Document Details

Fusion
Home / Scan #237 / Fusion
Sad Tux - Windows bias detected
This page contains Windows bias

About This Page

This page is part of the Azure documentation. It contains code examples and configuration instructions for working with Azure services.
GitHub View on GitHub 📚 View on Microsoft Learn

Bias Analysis

Detected Bias Types
windows_tools
powershell_heavy
windows_first
missing_linux_example
Summary
The documentation page demonstrates a bias toward Windows environments and tooling. Examples and scenarios frequently reference Windows-specific alerts (e.g., Windows Error and Warning Events), PowerShell, and remote WMI execution, with no equivalent Linux or cross-platform examples provided. Windows tools and patterns (PowerShell, WMI) are mentioned exclusively or before any Linux alternatives. There is a lack of Linux-specific detection scenarios, such as those involving Linux audit logs, SSH, or common Linux malware. The documentation does not provide parity for Linux environments in its examples or guidance.
Recommendations
  • Include Linux-specific detection scenarios, such as SSH brute force, suspicious sudo usage, or Linux malware alerts.
  • Provide examples of multistage attack detection involving Linux hosts, such as correlating suspicious Linux process execution with network anomalies.
  • Mention Linux equivalents to Windows tools (e.g., Bash scripts, auditd, syslog) in scenario descriptions.
  • Add references to Linux data sources and connectors (e.g., Linux server logs, Linux endpoint protection solutions) in the Fusion configuration and scenario tables.
  • Ensure that cross-platform environments are addressed in both examples and recommendations, not just Windows-centric ones.
GitHub Create Pull Request

Scan History

Date Scan Status Result
2026-01-14 00:00 #250 in_progress Biased Biased
2026-01-13 00:00 #246 completed Biased Biased
2026-01-11 00:00 #240 completed Biased Biased
2026-01-10 00:00 #237 completed Biased Biased
2026-01-09 00:34 #234 completed Biased Biased
2026-01-08 00:53 #231 completed Biased Biased
2026-01-06 18:15 #225 cancelled Clean Clean
2025-08-17 00:01 #83 cancelled Clean Clean
2025-07-13 21:37 #48 completed Biased Biased
2025-07-12 23:44 #41 cancelled Biased Biased