Add Microsoft Defender ATP by marc-gr · Pull Request #468 · elastic/integrations

marc-gr · 2020-12-15T16:02:39Z

What does this PR do?

Adds defender ATP data stream

Checklist

I have reviewed tips for building integrations and this pull request is aligned with them.
I have verified that all datasets collect metrics or logs.

Author's Checklist

Fix lens dashboards
Pipeline tests
System tests

Screenshots

elasticmachine · 2020-12-15T16:02:41Z

Pinging @elastic/security-external-integrations (Team:Security-External Integrations)

elasticmachine · 2020-12-15T16:31:35Z

💚 Build Succeeded

the below badges are clickable and redirect to their specific view in the CI or DOCS

Expand to view the summary

Build stats

Build Cause: Started by user Marc Guasch
Start Time: 2021-02-18T16:25:40.315+0000
Duration: 2 min 0 sec
Commit: e7c9494

Trends 🧪

Test errors

Expand to view the tests failures

`Check integrations / microsoft / microsoft: check / system test: logfile – microsoft.defender_atp`

no error details

Expand to view the stacktrace

 one or more errors found in documents stored in logs-microsoft.defender_atp-ep data stream: [0] found error.message in event: field [cloud.account.id] already exists

packages/microsoft/data_stream/defender_atp/_dev/test/system/config.yml

packages/microsoft/_dev/deploy/docker/Dockerfile

packages/microsoft/data_stream/defender_atp/agent/stream/log.yml.hbs

packages/microsoft/data_stream/defender_atp/manifest.yml

marc-gr added enhancement New feature or request [zube]: In Progress Team:Security-External Integrations labels Dec 15, 2020

marc-gr requested a review from a team December 15, 2020 16:02

marc-gr force-pushed the defender_atp branch from 479ea65 to ff59eb9 Compare December 24, 2020 11:39

andrewkroh reviewed Feb 1, 2021

View reviewed changes

packages/microsoft/data_stream/defender_atp/_dev/test/system/config.yml Outdated Show resolved Hide resolved

packages/microsoft/_dev/deploy/docker/Dockerfile Outdated Show resolved Hide resolved

andrewkroh changed the title ~~Add defender atp~~ Add Microsoft Defender ATP Feb 1, 2021

marc-gr force-pushed the defender_atp branch from ff59eb9 to 97256d9 Compare February 2, 2021 09:48

andrewkroh mentioned this pull request Feb 5, 2021

Migrate Microsoft Defender ATP package #651

Closed

14 tasks

marc-gr mentioned this pull request Feb 18, 2021

[ECS] Upgrade modules to 1.8 elastic/beats#23118

Closed

89 tasks

andrewkroh reviewed Feb 18, 2021

View reviewed changes

packages/microsoft/data_stream/defender_atp/agent/stream/log.yml.hbs Outdated Show resolved Hide resolved

packages/microsoft/data_stream/defender_atp/manifest.yml Outdated Show resolved Hide resolved

packages/microsoft/data_stream/defender_atp/manifest.yml Outdated Show resolved Hide resolved

marc-gr removed the [zube]: In Progress label Feb 18, 2021

marc-gr force-pushed the defender_atp branch from 97256d9 to 1ed7d5a Compare February 18, 2021 14:06

marc-gr requested a review from andrewkroh February 18, 2021 14:07

marc-gr force-pushed the defender_atp branch from 1ed7d5a to e656105 Compare February 18, 2021 15:27

marc-gr added 3 commits February 18, 2021 16:59

Add defender atp

8b0f833

New test files structure

3a0ae9e

Apply suggestions and update with latest changes

e7c9494

marc-gr force-pushed the defender_atp branch from e656105 to e7c9494 Compare February 18, 2021 16:00

andrewkroh approved these changes Feb 18, 2021

View reviewed changes

marc-gr merged commit 4c2395c into elastic:master Feb 18, 2021

marc-gr deleted the defender_atp branch February 18, 2021 18:01

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Add Microsoft Defender ATP#468

Add Microsoft Defender ATP#468
marc-gr merged 3 commits intoelastic:masterfrom
marc-gr:defender_atp

marc-gr commented Dec 15, 2020 •

edited

Loading

Uh oh!

elasticmachine commented Dec 15, 2020

Uh oh!

elasticmachine commented Dec 15, 2020 •

edited

Loading

Build stats

Trends 🧪

`Check integrations / microsoft / microsoft: check / system test: logfile – microsoft.defender_atp`

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

Conversation

marc-gr commented Dec 15, 2020 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

What does this PR do?

Checklist

Author's Checklist

Screenshots

Uh oh!

elasticmachine commented Dec 15, 2020

Uh oh!

elasticmachine commented Dec 15, 2020 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

💚 Build Succeeded

Build stats

Trends 🧪

Test errors

Check integrations / microsoft / microsoft: check / system test: logfile – microsoft.defender_atp

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

marc-gr commented Dec 15, 2020 •

edited

Loading

elasticmachine commented Dec 15, 2020 •

edited

Loading

`Check integrations / microsoft / microsoft: check / system test: logfile – microsoft.defender_atp`