Document Details

Entities Reference
Home / Scan #237 / Entities Reference
Sad Tux - Windows bias detected
This page contains Windows bias

About This Page

This page is part of the Azure documentation. It contains code examples and configuration instructions for working with Azure services.
GitHub View on GitHub 📚 View on Microsoft Learn

Bias Analysis

Detected Bias Types
windows_first
windows_tools
missing_linux_example
Summary
The documentation exhibits a Windows bias by prioritizing Windows-centric concepts, terminology, and identifiers. Windows-specific terms (e.g., NTDomain, NetBiosName, SID, RegistryKey/Hive, WindowsSecurityZoneType) are prevalent and often explained before or instead of Linux equivalents. There are no examples or schema fields specifically for Linux user/group/account/domain concepts, nor are Linux-specific filesystem or process identifiers discussed. Windows tools and patterns (Active Directory, NTFS AlternateDataStream, Registry) are referenced without Linux parity, and no Linux-specific examples or terminology (such as UID/GID, /etc/passwd, systemd, ext4, etc.) are provided.
Recommendations
  • Add Linux-specific identifiers and schema fields (e.g., UID, GID, /etc/passwd, /etc/group) for Account and Host entities.
  • Include Linux filesystem concepts (e.g., inode, ext4 attributes) alongside NTFS/WindowsSecurityZoneType in the File entity.
  • Provide examples for Linux process attributes (e.g., systemd unit, cgroup, SELinux context) in the Process entity.
  • Introduce Linux registry/config concepts (e.g., /etc, systemd unit files) in parallel to Windows RegistryKey/RegistryValue.
  • Clarify that certain identifiers are Windows-only and provide Linux equivalents or note their absence.
  • Add documentation sections or footnotes explaining how Linux hosts, accounts, and processes are mapped and identified in Sentinel.
  • Balance terminology order (e.g., list Linux and Windows OSFamily values equally, not Windows first).
GitHub Create Pull Request

Scan History

Date Scan Status Result
2026-01-14 00:00 #250 in_progress Biased Biased
2026-01-13 00:00 #246 completed Biased Biased
2026-01-11 00:00 #240 completed Biased Biased
2026-01-10 00:00 #237 completed Biased Biased
2026-01-09 00:34 #234 completed Biased Biased
2026-01-08 00:53 #231 completed Biased Biased
2026-01-06 18:15 #225 cancelled Clean Clean
2025-08-17 00:01 #83 cancelled Clean Clean
2025-07-13 21:37 #48 completed Clean Clean
2025-07-12 23:44 #41 cancelled Clean Clean