BloodHound Enterprise Solution Offer ID Updated to Resolve Partner Portal Conflict
BloodHound Enterprise solution updated to version 3.2.2 with new offer ID to resolve Partner Portal publishing conflict. Read More →
Changelog
Workspace Usage Monitoring Enhanced with New Features and Weekly Analytics
WorkspaceUsage workbook updated to version 1.6.4 with new weekly analytics features and bug fixes to improve usage visibility. Read More →
AWS EKS Connector: CloudFormation Template Revert Fixes Deployment Issues
AWS EKS connector CloudFormation templates reverted to resolve deployment errors affecting EKS audit log ingestion setup. Read More →
ASIM Authentication: New Okta OktaSystemLogs Parser Enables Normalized Identity Event Analysis
New ASIM parser normalizes Okta authentication events from OktaSystemLogs table to standard Authentication schema. Read More →
TheHive Connector: Field Filtering Fix Restores Complete Event Collection
TheHive CCF connector removes excludeFields parameter that was preventing complete event data ingestion. Read More →
Datawiza Solution: New Detection for Server Error Spike Monitoring
Datawiza solution adds server error spike detection to identify potential DDoS attacks or system misconfigurations. Read More →
D3 Smart SOAR Integration: New CCF Connector Enables SOAR Incident Visibility
New connector integrates D3 Smart SOAR incidents into Microsoft Sentinel via CCF, providing SOC teams centralized visibility into automated response activities. Read More →
AWS Network Firewall Connector: Fixed Critical Deployment Bug Causing Duplicate Collectors
Deployment bug fix prevents multiple collector creation for AWS Network Firewall multi-stream connectors. Read More →
AWS EKS Connector: New Public Preview for Kubernetes Audit Log Security Monitoring
New CCF-based solution ingests Amazon Elastic Kubernetes Service audit logs via SQS for real-time cluster security monitoring. Read More →
FortiGate ASIM Authentication Parser: New Visibility for Fortinet Administrative Access Events
New ASIM parser adds normalised authentication monitoring for FortiGate administrator login and logout events. Read More →
GitHub Workflows: Code Injection Risk Mitigation via Environment Variable Security Fix
Fixed code injection vulnerabilities in CI workflows by replacing direct GitHub context interpolation with safer environment variable patterns. Read More →
Databahn Solution: Branding Consistency Fix
Fixed naming inconsistencies across Databahn solution metadata files to standardize on lowercase ‘b’ branding. Read More →
Commvault Connector: Migration from Legacy Sentinel API to Modern Logs Ingestion Architecture
Commvault Security IQ connector migrated from deprecated Log Analytics API to Azure Monitor Logs Ingestion API with DCE/DCR architecture. Read More →
Microsoft Entra ID Assets: Device and Organizational Contact Visibility Expansion
Two new asset tables (EntraDevices, EntraOrgContacts) added to Microsoft Entra ID connector for BloodHound graph building and complete asset enumeration. Read More →
Visa Threat Intelligence Connector: Template Consistency Fix Addresses Installation Issues
Corrects solution name and ID mismatches in Visa TI connector templates that were causing installation failures. Read More →
Azure Key Vault ASIM Parser: New Audit Event Normalization for Critical Key Management Monitoring
Azure Key Vault audit events can now be analyzed using ASIM schema, enabling standardized detection across vault, secret, key, and certificate operations. Read More →
NetApp Ransomware Resilience: New Automated Incident Response Solution
NetApp introduces modular playbooks for automated ransomware protection, enabling SOC teams to investigate, snapshot, and isolate compromised storage volumes via Microsoft Sentinel integration. Read More →
IPinfo Solution: Three New Data Connectors with Enhanced OAuth Authentication
IPinfo v3.0.3 adds Core, Plus, and Residential Proxy data connectors with robust Azure AD OAuth exception handling to prevent authentication blind spots. Read More →
AWS Athena Function App: Resolving Extension Bundle Compatibility and Query Result Parsing
AWS Athena Function App connector updated to Azure Functions v4+ bundle and fixed Python query parsing logic that previously failed on empty result data. Read More →
Recorded Future Playbooks: Threat Intelligence Integration Discontinued Due to Microsoft API Deprecation
Microsoft has deprecated the Graph Security tiIndicators API, rendering Recorded Future’s automated threat intelligence ingestion playbooks non-functional. Read More →