Fortigate ASIM Parser: Field Name Consistency Fix for Network Session Schema

Field name inconsistencies in Fortigate ASIM parsers corrected to ensure proper schema compliance and data normalization. Read More →

Critical Cloudflare Analytics Rules: Enhanced URL Entity Mapping and Repository Maintenance

P0-labeled update improves URL entity mapping in Cloudflare detection rules alongside extensive repository maintenance and validation improvements. Read More →

Azure Firewall ASIM Parsers: Enhanced Detection Coverage for Six New Log Types

New ASIM normalisation parsers added for six Azure Firewall log tables, expanding detection coverage for network sessions, DNS queries, and web traffic analysis. Read More →

Solutions Analyzer Tool: Automated Connector Documentation Generation

Solutions Analyzer tool enhanced to generate markdown documentation files for all 1000+ connectors in addition to CSV output. Read More →

ZeroFox CCF Connector: KQL Query Restoration and Multi-Solution Maintenance

ZeroFox CCF connector receives missing KQL query fixes alongside packaging updates across 8+ solutions. Read More →

New Quokka Qscout Mobile App Security Solution: Mobile Threat Detection Visibility

CCF connector and detection rule for Quokka Qscout mobile app security analysis platform provides visibility into malicious mobile application findings. Read More →

Salesforce Service Cloud Connector: Column Name Bug Fix Plus Multi-Solution Updates

Fixed critical column name mapping bug in Salesforce Service Cloud CCF connector preventing proper data ingestion. Read More →

Open Systems Connector: aiohttp Security Update 3.10.11→3.12.14 Plus Multi-Solution Changes

Open Systems connector updated aiohttp dependency addressing potential security vulnerabilities, bundled with extensive solution packaging updates. Read More →

QualysVM Connector: API Rate Limiting and Configurable Truncation Protection

QualysVM connector enhanced with 1 QPS rate limiting and configurable truncation limits to prevent API abuse. Read More →

Open Systems Solution: New Multi-Product Security Platform with ASIM Parsers

New Open Systems solution enables ingestion from multiple security products via Logstash with ASIM parsers for authentication, firewall, and proxy logs. Read More →

Squadra Technologies SecRMM: Compliance Update Adds Required Detection Rule

SecRMM solution updated to v3.0.0 with mandatory analytic rule for removable storage monitoring to meet Microsoft Sentinel compliance requirements. Read More →

GCP Security Command Center: New Detection Suite for Cloud Misconfigurations

New Solution delivers 5 Analytic Rules and 5 Hunting Queries to detect GCP security misconfigurations including unrestricted API keys, disabled security features, and risky IAM configurations. Read More →

Mimecast Connectors: Migration to Log Ingestion API Eliminates Legacy Workspace Key Dependency

Mimecast Function App connectors migrated from legacy Log Analytics ingestion to Azure Monitor Log Ingestion API, requiring DCR reconfiguration. Read More →

Vectra XDR: Log Ingestion API Migration and Enhanced API v3.4 Support with New Playbook Capabilities

Vectra XDR solution updated to API v3.4 with Log Ingestion API support, three new playbooks for PCAP download and detection management. Read More →

Salesforce Service Cloud: Critical Detection Rule Fixes for TimestampDerived Field

Essential bug fixes for Salesforce Service Cloud detection rules resolving datetime conversion issues that prevented rule creation. Read More →

CyberArk Audit Security Update: CVE-2024-47081 Fix Plus Multi-Solution Maintenance

Critical security update for CyberArk Audit requests library addressing credential leak vulnerability, plus comprehensive updates across 8 solutions. Read More →

Corelight: New Anomaly and First-Seen Event Parsers for Advanced Threat Detection

Corelight solution gains two new parsers for machine learning-based anomaly detection and first-seen event tracking. Read More →

OneTrust Data Security Platform Connector: New Privacy and Risk Management Visibility

New CCF-based connector for OneTrust enables monitoring of privacy compliance, data governance, and risk management activities in Sentinel workspaces. Read More →

HIPAA Compliance Solution: New Healthcare Privacy Monitoring Dashboard

New HIPAA Compliance solution adds comprehensive workbook for healthcare privacy monitoring and compliance tracking with bundled Microsoft 365 hunting queries. Read More →

Multi-Solution Update: Microsoft 365 Filters, GDPR Workbook Enhancements, and New BigID Solution

Major update spanning 15+ solutions adds Microsoft 365 filters, GDPR workbook improvements, new BigID DSPM solution, and Netskope v2 with comprehensive parsers. Read More →