mirror of
https://github.com/elastic/kibana.git
synced 2025-04-22 17:04:01 -04:00
b1bb5917de
## Summary Summarize your PR. If it involves visual changes include a screenshot or gif. [mplement UX enhancements to process alerts for file/network alerts.](https://github.com/orgs/elastic/projects/828/views/31) - UX enhancements to show different alerts categories(process, file, and network) - Each alert category has an associated icon - Group alerts show danger icons - Filter menu will be shown when there at least two alert categories - Click an alert category from the filter menu will filter the alerts and update alert count status message. Network Alerts <img width="1703" alt="image" src="https://user-images.githubusercontent.com/17135495/200449915-6250aa0d-6e81-481f-9733-5f948b87b378.png"> File and Process Alerts <img width="1712" alt="image" src="https://user-images.githubusercontent.com/17135495/200452712-f6714b80-22a9-48fe-9f74-406e73482fc0.png"> Group View <img width="1410" alt="image" src="https://user-images.githubusercontent.com/17135495/200453470-eb8bb92f-773d-4bca-b20d-ea73f4f8b4f8.png"> List View <img width="370" alt="image" src="https://user-images.githubusercontent.com/17135495/200453547-3170799e-23a0-462a-9e38-c6a9fb6ba748.png"> ### Checklist Delete any items that are not applicable to this PR. - [X] [Unit or functional tests](https://www.elastic.co/guide/en/kibana/master/development-tests.html) were updated or added to match the most common scenarios ### For maintainers - [X] This was checked for breaking API changes and was [labeled appropriately](https://www.elastic.co/guide/en/kibana/master/contributing.html#kibana-release-notes-process) |
||
|---|---|---|
| .. | ||
| common | ||
| public | ||
| server | ||
| .eslintrc.json | ||
| jest.config.js | ||
| kibana.json | ||
| package.json | ||
| README.md | ||
| tsconfig.json | ||
Session View
Session View is meant to provide a visualization into what is going on in a particular Linux environment where the agent is running. It looks likes a terminal emulator; however, it is a tool for introspecting process activity and understanding user and service behaviour in your Linux servers and infrastructure. It is a time-ordered series of process executions displayed in a tree over time.
It provides an audit trail of:
- Interactive processes being entered by a user into the terminal - User Input
- Processes and services which do not have a controlling tty (ie are not interactive)
- Output which is generated as a result of process activity - Output
- Nested sessions inside the entry session - Nested session (Note: For now nested sessions will display as they did at Cmd with no special handling for TMUX)
- Full telemetry about the process initiated event. This will include the information specified in the Linux logical event model
- Who executed the session or process, even if the user changes.
Development
Tests
Unit tests
From kibana path in your terminal go to this plugin root:
cd x-pack/plugins/session_view
Then run jest with:
yarn test:jest
Or if running from kibana root, you can specify the -i to specify the path:
yarn test:jest -i x-pack/plugins/session_view/