Changelog

Entra ID connector updated to remove preview designations from data types that have reached general availability. Read More →

Zero Trust solution package updated to remove deprecated networkmap visualization due to upstream repository retirement. Read More →

Cybersixgill Function App connector enforces minimum TLS 1.2 and disables public blob access to meet encryption-in-transit requirements. Read More →

MDTI playbooks updated to use managed identity authentication and Graph API v1.0 — eliminates client secret management. Read More →

Cisco Duo Security solution updated to version 3.0.3 with enhanced data ingestion capabilities through new log endpoint support. Read More →

Commvault Security IQ connector security improvements include managed identity authentication and removal of SSL verification bypass for enhanced security posture. Read More →

Oracle Cloud Infrastructure CCP connector instructions updated to clarify single-partition limitation and provide clearer partition ID guidance. Read More →

Network mapping visualization removed from Zero Trust (TIC3.0) workbook following upstream repository deprecation. Read More →

Tanium playbooks updated with Azure Key Vault integration for API token security and improved alert naming to resolve grouping issues. Read More →

Authentication vulnerability fix in Trend Micro connector plus new MongoDB Atlas regional deployment support restores and expands enterprise log visibility. Read More →

New MongoDB Atlas solution added providing database administration log ingestion via Function App for monitoring database operations, access patterns, and configuration changes. Read More →

Varonis SaaS connector updated with blob state persistence to track last alert ingest time and prevent potential data loss during connector restarts. Read More →

Complete new solution with 10 analytic rules, hunting queries, workbook, and Azure Durable Function connector for Lumen threat intelligence integration. Read More →

Comprehensive Veeam solution update adds extensive security monitoring with 137+ new detection rules, enhanced function app data connector, and streamlined deployment. Read More →

Veeam solution updated with table rename from VeeamSession_CL to VeeamSessions_CL to ensure proper display in Microsoft Defender Portal. Read More →

Illumio solution expands with new Insights Summary connector for compliance managers and threat hunters, plus improved API authentication structure. Read More →

New community workbook provides focused visibility tool for Windows Security auditing coverage assessment in Microsoft Sentinel deployments. Read More →

Dataminr Pulse connector adds Azure Government Cloud deployment button for government environments. Read More →

Six Contrast ADR analytic rules updated with improved alert descriptions and custom table schema changes for better incident clarity. Read More →

Fixed incorrect table reference (iocsent_CL) in Check Point Cyberint IOC connector that was preventing data ingestion. Read More →