From 9b45930bc9b4f2d6d0facacbe5cadf7c2aec4b8f Mon Sep 17 00:00:00 2001 From: Julian Crowley Date: Wed, 9 Jul 2025 14:33:11 -0600 Subject: [PATCH 1/2] Create 2025-07-09-content.md --- blog-cse/2025-07-09-content.md | 33 +++++++++++++++++++++++++++++++++ 1 file changed, 33 insertions(+) create mode 100644 blog-cse/2025-07-09-content.md diff --git a/blog-cse/2025-07-09-content.md b/blog-cse/2025-07-09-content.md new file mode 100644 index 0000000000..b9f84763aa --- /dev/null +++ b/blog-cse/2025-07-09-content.md @@ -0,0 +1,33 @@ +--- +title: July 09, 2025 - Content Release +image: https://help.sumologic.com/img/reuse/sumo-square.png +keywords: + - log mappers + - parsers +hide_table_of_contents: true +--- + + +# Content Release 2025-07-09 + +This release includes: +- Rule bug fix +- New device support for Aruba WAP, Oracle Cloud Infrastructure, and Mindpoint SurePass +- Updated mapper alternate values for Cloudflare Logpush + +## Rules +- [Updated] LEGACY-S00005 Possible Black Energy Command and Control + - Corrected rule expression for rootDomain to use correct schema field name + +## Log Mappers +- [New] Aruba WAP +- [New] Oracle Cloud Infrastructure Audit Catch All +- [New] Surepass Authentication +- [New] Surepass Cath All +- [New] Surepass Network Event +- [Updated] Cloudflare - Logpush + +## Parsers +- [New] /Parsers/System/HP/Aruba WAP +- [New] /Parsers/System/Mindpoint Group/Mindpoint SurePass +- [New] /Parsers/System/Oracle/Oracle Cloud Infrastructure \ No newline at end of file From 39769e5437e33b1ad76030e22e554658ebb2f719 Mon Sep 17 00:00:00 2001 From: John Pipkin Date: Wed, 9 Jul 2025 15:57:26 -0500 Subject: [PATCH 2/2] Updates from review --- blog-cse/2025-07-09-content.md | 17 +++++++---------- 1 file changed, 7 insertions(+), 10 deletions(-) diff --git a/blog-cse/2025-07-09-content.md b/blog-cse/2025-07-09-content.md index b9f84763aa..24000aa1af 100644 --- a/blog-cse/2025-07-09-content.md +++ b/blog-cse/2025-07-09-content.md @@ -7,19 +7,16 @@ keywords: hide_table_of_contents: true --- - -# Content Release 2025-07-09 - This release includes: -- Rule bug fix -- New device support for Aruba WAP, Oracle Cloud Infrastructure, and Mindpoint SurePass -- Updated mapper alternate values for Cloudflare Logpush +- Rule bug fix. +- New device support for Aruba WAP, Oracle Cloud Infrastructure, and Mindpoint SurePass. +- Updated mapper alternate values for Cloudflare Logpush. -## Rules +### Rules - [Updated] LEGACY-S00005 Possible Black Energy Command and Control - - Corrected rule expression for rootDomain to use correct schema field name + - Corrected rule expression for rootDomain to use correct schema field name. -## Log Mappers +### Log Mappers - [New] Aruba WAP - [New] Oracle Cloud Infrastructure Audit Catch All - [New] Surepass Authentication @@ -27,7 +24,7 @@ This release includes: - [New] Surepass Network Event - [Updated] Cloudflare - Logpush -## Parsers +### Parsers - [New] /Parsers/System/HP/Aruba WAP - [New] /Parsers/System/Mindpoint Group/Mindpoint SurePass - [New] /Parsers/System/Oracle/Oracle Cloud Infrastructure \ No newline at end of file