Squadra Technologies SecRMM: Compliance Update Adds Required Detection Rule

SecRMM solution updated to v3.0.0 with mandatory analytic rule for removable storage monitoring to meet Microsoft Sentinel compliance requirements. Read More →

Mimecast Connectors: Migration to Log Ingestion API Eliminates Legacy Workspace Key Dependency

Mimecast Function App connectors migrated from legacy Log Analytics ingestion to Azure Monitor Log Ingestion API, requiring DCR reconfiguration. Read More →

VMware ESXi SSH Brute Force Detection Plus Multi-Solution Updates

New VMware ESXi detection for multiple failed SSH login attempts, plus comprehensive solution updates across 15+ vendor solutions. Read More →

OneTrust Data Security Platform Connector: New Privacy and Risk Management Visibility

New CCF-based connector for OneTrust enables monitoring of privacy compliance, data governance, and risk management activities in Sentinel workspaces. Read More →

GDPR Compliance Solution: Fixed Offer ID and Enhanced Workbook Metadata

Updated GDPR Compliance solution with corrected offer ID to resolve deployment issues and added feedback collection capability. Read More →

MongoDB Atlas Connector: Multi-Cluster Support and Performance Improvements

MongoDB Atlas solution updated to support multiple cluster ingestion with performance improvements and extensive hunting query additions. Read More →

HIPAA Compliance Solution: New Healthcare Privacy Monitoring Dashboard

New HIPAA Compliance solution adds comprehensive workbook for healthcare privacy monitoring and compliance tracking with bundled Microsoft 365 hunting queries. Read More →

Multi-Solution Update: Microsoft 365 Filters, GDPR Workbook Enhancements, and New BigID Solution

Major update spanning 15+ solutions adds Microsoft 365 filters, GDPR workbook improvements, new BigID DSPM solution, and Netskope v2 with comprehensive parsers. Read More →

Sentinel CCF Packaging Tool: Adding JWT Token Authentication Support

CCF packaging tooling now supports JWT token authentication alongside existing methods for connector development. Read More →

GDPR Compliance Dashboard: New Workbook for Privacy Risk Monitoring

New GDPR Compliance solution adds workbook consolidating privacy risk signals from Defender XDR, Microsoft Purview, Azure SQL, and Entra ID. Read More →

BloodHound Enterprise Solution: Major v2.0 Upgrade with 105 New Detection Rules

Complete solution overhaul adds 105 analytic rules, new workbooks, and updated data connector with Azure Function v2 for enhanced Active Directory threat detection. Read More →

Tanium Solution: Content Hub Preview Image Display Fix (P0)

Fixed workbook preview image metadata for proper Content Hub display across multiple solutions including Tanium. Read More →

SOC Handbook: Fixed Mean Time to Triage Calculation Logic

Security Operations Efficiency workbook query corrected to properly calculate incident triage metrics. Read More →

Continuous Diagnostics & Mitigation: Workbook Hyperlink and Metrics Fix

Fixed broken hyperlinks and metrics in the Continuous Diagnostics & Mitigation workbook. Read More →

Event Log Management Maturity Model: Fixing Broken Links and Metrics

Workbook hyperlinks and metrics restored to address navigation and display issues. Read More →

NIST SP 800-53 Workbook: Broken Hyperlinks and Validation Errors Fixed

NIST SP 800-53 workbook updated with corrected hyperlinks and validation fixes to restore proper functionality. Read More →

QualysVM CCF Migration: Schema Update Fixes Data Parsing and Entity Mapping Failures

QualysVM solution migration to CCF connector resolves critical schema mismatches causing detection failures and incorrect entity mapping for vulnerability data. Read More →

Auth0 Workbook: Comprehensive Authentication Log Monitoring and Analysis

New Auth0 monitoring workbook provides authentication insights, user activity tracking, and security event visualization for improved identity security monitoring. Read More →

ProofPoint TAP Connector: Critical Table Name Update for CCF Schema

Workbook queries updated to use CCF V2 table names, preventing data visualization failures after connector migration. Read More →

Zero Trust Workbook: Network Map Component Removed Due to Repository Deprecation

Network mapping visualization removed from Zero Trust (TIC3.0) workbook following upstream repository deprecation. Read More →