Bias Analysis
Detected Bias Types
windows_first
powershell_heavy
missing_linux_example
Summary
The documentation page for scheduled analytics rules in Microsoft Sentinel demonstrates a Windows bias primarily in the 'Next steps' section, where automation and rule management are discussed. PowerShell is mentioned explicitly as a method for pushing rules, with no equivalent Linux shell (e.g., Bash, CLI) examples or references. The API and PowerShell are presented as the main automation options, and PowerShell is referenced before any cross-platform alternatives. There are no Linux-specific tools, shell commands, or examples provided throughout the page, and no mention of how Linux users might perform similar tasks. This may make the documentation less accessible or actionable for users on Linux or macOS systems.
Recommendations
- Add examples using Azure CLI (az securityinsights) for rule management and automation, which is cross-platform and works on Linux, macOS, and Windows.
- Include Bash shell script snippets for exporting/importing rules via API, demonstrating curl or wget usage.
- Explicitly mention that PowerShell Core is available on Linux and macOS, and provide installation instructions or links.
- Where PowerShell is referenced, also provide equivalent commands for Azure CLI or REST API usage.
- Review other sections for tool references and ensure parity by including Linux-friendly alternatives (e.g., mention text editors, scripting environments, etc.).
Create Pull Request