Cisco IOS: New ASIM Authentication Parser for Network Device Login Monitoring

ASIM authentication parser for Cisco IOS enables normalized monitoring of login, logout, and failed authentication events from network infrastructure devices. Read More →

Check Point Smart Defense: ASIM NetworkSession Parser Expands Threat Prevention Visibility

New ASIM NetworkSession parser adds Check Point Smart Defense logs to normalized threat monitoring and detection coverage. Read More →

Netskope Secure Web Gateway Solution: New Detection Coverage for Cloud Application Visibility

New Netskope solution adds 10 detections for web transaction monitoring including impossible travel, excessive downloads, shadow IT detection, and data exfiltration patterns. Read More →

Microsoft Security Copilot: Six New Detections for AI Assistant Abuse

New analytic rules target jailbreak attempts, external access, plugin tampering, and file upload disabling - covering major AI security attack vectors. Read More →

New Attack Surface Management Solution: blacklens.io Brings External Threat Visibility to Microsoft Sentinel

blacklens.io Attack Surface Management platform now available in Content Hub with webhook-based alert ingestion and automated incident creation. Read More →

ASIM WebSession Parser: New Cisco Umbrella Proxy Log Coverage

New ASIM parser adds web session visibility for Cisco Umbrella proxy logs, normalizing HTTP/HTTPS traffic data to standard schema. Read More →

Cyren Threat Intelligence: SentinelOne IOC Automation Solution Deployed

New Content Hub solution automates IOC ingestion from Cyren CCF feeds (IP reputation and malware URLs) into SentinelOne for automated threat detection and response. Read More →

AWS ELB Connector: Public Preview CCF Ingestion for ALB, NLB, and GLB Logs

New CCF connector enables ingestion of AWS Elastic Load Balancer access and flow logs into Microsoft Sentinel for network traffic monitoring and threat detection. Read More →

Rubrik Security Cloud: New CCF Connector Unlocks Ransomware Recovery Intelligence

New CCF data connector ingests comprehensive backup status data enabling correlation between security incidents and backup health for rapid ransomware recovery assessment. Read More →

Upwind Cloud Security: New Data Connector Unlocks Cloud Asset Visibility

New Upwind solution enables ingestion of compute platform assets with risk assessments, vulnerability data, and network exposure metrics. Read More →

ASIM AuditEvent Parser: Azure SQL Security Audit Data Normalized for Detection

New ASIM parser enables normalized analysis of SQL security audit events from SQLSecurityAuditEvents and AzureDiagnostics tables. Read More →

New Censys Solution: Attack Surface Intelligence and Entity Enrichment

Adds comprehensive playbook automation for Censys threat intelligence enrichment, providing IP/domain/certificate context during incident investigation. Read More →

Checkmarx Audit Log Ingestion Playbook: Security Event Monitoring Integration

New playbook for ingesting Checkmarx audit log events into Microsoft Sentinel via DCR/DCE for security event monitoring and compliance. Read More →

Checkmarx SAST Ingestion Playbook: Static Application Security Testing Integration

New playbook for ingesting Checkmarx SAST scan findings into Microsoft Sentinel via DCR/DCE for application vulnerability tracking. Read More →

Semperis Lightning: New Active Directory Security Monitoring Platform Added to Content Hub

Semperis Lightning connector brings comprehensive Active Directory tier-0 attack path monitoring and privileged access visibility to Microsoft Sentinel via real-time API ingestion. Read More →

A365 Observability Connector: New AI Agent Telemetry Visibility in Microsoft Sentinel

New data connector for AI agent behavior monitoring brings telemetry from A365, AI Foundry, and Copilot into Microsoft Sentinel for security investigations. Read More →

Alibaba Cloud Networking: New CCF Connector Brings VPC Flow, WAF, and API Gateway Visibility

Microsoft Sentinel gains visibility into Alibaba Cloud network infrastructure with a new CCF connector supporting VPC Flow Logs, WAF events, and API Gateway data ingestion via Simple Log Service. Read More →

OpenAI Solution: New Data Source for AI Security Monitoring

New Microsoft Sentinel solution introduces CCF connector for OpenAI audit logs and chat completions, enabling AI governance and threat detection. Read More →

XBOW Autonomous Security Platform: Function App Connector and Detection Rules

New XBOW solution provides asset inventory, vulnerability finding correlation, and automated security assessment visibility through Function App ingestion and four analytic rules. Read More →

ASIM Authentication: New Okta OktaSystemLogs Parser Enables Normalized Identity Event Analysis

New ASIM parser normalizes Okta authentication events from OktaSystemLogs table to standard Authentication schema. Read More →