elasticsearch

Description

Before ES 7.x it was possible to provide a list of fields by URL or BODY request for field_caps API.
https://www.elastic.co/guide/en/elasticsearch/reference/6.8/search-field-caps.html
POST _field_caps { "fields" : ["rating"] }

Starting from 7.x this feature was removed, and only one possible way it uses URI but in this case, it is possible to have an error 414 (Reques

When a user searches for a value on the cases list page the UI does not pass any search_fields value. This causes Elasticsearch to query all available fields within the case saved object. This could cause some confusion as to why some cases are returned in the search results because we don't display all the data from a case in the UI.

References: https://github.com/elastic/kibana/blob/main/x-

Is your feature request related to a problem? Please describe.
Currently a hard refresh of the Index page is required in order to load the new index list and stats.

Describe the solution you'd like
A refresh button will help get the latest index list and stats.

Describe alternatives you've considered
None

Additional context
None

Someone should map publicly available EVTX samples to Sigma rules. This would enable us to automatically test the correctness of generated queries.

Known security-related EVTX repositories:

• https://github.com/sbousseaden/EVTX-ATTACK-SAMPLES
• https://github.com/Cyb3rWard0g/mordor

Feel free to extend the list.

Mapping should be:

Sigma rule -> Repository/EVTX ( -> expected matched

https://elastic.github.io/eui/#/tabular-content/tables#build-a-custom-table-from-individual-components

Line 35 isFunction is missing, and code sandbox demo is broken.