Rename historical job API endpoints to threat hunting

config/_default/menus/api.en.yaml

@@ -2426,16 +2426,16 @@ menu:
         unstable:
           - v2
         order: 43
-    - name: Cancel a historical job
-      url: '#cancel-a-historical-job'
-      identifier: security-monitoring-cancel-a-historical-job
+    - name: Cancel a threat hunting job
+      url: '#cancel-a-threat-hunting-job'
+      identifier: security-monitoring-cancel-a-threat-hunting-job
       parent: security-monitoring
       generated: true
       params:
         versions:
           - v2
         operationids:
-          - CancelHistoricalJob
+          - CancelThreatHuntingJob
         unstable:
           - v2
         order: 22
@@ -2448,7 +2448,7 @@ menu:
         versions:
           - v2
         operationids:
-          - GetHistoricalJob
+          - GetThreatHuntingJob
         unstable:
           - v2
         order: 21
@@ -2461,7 +2461,7 @@ menu:
         versions:
           - v2
         operationids:
-          - DeleteHistoricalJob
+          - DeleteThreatHuntingJob
         unstable:
           - v2
         order: 23
@@ -2478,29 +2478,29 @@ menu:
         unstable:
           - v2
         order: 24
-    - name: Run a historical job
-      url: '#run-a-historical-job'
-      identifier: security-monitoring-run-a-historical-job
+    - name: Run a threat hunting job
+      url: '#run-a-threat-hunting-job'
+      identifier: security-monitoring-run-a-threat-hunting-job
       parent: security-monitoring
       generated: true
       params:
         versions:
           - v2
         operationids:
-          - RunHistoricalJob
+          - RunThreatHuntingJob
         unstable:
           - v2
         order: 19
-    - name: List historical jobs
-      url: '#list-historical-jobs'
-      identifier: security-monitoring-list-historical-jobs
+    - name: List threat hunting jobs
+      url: '#list-threat-hunting-jobs'
+      identifier: security-monitoring-list-threat-hunting-jobs
       parent: security-monitoring
       generated: true
       params:
         versions:
           - v2
         operationids:
-          - ListHistoricalJobs
+          - ListThreatHuntingJobs
         unstable:
           - v2
         order: 20

content/en/api/v2/security-monitoring/request.RunThreatHuntingJob.json

@@ -0,0 +1,37 @@
+{
+  "data": {
+    "type": "historicalDetectionsJobCreate",
+    "attributes": {
+      "jobDefinition": {
+        "type": "log_detection",
+        "name": "Excessive number of failed attempts.",
+        "queries": [
+          {
+            "query": "source:non_existing_src_weekend",
+            "aggregation": "count",
+            "groupByFields": [],
+            "distinctFields": []
+          }
+        ],
+        "cases": [
+          {
+            "name": "Condition 1",
+            "status": "info",
+            "notifications": [],
+            "condition": "a > 1"
+          }
+        ],
+        "options": {
+          "keepAlive": 3600,
+          "maxSignalDuration": 86400,
+          "evaluationWindow": 900
+        },
+        "message": "A large number of failed login attempts.",
+        "tags": [],
+        "from": 1730387522611,
+        "to": 1730387532611,
+        "index": "main"
+      }
+    }
+  }
+}

data/api/v2/CodeExamples.json

@@ -1532,11 +1532,11 @@
       "description": "Patch a vulnerability-based notification rule returns \"Notification rule successfully patched.\" response"
     }
   ],
-  "RunHistoricalJob": [
+  "RunThreatHuntingJob": [
     {
       "group": "security_monitoring",
       "suffix": "",
-      "description": "Run a historical job returns \"Status created\" response"
+      "description": "Run a threat hunting job returns \"Status created\" response"
     }
   ],
   "TestSecurityMonitoringRule": [