github demisto/content 18.5.0
Demisto Content Release Notes for version 8.5.0 (8862)
on GitHub

latest releases: 22.2.0, 22.1.0, 21.12.1...
5 years ago

Demisto Content Release Notes for version 18.5.0 (8862)

Published on 1 May 2018

Integrations

3 New Integrations
  • Centreon
    Centreon is a network, system, applicative supervision, and monitoring tool. The integration provides monitoring enrichment context for hosts and applications.
  • EasyVista
    EasyVista enables you to manage the entire process of designing, managing, and delivering IT services. With the integration, you can obtain a list of incidents and requests, such as service, change, investment, and more.
  • Phish.AI
    Next-Generation Anti-Phishing Platform Powered by AI & Computer VIsion.
6 Improved Integrations
  • RSA NetWitness Packets and Logs
    Improved parameter descriptions.
  • Threat Grid
    The threat-grid-get-html-report-by-id () command displays a report file as a file in the War Room.
  • McAfee ePO
    Enhanced War Room result formatting for epo-commands.
  • FireEye iSIGHT
    Fixed the timestamp in request headers, which in some cases resulted in failed authentication.
  • Okta
    Added system log commands.
  • Preempt
    Rephrasing error messages and editing context outputs.

Scripts

4 New Scripts
  • AquatoneDiscover
    Locates a target's nameservers and shuffle DNS lookups between them.
  • IndicatorMaliciousRatioCalculation
    Returned indicators appears in resolved incidents and resolved incident IDs.
  • TimeStampToDate (Transformer)
    Converts the UNIX Epoch timestamp to a simplified extended ISO format string. Use it to convert timestamp to the Demisto date field.
  • WhereFieldEquals (Transformer)
    Return all items from the list where the items' 'field' attribute is equal to the 'equalTo' argument.
2 Improved Scripts
  • Urlscan.io
    Encoded the URL parameters for the submit-url command.
  • Ping
    Added Ping results as output and removed verbose argument (this change breaks backward compatibility, best practice is to use outputs over context and raw-response=true for verbose results).

New Incident Layouts

  • Incident type 'Access'
    Default Incident Summary and Create/Edit Incident layouts.

New Classification & Mapping

SplunkPy classification and mapping for 'Access' incident type. Using the layout and mappings, users can handle Access incident type notables from Splunk ES.

Check out latest releases or
releases around demisto/content 18.5.0

Don't miss a new content release

NewReleases is sending notifications on new releases.

Get notifications