Add links to blog post and rule reference
This commit is contained in:
Ross Wolf
@@ -1,7 +1,10 @@
|
||||
# Detection Rules
|
||||
|
||||
Detection Rules is the home for rules used by Elastic Security. This repository is used for the development, maintenance, testing, validation, and release of rules for Elastic Security’s Detection Engine.
|
||||
|
||||
|
||||
This repository was first announced on Elastic's blog post, [You know the rules, and so do I](https://www.elastic.co/blog/you-know-the-rules-and-so-do-I).
|
||||
|
||||
|
||||
## Table of Contents
|
||||
- [Overview of this repository](#overview-of-this-repository)
|
||||
- [Getting started](#getting-started)
|
||||
@@ -87,5 +90,6 @@ Occasionally, we may want to import rules from another repository that already h
|
||||
## Questions? Problems? Suggestions?
|
||||
|
||||
- Want to know more about the Detection Engine? Check out the [overview](https://www.elastic.co/guide/en/siem/guide/current/detection-engine-overview.html) in Kibana.
|
||||
- This repository includes new and updated rules that have not been released yet. To see the latest set of rules released with the stack, see the [Prebuilt rule reference](https://www.elastic.co/guide/en/siem/guide/current/prebuilt-rules.html).
|
||||
- If you’d like to report a false positive or other type of bug, please create a GitHub issue and check if there's an existing one first.
|
||||
- Need help with Detection Rules? Post an issue or ask away in our [Security Discuss Forum](https://discuss.elastic.co/c/security/) or the **#detection-rules** channel within [Slack workspace](https://www.elastic.co/blog/join-our-elastic-stack-workspace-on-slack).
|
||||
|
||||
Reference in New Issue
Block a user