Release Notes for version 3.0.2 (3923)
Integrations
7 New Integrations
- AlienVault OTX
-- Query IOCs in AlienVault - Autofocus
-- PaloAlto Networks Autofocus - MxToolBox
-- All of your MX record, DNS, blacklist and SMTP diagnostics in one integrated tool - VxStream
-- Fully automated malware analysis with unique Hybrid Analysis - Zendesk
-- IT service management - CyberArk
-- Query CyberArk Application Identity Manager for accounts and credentials - nmap
-- Run nmap scans with the given parameters
9 Improved Integrations
- ArcSight XML
-- ArcSight XML will support mapping - Check Point
-- Clearer error messages - McAfee ESM-v10
-- Fixed fetch incidents of cases: get all new cases associated with integration user with ID over integration parameter - F5 firewall
-- Added command list all user sessions - LogRhythm
-- Fixed lr-get-alarm-events-by-id command - EWS
-- Added find folders command, support fetching mails from a predefined folder and different fixes to command outputs - PassiveTotal
-- Fixed search command - SplunkPy
-- Add capabilities to search events and create events back into splunk - Vectra
-- Fix some edge case of vec-detections api call
Scripts
5 New Scripts
- CreateEmailHtmlBody
-- This script allows creating an HTML email body, using a template stored as a list item under Lists (Settings -> Advanced -> Lists).
Placeholders are marked in DQ format (i.e. ${incident.id} for incident ID).
Available placeholders for example:- ${incident.labels.Email/from}
- ${incident.name}
- ${args.subject}
- See incident Context Data menu for available placeholders
- DumpJSON
-- Dumps a json from context key input, and returns a json object string result - GoogleAuthURL
-- Generate a Google auth URL to authenticate for a given list of scopes - StringLength
-- Returns the length of the string passed as argument - http
-- Wrapper around http common function
22 Improved Scripts
- CommonServerPython
-- Added methods like json2xml and xml2json - DataDomainReputation
-- Use caching to determine whether to run script again or not (from version 3.1.0) - DataHashReputation
-- Use caching to determine whether to run script again or not (from version 3.1.0) - DataIPReputation
-- Use caching to determine whether to run script again or not (from version 3.1.0) - DataURLReputation
-- Use caching to determine whether to run script again or not (from version 3.1.0) - ExportToCSV
-- Wrap values that have commas with quotes - HTTPListRedirects
-- Make sure we have an http prefix for URLs - PCAPMiner
-- The ability to provide Demisto lib location - ParseEmailFiles
-- Remove pip install for olefile dependency, not needed - Print
-- Added Markdown support - ToTable
-- Faltten data objects by default - UnzipFile
-- updated unzip files to war room - VectraClassifier
-- Depercated, use classification wizard instead - VectraDetections
-- Depercated, use vectra-detections command instead - VectraGetDetetctionsById
-- Depercated, use vectra-detections command instead - VectraGetHostById
-- Depercated, use vectra-hosts command instead - VectraHealth
-- Depercated, use vectra-health command instead - VectraHosts
-- Depercated, use vectra-hosts command instead - VectraSensors
-- Depercated, use vectra-sensors command instead - VectraSettings
-- Depercated, use vectra-settings command instead - VectraSummary
-- Depercated - VectraTriage
-- Depercated, use vectra-triage command instead