Queries with threat intel info updated #4190
Closed
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
jpipkin1
reviewed
Jun 10, 2024
docs/integrations/security-threat-detection/threat-intel-quick-analysis.md
Outdated
Show resolved
Hide resolved
jpipkin1
reviewed
Jun 10, 2024
docs/integrations/security-threat-detection/threat-intel-quick-analysis.md
Outdated
Show resolved
Hide resolved
kimsauce
requested changes
Jun 11, 2024
Collaborator
kimsauce
left a comment
kimsauce
left a comment
There was a problem hiding this comment.
Didn't have any questions in addition to @jpipkin1
btw, here's a copy of the last Mindtouch version in case you need to refer back to it for these older docs. https://drive.google.com/file/d/1AQuyzbxyQ9_PhVSNiPXn9f9BWPwG2TWp/view?usp=drive_link
Collaborator
Author
|
Updated these queries which has two double quotes. Thanks for identifying this Kim. |
jpipkin1
approved these changes
Jun 12, 2024
kimsauce
approved these changes
Aug 29, 2024
Collaborator
|
@JV0812, publish this at threat intel GA, which is currently targeted for January 16, 2025. |
github-merge-queue bot
pushed a commit
that referenced
this pull request
Mar 3, 2025
* Threat intelligence GA * Add TAXII 1 * Add STIX to the product list article * Add threat intel to audit event index article * Edit Threat Intelligence section in About Cloud SIEM Rules * Update references to Create a Custom Threat Intelligence Source * Change release note date to March 28 * Create CID for threatlookup article * Update CID for threatlookup article * Update STIX 2.1 to STIX 2.x * Add CrowdStrike mapping section * Break out beta article into multiple articles for GA * Add CID for main Threat Intelligence article * Hide cat search operator * Remove note from 'Create a Custom Threat Intelligence Source' article * Change release note date * Fix redirect * Remove redirect for beta article * Add timestamp section * Tweak timestamp section * Minor updates * Change release note date to April 8 2024 * Update docs/platform-services/threat-intelligence-indicators.md Co-authored-by: Kim <56411016+kimsauce@users.noreply.github.com> * Update docs/search/search-query-language/search-operators/threatlookup.md Co-authored-by: Kim <56411016+kimsauce@users.noreply.github.com> * Update docs/platform-services/threat-intelligence/find-threats.md Co-authored-by: Kim <56411016+kimsauce@users.noreply.github.com> * Update docs/platform-services/threat-intelligence/find-threats.md Co-authored-by: Kim <56411016+kimsauce@users.noreply.github.com> * Update docs/platform-services/threat-intelligence/threat-indicators-in-cloud-siem.md Co-authored-by: Kim <56411016+kimsauce@users.noreply.github.com> * Update docs/platform-services/threat-intelligence/threat-intelligence-indicators.md Co-authored-by: Kim <56411016+kimsauce@users.noreply.github.com> * Update docs/platform-services/threat-intelligence/threat-intelligence-indicators.md Co-authored-by: Kim <56411016+kimsauce@users.noreply.github.com> * Update docs/platform-services/threat-intelligence/threat-intelligence-indicators.md Co-authored-by: Kim <56411016+kimsauce@users.noreply.github.com> * Update docs/platform-services/threat-intelligence/threat-intelligence-indicators.md Co-authored-by: Kim <56411016+kimsauce@users.noreply.github.com> * Update docs/platform-services/threat-intelligence/threat-indicators-in-cloud-siem.md Co-authored-by: Kim <56411016+kimsauce@users.noreply.github.com> * Update docs/platform-services/threat-intelligence/about-threat-intelligence.md Co-authored-by: Kim <56411016+kimsauce@users.noreply.github.com> * Update blog-service/2024-04-08-platform-services.md Co-authored-by: Kim <56411016+kimsauce@users.noreply.github.com> * Update docs/platform-services/threat-intelligence/about-threat-intelligence.md Co-authored-by: Kim <56411016+kimsauce@users.noreply.github.com> * Update docs/platform-services/threat-intelligence/upload-formats.md Co-authored-by: Kim <56411016+kimsauce@users.noreply.github.com> * Update docs/platform-services/threat-intelligence/crowdstrike-threat-intelligence.md Co-authored-by: Kim <56411016+kimsauce@users.noreply.github.com> * Update docs/platform-services/threat-intelligence/threat-indicators-in-cloud-siem.md Co-authored-by: Kim <56411016+kimsauce@users.noreply.github.com> * Update docs/platform-services/threat-intelligence/upload-formats.md Co-authored-by: Kim <56411016+kimsauce@users.noreply.github.com> * Update docs/platform-services/threat-intelligence/upload-formats.md Co-authored-by: Kim <56411016+kimsauce@users.noreply.github.com> * Update docs/search/search-query-language/search-operators/threatlookup.md Co-authored-by: Kim <56411016+kimsauce@users.noreply.github.com> * Update docs/search/search-query-language/search-operators/threatlookup.md Co-authored-by: Kim <56411016+kimsauce@users.noreply.github.com> * Update docs/search/search-query-language/search-operators/threatlookup.md Co-authored-by: Kim <56411016+kimsauce@users.noreply.github.com> * Update docs/search/search-query-language/search-operators/threatlookup.md Co-authored-by: Kim <56411016+kimsauce@users.noreply.github.com> * Update docs/search/search-query-language/search-operators/threatlookup.md * Update docs/cse/integrations/integrate-cse-with-taxii-feed.md Co-authored-by: Kim <56411016+kimsauce@users.noreply.github.com> * Update docs/cse/integrations/integrate-cse-with-taxii-feed.md Co-authored-by: Kim <56411016+kimsauce@users.noreply.github.com> * Update docs/platform-services/threat-intelligence/index.md * Add Threat Intel Ingest API doc (#3943) * resolve-alert-deletion-faq-arp (#3937) * Update scheduled-report.md (#3935) * Update STIX/TAXII articles (#3938) * Update search filter limitations (#3940) * Update search filter limitations * Update docs/manage/users-roles/roles/construct-search-filter-for-role.md Co-authored-by: Kim <56411016+kimsauce@users.noreply.github.com> * Update docs/manage/users-roles/roles/construct-search-filter-for-role.md Co-authored-by: Kim <56411016+kimsauce@users.noreply.github.com> --------- Co-authored-by: Kim <56411016+kimsauce@users.noreply.github.com> * Add Threat Intel Ingest API --------- Co-authored-by: Tarun Kumar <tarun@sumologic.com> Co-authored-by: Jagadisha V <129049263+JV0812@users.noreply.github.com> Co-authored-by: John Pipkin (Sumo Logic) <jpipkin@sumologic.com> * Remove extra space * Remove old beta article * Update cid-redirects so that legacy URL /Manage/Threat-Intel-Ingest points to Threat Intelligence * fix spaces * Update cid-redirects.json * Add micro lesson * Revise delete indicators section * Update release note * Update release note * Add hasThreatMatch examples for TRIDENT-18911 * Fix hasThreatMatch example * Add note about simple indicators * Minor correction * Add comments * Changed release note date * Move threat intel from platform services to security section * Add hidden Kanso instructions * Change release note date to June 18 2024 * Change release note date to Aug 1 2024 * Fix broken link * Update schedule-search.md (#4330) creation of Realtime scheduled search no longer supported. https://help.sumologic.com/docs/alerts/scheduled-searches/deprecation/ * Weekly 404 fixes (#4331) * Weekly 404 fixes * banner * Set isCloseable to true * Weekly 404 fixes * announcementBar re: outages (#4333) * OpenTelemetry Remote Management index page (beta) (#4023) * OTEL Remote Management GA (May 23) * align with PR 4015 * rm release note * Update docs/send-data/opentelemetry-collector/remote-management/index.md * Source templates index page --------- Co-authored-by: John Pipkin (Sumo Logic) <jpipkin@sumologic.com> * Update collect-logs.md (#4341) * Update datadog.md (#4335) * Update markdown-syntax.md * Update docs/dashboards-classic/get-started/markdown-syntax.md Co-authored-by: Kim <56411016+kimsauce@users.noreply.github.com> * added supported elements note * removed code block content * Update salesforce-source.md * Update salesforce-source.md * updated note * updated the salesforce doc * minor fix * Update salesforce-source.md * Update datadog.md * minor formatting --------- Co-authored-by: Kim <56411016+kimsauce@users.noreply.github.com> * Update netskope-source.md (#4337) * Update netskope-source.md * Update docs/send-data/hosted-collectors/cloud-to-cloud-integration-framework/netskope-source.md Co-authored-by: Kim (Sumo Logic) <56411016+kimsauce@users.noreply.github.com> * Update docs/send-data/hosted-collectors/cloud-to-cloud-integration-framework/netskope-source.md --------- Co-authored-by: Kim (Sumo Logic) <56411016+kimsauce@users.noreply.github.com> * Update sumo-logic-flex-accounts.md (#4342) * Update close-cancel-sumo-account.md (#4338) * Update close-cancel-sumo-account.md * Update docs/manage/manage-subscription/close-cancel-sumo-account.md * Update keyboard shortcuts (#4323) * Update collect-logs-oracle-cloud-infrastructure.md (#4344) * Add sachin-sumologic to clabot file (#4345) * Real-time alerts/Sched Search edits (#4334) * Update schedule-search.md creation of Realtime scheduled search no longer supported. https://help.sumologic.com/docs/alerts/scheduled-searches/deprecation/ * Real-Time Sched Search edits * Real-time alerts/Sched Searches * Update docs/alerts/scheduled-searches/create-real-time-alert.md Co-authored-by: John Pipkin (Sumo Logic) <jpipkin@sumologic.com> * Update docs/alerts/scheduled-searches/create-real-time-alert.md Co-authored-by: John Pipkin (Sumo Logic) <jpipkin@sumologic.com> --------- Co-authored-by: Jake Lee <j.wlee@hotmail.com> Co-authored-by: John Pipkin (Sumo Logic) <jpipkin@sumologic.com> * Amazon Inspector doc update (#4346) * Amazon Inspector doc update * minor fixes * Update docs/integrations/amazon-aws/inspector.md Co-authored-by: John Pipkin (Sumo Logic) <jpipkin@sumologic.com> * Update docs/integrations/amazon-aws/inspector.md Co-authored-by: John Pipkin (Sumo Logic) <jpipkin@sumologic.com> --------- Co-authored-by: John Pipkin (Sumo Logic) <jpipkin@sumologic.com> * chore: update nodejs supported version (#4348) * chore: update tracing k8s deployment docs (#4339) * chore: update tracing k8s deployment endpoints * chore: update skc chart version * chore: update k8s version * Update docs/apm/traces/get-started-transaction-tracing/set-up-traces-collection-for-kubernetes-environments.md Co-authored-by: Kim (Sumo Logic) <56411016+kimsauce@users.noreply.github.com> * Update docs/apm/traces/get-started-transaction-tracing/set-up-traces-collection-for-kubernetes-environments.md Co-authored-by: John Pipkin (Sumo Logic) <jpipkin@sumologic.com> --------- Co-authored-by: Kim (Sumo Logic) <56411016+kimsauce@users.noreply.github.com> Co-authored-by: John Pipkin (Sumo Logic) <jpipkin@sumologic.com> * New integration Sum-Logic-Notifaiction-By-Gmail (#4349) * new integration * Updates from review --------- Co-authored-by: John Pipkin <jpipkin@sumologic.com> * chore: update java instr version (#4350) * Update github.md (#4353) * Update github.md Instructions were outdated and didn't align with screenshot * Update from review --------- Co-authored-by: John Pipkin <jpipkin@sumologic.com> * Weekly 404 fixes (#4355) * Weekly 404 fixes * banner * Set isCloseable to true * Weekly 404 fixes * 404 fixes * Update docs/search/search-query-language/search-operators/cat.md * Update docs/search/search-query-language/search-operators/cat.md * Update cat.md * Changes for cassandra opentelemetry doc after with metric collection … (#4309) * Changes for cassandra opentelemetry doc after with metric collection and dashbaords * cassandraOtelMetrics * Apply suggestions from code review Co-authored-by: Jagadisha V <129049263+JV0812@users.noreply.github.com> --------- Co-authored-by: John Pipkin <jpipkin@sumologic.com> Co-authored-by: Jagadisha V <129049263+JV0812@users.noreply.github.com> * Add metrics collection and metrics-based dashboards info to RabbitMQ (#4332) * Add metrics collection and metrics-based dashboards info to RabbitMQ Otel * fixed PR review comments * fixed PR review comments * Update rabbitmq-opentelemetry.md * Apply suggestions from code review Co-authored-by: Jagadisha V <129049263+JV0812@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Jagadisha V <129049263+JV0812@users.noreply.github.com> --------- Co-authored-by: Jagadisha V <129049263+JV0812@users.noreply.github.com> * Log monitor trigger evaluation freq (#4305) * chore: update js instr deps (#4357) * DOCS-253 - Kanso cleanup (#4352) * Clean up 'Manage Data >' instances * Update docs/send-data/collect-from-other-data-sources/collect-ruby-on-rails-logs.md Co-authored-by: Kim (Sumo Logic) <56411016+kimsauce@users.noreply.github.com> --------- Co-authored-by: Kim (Sumo Logic) <56411016+kimsauce@users.noreply.github.com> * DOCS-350 - Ensure that the Product List article is indexed (#4354) * Break the Product List article into two articles * Cleanup * Update cloud-soar-bridge.md - Ammend SIEM_URL setting (#4359) * Update cloud-soar-bridge.md - Ammend SIEM_URL setting * Updates from review --------- Co-authored-by: John Pipkin <jpipkin@sumologic.com> * Update automation-service-bridge.md - Amend SIEM_URL setting (#4358) * Update automation-service-bridge.md - Ammend SIEM_URL setting * Updates from reivew --------- Co-authored-by: John Pipkin <jpipkin@sumologic.com> * Changing the dashboard screenshot file name from png to jpg (#4361) * VMWare Otel App Documentation (#4336) * Changes for cassandra opentelemetry doc after with metric collection and dashbaords * added initial doc changes for vmware otel app * Changes for collection part of vmware opentelemetry and other minor content correction * Fix build error * removing cassandra otel doc update which was mistakenly updated in this branch * Cassandra file was deleted but had to be replaced with the old change. * Apply suggestions from code review Co-authored-by: John Pipkin (Sumo Logic) <jpipkin@sumologic.com> * updated s3 urls in src and resolved PR comments * resolved PR comment - added description for each dashboard * sidebar entry for the new file and type corrections * Updates from review * Apply suggestions from code review Co-authored-by: Kim (Sumo Logic) <56411016+kimsauce@users.noreply.github.com> * adding entry for cid to the vmware otel doc --------- Co-authored-by: Alekh Nema <anema@sumologic.com> Co-authored-by: John Pipkin <jpipkin@sumologic.com> Co-authored-by: Alekh Nema <91047769+sumoanema@users.noreply.github.com> Co-authored-by: Kim (Sumo Logic) <56411016+kimsauce@users.noreply.github.com> * CONN-3431, CONN-3432: Added FAQ sections for Akamai SIEM API (#4362) * CONN-3431, CONN-3432: Added FAQ sections for Akamai SIEM API * Updates from review --------- Co-authored-by: John Pipkin <jpipkin@sumologic.com> * chore: update python instr deps (#4364) * chore: update ruby deps (#4366) * chore: update .net instr logs location (#4365) * chore: update .net instr logs location * Update docs/apm/traces/get-started-transaction-tracing/opentelemetry-instrumentation/net/index.md --------- Co-authored-by: John Pipkin (Sumo Logic) <jpipkin@sumologic.com> * Add integrations (#4367) * DOCS-76 - Integrate UX style guidance (#4085) * Updates to Style Guide, Code of Conduct * more edits * more edits * Fixing md examples * edits * Update docs/contributing/remove-doc.md * Update docs/contributing/remove-doc.md * Update docs/contributing/remove-doc.md * Update upgrade-cloud-flex-legacy-account.md * Update docs/contributing/style-guide.md Co-authored-by: John Pipkin (Sumo Logic) <jpipkin@sumologic.com> * Update docs/contributing/style-guide.md Co-authored-by: John Pipkin (Sumo Logic) <jpipkin@sumologic.com> * Update docs/contributing/style-guide.md Co-authored-by: John Pipkin (Sumo Logic) <jpipkin@sumologic.com> * Update docs/contributing/style-guide.md Co-authored-by: John Pipkin (Sumo Logic) <jpipkin@sumologic.com> * sentence casing --------- Co-authored-by: John Pipkin (Sumo Logic) <jpipkin@sumologic.com> * Update faq.md (#4343) * Update faq.md * Update docs/manage/partitions/flex/faq.md * Update docs/manage/partitions/flex/faq.md * Update docs/manage/partitions/flex/faq.md Co-authored-by: John Pipkin (Sumo Logic) <jpipkin@sumologic.com> * Update docs/manage/partitions/flex/faq.md --------- Co-authored-by: John Pipkin (Sumo Logic) <jpipkin@sumologic.com> * Weekly 404 Fixes (#4373) * Weekly 404 fixes * banner * Set isCloseable to true * Weekly 404 fixes * 404 fixes * 404 Fixes * Update docs/search/search-cheat-sheets/log-operators.md * Update docs/search/search-query-language/search-operators/cat.md * Update cat.md * Formatting fixes - OTEL Traces Instrumentation (#4368) * Formatting fixes - OTEL Traces Instrumentation * minor edits * Update lookup.md (#4356) * Update lookup.md * Update docs/search/search-query-language/search-operators/lookup.md * Add STIX to product list article * Change release note date to Nov 29 2024 * Credit usage information screenshot updated (#4496) * Credit usage information screenshot updated * Minor fix * Documentation Azure Load Balancer (#4526) * Documentation Azure Load Balancer * Update docs/integrations/microsoft-azure/azure-load-balancer.md Co-authored-by: Himanshu Pal <hp.iiita@gmail.com> * Update docs/integrations/microsoft-azure/azure-load-balancer.md Co-authored-by: Himanshu Pal <hp.iiita@gmail.com> * Update docs/integrations/microsoft-azure/azure-load-balancer.md Co-authored-by: Himanshu Pal <hp.iiita@gmail.com> * Resolved Feedbacks * Update azure-load-balancer.md * Update azure-load-balancer.md * Update azure-load-balancer.md * Update docs/integrations/microsoft-azure/azure-load-balancer.md --------- Co-authored-by: Himanshu Pal <hp.iiita@gmail.com> Co-authored-by: Jagadisha V <129049263+JV0812@users.noreply.github.com> * Update sdo-manual-configuration.md (#4523) * Update sdo-manual-configuration.md * Update sdo-manual-configuration.md * Update docs/observability/sdo/set-up-sdo/sdo-manual-configuration.md * Updates from review --------- Co-authored-by: Jagadisha V <129049263+JV0812@users.noreply.github.com> Co-authored-by: John Pipkin <jpipkin@sumologic.com> * Image updated (#4529) * Zendesk Source Docs (#4524) * Zendesk Source Docs * Update docs/send-data/hosted-collectors/cloud-to-cloud-integration-framework/zendesk-source.md * Update docs/send-data/hosted-collectors/cloud-to-cloud-integration-framework/zendesk-source.md * Update docs/send-data/hosted-collectors/cloud-to-cloud-integration-framework/zendesk-source.md --------- Co-authored-by: John Pipkin (Sumo Logic) <jpipkin@sumologic.com> * CONN-3352 Release atlassian-source.md (#4519) * CONN-3352 Release atlassian-source.md * Add article to left nav --------- Co-authored-by: John Pipkin <jpipkin@sumologic.com> * DOCS-443 - Clean up API articles (#4498) * Clean up APIs in left nav * API roles reuse file * First half * Second half * Add Korea to APIs * Remove extra Korea rows from tables * Wording change * Hide 'Required role capabilities' section * Remove 'hide_table_of_contents: false' * Micro Lesson added to the Flex app doc (#4525) * Micro Lesson added to the Flex app * Minor fix * Correct KinesisLog JSON contentType (#4530) * Estimate Infrequent tier data docs update (#4289) * Estimate Infrequent tier data docs update * Update docs/manage/partitions/data-tiers/searching-data-tiers.md Co-authored-by: John Pipkin (Sumo Logic) <jpipkin@sumologic.com> * Update docs/manage/partitions/data-tiers/searching-data-tiers.md Co-authored-by: Kim (Sumo Logic) <56411016+kimsauce@users.noreply.github.com> --------- Co-authored-by: John Pipkin (Sumo Logic) <jpipkin@sumologic.com> Co-authored-by: Kim (Sumo Logic) <56411016+kimsauce@users.noreply.github.com> * Fix spelling (#4531) * added the content. (#4532) * added the content. * Updates from review --------- Co-authored-by: John Pipkin <jpipkin@sumologic.com> * modified date (#4521) Co-authored-by: John Pipkin (Sumo Logic) <jpipkin@sumologic.com> * Added metrics collection and metrics-based dashboards info to MongoDB (#4517) * Added metrics collection and metrics-based dashboards info to MongoDB * fixed it. * Update mongodb-opentelemetry.md * fixed PR review comments * Added Linux env download description * Update haproxy-opentelemetry.md * Update redis-opentelemetry.md * Update rabbitmq-opentelemetry.md * Apply suggestions from code review Co-authored-by: Jagadisha V <129049263+JV0812@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Jagadisha V <129049263+JV0812@users.noreply.github.com> * Update mongodb-opentelemetry.md * fixed PR review comment * Update docs/integrations/databases/opentelemetry/redis-opentelemetry.md * Update docs/integrations/databases/opentelemetry/mongodb-opentelemetry.md * Update docs/integrations/databases/opentelemetry/mongodb-opentelemetry.md * Update mongodb-opentelemetry.md * Fix build break * Updates for review --------- Co-authored-by: Alekh Nema <91047769+sumoanema@users.noreply.github.com> Co-authored-by: Jagadisha V <129049263+JV0812@users.noreply.github.com> Co-authored-by: John Pipkin <jpipkin@sumologic.com> * Add new video (#4533) * Update python.md (#4534) updating according to our repo releases https://github.com/SumoLogic/sumologic-otel-lambda/blob/release-python-v1.20.0/python/README.md * updated docs for slack (#4536) * Moved 1Password to SaaS apps (#4535) * Moved 1Password to SaaS apps * Minor fixes * Fix broken link on product list --------- Co-authored-by: John Pipkin <jpipkin@sumologic.com> * Edit config to throw warning for broken anchors (#4520) * Edit config to throw warning for broken anchors * fix first batch * /send-data anchor fixes * Fix some links * a few c2c fixes * Fix integration links * Fix manage links * Metrics, observability, and search links * integrations fixes * Fix 'send data' links * Release notes, alerts, misc. fixes * more fixes * more fixes * all fixes except last 2 CSOAR * Fix Cloud SOAR release notes links --------- Co-authored-by: John Pipkin (Sumo Logic) <jpipkin@sumologic.com> * Clean up upload-formats file * DOCS-443 - Clean up API articles (#4498) * Clean up APIs in left nav * API roles reuse file * First half * Second half * Add Korea to APIs * Remove extra Korea rows from tables * Wording change * Hide 'Required role capabilities' section * Remove 'hide_table_of_contents: false' * Edit config to throw warning for broken anchors (#4520) * Edit config to throw warning for broken anchors * fix first batch * /send-data anchor fixes * Fix some links * a few c2c fixes * Fix integration links * Fix manage links * Metrics, observability, and search links * integrations fixes * Fix 'send data' links * Release notes, alerts, misc. fixes * more fixes * more fixes * all fixes except last 2 CSOAR * Fix Cloud SOAR release notes links --------- Co-authored-by: John Pipkin (Sumo Logic) <jpipkin@sumologic.com> * Update python version (#4537) Co-authored-by: Kim (Sumo Logic) <56411016+kimsauce@users.noreply.github.com> * Remove duplicate entry in sidebar * DOCS-443 - Clean up API articles (#4498) * Clean up APIs in left nav * API roles reuse file * First half * Second half * Add Korea to APIs * Remove extra Korea rows from tables * Wording change * Hide 'Required role capabilities' section * Remove 'hide_table_of_contents: false' * DOCS-443 - Clean up API articles (#4498) * Clean up APIs in left nav * API roles reuse file * First half * Second half * Add Korea to APIs * Remove extra Korea rows from tables * Wording change * Hide 'Required role capabilities' section * Remove 'hide_table_of_contents: false' * Edit config to throw warning for broken anchors (#4520) * Edit config to throw warning for broken anchors * fix first batch * /send-data anchor fixes * Fix some links * a few c2c fixes * Fix integration links * Fix manage links * Metrics, observability, and search links * integrations fixes * Fix 'send data' links * Release notes, alerts, misc. fixes * more fixes * more fixes * all fixes except last 2 CSOAR * Fix Cloud SOAR release notes links --------- Co-authored-by: John Pipkin (Sumo Logic) <jpipkin@sumologic.com> * DOCS-443 - Clean up API articles (#4498) * Clean up APIs in left nav * API roles reuse file * First half * Second half * Add Korea to APIs * Remove extra Korea rows from tables * Wording change * Hide 'Required role capabilities' section * Remove 'hide_table_of_contents: false' * DOCS-443 - Clean up API articles (#4498) * Clean up APIs in left nav * API roles reuse file * First half * Second half * Add Korea to APIs * Remove extra Korea rows from tables * Wording change * Hide 'Required role capabilities' section * Remove 'hide_table_of_contents: false' * Fix conflict * Fixes for Kanso * Minor edit * Change release note date to Jan 16 2025 * Make terms lowercase * Remove beta tagging from Intel471 and Mandiant threat intel sources * Clean up threat intel source intros * Remove video * Remove beta from ZeroFox * Updates to Cloud SIEM threat intel article * Add Intel471 and Mandiant to product list * Make CrowdStrike Threat Intel Source GA * App migration away from CrowdStrike to Sumo Logic threat intelligence * Fix broken anchor link * Added PR #4190 changes * Fix broken link * Add notes about Cloud SIEM admins * Fix broken link * Add comments for DOCS-643 * Update pattern_type to stix * Comment out text * Updates from Mike Pomraning comments * Remove STIX from UI * Add file hashes and remove APIs * Add info to hasThreatMatch and threatlookup operators * Change release note date to Jan 24 2025 * Update release note * First set of updates for GA * Next set of updates * Final pass * Change release note date to Feb 28 2025 * Update screenshots * Updates from review * More updates from review * Yet more updates from review * Change to 10 million * Update release note from review * Update types values * Final updates from review * Fix file:hashes example --------- Co-authored-by: Kim <56411016+kimsauce@users.noreply.github.com> Co-authored-by: Tarun Kumar <tarun@sumologic.com> Co-authored-by: Jagadisha V <129049263+JV0812@users.noreply.github.com> Co-authored-by: Jake Lee <j.wlee@hotmail.com> Co-authored-by: Cameron Eckles <128643830+cameroneckles@users.noreply.github.com> Co-authored-by: Mateusz "mat" Rumian <58699800+mat-rumian@users.noreply.github.com> Co-authored-by: Rishav Yaduvanshi <161286338+rishav-sumo-dev@users.noreply.github.com> Co-authored-by: David Rooney <91282834+droonee@users.noreply.github.com> Co-authored-by: Alekh Nema <91047769+sumoanema@users.noreply.github.com> Co-authored-by: YasarArafat Nasir Rogangar <163980163+yasar-sumologic@users.noreply.github.com> Co-authored-by: Matthew Virga <89219147+mvirga-sumo@users.noreply.github.com> Co-authored-by: Ankur Chaudhary <ankur.chaudhary@sumologic.com> Co-authored-by: Alekh Nema <anema@sumologic.com> Co-authored-by: Parth Langalia <155425340+parth-sumo@users.noreply.github.com> Co-authored-by: Sachin Magar <159125519+sachin-sumologic@users.noreply.github.com> Co-authored-by: Himanshu Pal <hp.iiita@gmail.com> Co-authored-by: Yair Leiferman <85251538+yleiferman@users.noreply.github.com> Co-authored-by: Ruturaj Jain <171145014+ruturajsumo@users.noreply.github.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Purpose of this pull request
This pull request is to update the queries with
sumo://threat/csto latest query format.Select the type of change
Ticket (if applicable)
https://sumologic.atlassian.net/browse/SUMO-241205