You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Is your feature request related to a problem? Please describe.
I run Wazuh in production with about 5000 endpoints spread across a few estates. Since removing the field selector on the left hand side of the Events tab we have found it increasingly harder to threat hunt.
The auto-population of the Top 5 in the results was how we'd filter out the noise and find co-relation, we now have to try and simulate that experience using the Discover applet, but isn't the point of Threat Hunting to discover? We have found ways to get more or less the same functionality, but at significantly more clicks
Describe the solution you'd like
When you make changes that could impact the way users interact with the product, I'd like to see an option to switch back to the the previous iteration, similar to how Outlook has a toggle to switch to "Classic" view. I understand that would potentially mean maintaining legacy code and new, but sometimes newer isn't better. We had processes we followed to threat hunt and removing functionality without replacing it without something similar or better or the ability to retain the old should be considered please :). Unless.. I am just being blind and this exists already
Additional context
v4.8.1
v4.9.2
Thanks for reading :)
The text was updated successfully, but these errors were encountered:
Is your feature request related to a problem? Please describe.
I run Wazuh in production with about 5000 endpoints spread across a few estates. Since removing the field selector on the left hand side of the Events tab we have found it increasingly harder to threat hunt.
The auto-population of the Top 5 in the results was how we'd filter out the noise and find co-relation, we now have to try and simulate that experience using the Discover applet, but isn't the point of Threat Hunting to discover? We have found ways to get more or less the same functionality, but at significantly more clicks
Describe the solution you'd like
When you make changes that could impact the way users interact with the product, I'd like to see an option to switch back to the the previous iteration, similar to how Outlook has a toggle to switch to "Classic" view. I understand that would potentially mean maintaining legacy code and new, but sometimes newer isn't better. We had processes we followed to threat hunt and removing functionality without replacing it without something similar or better or the ability to retain the old should be considered please :). Unless.. I am just being blind and this exists already
Additional context
v4.8.1
v4.9.2
Thanks for reading :)
The text was updated successfully, but these errors were encountered: