationServiceInstallation.html b/_site/Installation/FederationServiceInstallation.html
@@ -1,6 +1,6 @@
 <!DOCTYPE html> <html lang="en-US"> <head> <meta charset="UTF-8"> <meta http-equiv="X-UA-Compatible" content="IE=Edge"> <link rel="stylesheet" href="/assets/css/just-the-docs-default.css"> <script src="/assets/js/vendor/lunr.min.js"></script> <script src="/assets/js/just-the-docs.js"></script> <meta name="viewport" content="width=device-width, initial-scale=1"> <!-- Begin Jekyll SEO tag v2.8.0 --> <title>Federation Service Installation | Documentation</title> <meta name="generator" content="Jekyll v4.3.3" /> <meta property="og:title" content="Federation Service Installation" /> <meta property="og:locale" content="en_US" /> <meta name="description" content="UTMStack documentation." /> <meta property="og:description" content="UTMStack documentation." /> <link rel="canonical" href="http://localhost:4000/Installation/FederationServiceInstallation.html" /> <meta property="og:url" content="http://localhost:4000/Installation/FederationServiceInstallation.html" /> <meta property="og:site_name" content="Documentation" /> <meta property="og:type" content="website" /> <meta name="twitter:card" content="summary" /> <meta property="twitter:title" content="Federation Service Installation" /> <script type="application/ld+json"> {"@context":"https://schema.org","@type":"WebPage","description":"UTMStack documentation.","headline":"Federation Service Installation","url":"http://localhost:4000/Installation/FederationServiceInstallation.html"}</script> <!-- End Jekyll SEO tag --> </head> <body> <a class="skip-to-main" href="#main-content">Skip to main content</a> <svg xmlns="http://www.w3.org/2000/svg" class="d-none"> <symbol id="svg-link" viewBox="0 0 24 24"> <title>Link</title> <svg xmlns="http://www.w3.org/2000/svg" width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="feather feather-link"> <path d="M10 13a5 5 0 0 0 7.54.54l3-3a5 5 0 0 0-7.07-7.07l-1.72 1.71"></path><path d="M14 11a5 5 0 0 0-7.54-.54l-3 3a5 5 0 0 0 7.07 7.07l1.71-1.71"></path> </svg> </symbol> <symbol id="svg-menu" viewBox="0 0 24 24"> <title>Menu</title> <svg xmlns="http://www.w3.org/2000/svg" width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="feather feather-menu"> <line x1="3" y1="12" x2="21" y2="12"></line><line x1="3" y1="6" x2="21" y2="6"></line><line x1="3" y1="18" x2="21" y2="18"></line> </svg> </symbol> <symbol id="svg-arrow-right" viewBox="0 0 24 24"> <title>Expand</title> <svg xmlns="http://www.w3.org/2000/svg" width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="feather feather-chevron-right"> <polyline points="9 18 15 12 9 6"></polyline> </svg> </symbol> <!-- Feather. MIT License: https://github.com/feathericons/feather/blob/master/LICENSE --> <symbol id="svg-external-link" width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="feather feather-external-link"> <title id="svg-external-link-title">(external link)</title> <path d="M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"></path><polyline points="15 3 21 3 21 9"></polyline><line x1="10" y1="14" x2="21" y2="3"></line> </symbol> <symbol id="svg-doc" viewBox="0 0 24 24"> <title>Document</title> <svg xmlns="http://www.w3.org/2000/svg" width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="feather feather-file"> <path d="M13 2H6a2 2 0 0 0-2 2v16a2 2 0 0 0 2 2h12a2 2 0 0 0 2-2V9z"></path><polyline points="13 2 13 9 20 9"></polyline> </svg> </symbol> <symbol id="svg-search" viewBox="0 0 24 24"> <title>Search</title> <svg xmlns="http://www.w3.org/2000/svg" width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="feather feather-search"> <circle cx="11" cy="11" r="8"></circle><line x1="21" y1="21" x2="16.65" y2="16.65"></line> </svg> </symbol> <!-- Bootstrap Icons. MIT License: https://github.com/twbs/icons/blob/main/LICENSE.md --> <symbol id="svg-copy" viewBox="0 0 16 16"> <title>Copy</title> <svg xmlns="http://www.w3.org/2000/svg" width="16" height="16" fill="currentColor" class="bi bi-clipboard" viewBox="0 0 16 16"> <path d="M4 1.5H3a2 2 0 0 0-2 2V14a2 2 0 0 0 2 2h10a2 2 0 0 0 2-2V3.5a2 2 0 0 0-2-2h-1v1h1a1 1 0 0 1 1 1V14a1 1 0 0 1-1 1H3a1 1 0 0 1-1-1V3.5a1 1 0 0 1 1-1h1v-1z"/> <path d="M9.5 1a.5.5 0 0 1 .5.5v1a.5.5 0 0 1-.5.5h-3a.5.5 0 0 1-.5-.5v-1a.5.5 0 0 1 .5-.5h3zm-3-1A1.5 1.5 0 0 0 5 1.5v1A1.5 1.5 0 0 0 6.5 4h3A1.5 1.5 0 0 0 11 2.5v-1A1.5 1.5 0 0 0 9.5 0h-3z"/> </svg> </symbol> <symbol id="svg-copied" viewBox="0 0 16 16"> <title>Copied</title> <svg xmlns="http://www.w3.org/2000/svg" width="16" height="16" fill="currentColor" class="bi bi-clipboard-check-fill" viewBox="0 0 16 16"> <path d="M6.5 0A1.5 1.5 0 0 0 5 1.5v1A1.5 1.5 0 0 0 6.5 4h3A1.5 1.5 0 0 0 11 2.5v-1A1.5 1.5 0 0 0 9.5 0h-3Zm3 1a.5.5 0 0 1 .5.5v1a.5.5 0 0 1-.5.5h-3a.5.5 0 0 1-.5-.5v-1a.5.5 0 0 1 .5-.5h3Z"/> <path d="M4 1.5H3a2 2 0 0 0-2 2V14a2 2 0 0 0 2 2h10a2 2 0 0 0 2-2V3.5a2 2 0 0 0-2-2h-1v1A2.5 2.5 0 0 1 9.5 5h-3A2.5 2.5 0 0 1 4 2.5v-1Zm6.854 7.354-3 3a.5.5 0 0 1-.708 0l-1.5-1.5a.5.5 0 0 1 .708-.708L7.5 10.793l2.646-2.647a.5.5 0 0 1 .708.708Z"/> </svg> </symbol> </svg> <div class="side-bar"> <div class="site-header"> <a href="/" class="site-title lh-tight"> Documentation </a> <a href="#" id="menu-button" class="site-button"> <svg viewBox="0 0 24 24" class="icon"><use xlink:href="#svg-menu"></use></svg> </a> </div> <nav aria-label="Main" id="site-nav" class="site-nav"> <ul class="nav-list"><li class="nav-list-item"><a href="/" class="nav-list-link">Introduction</a></li><li class="nav-list-item"><a href="/Use%20Cases/ThreatDetectionandResponse.html" class="nav-list-link">Use Case</a></li><li class="nav-list-item"><a href="#" class="nav-list-expander" aria-label="toggle links in Configuration category"> <svg viewBox="0 0 24 24"><use xlink:href="#svg-arrow-right"></use></svg> </a><a href="/UTMStackComponents/Configuration/README.html" class="nav-list-link">Configuration</a><ul class="nav-list"><li class="nav-list-item "><a href="/UTMStackComponents/Configuration/ConectionKey.html" class="nav-list-link">Connection Key</a></li><li class="nav-list-item "><a href="/UTMStackComponents/Configuration/DataRetention.html" class="nav-list-link">Data Retention</a></li><li class="nav-list-item "><a href="/UTMStackComponents/Configuration/Licence.html" class="nav-list-link">License</a></li><li class="nav-list-item "><a href="/UTMStackComponents/Configuration/ApplicationSetting.html" class="nav-list-link">Application Settings</a></li><li class="nav-list-item "><a href="/UTMStackComponents/Configuration/UserAccessAudit.html" class="nav-list-link">User Access Audit</a></li><li class="nav-list-item "><a href="/UTMStackComponents/Configuration/indexManagment.html" class="nav-list-link">Index Management</a></li><li class="nav-list-item "><a href="/UTMStackComponents/Configuration/indexPattern.html" class="nav-list-link">Index Patterns Management</a></li><li class="nav-list-item "><a href="/UTMStackComponents/Configuration/ApplicationLogs.html" class="nav-list-link">Application Logs Overview</a></li><li class="nav-list-item "><a href="/UTMStackComponents/Configuration/MenuManagment.html" class="nav-list-link">Menu Management</a></li></ul></li><li class="nav-list-item"><a href="/QuickStart.html" class="nav-list-link">Quick Start</a></li><li class="nav-list-item active"><a href="#" class="nav-list-expander" aria-label="toggle links in Installation category"> <svg viewBox="0 0 24 24"><use xlink:href="#svg-arrow-right"></use></svg> </a><a href="/Installation/README.html" class="nav-list-link">Installation</a><ul class="nav-list"><li class="nav-list-item "><a href="/Installation/Architecture.html" class="nav-list-link">Architecture</a></li><li class="nav-list-item "><a href="/Installation/SystemRequirements.html" class="nav-list-link">System Requirements</a></li><li class="nav-list-item "><a href="/Installation/MasterServerInstallation.html" class="nav-list-link">Master Server Setup Guide</a></li><li class="nav-list-item "><a href="/Installation/SSLConfiguration.html" class="nav-list-link">SSL Certificate Management in UTMStack</a></li><li class="nav-list-item "><a href="/Installation/FirewallRules.html" class="nav-list-link">Firewall Rules</a></li><li class="nav-list-item "><a href="/Installation/InstallationGuideAzure.html" class="nav-list-link">Master Installation Guide for Azure</a></li><li class="nav-list-item active"><a href="/Installation/FederationServiceInstallation.html" class="nav-list-link active">Federation Service Installation</a></li></ul></li><li class="nav-list-item"><a href="#" class="nav-list-expander" aria-label="toggle links in Dashboards category"> <svg viewBox="0 0 24 24"><use xlink:href="#svg-arrow-right"></use></svg> </a><a href="/UTMStackComponents/Dashboards/README.html" class="nav-list-link">Dashboards</a><ul class="nav-list"><li class="nav-list-item "><a href="/UTMStackComponents/Dashboards/DashboarList.html" class="nav-list-link">Dashboards List Overview</a></li><li class="nav-list-item "><a href="/UTMStackComponents/Dashboards/DashboardCreation.html" class="nav-list-link">Creating a Dashboard</a></li><li class="nav-list-item "><a href="/UTMStackComponents/Dashboards/VisualizationList.html" class="nav-list-link">Visualization List</a></li><li class="nav-list-item "><a href="/UTMStackComponents/Dashboards/VisualizationCreation.html" class="nav-list-link">Creating a Visualization</a></li><li class="nav-list-item "><a href="#" class="nav-list-expander" aria-label="toggle links in Charts category"> <svg viewBox="0 0 24 24"><use xlink:href="#svg-arrow-right"></use></svg> </a><a href="/UTMStackComponents/Dashboards/Charts/README.html" class="nav-list-link">Charts</a><ul class="nav-list"><li class="nav-list-item "> <a href="/UTMStackComponents/Dashboards/Charts/Line.html" class="nav-list-link">Line, Area LineBar, Bar and Bar Horizontal charts</a> </li><li class="nav-list-item "> <a href="/UTMStackComponents/Dashboards/Charts/Metric.html" class="nav-list-link">Metric</a> </li><li class="nav-list-item "> <a href="/UTMStackComponents/Dashboards/Charts/Pie.html" class="nav-list-link">Pie</a> </li><li class="nav-list-item "> <a href="/UTMStackComponents/Dashboards/Charts/List.html" class="nav-list-link">List</a> </li><li class="nav-list-item "> <a href="/UTMStackComponents/Dashboards/Charts/HeatMap.html" class="nav-list-link">Heat Map</a> </li><li class="nav-list-item "> <a href="/UTMStackComponents/Dashboards/Charts/Goal.html" class="nav-list-link">Goal</a> </li><li class="nav-list-item "> <a href="/UTMStackComponents/Dashboards/Charts/Table.html" class="nav-list-link">Table</a> </li><li class="nav-list-item "> <a href="/UTMStackComponents/Dashboards/Charts/TagCloud.html" class="nav-list-link">Tag Cloud</a> </li></ul></li></ul></li><li class="nav-list-item"><a href="#" class="nav-list-expander" aria-label="toggle links in Threat Management category"> <svg viewBox="0 0 24 24"><use xlink:href="#svg-arrow-right"></use></svg> </a><a href="/UTMStackComponents/Threat%20Management/README.html" class="nav-list-link">Threat Management</a><ul class="nav-list"><li class="nav-list-item "><a href="/UTMStackComponents/Threat%20Management/AlertManagement.html" class="nav-list-link">Alert Management</a></li><li class="nav-list-item "><a href="/UTMStackComponents/Threat%20Management/FalsePositive.html" class="nav-list-link">False Positive</a></li></ul></li><li class="nav-list-item"><a href="#" class="nav-list-expander" aria-label="toggle links in Incident Management category"> <svg viewBox="0 0 24 24"><use xlink:href="#svg-arrow-right"></use></svg> </a><a href="/UTMStackComponents/Incidents/README.html" class="nav-list-link">Incident Management</a><ul class="nav-list"><li class="nav-list-item "><a href="/UTMStackComponents/Incidents/Incidents.html" class="nav-list-link">Incidents</a></li><li class="nav-list-item "><a href="/UTMStackComponents/Incidents/IncidentResponseAutomation.html" class="nav-list-link">Incident Response Automation</a></li><li class="nav-list-item "><a href="/UTMStackComponents/Incidents/IncidentResponsePredefinedExamples.html" class="nav-list-link">Predefined playbooks</a></li></ul></li><li class="nav-list-item"><a href="#" class="nav-list-expander" aria-label="toggle links in Correlation Rules category"> <svg viewBox="0 0 24 24"><use xlink:href="#svg-arrow-right"></use></svg> </a><a href="/Correlation%20Rules/README.html" class="nav-list-link">Correlation Rules</a><ul class="nav-list"><li class="nav-list-item "><a href="/Correlation%20Rules/CustomizableRules.html" class="nav-list-link">Customizable Rules</a></li></ul></li><li class="nav-list-item"><a href="/UTMStackComponents/Log%20Explorer/README.html" class="nav-list-link">Log Explorer Module</a></li><li class="nav-list-item"><a href="/QA/README.html" class="nav-list-link">Q&A</a></li><li class="nav-list-item"><a href="/UTMStackComponents/Compliance/README.html" class="nav-list-link">Compliance Management</a></li><li class="nav-list-item"><a href="/Integrations/ThreatDetectionandResponse.html" class="nav-list-link">Integrations</a></li></ul> </nav> <footer class="site-footer"> This site uses <a href="https://github.com/just-the-docs/just-the-docs">Just the Docs</a>, a documentation theme for Jekyll. </footer> </div> <div class="main" id="top"> <div id="main-header" class="main-header"> <div class="search"> <div class="search-input-wrap"> <input type="text" id="search-input" class="search-input" tabindex="0" placeholder="Search Documentation" aria-label="Search Documentation" autocomplete="off"> <label for="search-input" class="search-label"><svg viewBox="0 0 24 24" class="search-icon"><use xlink:href="#svg-search"></use></svg></label> </div> <div id="search-results" class="search-results"></div> </div> </div> <div id="main-content-wrap" class="main-content-wrap"> <nav aria-label="Breadcrumb" class="breadcrumb-nav"> <ol class="breadcrumb-nav-list"> <li class="breadcrumb-nav-list-item"><a href="/Installation/README.html">Installation</a></li> <li class="breadcrumb-nav-list-item"><span>Federation Service Installation</span></li> </ol> </nav> <div id="main-content" class="main-content" role="main"> <h1 id="utmstack-federation-service-installation-guide"> <a href="#utmstack-federation-service-installation-guide" class="anchor-heading" aria-labelledby="utmstack-federation-service-installation-guide"><svg viewBox="0 0 16 16" aria-hidden="true"><use xlink:href="#svg-link"></use></svg></a> UTMStack Federation Service Installation Guide </h1> <p>Welcome to the installation page for the Federated Master Deployment of UTMStack! If you’re an MSP (Managed Service Provider) with the mission of managing multiple instances of UTMStack across various customer networks, you’re in the right place. Our federated master deployment model is meticulously designed to provide a streamlined management experience, presenting a holistic view of activities across multiple clients and organizations.</p> <p>This guide will walk you through the process of installing the UTMStack Federation Service (UTMStackFS) on an Ubuntu 20.04 LTS system. Please follow the steps below to ensure a successful installation.</p> <p>For more details contact Customer Service.</p> <h2 id="preparing-for-installation"> <a href="#preparing-for-installation" class="anchor-heading" aria-labelledby="preparing-for-installation"><svg viewBox="0 0 16 16" aria-hidden="true"><use xlink:href="#svg-link"></use></svg></a> Preparing for Installation </h2> <ol> <li>Update the package list on your system:</li> </ol> <div class="language-bash highlighter-rouge"><div class="highlight"><pre class="highlight"><code><span class="nb">sudo </span>apt update
 </code></pre></div></div> <ol> <li>Install the necessary dependencies, including wget and net-tools:</li> </ol> <div class="language-bash highlighter-rouge"><div class="highlight"><pre class="highlight"><code><span class="nb">sudo </span>apt <span class="nb">install </span>wget net-tools
-</code></pre></div></div> <ol> <li>Download the latest version of the UTMStackFS installer from the official GitHub repository. You can use the following command to retrieve the installer:</li> </ol> <div class="language-bash highlighter-rouge"><div class="highlight"><pre class="highlight"><code>wget https://github.com/AtlasInsideCorp/UTMStackFSInstaller/releases/latest/download/UTMStackFSInstaller.zip
+</code></pre></div></div> <ol> <li>Download the latest version of the UTMStackFS installer from the official GitHub repository. You can use the following command to retrieve the installer:</li> </ol> <div class="language-bash highlighter-rouge"><div class="highlight"><pre class="highlight"><code>wget https://github.com/utmstack/UTMStackFSInstaller/releases/download/v10.0.0/UTMStackFSInstaller.zip
 </code></pre></div></div> <ol> <li>Unzip the installer package using the following command. If you don’t have the unzip tool installed, you can do so by running sudo apt-get install zip unzip:</li> </ol> <div class="language-bash highlighter-rouge"><div class="highlight"><pre class="highlight"><code>unzip UTMStackFSInstaller<span class="k">*</span>.zip
 </code></pre></div></div> <ol> <li>Set execution permissions for the installer script:</li> </ol> <div class="language-bash highlighter-rouge"><div class="highlight"><pre class="highlight"><code><span class="nb">cd </span>UTMStackFSInstaller
 <span class="nb">sudo chmod</span> +x utm_fs_installer.sh