Fusion - Document Details

About This Page

This page is part of the Azure documentation. It contains code examples and configuration instructions for working with Azure services.

View on GitHub 📚 View on Microsoft Learn

Bias Analysis

Detected Bias Types

powershell_heavy

windows_tools

windows_first

missing_linux_example

Summary

The documentation page demonstrates a Windows bias through frequent references to Windows-specific tools (e.g., PowerShell, Windows Error and Warning Events), and scenario examples that focus on Windows malware and PowerShell-based attacks. There is a lack of Linux-specific detection scenarios, examples, or references to Linux-native tools and attack patterns. Windows-centric terminology and tools are mentioned before or instead of Linux equivalents, and no Linux/POSIX command-line or attack examples are provided.

Recommendations

Add detection scenarios and examples involving Linux-based threats, such as SSH brute force, suspicious sudo activity, or Linux-specific malware.
Include references to Linux logs (e.g., syslog, auth.log) and Linux-native tools (e.g., Bash, systemd, auditd) in scenario tables and examples.
Provide parity in examples by showing how multistage attacks might manifest on Linux systems, including relevant alerts and severity levels.
Mention Linux data connectors and how to configure them for Fusion, alongside Windows connectors.
Ensure that documentation covers both Windows and Linux environments equally, especially in sections describing attack detection, incident generation, and analytics rule configuration.

Create Pull Request

Scan History

Date	Scan	Status	Result
2026-01-14 00:00	#250	in_progress	Biased
2026-01-13 00:00	#246	completed	Biased
2026-01-11 00:00	#240	completed	Biased
2026-01-10 00:00	#237	completed	Biased
2026-01-09 00:34	#234	completed	Biased
2026-01-08 00:53	#231	completed	Biased
2026-01-06 18:15	#225	cancelled	Clean
2025-08-17 00:01	#83	cancelled	Clean
2025-07-13 21:37	#48	completed	Biased
2025-07-12 23:44	#41	cancelled	Biased