http://sentinelchangelog.net/tags/t1021/Recent content in T1021 on sentinelchangelog.netHugo -- 0.157.0enWed, 06 May 2026 09:37:20 +0000http://sentinelchangelog.net/posts/2026-05-06-pr-13820/Wed, 06 May 2026 09:37:20 +0000http://sentinelchangelog.net/posts/2026-05-06-pr-13820/Comprehensive quality improvements to 11 Azure Firewall detections and 5 hunting queries add entity mappings, custom details, and query optimizations to reduce false positives and improve incident context.http://sentinelchangelog.net/posts/2026-04-15-pr-13954/Wed, 15 Apr 2026 04:58:02 +0000http://sentinelchangelog.net/posts/2026-04-15-pr-13954/Contrast ADR adds CCF ingestion support with standardized table schemas for production-ready Application Detection and Response monitoring.http://sentinelchangelog.net/posts/2026-01-05-pr-13366/Mon, 05 Jan 2026 08:20:43 +0000http://sentinelchangelog.net/posts/2026-01-05-pr-13366/New threat detection coverage for SAP BTP Cloud Integration tampering, identity service compromise, and audit service availability.http://sentinelchangelog.net/posts/2025-11-12-pr-13065/Wed, 12 Nov 2025 11:17:58 +0000http://sentinelchangelog.net/posts/2025-11-12-pr-13065/Major update adds comprehensive multi-cloud anomaly detection capabilities across AWS, GCP, and Okta platforms with 6 new hunting queries.http://sentinelchangelog.net/posts/2025-10-09-pr-12696/Thu, 09 Oct 2025 12:07:12 +0000http://sentinelchangelog.net/posts/2025-10-09-pr-12696/Three new Analytic Rules added across AWS CloudTrail and VMware ESXi — detecting EC2 startup script tampering (T1059), anonymous S3 object exfiltration (T1530), and SSH enablement on ESXi hosts (T1021).