Support new compliance groups HIPAA and NIST 800 53

[adri9valle]

This issue is related to:

• Modify API to get HIPAA and NIST 800 53 rule groups wazuh-api#386

App must consider new groups that are being added to the ruleset:

• hipaa
• nist-800-53

[jesusgn90]

Proposal

• Two new dashboards for both HIPAA and NIST-800-53 as well, under Regulatory Compliance
  • Overview, Agents

[pablotr9]

Working on this branch: https://github.com/wazuh/wazuh-splunk/tree/hipaa-nist

• HIPAA and NIST 800-53 have been added as extensions:
  

• Both extensions have been added to Overview -> Regulatory Compliance:
  

• They have also been added to Agents -> Regulatory Compliance:
  
  Currently HIPAA and NIST 800-53 dashboards are empty until Wazuh API adds calls for these new extensions.

• We can now filter by these two new extensions at Management -> Rules search filter bar:
  

[pablotr9]

UPDATE
HIPAA and NIST-800-53 dashboards have been updated and tested with Wazuh 3.10 for both Overview and Agents sections.
-Descriptions for NIST-800-53 requirements have been added.

An example of Overview -> NIST 800-53 Dashboard

Currently working on adding HIPAA requirements description.

[pablotr9]

Update
It has been added new description for HIPAA requirements and NIST 800-53 requirements. 675d073
There was an error with Nist-800-53 visualizations due to the use of underscores in its name, it has been fixed here: 13f70f8
Now we can filter our ruleset by HIPAA and NIST 800-53 requirements:8fa46b0

[jesusgn90]

This visualization is wrong:

Please, change its look & feel, you can use wazuh/wazuh-dashboard-plugins#1448 (comment) as reference.

The requirements slider is a bit rough:

On the other hand, the issue doesn't show the full dashboard, add screenshot once finished.

Thanks

[pablotr9]

UPDATE
Those requested improvements to HIPAA and NIST 800-53 dashboards have been added here: d6b3e27
PCI DSS and GDPR dashboards have also been updated in order to maintain the proposed style.

Overview dashboards:

• PCI DSS
  
• GDPR
  
• HIPAA
  
• NIST 800-53
  

AGENTS dashboards:

• PCI DSS
  
• GDPR
  
• HIPAA
  
• NIST 800-53
  

[jesusgn90]

This visualization is still wrong and it exists in more than one dashboard. This should be an aggregation and the right legend should show requirement names instead of "Count"

A valid example:

This is not how we show the timestamp field:

Please use the grid properly:

Be consistent:

[pablotr9]

UPDATE
Grid are now used properly, text descriptions are consistent and the _time has been replaced 7e05216.
I have encountered some problems renaming _time, the easiest way to do that was by simply renaming _time for a human-readable format as follows:
(search query) | rename _time as "Time span"

Renaming _time forced Splunk to format _time value to milliseconds but we need a human-readable format for this value as well, this can be solved by formatting it again:
(search query)| rename _time as Time | convert ctime(Time)

Once again, this date transformation (from milliseconds to dd/mm/yyyy HH:MM:SS) changed the user selected time range.
I finally achieved this by modifying all our chart classes so they now have one new optional param:
{customAxisTitleX : "Time span"}
This new param can be set to all our chart visualizations so we can set a custom axis X title without modifying any of the visualization data or time range as the next screenshot shows: