Data Source Schema Reference - Document Details

About This Page

This page is part of the Azure documentation. It contains code examples and configuration instructions for working with Azure services.

View on GitHub 📚 View on Microsoft Learn

Bias Analysis

Detected Bias Types

windows_first

windows_tools

missing_linux_example

Summary

The documentation page predominantly lists Azure and Microsoft-centric data sources and schemas, with a strong emphasis on Windows-native tools (e.g., IIS Logs, OfficeActivity, Azure Key Vault). While Linux Syslog is mentioned, it appears as a single entry among many Windows/Office/Azure sources, and there are no Linux-specific schema references beyond Syslog. Windows tools and schemas are listed first and in greater detail, with no parity for Linux equivalents (e.g., no mention of Linux audit logs, journald, or other host logs). Examples and references for Linux are minimal, and there is no guidance or links for Linux-specific log integration beyond Syslog.

Recommendations

Add more Linux-specific data source schema references, such as auditd, journald, or other common Linux host logs.
Provide parity in documentation for Linux tools and patterns, including example integrations and schema references.
Ensure Linux examples are given equal prominence and detail as Windows/Azure/Office sources.
Include links to Linux log documentation and integration guides, not just Syslog.
Consider adding a section or table dedicated to Linux host and network log schemas to balance the Windows/Azure focus.

Create Pull Request

Scan History

Date	Scan	Status	Result
2026-01-14 00:00	#250	in_progress	Clean
2026-01-13 00:00	#246	completed	Clean
2026-01-11 00:00	#240	completed	Biased
2026-01-10 00:00	#237	completed	Biased
2026-01-09 00:34	#234	completed	Biased
2026-01-08 00:53	#231	completed	Biased
2026-01-06 18:15	#225	cancelled	Clean
2025-08-17 00:01	#83	cancelled	Clean
2025-07-13 21:37	#48	completed	Clean
2025-07-12 23:44	#41	cancelled	Clean