Plugins
Updates
| Name | Version | Details |
|---|---|---|
| Microsoft Teams | 2.2.1 | Automatically extract UUIDs in the New Message Received trigger |
| Splunk | 3.0.3 | Add search_timeframe input to Search action |
| Palo Alto Firewall | 6.0.1 | Improve error handling in pa_os_request.py
|
Workflows
New Releases
| Name | Version | Details |
|---|---|---|
| Enrich Indicators with OSINT from Slack | 2.0.0 | Updated workflow to use loops instead of pattern match |
| Enrich Indicators with OSINT from Microsoft Teams | 2.0.0 | Update workflow to use loop outputs |
| Delete Assets with InsightVM from Microsoft Teams | 1.0.0 | Initial workflow |
| Delete Assets with InsightVM from Slack | 1.0.0 | Initial workflow |
| Quarantine Endpoint with Microsoft Defender ATP from Microsoft Teams | 1.0.0 | Initial workflow |
| Disable Domain User with Active Directory from InsightIDR UBA Alert | 1.0.0 | Initial workflow |
| List All Inactive Assets with InsightVM from Microsoft Teams | 1.0.0 | Initial workflow |
| Blacklist Hash with Sophos Central from Slack | 1.0.0 | Initial workflow |
| Enrich InsightIDR Alerts with Threat Intelligence from VirusTotal | 1.0.0 | Initial workflow |
| List All Inactive Assets with InsightVM from Slack | 1.0.0 | Initial workflow |
Updates
| Name | Version | Details |
|---|---|---|
| Check Host Block Status with Palo Alto Firewall from Microsoft Teams | 1.2.0 | Add automatic indicator extraction, allow for multiple hosts |
| Block Host with Palo Alto Firewall from Slack | 1.2.0 | Add automatic indicator extraction, allow for multiple hosts |