Skip to content

[problemchild] Update description of high_sum ML jobs #13172

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 3 commits into from
Mar 19, 2025
Merged

[problemchild] Update description of high_sum ML jobs #13172

merged 3 commits into from
Mar 19, 2025

Conversation

@sodhikirti07
Copy link
Contributor

@sodhikirti07 sodhikirti07 commented Mar 19, 2025

Proposed commit message

Changed the description of problemchild high_sum jobs.

Checklist

  • I have reviewed tips for building integrations and this pull request is aligned with them.
  • I have verified that all data streams collect metrics or logs.
  • I have added an entry to my package's changelog.yml file.
  • I have verified that Kibana version constraints are current according to guidelines.
  • I have verified that any added dashboard complies with Kibana's Dashboard good practices

Author's Checklist

  • Changed the description of problemchild high_sum jobs to reflect that the job detects unusual host names, user names and parent process names with set of suspicious child processes.
  • Updated changelog.yml and manifest.yml

How to test this PR locally

Related issues

Screenshots
@sodhikirti07 sodhikirti07 added Integration:problemchild Living off the Land Attack Detection Team:Security-Applied ML Elastic Security Protections Machine Learning (ML) team [elastic/sec-applied-ml] labels Mar 19, 2025
@sodhikirti07 sodhikirti07 requested review from a team as code owners March 19, 2025 16:59
@elasticmachine
Copy link

elasticmachine commented Mar 19, 2025

Pinging @elastic/sec-applied-ml (Team:Security-Applied ML)
peteharverson
peteharverson approved these changes Mar 19, 2025
View reviewed changes
Copy link
Contributor

@peteharverson peteharverson left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM
@elastic-sonarqube
Copy link

elastic-sonarqube bot commented Mar 19, 2025

Quality Gate passed Quality Gate passed

Issues
0 New issues
0 Fixed issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube
@elasticmachine
Copy link

elasticmachine commented Mar 19, 2025

💚 Build Succeeded

History
@sodhikirti07 sodhikirti07 merged commit 232eee2 into main Mar 19, 2025
7 checks passed
@sodhikirti07 sodhikirti07 deleted the problemchild_update_jobs_description branch March 19, 2025 19:10
@elastic-vault-github-plugin-prod
Copy link

elastic-vault-github-plugin-prod bot commented Mar 19, 2025

Package problemchild - 2.3.1 containing this change is available at https://epr.elastic.co/package/problemchild/2.3.1/
flexitrev pushed a commit that referenced this pull request Mar 20, 2025
@sodhikirti07 @flexitrev
[problemchild] Update description of high_sum ML jobs (#13172)
c4c9f9f 
Update definition of problemchild high_sum jobs
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

Integration:problemchild Living off the Land Attack Detection Team:Security-Applied ML Elastic Security Protections Machine Learning (ML) team [elastic/sec-applied-ml]

5 participants

@sodhikirti07 @elasticmachine @peteharverson @jmcarlock