Plugins
New Releases
| Name | Version | Details |
|---|---|---|
| Screenshot a URL | 1.0.0 | Initial plugin |
| Ivanti Service Manager | 1.0.0 | Initial plugin |
Updates
| Name | Version | Details |
|---|---|---|
| Cisco Adaptive Security Appliance | 1.4.0 | Add new action Create Address Object |
| Rapid7 Insight Agent | 1.0.1 | Documentation update |
| Recorded Future | 2.0.0 | Add risk output to Lookup Vulnerability |
| Rapid7 InsightVM | 4.2.1 | Fix to make Create Asset Group description required |
| Datetime | 2.1.0 | New actions To UTC and To Localtime |
| Unshorten.me | 1.0.5 | Update to v4 Python plugin runtime |
| String Operations | 1.3.1 | Update to v4 Python plugin runtime |
| HashIt | 2.0.4 | Update to v4 Python plugin runtime |
| Microsoft Windows Defender ATP | 4.4.1 | Add validation MD5 hash in Blacklist action |
| Cisco Umbrella Investigate | 3.0.0 | Add action input and output examples to documentation |
| Microsoft SCCM | 2.0.7 | Fix logger undefined error in action Get Software Updates |
Workflows
New Releases
| Name | Version | Details |
|---|---|---|
| Enrich Process Hash with OSINT from Slack | 1.0.0 | Initial workflow |
| Generate CVE Report from Slack | 1.0.0 | Initial workflow |
| Enrich IP Address with OSINT from Slack | 1.0.0 | Initial workflow |
| Enrich URL with Threat Crowd from Slack | 1.0.0 | Initial workflow |
| Enrich URLs and Domains with VirusTotal from Microsoft Teams | 1.1.0 | Add automatic indicator extraction |
| Blacklist Hash with Sophos Central from Microsoft Teams | 1.0.0 | Initial workflow |
| Blacklist Indicators with Microsoft Defender ATP from Slack | 1.0.0 | Initial workflow |
| Blacklist Indicators with Microsoft Defender ATP from Microsoft Teams | 1.0.0 | Initial workflow |
| Quarantine Endpoint with CylanceOPTICS from Microsoft Teams | 1.0.0 | Initial workflow |
| Check Host Block Status with Cisco ASA from Microsoft Teams | 1.0.0 | Initial workflow |
Updates
| Name | Version | Details |
|---|---|---|
| Enrich URLs and Domains with VirusTotal from Slack | 1.1.1 | Set continue on scan fail to true |
| Quarantine Endpoint with Microsoft Defender ATP from Slack | 1.0.1 | Update default channel |
| Check Host Block Status with Cisco ASA from Slack | 1.0.1 | Update default channel |
| Automated Indicator Enrichment | 1.1.0 | Replace pattern match with Automatic indicator extraction |