Rules
- [Updated] MATCH-S00556 Outbound Data Transfer Protocol Over Non-standard Port
Log Mappers
- [New] Google G Suite - login-email_forwarding_change
- [New] Laurel Linux Audit - Catch All
- [New] Laurel Linux Audit - System Call
- [New] Laurel Linux Audit - User Logon
- [Updated] Lacework Alert
Parsers
- [New] /Parsers/System/AWS/AWS Security Hub
- [New] /Parsers/System/Laurel/Laurel Linux Audit
- [New] /Parsers/System/Signal Science/Signal Science WAF
- [New] /Parsers/System/Workday/Workday
Schema
- [Updated] device_k8s_deployment
- [Updated] device_k8s_pod
- [Updated] device_k8s_replicaSet
- [Updated] dstDevice_k8s_deployment
- [Updated] dstDevice_k8s_pod
- [Updated] dstDevice_k8s_replicaSet
- [Updated] srcDevice_k8s_deployment
- [Updated] srcDevice_k8s_pod
- [Updated] srcDevice_k8s_replicaSet