New boards and panels

[gdiazlo]

Introduction

We want to update our dashboards, generating new documentation along the way. Also, we want to improve our support for Elastic and Splunk and ensure future compatibility.

Our baseline will be the dashboards currently documented:

• https://documentation.wazuh.com/current/_images/security-events1.png
• https://documentation.wazuh.com/current/_images/malware-detection1.png
• https://documentation.wazuh.com/current/_images/log-data-analysis1.png
• https://documentation.wazuh.com/current/_images/file-integrity-monitoring1.png
• https://documentation.wazuh.com/current/_images/vulnerability-detection1.png
• https://documentation.wazuh.com/current/_images/security-configuration-assessment1.png
• https://documentation.wazuh.com/current/_images/incident-response1.png
• https://documentation.wazuh.com/current/_images/regulatory-compliance1.png
• https://documentation.wazuh.com/current/_images/cloud-security1.png
• https://documentation.wazuh.com/current/_images/containers-security1.png

These dashboards will be built using the dashboards plugins / SDK for each platform. This means these won't include access to the Wazuh API, just to the indexed events on each platform.

When we're comfortable with the design of these dashboards, we will implement them into the Wazuh dashboards application.

We will use our sample data to generate the dashboards. If we lack data for any board or panel, we need to generate it and add it to our sample data package.

Tasks

• Create redistributable boards for Elastic #5185
• Create redistributable boards for Splunk #5222
• Create redistributable boards for Opensearch #5402

For each platform, we need to implement the following dashboards:

• Security analysis
• Intrusion detection
• Log data analysis
• File integrity monitoring
• Vulnerability detection
• Configuration assessment
• Incident response
• Regulatory compliance
• Cloud security
• Containers security

We want these dashboards to be parametrized with the index pattern they should look for.