Implement embeddable dashboard on Malware Detection module

plugins/main/common/constants.ts

@@ -233,6 +233,8 @@ export const DATA_SOURCE_FILTER_CONTROLLED_MITRE_ATTACK_RULE_ID =
   'hidden-mitre-attack-rule-id';
 export const DATA_SOURCE_FILTER_CONTROLLED_VIRUSTOTAL_RULE_GROUP =
   'virustotal-rule-group';
+export const DATA_SOURCE_FILTER_CONTROLLED_MALWARE_DETECTION_RULE_GROUP =
+  'malware-detection-rule-group';
 export const DATA_SOURCE_FILTER_CONTROLLED_AWS_RULE_GROUP = 'aws-rule-group';
 export const DATA_SOURCE_FILTER_CONTROLLED_FIM_RULE_GROUP = 'fim-rule-group';
 

plugins/main/public/components/common/data-source/pattern/alerts/alerts-malware-detection/alerts-malware-detection-data-source.ts

@@ -0,0 +1,24 @@
+import { tFilter } from '../../../index';
+import { DATA_SOURCE_FILTER_CONTROLLED_MALWARE_DETECTION_RULE_GROUP } from '../../../../../../../common/constants';
+import { AlertsDataSource } from '../alerts-data-source';
+
+const MALWARE_DETECTION_GROUP_KEY = 'rule.groups';
+const MALWARE_DETECTION_GROUP_VALUE = 'rootcheck';
+
+export class AlertsMalwareDetectionDataSource extends AlertsDataSource {
+  constructor(id: string, title: string) {
+    super(id, title);
+  }
+
+  getRuleGroupsFilter() {
+    return super.getRuleGroupsFilter(
+      MALWARE_DETECTION_GROUP_KEY,
+      MALWARE_DETECTION_GROUP_VALUE,
+      DATA_SOURCE_FILTER_CONTROLLED_MALWARE_DETECTION_RULE_GROUP,
+    );
+  }
+
+  getFixedFilters(): tFilter[] {
+    return [...this.getRuleGroupsFilter(), ...super.getFixedFilters()];
+  }
+}

plugins/main/public/components/common/data-source/pattern/alerts/alerts-malware-detection/index.ts

@@ -0,0 +1 @@
+export * from './alerts-malware-detection-data-source';

plugins/main/public/components/common/data-source/pattern/alerts/index.ts

@@ -1,6 +1,7 @@
 export * from './alerts-fim';
 export * from './alerts-data-source-repository';
 export * from './alerts-data-source';
+export * from './alerts-malware-detection';
 export * from './alerts-aws';
 export * from './vulnerabilities';
 export * from './mitre-attack';

plugins/main/public/components/common/modules/modules-defaults.tsx

@@ -48,13 +48,15 @@ import { mitreAttackColumns } from '../../overview/mitre/events/mitre-attack-col
 import { virustotalColumns } from '../../overview/virustotal/events/virustotal-columns';
 import { malwareDetectionColumns } from '../../overview/malware-detection/events/malware-detection-columns';
 import { WAZUH_VULNERABILITIES_PATTERN } from '../../../../common/constants';
+import { DashboardMalwareDetection } from '../../overview/malware-detection/dashboard';
 import { DashboardFIM } from '../../overview/fim/dashboard/dashboard';
 import { MitreAttackDataSource } from '../data-source/pattern/alerts/mitre-attack/mitre-attack-data-source';
 import {
   AlertsDataSource,
   AlertsVulnerabilitiesDataSource,
   AlertsAWSDataSource,
   VirusTotalDataSource,
+  AlertsMalwareDetectionDataSource,
   AlertsFIMDataSource,
 } from '../data-source';
 
@@ -155,8 +157,16 @@ export const ModulesDefaults = {
   pm: {
     init: 'dashboard',
     tabs: [
-      DashboardTab,
-      renderDiscoverTab(DEFAULT_INDEX_PATTERN, malwareDetectionColumns),
+      {
+        id: 'dashboard',
+        name: 'Dashboard',
+        buttons: [ButtonModuleExploreAgent, ButtonModuleGenerateReport],
+        component: DashboardMalwareDetection,
+      },
+      renderDiscoverTab({
+        tableColumns: malwareDetectionColumns,
+        DataSource: AlertsMalwareDetectionDataSource,
+      }),
     ],
     availableFor: ['manager', 'agent'],
   },