Skip to content

document "Service Discovery & Setup" #860

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 23 commits into from
Sep 2, 2025
Merged

document "Service Discovery & Setup" #860

merged 23 commits into from
Sep 2, 2025

Conversation

mmetc
Copy link
Contributor

@mmetc mmetc commented Aug 26, 2025

No description provided.

@aws-amplify-eu-west-1 AWS Amplify (eu-west-1)
Copy link

This pull request is automatically being deployed by Amplify Hosting (learn more).

Access this pull request here: https://pr-860.d1to60jd2gb6y6.amplifyapp.com

@mmetc mmetc added this to the 1.7.0 milestone Aug 26, 2025
@mmetc mmetc requested a review from buixor August 28, 2025 14:04
@mmetc mmetc changed the title document post-install behavior of "cscli setup unattended" document "Service Discovery & Setup" Sep 2, 2025
@LaurenceJJones LaurenceJJones self-requested a review September 2, 2025 08:23
LaurenceJJones
LaurenceJJones reviewed Sep 2, 2025
View reviewed changes
crowdsec-docs/docs/log_processor/data_sources/introduction.md Outdated
[VictoriaLogs](/log_processor/data_sources/victorialogs.md) | read logs from VictoriaLogs | yes | yes
[syslog service](/log_processor/data_sources/syslog_service.md) | read logs received via syslog protocol | yes | no
[Windows Event](/log_processor/data_sources/windows_event_log.md)| read logs from windows event log | yes | yes
[Appsec](/log_processor/data_sources/appsec) | expose HTTP service for the Appsec component | yes | no
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Removing .md from these links breaks them

LaurenceJJones
LaurenceJJones reviewed Sep 2, 2025
View reviewed changes
crowdsec-docs/docs/log_processor/service-discovery-setup/detect-yaml.md
# detect.yaml
---
detect:
apache2-file-apache2:
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Mention that this should be unique?

buixor
buixor reviewed Sep 2, 2025
View reviewed changes
crowdsec-docs/docs/log_processor/service-discovery-setup/intro.md

# Service Discovery

## Basic Usage
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Add the objective of the service discovery before saying how to use it

LaurenceJJones
LaurenceJJones reviewed Sep 2, 2025
View reviewed changes
crowdsec-docs/docs/log_processor/intro.mdx Outdated
- Parses logs and extract relevant information using [Parsers](log_processor/parsers/introduction.mdx).
- Enriches the parsed information with additional context such as GEOIP, ASN using [Enrichers](log_processor/parsers/enricher.md).
- Monitors patterns of interest via [Scenarios](log_processor/scenarios/introduction.mdx).
- Pushes alerts to the Local API (LAPI), where alert/decisions are stored.

!TODO: Add diagram of the log processor pipeline
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

remove

@blotus blotus merged commit 831c782 into main Sep 2, 2025
2 of 3 checks passed
@blotus blotus deleted the cscli-setup branch September 2, 2025 10:43
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@buixor buixor buixor left review comments

@LaurenceJJones LaurenceJJones LaurenceJJones approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
1.7.0
Development

Successfully merging this pull request may close these issues.
4 participants
@mmetc @buixor @LaurenceJJones @blotus