Document Details

Normalization Schema Process Event
Home / Scan #237 / Normalization Schema Process Event
Sad Tux - Windows bias detected
This page contains Windows bias

About This Page

This page is part of the Azure documentation. It contains code examples and configuration instructions for working with Azure services.
GitHub View on GitHub 📚 View on Microsoft Learn

Bias Analysis

Detected Bias Types
windows_first
windows_tools
windows_examples
missing_linux_example
Summary
The documentation demonstrates a Windows bias through the use of Windows-centric examples (e.g., file paths like 'C:\Windows\explorer.exe', 'C:\Windows\System32\rundll32.exe'), references to Windows-specific concepts (such as integrity levels and User Access Control), and links to Windows documentation. Linux equivalents (e.g., Linux file paths, process integrity concepts, or privilege elevation mechanisms) are not provided, and examples or explanations for Linux systems are missing. The documentation also references Windows-specific tools and patterns before mentioning Linux, if at all.
Recommendations
  • Include Linux-specific examples alongside Windows examples, such as process names ('/usr/bin/bash'), file paths ('/usr/bin/sshd'), and command lines.
  • Document Linux equivalents for concepts like process integrity levels and privilege elevation (e.g., SELinux contexts, capabilities, sudo usage).
  • Reference Linux documentation (e.g., man pages, kernel docs) where appropriate, in addition to Windows documentation.
  • Clarify which fields or concepts are OS-specific and provide guidance for both Windows and Linux implementations.
  • Ensure that examples and field descriptions alternate or balance between Windows and Linux, rather than defaulting to Windows first.
  • Add notes or tables comparing how process events are reported and normalized across Windows and Linux systems.
GitHub Create Pull Request

Scan History

Date Scan Status Result
2026-01-22 01:38 #286 completed Biased Biased
2026-01-14 00:00 #250 in_progress Biased Biased
2026-01-13 00:00 #246 completed Biased Biased
2026-01-11 00:00 #240 completed Biased Biased
2026-01-10 00:00 #237 completed Biased Biased
2026-01-09 00:34 #234 completed Biased Biased
2026-01-08 00:53 #231 completed Biased Biased
2026-01-06 18:15 #225 cancelled Clean Clean
2025-08-17 00:01 #83 cancelled Clean Clean
2025-07-13 21:37 #48 completed Biased Biased
2025-07-12 23:44 #41 cancelled Clean Clean

Flagged Code Snippets