Skip to content

Releases: splunk/security_content

v1.0.45

27 Nov 03:21
@josehelps josehelps
v1.0.45
a5f1973
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.0.45

Enterprise Security Content Updates v 1.0.45 included the following enhancements.

Updated Analytic Stories:

  • Added new searches "Abnormally High AWS Instances Launched by User - MLTK detection" and "Abnormally High AWS Instances Terminated by User - MLTK detection" to the "Suspicious AWS EC2 Activities" Analytic Story
  • Added new search "Abnormally High AWS Instances Launched by User - MLTK detection" to the "Cloud Cryptomining" Analytic Story

Fixed issues:

  • CRL-1493 ESCU Fraud Searches Are Mislabeled
  • CRL-1697 Added: Cloud Compute Instance Created With Previously Unseen Image detection to Cloud Cryptomining story
Assets 3
Loading

v1.0.44

18 Nov 22:32
@josehelps josehelps
v1.0.44
ff8d9ae
Compare
Choose a tag to compare
v1.0.44 
fixing CI errors
Assets 3
Loading

v1.0.43

31 Oct 22:27
@josehelps josehelps
v1.0.43
a646993
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.0.43 
Merge pull request #244 from splunk/remove_asx_code

remove asx files
Assets 3
Loading

v1.0.42

27 Aug 22:45
@josehelps josehelps
v1.0.42
621f263
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.0.42 
Merge pull request #192 from splunk/CRL-1607-Fix-Weird-Italics

CRL-1608 Update dyn_dns_queries.json
Assets 3
Loading

v1.0.41

29 Jul 20:58
@josehelps josehelps
v1.0.41
54e360b
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.0.41 
Merge pull request #157 from splunk/dependabot/pip/typing-3.7.4

Bump typing from 3.6.6 to 3.7.4
Assets 3
Loading

v1.0.40

18 Jun 19:48
@josehelps josehelps
v1.0.40
27a44bb
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.0.40 
Merge pull request #155 from splunk/slim_0.9.0

Downgrading slim to 0.9.0
Assets 3
Loading

v1.0.39

06 Jun 21:37
@josehelps josehelps
v1.0.39
e4ec63b
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.0.39 
Merge pull request #124 from splunk/ui_bug

removal of context panel
Assets 3
Loading

v1.0.38

23 May 18:19
@josehelps josehelps
v1.0.38
d0e4928
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.0.38 
Merge pull request #85 from splunk/mltk_final_tweaks

needed a break in there - formatting
Assets 3
Loading

v1.0.37

29 Apr 21:25
@josehelps josehelps
v1.0.37
7a8f2d0
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.0.37 
Merge pull request #59 from splunk/file_writes_fix

fixing broken detection search - suspicious_file_writes
Assets 3
Loading

v1.0.36

05 Mar 20:21
@josehelps josehelps
v1.0.36
8bc8230
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.0.36 
Merge pull request #34 from splunk/sysmon_to_endpoint

Sysmon to endpoint
Assets 3
Loading