v3.65.0
What's Changed
🕵️ New Detections
- THREAT-387 Sublime Security Rules by @akozlovets098 in #1356
- Slack.AuditLogs.ApplicationDoS -> threshold rule by @akozlovets098 in #1349
🔍️️ New Queries
- Issue 1367: Reformat YAML to Always Use Literal Block for Query Text by @ben-githubs in #1370
🌯 New Packs and Pack Expansion
- Add Unpacked Items to Packs by @ben-githubs in #1361
🐛 Bug Fixes and Tunes
- Fix issue 466: Add mock to rule test by @arielkr256 in #1364
- Fix issue 439: AccountId case by @arielkr256 in #1365
- Fix issue 468: Zendesk severity override by @arielkr256 in #1363
- fix - IAM User takeover Correlation Rule correlating on IP instead of user by @akozlovets098 in #1362
- Filter out Intelsat satellite network plane wifi from Impossible Travel by @geoffg-sentry in #1358
🏡 Miscellaneous
- Add Format Checker for MITRE ATT&CK Matrix Report Mappings by @ben-githubs in #1360
- test with api by @arielkr256 in #1355
- build(deps): bump actions/checkout from 4.1.7 to 4.2.0 by @dependabot in #1368
- Merge changes from main to release by @le4ker in #1372
Full Changelog: v3.64.0...v3.65.0
Contributors
le4ker, dependabot, and 4 other contributors