* add new reference page for prebuilt packs
* add link to new prebuilt pack ref page
* convert list to table
* add table close
* Apply suggestions from code review
Co-authored-by: gchaps <33642766+gchaps@users.noreply.github.com>
Co-authored-by: gchaps <33642766+gchaps@users.noreply.github.com>
* Update osquery.asciidoc
Add a note about the requirement that the Osquery Manager integration does not work for Elastic Agents in standalone mode.
* Update docs/osquery/osquery.asciidoc
Co-authored-by: gchaps <33642766+gchaps@users.noreply.github.com>
Co-authored-by: gchaps <33642766+gchaps@users.noreply.github.com>
* update image to latest
* clarify the saved queries section
* add one more clarification to saved queries section
* remove note about ECS mapping that no longer applies
* copy edit
* address review comments
* small copy edit
* add a link and info to help users find the log file location
* address review comment
* update usage section for changes to live queries, saved queries, packs, and ECS mapping
* add info about custom configuration, ECS mapping for date fields, custom tables, and other copy edits
* address pr comment, add info about static values for ecs mapping, make other minor copy edits
* add more info about the new k8s tables
* Apply suggestions from code review
Co-authored-by: gchaps <33642766+gchaps@users.noreply.github.com>
* update per code review comments
* Update docs/osquery/osquery.asciidoc
Co-authored-by: gchaps <33642766+gchaps@users.noreply.github.com>
* address review comments
Co-authored-by: Kibana Machine <42973632+kibanamachine@users.noreply.github.com>
Co-authored-by: gchaps <33642766+gchaps@users.noreply.github.com>
