From 5f17086564b63a7fc7732bcf10dbe4eaa8cc6179 Mon Sep 17 00:00:00 2001
From: JuanCarlos <juanca.romo9@gmail.com>
Date: Fri, 8 Mar 2019 15:31:32 +0100
Subject: [PATCH] Top 10 Agent alerts

---
 .../templates/overview/overview-general.html   | 18 +++---------------
 .../overview/overview-general.js               | 18 +++++++++++++++++-
 2 files changed, 20 insertions(+), 16 deletions(-)

diff --git a/public/templates/overview/overview-general.html b/public/templates/overview/overview-general.html
index 987e911d4..6a8105923 100644
--- a/public/templates/overview/overview-general.html
+++ b/public/templates/overview/overview-general.html
@@ -26,13 +26,13 @@
         <md-card flex class="wz-md-card" ng-class="{'fullscreen': octrl.expandArray[0]}">
             <md-card-content class="wazuh-column">
                 <div layout="row" ng-dblclick="octrl.expand(0)">
-                    <span class="wz-headline-title">Rule group evolution</span>
+                    <span class="wz-headline-title">Top 10 Agent alerts</span>
                     <span flex></span>
                     <span class="wz-text-link" ng-click="octrl.expand(0)"><i class="fa fa-fw fa-expand"></i></span>
                 </div>
                 <md-divider class="wz-margin-top-10"></md-divider>
-                <kbn-vis id="Wazuh-App-Overview-General-Rule-group-evolution"
-                    vis-id="'Wazuh-App-Overview-General-Rule-group-evolution'"></kbn-vis>
+                <kbn-vis id="Wazuh-App-Overview-General-Top-10-agent-alert"
+                    vis-id="'Wazuh-App-Overview-General-Top-10-agent-alert'"></kbn-vis>
             </md-card-content>
         </md-card>
         <md-card flex class="wz-md-card" ng-class="{'fullscreen': octrl.expandArray[1]}">
@@ -131,18 +131,6 @@
                     vis-id="'Wazuh-App-Overview-General-Commonly-fired-rules'"></kbn-vis>
             </md-card-content>
         </md-card>
-        <md-card flex="40" class="wz-md-card" ng-class="{'fullscreen': octrl.expandArray[6]}">
-            <md-card-content class="wazuh-column">
-                <div layout="row" ng-dblclick="octrl.expand(6)">
-                    <span class="wz-headline-title">Alerts evolution - Top 5 agents</span>
-                    <span flex></span>
-                    <span class="wz-text-link" ng-click="octrl.expand(6)"><i class="fa fa-fw fa-expand"></i></span>
-                </div>
-                <md-divider class="wz-margin-top-10"></md-divider>
-                <kbn-vis id="Wazuh-App-Overview-General-Alerts-evolution-Top-5-agents"
-                    vis-id="'Wazuh-App-Overview-General-Alerts-evolution-Top-5-agents'"></kbn-vis>
-            </md-card-content>
-        </md-card>
     </div>
 
 </md-content>
\ No newline at end of file
diff --git a/server/integration-files/visualizations/overview/overview-general.js b/server/integration-files/visualizations/overview/overview-general.js
index 466f23254..791c3d6a4 100644
--- a/server/integration-files/visualizations/overview/overview-general.js
+++ b/server/integration-files/visualizations/overview/overview-general.js
@@ -204,12 +204,28 @@ export default [
     },
     _type: 'visualization'
   },
+  {
+    _id: 'Wazuh-App-Overview-General-Top-10-agent-alert',
+    _source: {
+      title: 'Top 10 Agent alerts',
+      visState:
+      '{"title":"Top 10 Agent alerts","type":"metrics","params":{"id":"61ca57f0-469d-11e7-af02-69e470af7417","type":"timeseries","series":[{"id":"0eba6ef0-41a1-11e9-b2ca-a3f8ee4d0e71","color":"rgba(0,156,224,1)","split_mode":"terms","metrics":[{"id":"0eba6ef1-41a1-11e9-b2ca-a3f8ee4d0e71","type":"count"}],"separate_axis":0,"axis_position":"right","formatter":"number","chart_type":"line","line_width":1,"point_size":1,"fill":0.5,"stacked":"none","terms_field":"agent.name","terms_size":"10"}],"time_field":"@timestamp","index_pattern":"wazuh-alerts","interval":"auto","axis_position":"left","axis_formatter":"number","axis_scale":"normal","show_legend":1,"show_grid":1,"legend_position":"left"},"aggs":[]}',
+      uiStateJSON: '{}',
+      description: '',
+      version: 1,
+      kibanaSavedObjectMeta: {
+        searchSourceJSON:
+          '{"index":"wazuh-alerts","filter":[],"query":{"query":"","language":"lucene"}}'
+      }
+    },
+    _type: 'visualization'
+  },    
   {
     _id: 'Wazuh-App-Overview-General-Alert-level-evolution',
     _source: {
       title: 'Alert level evolution',
       visState:
-        '{"title":"Alert level evolution","type":"metrics","params":{"id":"61ca57f0-469d-11e7-af02-69e470af7417","type":"timeseries","series":[{"id":"61ca57f1-469d-11e7-af02-69e470af7417","color":"rgba(0,156,224,1)","split_mode":"terms","metrics":[{"id":"61ca57f2-469d-11e7-af02-69e470af7417","type":"count"}],"separate_axis":0,"axis_position":"right","formatter":"number","chart_type":"bar","line_width":1,"point_size":1,"fill":0.5,"stacked":"none","terms_field":"rule.level","terms_size":"16"}],"time_field":"@timestamp","index_pattern":"wazuh-alerts","interval":"auto","axis_position":"left","axis_formatter":"number","axis_scale":"normal","show_legend":1,"show_grid":1,"background_color":null,"background_color_rules":[{"id":"2eaf6f30-367a-11e9-a875-698afd42ed2c"}],"bar_color_rules":[{"id":"2f685ef0-367a-11e9-a875-698afd42ed2c"}],"gauge_color_rules":[{"id":"339f78f0-367a-11e9-a875-698afd42ed2c"}],"gauge_width":10,"gauge_inner_width":10,"gauge_style":"half"},"aggs":[]}',
+      '{"title":"Alert level evolution","type":"metrics","params":{"id":"61ca57f0-469d-11e7-af02-69e470af7417","type":"timeseries","series":[{"id":"61ca57f1-469d-11e7-af02-69e470af7417","color":"rgba(0,156,224,1)","split_mode":"terms","metrics":[{"id":"61ca57f2-469d-11e7-af02-69e470af7417","type":"count"}],"separate_axis":0,"axis_position":"right","formatter":"number","chart_type":"bar","line_width":1,"point_size":1,"fill":0.5,"stacked":"none","terms_field":"rule.level","terms_size":"16"}],"time_field":"@timestamp","index_pattern":"wazuh-alerts","interval":"auto","axis_position":"left","axis_formatter":"number","axis_scale":"normal","show_legend":1,"show_grid":1,"background_color":null,"background_color_rules":[{"id":"2eaf6f30-367a-11e9-a875-698afd42ed2c"}],"bar_color_rules":[{"id":"2f685ef0-367a-11e9-a875-698afd42ed2c"}],"gauge_color_rules":[{"id":"339f78f0-367a-11e9-a875-698afd42ed2c"}],"gauge_width":10,"gauge_inner_width":10,"gauge_style":"half"},"aggs":[]}',
       uiStateJSON: '{}',
       description: '',
       version: 1,