Skip to content

v3.0.1
Compare
Choose a tag to compare
@josehelps josehelps released this 15 Jun 23:23
v3.0.1
8688c29
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

NOTE - This release contains new content that leverages SPEC 3.0.

Enterprise Security Content Updates v3.0.1 was released on June 4, 2020. It includes the following enhancements:

New UI Enhancements:

  • Adds workbench panel investigations

New Analytic Story:

  • Kubernetes Sensitive Object Access Activity
  • Kubernetes Sensitive Role Activity
  • Suspicious Zoom Child Processes

Updated Analytic Story:

  • Kubernetes Scanning Activity

Full documentation: https://docs.splunk.com/Documentation/ESSOC/3.0.1

Assets 3
Loading