{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"filter\":[],\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"CloudTrail - AWS Account(Bar)","uiStateJSON":"{}","version":1,"visState":"{\"type\":\"histogram\",\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"3\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"segment\",\"params\":{\"field\":\"cloud.account.id\",\"orderBy\":\"1\",\"order\":\"desc\",\"size\":10,\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\"}},{\"id\":\"4\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"group\",\"params\":{\"field\":\"cloud.account.id\",\"orderBy\":\"1\",\"order\":\"desc\",\"size\":5,\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\"}}],\"params\":{\"type\":\"histogram\",\"grid\":{\"categoryLines\":false},\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"type\":\"category\",\"position\":\"bottom\",\"show\":false,\"style\":{},\"scale\":{\"type\":\"linear\"},\"labels\":{\"show\":true,\"filter\":true,\"truncate\":100},\"title\":{}}],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"name\":\"LeftAxis-1\",\"type\":\"value\",\"position\":\"left\",\"show\":true,\"style\":{},\"scale\":{\"type\":\"linear\",\"mode\":\"normal\"},\"labels\":{\"show\":true,\"rotate\":0,\"filter\":false,\"truncate\":100},\"title\":{\"text\":\"Count\"}}],\"seriesParams\":[{\"show\":\"true\",\"type\":\"histogram\",\"mode\":\"stacked\",\"data\":{\"label\":\"Count\",\"id\":\"1\"},\"valueAxis\":\"ValueAxis-1\",\"drawLinesBetweenPoints\":true,\"showCircles\":true}],\"addTooltip\":true,\"addLegend\":true,\"legendPosition\":\"right\",\"times\":[],\"addTimeMarker\":false,\"labels\":{\"show\":false},\"thresholdLine\":{\"show\":false,\"value\":10,\"width\":1,\"style\":\"full\",\"color\":\"#34130C\"},\"dimensions\":{\"x\":{\"accessor\":0,\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"otherBucketLabel\":\"Other\",\"missingBucketLabel\":\"Missing\"}},\"params\":{},\"aggType\":\"terms\"},\"y\":[{\"accessor\":1,\"format\":{\"id\":\"number\"},\"params\":{},\"aggType\":\"count\"}]}},\"title\":\"CloudTrail - AWS Account(Bar)\"}"},"id":"38b0cd00-8609-11ea-8ea1-d5ea957d0a7d","migrationVersion":{"visualization":"7.10.0"},"references":[{"id":"5f946950-7fc8-11ea-945d-8d0868f4a377","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2022-08-18T08:57:21.749Z","version":"WzI5NTMwLDFd"}
{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"filter\":[]}"},"title":"CloudTrail - Region(Bar)","uiStateJSON":"{}","version":1,"visState":"{\"title\":\"CloudTrail - Region(Bar)\",\"type\":\"histogram\",\"params\":{\"type\":\"histogram\",\"grid\":{\"categoryLines\":false},\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"type\":\"category\",\"position\":\"bottom\",\"show\":false,\"style\":{},\"scale\":{\"type\":\"linear\"},\"labels\":{\"show\":true,\"filter\":true,\"truncate\":100},\"title\":{}}],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"name\":\"LeftAxis-1\",\"type\":\"value\",\"position\":\"left\",\"show\":true,\"style\":{},\"scale\":{\"type\":\"linear\",\"mode\":\"normal\"},\"labels\":{\"show\":true,\"rotate\":0,\"filter\":false,\"truncate\":100},\"title\":{\"text\":\"Count\"}}],\"seriesParams\":[{\"show\":\"true\",\"type\":\"histogram\",\"mode\":\"stacked\",\"data\":{\"label\":\"Count\",\"id\":\"1\"},\"valueAxis\":\"ValueAxis-1\",\"drawLinesBetweenPoints\":true,\"showCircles\":true}],\"addTooltip\":true,\"addLegend\":true,\"legendPosition\":\"right\",\"times\":[],\"addTimeMarker\":false,\"labels\":{\"show\":false},\"thresholdLine\":{\"show\":false,\"value\":10,\"width\":1,\"style\":\"full\",\"color\":\"#34130C\"},\"dimensions\":{\"x\":{\"accessor\":0,\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"otherBucketLabel\":\"Other\",\"missingBucketLabel\":\"Missing\"}},\"params\":{},\"aggType\":\"terms\"},\"y\":[{\"accessor\":2,\"format\":{\"id\":\"number\"},\"params\":{},\"aggType\":\"count\"}],\"series\":[{\"accessor\":1,\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"otherBucketLabel\":\"Other\",\"missingBucketLabel\":\"Missing\"}},\"params\":{},\"aggType\":\"terms\"}]}},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"3\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"segment\",\"params\":{\"field\":\"cloud.region\",\"orderBy\":\"1\",\"order\":\"desc\",\"size\":5,\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\"}},{\"id\":\"4\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"group\",\"params\":{\"field\":\"cloud.region\",\"orderBy\":\"1\",\"order\":\"desc\",\"size\":5,\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\"}}]}"},"id":"70cd1ea0-8609-11ea-8ea1-d5ea957d0a7d","migrationVersion":{"visualization":"7.10.0"},"references":[{"id":"5f946950-7fc8-11ea-945d-8d0868f4a377","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2022-08-18T08:57:21.749Z","version":"WzI5NTMxLDFd"}
{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"filter\":[],\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"CloudTrail - Source Countries","uiStateJSON":"{}","version":1,"visState":"{\"type\":\"pie\",\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"2\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"segment\",\"params\":{\"field\":\"source.geo.country_name\",\"orderBy\":\"1\",\"order\":\"desc\",\"size\":10,\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\"}}],\"params\":{\"type\":\"pie\",\"addTooltip\":true,\"addLegend\":true,\"legendPosition\":\"right\",\"isDonut\":true,\"labels\":{\"show\":false,\"values\":true,\"last_level\":true,\"truncate\":100},\"dimensions\":{\"metric\":{\"accessor\":1,\"format\":{\"id\":\"number\"},\"params\":{},\"aggType\":\"count\"},\"buckets\":[{\"accessor\":0,\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"otherBucketLabel\":\"Other\",\"missingBucketLabel\":\"Missing\"}},\"params\":{},\"aggType\":\"terms\"}]}},\"title\":\"CloudTrail - Source Countries\"}"},"id":"5fdde8a0-87cf-11ea-b9a0-7b688d6c40a7","migrationVersion":{"visualization":"7.10.0"},"references":[{"id":"5f946950-7fc8-11ea-945d-8d0868f4a377","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2022-08-18T08:57:21.749Z","version":"WzI5NTMyLDFd"}
{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"filter\":[]}"},"title":"CloudTrail - Source IP","uiStateJSON":"{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}}}","version":1,"visState":"{\"title\":\"CloudTrail - Source IP\",\"type\":\"table\",\"params\":{\"perPage\":10,\"showPartialRows\":false,\"showMetricsAtAllLevels\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"showTotal\":false,\"totalFunc\":\"sum\",\"percentageCol\":\"\",\"dimensions\":{\"metrics\":[{\"accessor\":1,\"format\":{\"id\":\"number\"},\"params\":{},\"aggType\":\"count\"}],\"buckets\":[{\"accessor\":0,\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"ip\",\"otherBucketLabel\":\"Other\",\"missingBucketLabel\":\"Missing\"}},\"params\":{},\"aggType\":\"terms\"}]}},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"2\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"bucket\",\"params\":{\"field\":\"source.ip\",\"orderBy\":\"1\",\"order\":\"desc\",\"size\":10,\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"customLabel\":\"Source\"}}]}"},"id":"8e9a0fb0-87d0-11ea-84c8-631650cae227","migrationVersion":{"visualization":"7.10.0"},"references":[{"id":"5f946950-7fc8-11ea-945d-8d0868f4a377","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2022-08-18T08:57:21.749Z","version":"WzI5NTMzLDFd"}
{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"filter\":[],\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"CloudTrail - Source Countries(Geo)","uiStateJSON":"{\"mapZoom\":2,\"mapCenter\":[21.453068633086783,26.3558692421991]}","version":1,"visState":"{\"type\":\"region_map\",\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"2\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"segment\",\"params\":{\"field\":\"source.geo.country_iso_code\",\"orderBy\":\"1\",\"order\":\"desc\",\"size\":100,\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\"}}],\"params\":{\"addTooltip\":true,\"colorSchema\":\"Yellow to Red\",\"emsHotLink\":\"https://maps.elastic.co/v7.7?locale=en#file/world_countries\",\"isDisplayWarning\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[0,0],\"mapZoom\":2,\"outlineWeight\":1,\"selectedJoinField\":{\"description\":\"ISO 3166-1 alpha-2 Code\",\"name\":\"iso2\",\"type\":\"id\"},\"selectedLayer\":{\"attribution\":\"<a href=\\\"http://www.naturalearthdata.com/about/terms-of-use\\\">Made with NaturalEarth</a>\",\"created_at\":\"2017-04-26T17:12:15.978370\",\"fields\":[{\"description\":\"ISO 3166-1 alpha-2 Code\",\"name\":\"iso2\",\"type\":\"id\"},{\"description\":\"ISO 3166-1 alpha-3 Code\",\"name\":\"iso3\",\"type\":\"id\"},{\"description\":\"Name\",\"name\":\"name\",\"type\":\"name\"}],\"format\":{\"type\":\"geojson\"},\"id\":\"world_countries\",\"isEMS\":true,\"layerId\":\"elastic_maps_service.World Countries\",\"name\":\"World Countries\",\"origin\":\"elastic_maps_service\"},\"showAllShapes\":true,\"wms\":{\"enabled\":false,\"options\":{\"format\":\"image/png\",\"transparent\":true},\"selectedTmsLayer\":{\"attribution\":\"<a rel=\\\"noreferrer noopener\\\" href=\\\"https://www.openstreetmap.org/copyright\\\">Map data &#169; OpenStreetMap contributors</a>\",\"id\":\"road_map\",\"maxZoom\":10,\"minZoom\":0,\"origin\":\"elastic_maps_service\"}}},\"title\":\"CloudTrail - Source Countries(Geo)\"}"},"id":"86029e40-87cf-11ea-b9a0-7b688d6c40a7","migrationVersion":{"visualization":"7.10.0"},"references":[{"id":"5f946950-7fc8-11ea-945d-8d0868f4a377","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2022-08-18T08:57:21.749Z","version":"WzI5NTM0LDFd"}
{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"filter\":[]}"},"title":"CloudTrail - Source AS","uiStateJSON":"{}","version":1,"visState":"{\"title\":\"CloudTrail - Source AS\",\"type\":\"pie\",\"params\":{\"type\":\"pie\",\"addTooltip\":true,\"addLegend\":true,\"legendPosition\":\"right\",\"isDonut\":true,\"labels\":{\"show\":false,\"values\":true,\"last_level\":true,\"truncate\":100},\"dimensions\":{\"metric\":{\"accessor\":1,\"format\":{\"id\":\"number\"},\"params\":{},\"aggType\":\"count\"},\"buckets\":[{\"accessor\":0,\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"otherBucketLabel\":\"Other\",\"missingBucketLabel\":\"Missing\"}},\"params\":{},\"aggType\":\"terms\"}]}},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"2\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"segment\",\"params\":{\"field\":\"source.as.organization.name\",\"orderBy\":\"1\",\"order\":\"desc\",\"size\":10,\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\"}}]}"},"id":"d51c8ea0-87cf-11ea-b9a0-7b688d6c40a7","migrationVersion":{"visualization":"7.10.0"},"references":[{"id":"5f946950-7fc8-11ea-945d-8d0868f4a377","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2022-08-18T08:57:21.749Z","version":"WzI5NTM1LDFd"}
{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"filter\":[]}"},"title":"CloudTrail - Login Failed","uiStateJSON":"{}","version":1,"visState":"{\"title\":\"CloudTrail - Login Failed\",\"type\":\"metric\",\"params\":{\"metric\":{\"percentageMode\":false,\"useRanges\":false,\"colorSchema\":\"Green to Red\",\"metricColorMode\":\"None\",\"colorsRange\":[{\"type\":\"range\",\"from\":0,\"to\":10000}],\"labels\":{\"show\":true},\"invertColors\":false,\"style\":{\"bgFill\":\"#000\",\"bgColor\":false,\"labelColor\":false,\"subText\":\"\",\"fontSize\":60}},\"dimensions\":{\"metrics\":[{\"type\":\"vis_dimension\",\"accessor\":1,\"format\":{\"id\":\"number\",\"params\":{}}}],\"bucket\":{\"type\":\"vis_dimension\",\"accessor\":0,\"format\":{\"id\":\"string\",\"params\":{}}}},\"addTooltip\":true,\"addLegend\":false,\"type\":\"metric\"},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"2\",\"enabled\":true,\"type\":\"filters\",\"schema\":\"group\",\"params\":{\"filters\":[{\"input\":{\"query\":\"responseElements.ConsoleLogin:Failure\",\"language\":\"kuery\"},\"label\":\"Login Failed\"}]}}]}"},"id":"37a2aab0-87b1-11ea-b9a0-7b688d6c40a7","migrationVersion":{"visualization":"7.10.0"},"references":[{"id":"5f946950-7fc8-11ea-945d-8d0868f4a377","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2022-08-18T08:57:21.749Z","version":"WzI5NTM2LDFd"}
{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"filter\":[]}"},"title":"CloudTrail - Root Login(CIS3.3)","uiStateJSON":"{}","version":1,"visState":"{\"title\":\"CloudTrail - Root Login(CIS3.3)\",\"type\":\"metric\",\"params\":{\"metric\":{\"percentageMode\":false,\"useRanges\":false,\"colorSchema\":\"Green to Red\",\"metricColorMode\":\"None\",\"colorsRange\":[{\"type\":\"range\",\"from\":0,\"to\":10000}],\"labels\":{\"show\":true},\"invertColors\":false,\"style\":{\"bgFill\":\"#000\",\"bgColor\":false,\"labelColor\":false,\"subText\":\"\",\"fontSize\":60}},\"dimensions\":{\"metrics\":[{\"type\":\"vis_dimension\",\"accessor\":1,\"format\":{\"id\":\"number\",\"params\":{}}}],\"bucket\":{\"type\":\"vis_dimension\",\"accessor\":0,\"format\":{\"id\":\"string\",\"params\":{}}}},\"addTooltip\":true,\"addLegend\":false,\"type\":\"metric\"},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"2\",\"enabled\":true,\"type\":\"filters\",\"schema\":\"group\",\"params\":{\"filters\":[{\"input\":{\"query\":\"userIdentity.type:Root AND NOT userIdentity.invokedBy:* AND NOT eventType:AwsServiceEvent\",\"language\":\"kuery\"},\"label\":\"Root Login\"}]}}]}"},"id":"964e0eb0-87c0-11ea-84c8-631650cae227","migrationVersion":{"visualization":"7.10.0"},"references":[{"id":"5f946950-7fc8-11ea-945d-8d0868f4a377","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2022-08-18T08:57:21.749Z","version":"WzI5NTM3LDFd"}
{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"filter\":[]}"},"title":"CloudTrail - Unauthorized API Calls(CIS3.1)","uiStateJSON":"{}","version":1,"visState":"{\"title\":\"CloudTrail - Unauthorized API Calls(CIS3.1)\",\"type\":\"metric\",\"params\":{\"metric\":{\"percentageMode\":false,\"useRanges\":false,\"colorSchema\":\"Green to Red\",\"metricColorMode\":\"None\",\"colorsRange\":[{\"type\":\"range\",\"from\":0,\"to\":10000}],\"labels\":{\"show\":true},\"invertColors\":false,\"style\":{\"bgFill\":\"#000\",\"bgColor\":false,\"labelColor\":false,\"subText\":\"\",\"fontSize\":23}},\"dimensions\":{\"metrics\":[{\"type\":\"vis_dimension\",\"accessor\":1,\"format\":{\"id\":\"number\",\"params\":{}}}],\"bucket\":{\"type\":\"vis_dimension\",\"accessor\":0,\"format\":{\"id\":\"string\",\"params\":{}}}},\"addTooltip\":true,\"addLegend\":false,\"type\":\"metric\"},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"2\",\"enabled\":true,\"type\":\"filters\",\"schema\":\"group\",\"params\":{\"filters\":[{\"label\":\"Unauthorized API Calls\",\"input\":{\"query\":\"errorCode:*UnauthorizedOperation OR errorCode:AccessDenied*\",\"language\":\"kuery\"}}]}}]}"},"id":"f53ad890-87bb-11ea-b9a0-7b688d6c40a7","migrationVersion":{"visualization":"7.10.0"},"references":[{"id":"5f946950-7fc8-11ea-945d-8d0868f4a377","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2022-08-18T08:57:21.749Z","version":"WzI5NTM4LDFd"}
{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"filter\":[]}"},"title":"CloudTrail - UserIdentity.arn","uiStateJSON":"{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}}}","version":1,"visState":"{\"title\":\"CloudTrail - UserIdentity.arn\",\"type\":\"table\",\"params\":{\"perPage\":10,\"showPartialRows\":false,\"showMetricsAtAllLevels\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"showTotal\":false,\"totalFunc\":\"sum\",\"percentageCol\":\"\",\"dimensions\":{\"metrics\":[{\"accessor\":1,\"format\":{\"id\":\"number\"},\"params\":{},\"aggType\":\"count\"}],\"buckets\":[{\"accessor\":0,\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"otherBucketLabel\":\"Other\",\"missingBucketLabel\":\"Missing\"}},\"params\":{},\"aggType\":\"terms\"}]}},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"2\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"bucket\",\"params\":{\"field\":\"userIdentity.arn\",\"orderBy\":\"1\",\"order\":\"desc\",\"size\":10,\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\"}}]}"},"id":"8485ad20-87cd-11ea-84c8-631650cae227","migrationVersion":{"visualization":"7.10.0"},"references":[{"id":"5f946950-7fc8-11ea-945d-8d0868f4a377","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2022-08-18T08:57:21.749Z","version":"WzI5NTM5LDFd"}
{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"filter\":[]}"},"title":"CloudTrail - Security Group Changed(CIS3.10)","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"filters\":[{\"input\":{\"language\":\"kuery\",\"query\":\"eventName:(AuthorizeSecurityGroupIngress OR AuthorizeSecurityGroupEgress OR RevokeSecurityGroupIngress OR RevokeSecurityGroupEgress OR CreateSecurityGroup OR DeleteSecurityGroup)\"},\"label\":\"SG Changed\"}]},\"schema\":\"group\",\"type\":\"filters\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"bucket\":{\"accessor\":0,\"format\":{\"id\":\"string\",\"params\":{}},\"type\":\"vis_dimension\"},\"metrics\":[{\"accessor\":1,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"CloudTrail - Security Group Changed(CIS3.10)\",\"type\":\"metric\"}"},"id":"fd2b26d0-87b7-11ea-84c8-631650cae227","migrationVersion":{"visualization":"7.10.0"},"references":[{"id":"5f946950-7fc8-11ea-945d-8d0868f4a377","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2022-08-18T08:57:21.749Z","version":"WzI5NTQwLDFd"}
{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"filter\":[]}"},"title":"CloudTrail - NACL Changed(CIS3.11)","uiStateJSON":"{}","version":1,"visState":"{\"title\":\"CloudTrail - NACL Changed(CIS3.11)\",\"type\":\"metric\",\"params\":{\"metric\":{\"percentageMode\":false,\"useRanges\":false,\"colorSchema\":\"Green to Red\",\"metricColorMode\":\"None\",\"colorsRange\":[{\"type\":\"range\",\"from\":0,\"to\":10000}],\"labels\":{\"show\":true},\"invertColors\":false,\"style\":{\"bgFill\":\"#000\",\"bgColor\":false,\"labelColor\":false,\"subText\":\"\",\"fontSize\":60}},\"dimensions\":{\"metrics\":[{\"type\":\"vis_dimension\",\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}}}]},\"addTooltip\":true,\"addLegend\":false,\"type\":\"metric\"},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"2\",\"enabled\":true,\"type\":\"filters\",\"schema\":\"group\",\"params\":{\"filters\":[{\"input\":{\"query\":\"eventName:(CreateNetworkAcl OR CreateNetworkAclEntry OR DeleteNetworkAcl OR DeleteNetworkAclEntry OR ReplaceNetworkAclEntry OR ReplaceNetworkAclAssociation)\",\"language\":\"kuery\"},\"label\":\"NACL Changed\"}]}}]}"},"id":"12949b90-87b9-11ea-b9a0-7b688d6c40a7","migrationVersion":{"visualization":"7.10.0"},"references":[{"id":"5f946950-7fc8-11ea-945d-8d0868f4a377","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2022-08-18T08:57:21.749Z","version":"WzI5NTQxLDFd"}
{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"filter\":[]}"},"title":"CloudTrail - Network Gateway Changd(CIS3.12)","uiStateJSON":"{}","version":1,"visState":"{\"title\":\"CloudTrail - Network Gateway Changd(CIS3.12)\",\"type\":\"metric\",\"params\":{\"metric\":{\"percentageMode\":false,\"useRanges\":false,\"colorSchema\":\"Green to Red\",\"metricColorMode\":\"None\",\"colorsRange\":[{\"type\":\"range\",\"from\":0,\"to\":10000}],\"labels\":{\"show\":true},\"invertColors\":false,\"style\":{\"bgFill\":\"#000\",\"bgColor\":false,\"labelColor\":false,\"subText\":\"\",\"fontSize\":60}},\"dimensions\":{\"metrics\":[{\"type\":\"vis_dimension\",\"accessor\":1,\"format\":{\"id\":\"number\",\"params\":{}}}],\"bucket\":{\"type\":\"vis_dimension\",\"accessor\":0,\"format\":{\"id\":\"string\",\"params\":{}}}},\"addTooltip\":true,\"addLegend\":false,\"type\":\"metric\"},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"2\",\"enabled\":true,\"type\":\"filters\",\"schema\":\"group\",\"params\":{\"filters\":[{\"input\":{\"query\":\"eventName:(CreateCustomerGateway OR DeleteCustomerGateway OR AttachInternetGateway OR CreateInternetGateway OR DeleteInternetGateway OR DetachInternetGateway)\",\"language\":\"kuery\"},\"label\":\"Network Gateway Changed\"}]}}]}"},"id":"0d6fd0c0-87ba-11ea-84c8-631650cae227","migrationVersion":{"visualization":"7.10.0"},"references":[{"id":"5f946950-7fc8-11ea-945d-8d0868f4a377","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2022-08-18T08:57:21.749Z","version":"WzI5NTQyLDFd"}
{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"filter\":[]}"},"title":"CloudTrail - Route Table Changd(CIS3.13)","uiStateJSON":"{}","version":1,"visState":"{\"title\":\"CloudTrail - Route Table Changd(CIS3.13)\",\"type\":\"metric\",\"params\":{\"metric\":{\"percentageMode\":false,\"useRanges\":false,\"colorSchema\":\"Green to Red\",\"metricColorMode\":\"None\",\"colorsRange\":[{\"type\":\"range\",\"from\":0,\"to\":10000}],\"labels\":{\"show\":true},\"invertColors\":false,\"style\":{\"bgFill\":\"#000\",\"bgColor\":false,\"labelColor\":false,\"subText\":\"\",\"fontSize\":60}},\"dimensions\":{\"metrics\":[{\"type\":\"vis_dimension\",\"accessor\":1,\"format\":{\"id\":\"number\",\"params\":{}}}],\"bucket\":{\"type\":\"vis_dimension\",\"accessor\":0,\"format\":{\"id\":\"string\",\"params\":{}}}},\"addTooltip\":true,\"addLegend\":false,\"type\":\"metric\"},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"2\",\"enabled\":true,\"type\":\"filters\",\"schema\":\"group\",\"params\":{\"filters\":[{\"label\":\"Route Table Changed\",\"input\":{\"query\":\"eventName:(CreateRoute OR CreateRouteTable OR ReplaceRoute OR ReplaceRouteTableAssociation OR DeleteRouteTable OR DeleteRoute OR DisassociateRouteTable)\",\"language\":\"kuery\"}}]}}]}"},"id":"7a295f60-87ba-11ea-b9a0-7b688d6c40a7","migrationVersion":{"visualization":"7.10.0"},"references":[{"id":"5f946950-7fc8-11ea-945d-8d0868f4a377","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2022-08-18T08:57:21.749Z","version":"WzI5NTQzLDFd"}
{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"filter\":[]}"},"title":"CloudTrail - VPC Changed(CIS3.14)","uiStateJSON":"{}","version":1,"visState":"{\"title\":\"CloudTrail - VPC Changed(CIS3.14)\",\"type\":\"metric\",\"params\":{\"metric\":{\"percentageMode\":false,\"useRanges\":false,\"colorSchema\":\"Green to Red\",\"metricColorMode\":\"None\",\"colorsRange\":[{\"type\":\"range\",\"from\":0,\"to\":10000}],\"labels\":{\"show\":true},\"invertColors\":false,\"style\":{\"bgFill\":\"#000\",\"bgColor\":false,\"labelColor\":false,\"subText\":\"\",\"fontSize\":60}},\"dimensions\":{\"metrics\":[{\"type\":\"vis_dimension\",\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}}}]},\"addTooltip\":true,\"addLegend\":false,\"type\":\"metric\"},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"2\",\"enabled\":true,\"type\":\"filters\",\"schema\":\"group\",\"params\":{\"filters\":[{\"input\":{\"query\":\"eventName:(CreateVpc OR DeleteVpc OR ModifyVpcAttribute OR AcceptVpcPeeringConnection OR CreateVpcPeeringConnection OR DeleteVpcPeeringConnection OR RejectVpcPeeringConnection OR AttachClassicLinkVpc OR DetachClassicLinkVpc OR DisableVpcClassicLink OR EnableVpcClassicLink)\",\"language\":\"kuery\"},\"label\":\"VPC Changed\"}]}}]}"},"id":"42efd730-87bb-11ea-84c8-631650cae227","migrationVersion":{"visualization":"7.10.0"},"references":[{"id":"5f946950-7fc8-11ea-945d-8d0868f4a377","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2022-08-18T08:57:21.749Z","version":"WzI5NTQ0LDFd"}
{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"filter\":[]}"},"title":"CloudTrail - S3 Bucket Changed(CIS3.8)","uiStateJSON":"{}","version":1,"visState":"{\"title\":\"CloudTrail - S3 Bucket Changed(CIS3.8)\",\"type\":\"metric\",\"params\":{\"metric\":{\"percentageMode\":false,\"useRanges\":false,\"colorSchema\":\"Green to Red\",\"metricColorMode\":\"None\",\"colorsRange\":[{\"type\":\"range\",\"from\":0,\"to\":10000}],\"labels\":{\"show\":true},\"invertColors\":false,\"style\":{\"bgFill\":\"#000\",\"bgColor\":false,\"labelColor\":false,\"subText\":\"\",\"fontSize\":60}},\"dimensions\":{\"metrics\":[{\"type\":\"vis_dimension\",\"accessor\":1,\"format\":{\"id\":\"number\",\"params\":{}}}],\"bucket\":{\"type\":\"vis_dimension\",\"accessor\":0,\"format\":{\"id\":\"string\",\"params\":{}}}},\"addTooltip\":true,\"addLegend\":false,\"type\":\"metric\"},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"2\",\"enabled\":true,\"type\":\"filters\",\"schema\":\"group\",\"params\":{\"filters\":[{\"input\":{\"query\":\"eventSource:s3.amazonaws.com AND (eventName:(PutBucketAcl OR PutBucketPolicy OR PutBucketCors OR PutBucketLifecycle OR PutBucketReplication OR DeleteBucketPolicy OR DeleteBucketCors OR DeleteBucketLifecycle OR DeleteBucketReplication))\",\"language\":\"kuery\"},\"label\":\"S3 Bucket Changed\"}]}}]}"},"id":"2172d050-87be-11ea-84c8-631650cae227","migrationVersion":{"visualization":"7.10.0"},"references":[{"id":"5f946950-7fc8-11ea-945d-8d0868f4a377","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2022-08-18T08:57:21.749Z","version":"WzI5NTQ1LDFd"}
{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"filter\":[]}"},"title":"CloudTrail - Event Name(Pie)","uiStateJSON":"{}","version":1,"visState":"{\"title\":\"CloudTrail - Event Name(Pie)\",\"type\":\"pie\",\"params\":{\"type\":\"pie\",\"addTooltip\":true,\"addLegend\":true,\"legendPosition\":\"right\",\"isDonut\":true,\"labels\":{\"show\":false,\"values\":true,\"last_level\":true,\"truncate\":100},\"dimensions\":{\"metric\":{\"accessor\":0,\"format\":{\"id\":\"number\"},\"params\":{},\"aggType\":\"count\"}}},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"2\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"segment\",\"params\":{\"field\":\"eventName\",\"orderBy\":\"1\",\"order\":\"desc\",\"size\":10,\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\"}}]}"},"id":"ff879d20-87a6-11ea-8ea1-d5ea957d0a7d","migrationVersion":{"visualization":"7.10.0"},"references":[{"id":"5f946950-7fc8-11ea-945d-8d0868f4a377","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2022-08-18T08:57:21.749Z","version":"WzI5NTQ2LDFd"}
{"attributes":{"description":"DisableKey\nScheduleKeyDeletion\nPutKeyPolicy","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"filter\":[],\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"CloudTrail - KMS Key Changed","uiStateJSON":"{}","version":1,"visState":"{\"title\":\"CloudTrail - KMS Key Changed\",\"type\":\"metric\",\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"count\",\"params\":{},\"schema\":\"metric\"},{\"id\":\"2\",\"enabled\":true,\"type\":\"filters\",\"params\":{\"filters\":[{\"input\":{\"query\":\"eventSource:kms.amazonaws.com AND eventName:(DisableKey OR ScheduleKeyDeletion OR PutKeyPolicy)\",\"language\":\"kuery\"},\"label\":\"KMS Key Changed\"}]},\"schema\":\"group\"}],\"params\":{\"addTooltip\":true,\"addLegend\":false,\"type\":\"metric\",\"metric\":{\"percentageMode\":false,\"useRanges\":false,\"colorSchema\":\"Green to Red\",\"metricColorMode\":\"None\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"labels\":{\"show\":true},\"invertColors\":false,\"style\":{\"bgFill\":\"#000\",\"bgColor\":false,\"labelColor\":false,\"subText\":\"\",\"fontSize\":60}}}}"},"id":"8dd04d40-1e02-11ed-aa58-67d455528b1d","migrationVersion":{"visualization":"7.10.0"},"references":[{"id":"5f946950-7fc8-11ea-945d-8d0868f4a377","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2022-08-18T08:57:21.749Z","version":"WzI5NTQ3LDFd"}
{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"filter\":[]}"},"title":"CloudTrail - Event Name(Area)","uiStateJSON":"{}","version":1,"visState":"{\"title\":\"CloudTrail - Event Name(Area)\",\"type\":\"area\",\"params\":{\"type\":\"area\",\"grid\":{\"categoryLines\":false},\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"type\":\"category\",\"position\":\"bottom\",\"show\":true,\"style\":{},\"scale\":{\"type\":\"linear\"},\"labels\":{\"show\":true,\"filter\":true,\"truncate\":100},\"title\":{}}],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"name\":\"LeftAxis-1\",\"type\":\"value\",\"position\":\"left\",\"show\":true,\"style\":{},\"scale\":{\"type\":\"linear\",\"mode\":\"normal\"},\"labels\":{\"show\":true,\"rotate\":0,\"filter\":false,\"truncate\":100},\"title\":{\"text\":\"Count\"}}],\"seriesParams\":[{\"show\":\"true\",\"type\":\"area\",\"mode\":\"stacked\",\"data\":{\"label\":\"Count\",\"id\":\"1\"},\"drawLinesBetweenPoints\":true,\"showCircles\":true,\"interpolate\":\"linear\",\"valueAxis\":\"ValueAxis-1\"}],\"addTooltip\":true,\"addLegend\":true,\"legendPosition\":\"right\",\"times\":[],\"addTimeMarker\":false,\"thresholdLine\":{\"show\":false,\"value\":10,\"width\":1,\"style\":\"full\",\"color\":\"#34130C\"},\"labels\":{},\"dimensions\":{\"x\":{\"accessor\":0,\"format\":{\"id\":\"date\",\"params\":{\"pattern\":\"YYYY-MM-DD HH:mm\"}},\"params\":{\"date\":true,\"interval\":\"PT12H\",\"format\":\"YYYY-MM-DD HH:mm\",\"bounds\":{\"min\":\"2020-03-27T10:17:24.061Z\",\"max\":\"2020-04-26T10:17:24.061Z\"}},\"aggType\":\"date_histogram\"},\"y\":[{\"accessor\":1,\"format\":{\"id\":\"number\"},\"params\":{},\"aggType\":\"count\"}]}},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"2\",\"enabled\":true,\"type\":\"date_histogram\",\"schema\":\"segment\",\"params\":{\"field\":\"@timestamp\",\"timeRange\":{\"from\":\"now-30d\",\"to\":\"now\"},\"useNormalizedEsInterval\":true,\"interval\":\"auto\",\"drop_partials\":false,\"min_doc_count\":1,\"extended_bounds\":{}}},{\"id\":\"3\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"group\",\"params\":{\"field\":\"eventName\",\"orderBy\":\"1\",\"order\":\"desc\",\"size\":10,\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\"}}]}"},"id":"5b808920-87a7-11ea-8ea1-d5ea957d0a7d","migrationVersion":{"visualization":"7.10.0"},"references":[{"id":"5f946950-7fc8-11ea-945d-8d0868f4a377","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2022-08-18T08:57:21.749Z","version":"WzI5NTQ4LDFd"}
{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"filter\":[]}"},"title":"CloudTrail - Event Type(Pie)","uiStateJSON":"{}","version":1,"visState":"{\"title\":\"CloudTrail - Event Type(Pie)\",\"type\":\"pie\",\"params\":{\"type\":\"pie\",\"addTooltip\":true,\"addLegend\":true,\"legendPosition\":\"right\",\"isDonut\":true,\"labels\":{\"show\":false,\"values\":true,\"last_level\":true,\"truncate\":100},\"dimensions\":{\"metric\":{\"accessor\":0,\"format\":{\"id\":\"number\"},\"params\":{},\"aggType\":\"count\"}}},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"2\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"segment\",\"params\":{\"field\":\"eventType\",\"orderBy\":\"1\",\"order\":\"desc\",\"size\":10,\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\"}}]}"},"id":"750fd9d0-87a8-11ea-8ea1-d5ea957d0a7d","migrationVersion":{"visualization":"7.10.0"},"references":[{"id":"5f946950-7fc8-11ea-945d-8d0868f4a377","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2022-08-18T08:57:21.749Z","version":"WzI5NTQ5LDFd"}
{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"filter\":[]}"},"title":"CloudTrail - Event Type(Area)","uiStateJSON":"{}","version":1,"visState":"{\"title\":\"CloudTrail - Event Type(Area)\",\"type\":\"area\",\"params\":{\"type\":\"area\",\"grid\":{\"categoryLines\":false},\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"type\":\"category\",\"position\":\"bottom\",\"show\":true,\"style\":{},\"scale\":{\"type\":\"linear\"},\"labels\":{\"show\":true,\"filter\":true,\"truncate\":100},\"title\":{}}],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"name\":\"LeftAxis-1\",\"type\":\"value\",\"position\":\"left\",\"show\":true,\"style\":{},\"scale\":{\"type\":\"linear\",\"mode\":\"normal\"},\"labels\":{\"show\":true,\"rotate\":0,\"filter\":false,\"truncate\":100},\"title\":{\"text\":\"Count\"}}],\"seriesParams\":[{\"show\":\"true\",\"type\":\"area\",\"mode\":\"stacked\",\"data\":{\"label\":\"Count\",\"id\":\"1\"},\"drawLinesBetweenPoints\":true,\"showCircles\":true,\"interpolate\":\"linear\",\"valueAxis\":\"ValueAxis-1\"}],\"addTooltip\":true,\"addLegend\":true,\"legendPosition\":\"right\",\"times\":[],\"addTimeMarker\":false,\"thresholdLine\":{\"show\":false,\"value\":10,\"width\":1,\"style\":\"full\",\"color\":\"#34130C\"},\"labels\":{},\"dimensions\":{\"x\":null,\"y\":[{\"accessor\":0,\"format\":{\"id\":\"number\"},\"params\":{},\"aggType\":\"count\"}]}},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"2\",\"enabled\":true,\"type\":\"date_histogram\",\"schema\":\"segment\",\"params\":{\"field\":\"@timestamp\",\"useNormalizedEsInterval\":true,\"interval\":\"auto\",\"drop_partials\":false,\"min_doc_count\":1,\"extended_bounds\":{}}},{\"id\":\"3\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"group\",\"params\":{\"field\":\"eventType\",\"orderBy\":\"1\",\"order\":\"desc\",\"size\":5,\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\"}}]}"},"id":"a9aacce0-87a8-11ea-8ea1-d5ea957d0a7d","migrationVersion":{"visualization":"7.10.0"},"references":[{"id":"5f946950-7fc8-11ea-945d-8d0868f4a377","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2022-08-18T08:57:21.749Z","version":"WzI5NTUwLDFd"}
{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"filter\":[]}"},"title":"CloudTrail - Error Code(Pie)","uiStateJSON":"{}","version":1,"visState":"{\"title\":\"CloudTrail - Error Code(Pie)\",\"type\":\"pie\",\"params\":{\"type\":\"pie\",\"addTooltip\":true,\"addLegend\":true,\"legendPosition\":\"right\",\"isDonut\":true,\"labels\":{\"show\":false,\"values\":true,\"last_level\":true,\"truncate\":100},\"dimensions\":{\"metric\":{\"accessor\":1,\"format\":{\"id\":\"number\"},\"params\":{},\"aggType\":\"count\"},\"buckets\":[{\"accessor\":0,\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"otherBucketLabel\":\"Other\",\"missingBucketLabel\":\"Missing\"}},\"params\":{},\"aggType\":\"terms\"}]}},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"2\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"segment\",\"params\":{\"field\":\"errorCode\",\"orderBy\":\"1\",\"order\":\"desc\",\"size\":10,\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\"}}]}"},"id":"1e2f98c0-87a9-11ea-8ea1-d5ea957d0a7d","migrationVersion":{"visualization":"7.10.0"},"references":[{"id":"5f946950-7fc8-11ea-945d-8d0868f4a377","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2022-08-18T08:57:21.749Z","version":"WzI5NTUxLDFd"}
{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"filter\":[]}"},"title":"CloudTrail - Error Code(Area)","uiStateJSON":"{}","version":1,"visState":"{\"title\":\"CloudTrail - Error Code(Area)\",\"type\":\"area\",\"params\":{\"type\":\"area\",\"grid\":{\"categoryLines\":false},\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"type\":\"category\",\"position\":\"bottom\",\"show\":true,\"style\":{},\"scale\":{\"type\":\"linear\"},\"labels\":{\"show\":true,\"filter\":true,\"truncate\":100},\"title\":{}}],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"name\":\"LeftAxis-1\",\"type\":\"value\",\"position\":\"left\",\"show\":true,\"style\":{},\"scale\":{\"type\":\"linear\",\"mode\":\"normal\"},\"labels\":{\"show\":true,\"rotate\":0,\"filter\":false,\"truncate\":100},\"title\":{\"text\":\"Count\"}}],\"seriesParams\":[{\"show\":\"true\",\"type\":\"area\",\"mode\":\"stacked\",\"data\":{\"label\":\"Count\",\"id\":\"1\"},\"drawLinesBetweenPoints\":true,\"showCircles\":true,\"interpolate\":\"linear\",\"valueAxis\":\"ValueAxis-1\"}],\"addTooltip\":true,\"addLegend\":true,\"legendPosition\":\"right\",\"times\":[],\"addTimeMarker\":false,\"thresholdLine\":{\"show\":false,\"value\":10,\"width\":1,\"style\":\"full\",\"color\":\"#34130C\"},\"labels\":{},\"dimensions\":{\"x\":{\"accessor\":0,\"format\":{\"id\":\"date\",\"params\":{\"pattern\":\"YYYY-MM-DD HH:mm\"}},\"params\":{\"date\":true,\"interval\":\"PT12H\",\"format\":\"YYYY-MM-DD HH:mm\",\"bounds\":{\"min\":\"2020-03-27T10:33:25.001Z\",\"max\":\"2020-04-26T10:33:25.001Z\"}},\"aggType\":\"date_histogram\"},\"y\":[{\"accessor\":2,\"format\":{\"id\":\"number\"},\"params\":{},\"aggType\":\"count\"}],\"series\":[{\"accessor\":1,\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"otherBucketLabel\":\"Other\",\"missingBucketLabel\":\"Missing\"}},\"params\":{},\"aggType\":\"terms\"}]}},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"2\",\"enabled\":true,\"type\":\"date_histogram\",\"schema\":\"segment\",\"params\":{\"field\":\"@timestamp\",\"timeRange\":{\"from\":\"now-30d\",\"to\":\"now\"},\"useNormalizedEsInterval\":true,\"interval\":\"auto\",\"drop_partials\":false,\"min_doc_count\":1,\"extended_bounds\":{}}},{\"id\":\"3\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"group\",\"params\":{\"field\":\"errorCode\",\"orderBy\":\"1\",\"order\":\"desc\",\"size\":10,\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\"}}]}"},"id":"71b1ec50-87a9-11ea-8ea1-d5ea957d0a7d","migrationVersion":{"visualization":"7.10.0"},"references":[{"id":"5f946950-7fc8-11ea-945d-8d0868f4a377","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2022-08-18T08:57:21.749Z","version":"WzI5NTUyLDFd"}
{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"filter\":[]}"},"title":"CloudTrail - Event Source(Pie)","uiStateJSON":"{}","version":1,"visState":"{\"title\":\"CloudTrail - Event Source(Pie)\",\"type\":\"pie\",\"params\":{\"type\":\"pie\",\"addTooltip\":true,\"addLegend\":true,\"legendPosition\":\"right\",\"isDonut\":true,\"labels\":{\"show\":false,\"values\":true,\"last_level\":true,\"truncate\":100},\"dimensions\":{\"metric\":{\"accessor\":0,\"format\":{\"id\":\"number\"},\"params\":{},\"aggType\":\"count\"}}},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"2\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"segment\",\"params\":{\"field\":\"eventSource\",\"orderBy\":\"1\",\"order\":\"desc\",\"size\":10,\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\"}}]}"},"id":"db266210-87a9-11ea-8ea1-d5ea957d0a7d","migrationVersion":{"visualization":"7.10.0"},"references":[{"id":"5f946950-7fc8-11ea-945d-8d0868f4a377","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2022-08-18T08:57:21.749Z","version":"WzI5NTUzLDFd"}
{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"filter\":[]}"},"title":"CloudTrail - Event Source(Area)","uiStateJSON":"{}","version":1,"visState":"{\"title\":\"CloudTrail - Event Source(Area)\",\"type\":\"area\",\"params\":{\"type\":\"area\",\"grid\":{\"categoryLines\":false},\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"type\":\"category\",\"position\":\"bottom\",\"show\":true,\"style\":{},\"scale\":{\"type\":\"linear\"},\"labels\":{\"show\":true,\"filter\":true,\"truncate\":100},\"title\":{}}],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"name\":\"LeftAxis-1\",\"type\":\"value\",\"position\":\"left\",\"show\":true,\"style\":{},\"scale\":{\"type\":\"linear\",\"mode\":\"normal\"},\"labels\":{\"show\":true,\"rotate\":0,\"filter\":false,\"truncate\":100},\"title\":{\"text\":\"Count\"}}],\"seriesParams\":[{\"show\":\"true\",\"type\":\"area\",\"mode\":\"stacked\",\"data\":{\"label\":\"Count\",\"id\":\"1\"},\"drawLinesBetweenPoints\":true,\"showCircles\":true,\"interpolate\":\"linear\",\"valueAxis\":\"ValueAxis-1\"}],\"addTooltip\":true,\"addLegend\":true,\"legendPosition\":\"right\",\"times\":[],\"addTimeMarker\":false,\"thresholdLine\":{\"show\":false,\"value\":10,\"width\":1,\"style\":\"full\",\"color\":\"#34130C\"},\"labels\":{},\"dimensions\":{\"x\":null,\"y\":[{\"accessor\":0,\"format\":{\"id\":\"number\"},\"params\":{},\"aggType\":\"count\"}]}},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"2\",\"enabled\":true,\"type\":\"date_histogram\",\"schema\":\"segment\",\"params\":{\"field\":\"@timestamp\",\"timeRange\":{\"from\":\"now-30d\",\"to\":\"now\"},\"useNormalizedEsInterval\":true,\"interval\":\"auto\",\"drop_partials\":false,\"min_doc_count\":1,\"extended_bounds\":{}}},{\"id\":\"3\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"group\",\"params\":{\"field\":\"eventSource\",\"orderBy\":\"1\",\"order\":\"desc\",\"size\":10,\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\"}}]}"},"id":"e062c4d0-87ae-11ea-b9a0-7b688d6c40a7","migrationVersion":{"visualization":"7.10.0"},"references":[{"id":"5f946950-7fc8-11ea-945d-8d0868f4a377","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2022-08-18T08:57:21.749Z","version":"WzI5NTU0LDFd"}
{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"filter\":[],\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"CloudTrail - TLS version","uiStateJSON":"{}","version":1,"visState":"{\"title\":\"CloudTrail - TLS version\",\"type\":\"pie\",\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"count\",\"params\":{},\"schema\":\"metric\"},{\"id\":\"2\",\"enabled\":true,\"type\":\"terms\",\"params\":{\"field\":\"tlsDetails.tlsVersion\",\"orderBy\":\"1\",\"order\":\"desc\",\"size\":5,\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\"},\"schema\":\"segment\"}],\"params\":{\"type\":\"pie\",\"addTooltip\":true,\"addLegend\":true,\"legendPosition\":\"right\",\"isDonut\":true,\"labels\":{\"show\":false,\"values\":true,\"last_level\":true,\"truncate\":100}}}"},"id":"31ea73f0-1d19-11ed-94f7-6342b0f7ff8e","migrationVersion":{"visualization":"7.10.0"},"references":[{"id":"5f946950-7fc8-11ea-945d-8d0868f4a377","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2022-08-18T08:57:21.749Z","version":"WzI5NTU1LDFd"}
{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"filter\":[],\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"CloudTrail - User Agent Browser","uiStateJSON":"{}","version":1,"visState":"{\"title\":\"CloudTrail - User Agent Browser\",\"type\":\"pie\",\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"count\",\"params\":{},\"schema\":\"metric\"},{\"id\":\"2\",\"enabled\":true,\"type\":\"terms\",\"params\":{\"field\":\"user_agent.name\",\"orderBy\":\"1\",\"order\":\"desc\",\"size\":15,\"otherBucket\":true,\"otherBucketLabel\":\"Other2\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\"},\"schema\":\"segment\"}],\"params\":{\"type\":\"pie\",\"addTooltip\":true,\"addLegend\":true,\"legendPosition\":\"right\",\"isDonut\":true,\"labels\":{\"show\":false,\"values\":true,\"last_level\":true,\"truncate\":100}}}"},"id":"2a1575e0-1d1d-11ed-aa58-67d455528b1d","migrationVersion":{"visualization":"7.10.0"},"references":[{"id":"5f946950-7fc8-11ea-945d-8d0868f4a377","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2022-08-18T08:57:21.749Z","version":"WzI5NTU2LDFd"}
{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"filter\":[],\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"CloudTrail - Matched IoC","uiStateJSON":"{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":1,\"direction\":\"desc\"}}}}","version":1,"visState":"{\"title\":\"CloudTrail - Matched IoC\",\"type\":\"table\",\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"count\",\"params\":{},\"schema\":\"metric\"},{\"id\":\"2\",\"enabled\":true,\"type\":\"terms\",\"params\":{\"field\":\"threat.matched.providers\",\"orderBy\":\"1\",\"order\":\"desc\",\"size\":10,\"otherBucket\":true,\"otherBucketLabel\":\"Other\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"customLabel\":\"Providers\"},\"schema\":\"bucket\"}],\"params\":{\"perPage\":10,\"showPartialRows\":false,\"showMetricsAtAllLevels\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"showTotal\":false,\"totalFunc\":\"sum\",\"percentageCol\":\"\"}}"},"id":"3dd3f380-1dff-11ed-aa58-67d455528b1d","migrationVersion":{"visualization":"7.10.0"},"references":[{"id":"5f946950-7fc8-11ea-945d-8d0868f4a377","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2022-08-18T10:20:57.700Z","version":"WzMwMDc1LDFd"}
{"attributes":{"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"filter\":[]}"},"optionsJSON":"{\"hidePanelTitles\":false,\"useMargins\":true}","panelsJSON":"[{\"version\":\"1.3.2\",\"gridData\":{\"x\":0,\"y\":0,\"w\":24,\"h\":7,\"i\":\"ef1c8093-d864-4d8b-88bd-d3d635d90819\"},\"panelIndex\":\"ef1c8093-d864-4d8b-88bd-d3d635d90819\",\"embeddableConfig\":{},\"panelRefName\":\"panel_0\"},{\"version\":\"1.3.2\",\"gridData\":{\"x\":24,\"y\":0,\"w\":24,\"h\":7,\"i\":\"458220d0-a1bd-4ff4-887c-ddd1174ad52a\"},\"panelIndex\":\"458220d0-a1bd-4ff4-887c-ddd1174ad52a\",\"embeddableConfig\":{},\"panelRefName\":\"panel_1\"},{\"version\":\"1.3.2\",\"gridData\":{\"x\":0,\"y\":7,\"w\":11,\"h\":7,\"i\":\"8d6c2abf-e123-41cc-9428-c814a8c3851f\"},\"panelIndex\":\"8d6c2abf-e123-41cc-9428-c814a8c3851f\",\"embeddableConfig\":{},\"panelRefName\":\"panel_2\"},{\"version\":\"1.3.2\",\"gridData\":{\"x\":11,\"y\":7,\"w\":10,\"h\":15,\"i\":\"387068a2-b2d7-449a-93c6-92ded89cc535\"},\"panelIndex\":\"387068a2-b2d7-449a-93c6-92ded89cc535\",\"embeddableConfig\":{},\"panelRefName\":\"panel_3\"},{\"version\":\"1.3.2\",\"gridData\":{\"x\":21,\"y\":7,\"w\":27,\"h\":15,\"i\":\"06dacfb3-5be8-48da-be91-a33a0fdedd6f\"},\"panelIndex\":\"06dacfb3-5be8-48da-be91-a33a0fdedd6f\",\"embeddableConfig\":{\"mapCenter\":null,\"mapZoom\":null},\"panelRefName\":\"panel_4\"},{\"version\":\"1.3.2\",\"gridData\":{\"x\":0,\"y\":14,\"w\":11,\"h\":8,\"i\":\"59c704d2-da17-4437-aaa6-72e7f7899be0\"},\"panelIndex\":\"59c704d2-da17-4437-aaa6-72e7f7899be0\",\"embeddableConfig\":{},\"panelRefName\":\"panel_5\"},{\"version\":\"1.3.2\",\"gridData\":{\"x\":0,\"y\":22,\"w\":7,\"h\":8,\"i\":\"89480c31-3cce-4327-b171-362cbb13d75f\"},\"panelIndex\":\"89480c31-3cce-4327-b171-362cbb13d75f\",\"embeddableConfig\":{\"title\":\"\"},\"panelRefName\":\"panel_6\"},{\"version\":\"1.3.2\",\"gridData\":{\"x\":7,\"y\":22,\"w\":7,\"h\":8,\"i\":\"ff379b16-9bab-47ff-ba35-5979c2837bac\"},\"panelIndex\":\"ff379b16-9bab-47ff-ba35-5979c2837bac\",\"embeddableConfig\":{\"title\":\"\"},\"panelRefName\":\"panel_7\"},{\"version\":\"1.3.2\",\"gridData\":{\"x\":14,\"y\":22,\"w\":7,\"h\":8,\"i\":\"fcee65f0-5867-4e06-abba-84c666bd3d7d\"},\"panelIndex\":\"fcee65f0-5867-4e06-abba-84c666bd3d7d\",\"embeddableConfig\":{\"title\":\"\"},\"panelRefName\":\"panel_8\"},{\"version\":\"1.3.2\",\"gridData\":{\"x\":21,\"y\":22,\"w\":27,\"h\":8,\"i\":\"ebfcdb58-d9a8-491b-a4b0-be9334715165\"},\"panelIndex\":\"ebfcdb58-d9a8-491b-a4b0-be9334715165\",\"embeddableConfig\":{},\"panelRefName\":\"panel_9\"},{\"version\":\"1.3.2\",\"gridData\":{\"x\":0,\"y\":30,\"w\":7,\"h\":8,\"i\":\"71ca93b1-de52-4d12-a337-3638c7896850\"},\"panelIndex\":\"71ca93b1-de52-4d12-a337-3638c7896850\",\"embeddableConfig\":{\"title\":\"\"},\"panelRefName\":\"panel_10\"},{\"version\":\"1.3.2\",\"gridData\":{\"x\":7,\"y\":30,\"w\":7,\"h\":8,\"i\":\"a17dbd0a-15fc-43d9-9a9e-c5ad1516d22a\"},\"panelIndex\":\"a17dbd0a-15fc-43d9-9a9e-c5ad1516d22a\",\"embeddableConfig\":{\"title\":\"\"},\"panelRefName\":\"panel_11\"},{\"version\":\"1.3.2\",\"gridData\":{\"x\":14,\"y\":30,\"w\":7,\"h\":8,\"i\":\"1abc07f4-c21f-4562-9bb1-0eb8903d4aa0\"},\"panelIndex\":\"1abc07f4-c21f-4562-9bb1-0eb8903d4aa0\",\"embeddableConfig\":{\"title\":\"\"},\"panelRefName\":\"panel_12\"},{\"version\":\"1.3.2\",\"gridData\":{\"x\":21,\"y\":30,\"w\":7,\"h\":8,\"i\":\"7731f303-8d34-460a-906e-927e638cfa0f\"},\"panelIndex\":\"7731f303-8d34-460a-906e-927e638cfa0f\",\"embeddableConfig\":{\"title\":\"\"},\"panelRefName\":\"panel_13\"},{\"version\":\"1.3.2\",\"gridData\":{\"x\":28,\"y\":30,\"w\":7,\"h\":8,\"i\":\"e92cccc6-c5ab-4afa-a189-ce326de4030a\"},\"panelIndex\":\"e92cccc6-c5ab-4afa-a189-ce326de4030a\",\"embeddableConfig\":{\"title\":\"\"},\"panelRefName\":\"panel_14\"},{\"version\":\"1.3.2\",\"gridData\":{\"x\":35,\"y\":30,\"w\":7,\"h\":8,\"i\":\"1882d098-45d1-401e-8c15-222fb85c0b58\"},\"panelIndex\":\"1882d098-45d1-401e-8c15-222fb85c0b58\",\"embeddableConfig\":{\"title\":\"\"},\"panelRefName\":\"panel_15\"},{\"version\":\"1.3.2\",\"gridData\":{\"x\":0,\"y\":38,\"w\":15,\"h\":9,\"i\":\"6d592a68-5658-4af3-8db5-bce9e2357c36\"},\"panelIndex\":\"6d592a68-5658-4af3-8db5-bce9e2357c36\",\"embeddableConfig\":{},\"panelRefName\":\"panel_16\"},{\"version\":\"1.3.2\",\"gridData\":{\"x\":42,\"y\":30,\"w\":6,\"h\":8,\"i\":\"f65af854-bcb0-4904-b9c2-a869c8bf2423\"},\"panelIndex\":\"f65af854-bcb0-4904-b9c2-a869c8bf2423\",\"embeddableConfig\":{\"hidePanelTitles\":true},\"panelRefName\":\"panel_17\"},{\"version\":\"1.3.2\",\"gridData\":{\"x\":15,\"y\":38,\"w\":33,\"h\":9,\"i\":\"2d43cb78-cdf8-4f6f-83b2-e724f1880c4b\"},\"panelIndex\":\"2d43cb78-cdf8-4f6f-83b2-e724f1880c4b\",\"embeddableConfig\":{},\"panelRefName\":\"panel_18\"},{\"version\":\"1.3.2\",\"gridData\":{\"x\":0,\"y\":47,\"w\":15,\"h\":9,\"i\":\"c1ef693d-637a-4d2d-8267-3191015f0df8\"},\"panelIndex\":\"c1ef693d-637a-4d2d-8267-3191015f0df8\",\"embeddableConfig\":{},\"panelRefName\":\"panel_19\"},{\"version\":\"1.3.2\",\"gridData\":{\"x\":15,\"y\":47,\"w\":33,\"h\":9,\"i\":\"9a6adcb9-bce1-44c4-bab8-fe086aaf741d\"},\"panelIndex\":\"9a6adcb9-bce1-44c4-bab8-fe086aaf741d\",\"embeddableConfig\":{},\"panelRefName\":\"panel_20\"},{\"version\":\"1.3.2\",\"gridData\":{\"x\":0,\"y\":56,\"w\":15,\"h\":9,\"i\":\"1a85d715-d1ba-4d65-8da7-ab061fb5b20a\"},\"panelIndex\":\"1a85d715-d1ba-4d65-8da7-ab061fb5b20a\",\"embeddableConfig\":{},\"panelRefName\":\"panel_21\"},{\"version\":\"1.3.2\",\"gridData\":{\"x\":15,\"y\":56,\"w\":33,\"h\":9,\"i\":\"3438d081-b021-41dd-a94d-0b2fc4e41c55\"},\"panelIndex\":\"3438d081-b021-41dd-a94d-0b2fc4e41c55\",\"embeddableConfig\":{},\"panelRefName\":\"panel_22\"},{\"version\":\"1.3.2\",\"gridData\":{\"x\":0,\"y\":65,\"w\":15,\"h\":9,\"i\":\"ca007fbb-a1e3-4c8c-80ee-b20394c82353\"},\"panelIndex\":\"ca007fbb-a1e3-4c8c-80ee-b20394c82353\",\"embeddableConfig\":{},\"panelRefName\":\"panel_23\"},{\"version\":\"1.3.2\",\"gridData\":{\"x\":15,\"y\":65,\"w\":33,\"h\":9,\"i\":\"aa79b7c7-2617-4cdf-959b-225d20b8960f\"},\"panelIndex\":\"aa79b7c7-2617-4cdf-959b-225d20b8960f\",\"embeddableConfig\":{},\"panelRefName\":\"panel_24\"},{\"version\":\"1.3.2\",\"gridData\":{\"x\":0,\"y\":74,\"w\":13,\"h\":12,\"i\":\"3d5b3e0b-b438-4eb2-b9b2-8599b6095e5d\"},\"panelIndex\":\"3d5b3e0b-b438-4eb2-b9b2-8599b6095e5d\",\"embeddableConfig\":{},\"panelRefName\":\"panel_25\"},{\"version\":\"1.3.2\",\"gridData\":{\"x\":13,\"y\":74,\"w\":13,\"h\":12,\"i\":\"c2b7419d-5a81-4ab1-b793-e884b3b82765\"},\"panelIndex\":\"c2b7419d-5a81-4ab1-b793-e884b3b82765\",\"embeddableConfig\":{},\"panelRefName\":\"panel_26\"},{\"version\":\"1.3.2\",\"gridData\":{\"x\":26,\"y\":74,\"w\":22,\"h\":12,\"i\":\"2b4f1b7f-05b1-4956-92a3-7134c2afed52\"},\"panelIndex\":\"2b4f1b7f-05b1-4956-92a3-7134c2afed52\",\"embeddableConfig\":{},\"panelRefName\":\"panel_27\"},{\"version\":\"1.3.2\",\"gridData\":{\"x\":0,\"y\":86,\"w\":48,\"h\":14,\"i\":\"065c67cb-5101-43b1-b117-4b448a731381\"},\"panelIndex\":\"065c67cb-5101-43b1-b117-4b448a731381\",\"embeddableConfig\":{},\"panelRefName\":\"panel_28\"}]","timeRestore":false,"title":"CloudTrail Summary","version":1},"id":"02ca2d20-8245-11ea-8450-d1d13849d130","migrationVersion":{"dashboard":"7.9.3"},"references":[{"id":"38b0cd00-8609-11ea-8ea1-d5ea957d0a7d","name":"panel_0","type":"visualization"},{"id":"70cd1ea0-8609-11ea-8ea1-d5ea957d0a7d","name":"panel_1","type":"visualization"},{"id":"5fdde8a0-87cf-11ea-b9a0-7b688d6c40a7","name":"panel_2","type":"visualization"},{"id":"8e9a0fb0-87d0-11ea-84c8-631650cae227","name":"panel_3","type":"visualization"},{"id":"86029e40-87cf-11ea-b9a0-7b688d6c40a7","name":"panel_4","type":"visualization"},{"id":"d51c8ea0-87cf-11ea-b9a0-7b688d6c40a7","name":"panel_5","type":"visualization"},{"id":"37a2aab0-87b1-11ea-b9a0-7b688d6c40a7","name":"panel_6","type":"visualization"},{"id":"964e0eb0-87c0-11ea-84c8-631650cae227","name":"panel_7","type":"visualization"},{"id":"f53ad890-87bb-11ea-b9a0-7b688d6c40a7","name":"panel_8","type":"visualization"},{"id":"8485ad20-87cd-11ea-84c8-631650cae227","name":"panel_9","type":"visualization"},{"id":"fd2b26d0-87b7-11ea-84c8-631650cae227","name":"panel_10","type":"visualization"},{"id":"12949b90-87b9-11ea-b9a0-7b688d6c40a7","name":"panel_11","type":"visualization"},{"id":"0d6fd0c0-87ba-11ea-84c8-631650cae227","name":"panel_12","type":"visualization"},{"id":"7a295f60-87ba-11ea-b9a0-7b688d6c40a7","name":"panel_13","type":"visualization"},{"id":"42efd730-87bb-11ea-84c8-631650cae227","name":"panel_14","type":"visualization"},{"id":"2172d050-87be-11ea-84c8-631650cae227","name":"panel_15","type":"visualization"},{"id":"ff879d20-87a6-11ea-8ea1-d5ea957d0a7d","name":"panel_16","type":"visualization"},{"id":"8dd04d40-1e02-11ed-aa58-67d455528b1d","name":"panel_17","type":"visualization"},{"id":"5b808920-87a7-11ea-8ea1-d5ea957d0a7d","name":"panel_18","type":"visualization"},{"id":"750fd9d0-87a8-11ea-8ea1-d5ea957d0a7d","name":"panel_19","type":"visualization"},{"id":"a9aacce0-87a8-11ea-8ea1-d5ea957d0a7d","name":"panel_20","type":"visualization"},{"id":"1e2f98c0-87a9-11ea-8ea1-d5ea957d0a7d","name":"panel_21","type":"visualization"},{"id":"71b1ec50-87a9-11ea-8ea1-d5ea957d0a7d","name":"panel_22","type":"visualization"},{"id":"db266210-87a9-11ea-8ea1-d5ea957d0a7d","name":"panel_23","type":"visualization"},{"id":"e062c4d0-87ae-11ea-b9a0-7b688d6c40a7","name":"panel_24","type":"visualization"},{"id":"31ea73f0-1d19-11ed-94f7-6342b0f7ff8e","name":"panel_25","type":"visualization"},{"id":"2a1575e0-1d1d-11ed-aa58-67d455528b1d","name":"panel_26","type":"visualization"},{"id":"3dd3f380-1dff-11ed-aa58-67d455528b1d","name":"panel_27","type":"visualization"},{"id":"2c0fb0e0-87ce-11ea-b9a0-7b688d6c40a7","name":"panel_28","type":"search"}],"type":"dashboard","updated_at":"2022-08-18T08:57:21.749Z","version":"WzI5NTU4LDFd"}
{"exportedCount":29,"missingRefCount":0,"missingReferences":[]}