Added
- New parameters for Elastic backends
- Various field mappings
- FireEye Helix backend
- Generic log source image_load
- Kibana NDJSON backend
- uberAgent ESA backend
- SumoLogic CSE backend
Changed
- Updated mdatp backend fields
- QRadar query generation optimized
- MDATP: case insensitive search
Fixed
- Fixing Qradar implementation for create valid AQL queries
- Nested conditions
- Various minor bug fixes