<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/"><channel><title>Sample Data on sentinelchangelog.net</title><link>http://sentinelchangelog.net/tags/sample-data/</link><description>Recent content in Sample Data on sentinelchangelog.net</description><generator>Hugo -- 0.157.0</generator><language>en</language><lastBuildDate>Tue, 30 Jun 2026 22:04:57 +0000</lastBuildDate><atom:link href="http://sentinelchangelog.net/tags/sample-data/index.xml" rel="self" type="application/rss+xml"/><item><title>New ASIM NetworkSession Parser for Cisco FTD Extends Network Visibility via AMA Connector</title><link>http://sentinelchangelog.net/posts/2026-06-30-pr-14569/</link><pubDate>Tue, 30 Jun 2026 22:04:57 +0000</pubDate><guid>http://sentinelchangelog.net/posts/2026-06-30-pr-14569/</guid><description>Cisco Firepower Threat Defense (FTD) logs ingested via the Cisco ASA/FTD AMA connector can now be normalised into the ASIM NetworkSession schema, enabling source-agnostic detections and hunting queries to run against FTD firewall and IDS events.</description></item><item><title>Salesforce Service Cloud ASIM Authentication Parser: Extended to Cover CCF V2/V3 Connector Tables</title><link>http://sentinelchangelog.net/posts/2026-06-26-pr-14215/</link><pubDate>Fri, 26 Jun 2026 17:34:38 +0000</pubDate><guid>http://sentinelchangelog.net/posts/2026-06-26-pr-14215/</guid><description>The ASIM Authentication parser for Salesforce Service Cloud now normalises logs from the V2 and V3 CCF connector tables &amp;ndash; environments using the updated codeless connectors were previously producing zero normalised authentication events.</description></item><item><title>New ASIM AlertEvent Parser for Google SecOps Extends Normalised Detection Coverage</title><link>http://sentinelchangelog.net/posts/2026-06-23-pr-14221/</link><pubDate>Tue, 23 Jun 2026 21:29:46 +0000</pubDate><guid>http://sentinelchangelog.net/posts/2026-06-23-pr-14221/</guid><description>A new ASIM AlertEvent parser pair normalises Google SecOps Detection Alerts from the DetectionAlerts_CL custom table into the ASIM AlertEvent schema, enabling source-agnostic alert hunting and cross-platform detection rules against Google SecOps data.</description></item><item><title>New ASIM WebSession Parser Brings AWS WAF Traffic into Normalized Detection Coverage</title><link>http://sentinelchangelog.net/posts/2026-06-22-pr-14496/</link><pubDate>Mon, 22 Jun 2026 21:57:23 +0000</pubDate><guid>http://sentinelchangelog.net/posts/2026-06-22-pr-14496/</guid><description>AWS WAF web session logs can now be ingested and normalized via the ASIM WebSession schema, enabling source-agnostic detections against WAF allow/block/challenge/captcha decisions from the AWSWAF table.</description></item><item><title>CrowdStrike Falcon AlertEvent ASIM Parser: Falcon Detections Now Normalised into Unified Alert Schema</title><link>http://sentinelchangelog.net/posts/2026-06-19-pr-14488/</link><pubDate>Fri, 19 Jun 2026 23:45:23 +0000</pubDate><guid>http://sentinelchangelog.net/posts/2026-06-19-pr-14488/</guid><description>A new ASIM AlertEvent parser for CrowdStrike Falcon ingested via CCF normalises detection data from the CrowdStrikeDetections table into the ASIM AlertEvent schema, enabling source-agnostic detection and hunting queries across EDR alert data.</description></item><item><title>Google Threat Intelligence: New GTI Relevance System Alerts Connector and Six Bundled Detections</title><link>http://sentinelchangelog.net/posts/2026-06-19-pr-14415/</link><pubDate>Fri, 19 Jun 2026 11:27:14 +0000</pubDate><guid>http://sentinelchangelog.net/posts/2026-06-19-pr-14415/</guid><description>A new Function App-based data connector ingests Google Threat Intelligence Relevance System Alerts into Sentinel, unlocking six new Analytic Rules that fire on high-severity, data-leak, initial access broker, and insider threat alert categories surfaced by the GTI platform.</description></item><item><title>Netskope Security Cloud Joins ASIM AlertEvent Schema â Threats Now Normalised from NetskopeAlerts_CL</title><link>http://sentinelchangelog.net/posts/2026-06-17-pr-14493/</link><pubDate>Wed, 17 Jun 2026 18:29:45 +0000</pubDate><guid>http://sentinelchangelog.net/posts/2026-06-17-pr-14493/</guid><description>A new ASIM AlertEvent parser for Netskope Security Cloud normalises DLP, malware, C2, IPS, compromised credential, UBA, and policy alerts from the NetskopeAlerts_CL table into the standard AlertEvent schema, enabling source-agnostic detections and hunting across Netskope data.</description></item><item><title>Google SecOps Integration: New Detection Pipeline Connects Chronicle to Sentinel</title><link>http://sentinelchangelog.net/posts/2026-06-12-pr-14200/</link><pubDate>Fri, 12 Jun 2026 07:00:27 +0000</pubDate><guid>http://sentinelchangelog.net/posts/2026-06-12-pr-14200/</guid><description>Microsoft Sentinel gains visibility into Google Chronicle security detections through new connector and parsers.</description></item><item><title>Salesforce Service Cloud: New ASIM WebSession Parser Enables Normalized API/Web Request Monitoring</title><link>http://sentinelchangelog.net/posts/2026-06-09-pr-14424/</link><pubDate>Tue, 09 Jun 2026 20:35:40 +0000</pubDate><guid>http://sentinelchangelog.net/posts/2026-06-09-pr-14424/</guid><description>ASIM WebSession parser for Salesforce Service Cloud normalizes API and web session logs into standardized schema, enabling unified monitoring across SaaS platforms.</description></item><item><title>Corelight: Dashboard Restructure and New Asset Classification Tab for Enhanced Network Visibility</title><link>http://sentinelchangelog.net/posts/2026-06-05-pr-14275/</link><pubDate>Fri, 05 Jun 2026 05:39:27 +0000</pubDate><guid>http://sentinelchangelog.net/posts/2026-06-05-pr-14275/</guid><description>Corelight solution restructured workbooks and added asset classification functionality to improve network asset discovery and security monitoring capabilities.</description></item><item><title>ASIM AlertEvent Support Added for Bitdefender GravityZone Security Platform</title><link>http://sentinelchangelog.net/posts/2026-05-28-pr-13330/</link><pubDate>Thu, 28 May 2026 05:16:16 +0000</pubDate><guid>http://sentinelchangelog.net/posts/2026-05-28-pr-13330/</guid><description>New parsers enable normalization of Bitdefender GravityZone alert data into Microsoft Sentinel ASIM schema for unified threat detection.</description></item><item><title>Zimperium MTD: New CCF Push Connector for Mobile Threat Telemetry</title><link>http://sentinelchangelog.net/posts/2026-05-08-pr-13947/</link><pubDate>Fri, 08 May 2026 06:14:13 +0000</pubDate><guid>http://sentinelchangelog.net/posts/2026-05-08-pr-13947/</guid><description>Zimperium Mobile Threat Defense migrates to CCF-based push connector, replacing deprecated Azure Function ingestion before June 2026 deadline.</description></item><item><title>Abnormal Security CCF Connector: Schema Alignment Fixes Column Visibility Gaps</title><link>http://sentinelchangelog.net/posts/2026-05-04-pr-14124/</link><pubDate>Mon, 04 May 2026 12:39:19 +0000</pubDate><guid>http://sentinelchangelog.net/posts/2026-05-04-pr-14124/</guid><description>Abnormal Security CCF connector v3.0.1 fixes table column naming to match Microsoft Log Analytics output, restoring access to previously missing metadata fields.</description></item><item><title>SOCRadar XTI Platform: New Extended Threat Intelligence Solution Launches with Bidirectional Sync</title><link>http://sentinelchangelog.net/posts/2026-04-23-pr-13858/</link><pubDate>Thu, 23 Apr 2026 05:24:37 +0000</pubDate><guid>http://sentinelchangelog.net/posts/2026-04-23-pr-13858/</guid><description>SOCRadar XTI Platform solution now available in Content Hub with automated alarm import, incident sync, and comprehensive threat intelligence monitoring capabilities.</description></item><item><title>Contrast ADR: CCF Connector Deployment Unlocks Application Attack Visibility</title><link>http://sentinelchangelog.net/posts/2026-04-15-pr-13954/</link><pubDate>Wed, 15 Apr 2026 04:58:02 +0000</pubDate><guid>http://sentinelchangelog.net/posts/2026-04-15-pr-13954/</guid><description>Contrast ADR adds CCF ingestion support with standardized table schemas for production-ready Application Detection and Response monitoring.</description></item><item><title>Abnormal Security: New CCF Push Connector Adds Multi-Table Email Security Event Routing</title><link>http://sentinelchangelog.net/posts/2026-04-10-pr-13709/</link><pubDate>Fri, 10 Apr 2026 05:36:07 +0000</pubDate><guid>http://sentinelchangelog.net/posts/2026-04-10-pr-13709/</guid><description>Added CCF Push connector with OAuth 2.0 authentication and dedicated tables for 9 event types — modern replacement for Azure Functions ingestion.</description></item><item><title>Palo Alto GlobalProtect: New ASIM Authentication Parser for VPN Monitoring</title><link>http://sentinelchangelog.net/posts/2026-04-09-pr-14012/</link><pubDate>Thu, 09 Apr 2026 16:00:52 +0000</pubDate><guid>http://sentinelchangelog.net/posts/2026-04-09-pr-14012/</guid><description>New ASIM parser normalizes GlobalProtect VPN authentication events from CommonSecurityLog table, enabling unified monitoring of gateway and portal authentication across Palo Alto PAN-OS deployments.</description></item><item><title>Microsoft Copilot Connector — Critical Table Name Update from LLMActivity to CopilotActivity</title><link>http://sentinelchangelog.net/posts/2025-12-16-pr-13272/</link><pubDate>Tue, 16 Dec 2025 04:58:57 +0000</pubDate><guid>http://sentinelchangelog.net/posts/2025-12-16-pr-13272/</guid><description>Microsoft Copilot connector fixes critical table reference issue, standardizing on official CopilotActivity table name across all components.</description></item><item><title>ZeroFox CCF Connector: KQL Query Restoration and Multi-Solution Maintenance</title><link>http://sentinelchangelog.net/posts/2025-12-04-pr-13209/</link><pubDate>Thu, 04 Dec 2025 10:45:58 +0000</pubDate><guid>http://sentinelchangelog.net/posts/2025-12-04-pr-13209/</guid><description>ZeroFox CCF connector receives missing KQL query fixes alongside packaging updates across 8+ solutions.</description></item><item><title>Salesforce Service Cloud Connector: Column Name Bug Fix Plus Multi-Solution Updates</title><link>http://sentinelchangelog.net/posts/2025-11-21-pr-13150/</link><pubDate>Fri, 21 Nov 2025 08:17:44 +0000</pubDate><guid>http://sentinelchangelog.net/posts/2025-11-21-pr-13150/</guid><description>Fixed critical column name mapping bug in Salesforce Service Cloud CCF connector preventing proper data ingestion.</description></item><item><title>Zscaler ZIA ASIM Parser: Device Model Field Parsing Fix Restores Visibility</title><link>http://sentinelchangelog.net/posts/2025-11-18-pr-12053/</link><pubDate>Tue, 18 Nov 2025 09:44:52 +0000</pubDate><guid>http://sentinelchangelog.net/posts/2025-11-18-pr-12053/</guid><description>ASIM WebSession parser for Zscaler ZIA corrected devicemodel parsing logic that was preventing proper device categorization.</description></item><item><title>GCP Security Command Center: New Detection Suite for Cloud Misconfigurations</title><link>http://sentinelchangelog.net/posts/2025-11-14-pr-13116/</link><pubDate>Fri, 14 Nov 2025 08:22:41 +0000</pubDate><guid>http://sentinelchangelog.net/posts/2025-11-14-pr-13116/</guid><description>New Solution delivers 5 Analytic Rules and 5 Hunting Queries to detect GCP security misconfigurations including unrestricted API keys, disabled security features, and risky IAM configurations.</description></item><item><title>Mimecast Connectors: Migration to Log Ingestion API Eliminates Legacy Workspace Key Dependency</title><link>http://sentinelchangelog.net/posts/2025-11-14-pr-13042/</link><pubDate>Fri, 14 Nov 2025 05:46:47 +0000</pubDate><guid>http://sentinelchangelog.net/posts/2025-11-14-pr-13042/</guid><description>Mimecast Function App connectors migrated from legacy Log Analytics ingestion to Azure Monitor Log Ingestion API, requiring DCR reconfiguration.</description></item><item><title>Multi-Solution Update: Microsoft 365 Filters, GDPR Workbook Enhancements, and New BigID Solution</title><link>http://sentinelchangelog.net/posts/2025-10-15-pr-12950/</link><pubDate>Wed, 15 Oct 2025 08:14:10 +0000</pubDate><guid>http://sentinelchangelog.net/posts/2025-10-15-pr-12950/</guid><description>Major update spanning 15+ solutions adds Microsoft 365 filters, GDPR workbook improvements, new BigID DSPM solution, and Netskope v2 with comprehensive parsers.</description></item><item><title>Cloudflare Connector: Security Dependency Update for aiohttp Library</title><link>http://sentinelchangelog.net/posts/2025-10-06-pr-12907/</link><pubDate>Mon, 06 Oct 2025 13:18:11 +0000</pubDate><guid>http://sentinelchangelog.net/posts/2025-10-06-pr-12907/</guid><description>aiohttp library updated from 3.10.11 to 3.12.14 in Cloudflare connector addressing potential security vulnerabilities.</description></item><item><title>VirtualMetric DataStream Solution: New Multi-Path Data Ingestion Platform for Sentinel</title><link>http://sentinelchangelog.net/posts/2025-10-03-pr-12840/</link><pubDate>Fri, 03 Oct 2025 10:11:28 +0000</pubDate><guid>http://sentinelchangelog.net/posts/2025-10-03-pr-12840/</guid><description>New VirtualMetric DataStream solution provides comprehensive data ingestion capabilities with ASIM support and multiple deployment options for Sentinel and data lake environments.</description></item></channel></rss>