dashboard.json

[
  {
    "_id": "AWKsT5NqI7j8kzidFqK_",
    "_type": "dashboard",
    "_source": {
      "title": "ATT&CK Dashboard",
      "hits": 0,
      "description": "A dashboard for visualizing attacks in the Honeypot",
      "panelsJSON": "[{\"col\":1,\"id\":\"AWKsTp5-I7j8kzidFqIV\",\"panelIndex\":1,\"row\":1,\"size_x\":6,\"size_y\":4,\"type\":\"visualization\"},{\"col\":1,\"id\":\"AWKsZGovI7j8kzidFq_s\",\"panelIndex\":3,\"row\":5,\"size_x\":6,\"size_y\":3,\"type\":\"visualization\"},{\"col\":7,\"columns\":[\"rule_name\",\"alert_info.attack_name\",\"alert_info.attack_id\",\"alert_info.attack_tactic\"],\"id\":\"AWKsbHB9I7j8kzidFrXm\",\"panelIndex\":4,\"row\":1,\"size_x\":6,\"size_y\":4,\"sort\":[\"@timestamp\",\"desc\"],\"type\":\"search\"},{\"size_x\":6,\"size_y\":3,\"panelIndex\":5,\"type\":\"visualization\",\"id\":\"AWKscao6I7j8kzidFrnQ\",\"col\":7,\"row\":5}]",
      "optionsJSON": "{\"darkTheme\":false}",
      "uiStateJSON": "{\"P-1\":{\"spy\":{\"mode\":{\"fill\":false,\"name\":null}}}}",
      "version": 1,
      "timeRestore": false,
      "kibanaSavedObjectMeta": {
        "searchSourceJSON": "{\"filter\":[{\"query\":{\"match_all\":{}}}],\"highlightAll\":true,\"version\":true}"
      }
    }
  },
  {
    "_id": "AWKsbHB9I7j8kzidFrXm",
    "_type": "search",
    "_source": {
      "title": "Alert Info",
      "description": "",
      "hits": 0,
      "columns": [
        "rule_name",
        "alert_info.attack_name",
        "alert_info.attack_id",
        "alert_info.attack_tactic"
      ],
      "sort": [
        "@timestamp",
        "desc"
      ],
      "version": 1,
      "kibanaSavedObjectMeta": {
        "searchSourceJSON": "{\"index\":\"AWKr6JFBI7j8kzidFmpp\",\"highlightAll\":true,\"version\":true,\"query\":{\"query_string\":{\"query\":\"alert_info.type: MITREAttack\",\"analyze_wildcard\":true}},\"filter\":[]}"
      }
    }
  },
  {
    "_id": "AWKsTp5-I7j8kzidFqIV",
    "_type": "visualization",
    "_source": {
      "title": "MITRE ATT&CK Tactic Distribution",
      "visState": "{\"title\":\"MITRE ATT&CK Tactic Distribution\",\"type\":\"pie\",\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"legendPosition\":\"right\",\"type\":\"pie\"},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"2\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"segment\",\"params\":{\"field\":\"alert_info.attack_tactic.keyword\",\"size\":5,\"order\":\"desc\",\"orderBy\":\"1\",\"customLabel\":\"Tactic\"}}],\"listeners\":{}}",
      "uiStateJSON": "{}",
      "description": "",
      "version": 1,
      "kibanaSavedObjectMeta": {
        "searchSourceJSON": "{\"index\":\"AWKr6JFBI7j8kzidFmpp\",\"query\":{\"query_string\":{\"query\":\"alert_info.type: MITREAttack\",\"analyze_wildcard\":true}},\"filter\":[]}"
      }
    }
  },
  {
    "_id": "AWKsZGovI7j8kzidFq_s",
    "_type": "visualization",
    "_source": {
      "title": "Alerts Over Time",
      "visState": "{\"title\":\"Alerts Over Time\",\"type\":\"histogram\",\"params\":{\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"type\":\"category\",\"position\":\"bottom\",\"show\":true,\"style\":{},\"scale\":{\"type\":\"linear\"},\"labels\":{\"show\":true,\"truncate\":100},\"title\":{\"text\":\"@timestamp per 30 minutes\"}}],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"name\":\"LeftAxis-1\",\"type\":\"value\",\"position\":\"left\",\"show\":true,\"style\":{},\"scale\":{\"type\":\"linear\",\"mode\":\"normal\"},\"labels\":{\"show\":true,\"rotate\":0,\"filter\":false,\"truncate\":100},\"title\":{\"text\":\"Count\"}}],\"seriesParams\":[{\"show\":\"true\",\"type\":\"histogram\",\"mode\":\"stacked\",\"data\":{\"label\":\"Count\",\"id\":\"1\"},\"valueAxis\":\"ValueAxis-1\",\"drawLinesBetweenPoints\":true,\"showCircles\":true}],\"addTooltip\":true,\"addLegend\":true,\"legendPosition\":\"right\",\"times\":[],\"addTimeMarker\":false,\"type\":\"histogram\"},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"2\",\"enabled\":true,\"type\":\"date_histogram\",\"schema\":\"segment\",\"params\":{\"field\":\"@timestamp\",\"interval\":\"auto\",\"customInterval\":\"2h\",\"min_doc_count\":1,\"extended_bounds\":{}}}],\"listeners\":{}}",
      "uiStateJSON": "{}",
      "description": "",
      "version": 1,
      "kibanaSavedObjectMeta": {
        "searchSourceJSON": "{\"index\":\"AWKr6JFBI7j8kzidFmpp\",\"query\":{\"query_string\":{\"query\":\"_type: elastalert\",\"analyze_wildcard\":true}},\"filter\":[]}"
      }
    }
  },
  {
    "_id": "AWKscao6I7j8kzidFrnQ",
    "_type": "visualization",
    "_source": {
      "title": "Rule Cloud",
      "visState": "{\"title\":\"Rule Cloud\",\"type\":\"tagcloud\",\"params\":{\"scale\":\"linear\",\"orientation\":\"single\",\"minFontSize\":18,\"maxFontSize\":72,\"type\":\"tagcloud\"},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"2\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"segment\",\"params\":{\"field\":\"rule_name\",\"size\":5,\"order\":\"desc\",\"orderBy\":\"1\"}}],\"listeners\":{}}",
      "uiStateJSON": "{}",
      "description": "",
      "version": 1,
      "kibanaSavedObjectMeta": {
        "searchSourceJSON": "{\"index\":\"AWKr6JFBI7j8kzidFmpp\",\"query\":{\"query_string\":{\"query\":\"alert_info.type: MITREAttack\",\"analyze_wildcard\":true}},\"filter\":[]}"
      }
    }
  }
]