Skip to content

v1.0.1 beta
Compare
Choose a tag to compare
@UncoderIO UncoderIO released this 06 Dec 15:23
· 251 commits to main since this release
1.0.1
04adfeb
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

Improvements and bug fixes in the UI and UX

  • Implemented automatic replacement of items like (.){.} or hxxp in the input panel for IOCs
  • Now, the chosen output language is not changed when the user changes the input language
  • Added a screen for errors that cannot be handled
  • Fixed a bug with automatic detection of the input language after pasting a chunk of code in the input panel
  • Added IOC counters at the bottom of the input panel
  • Added tooltips for action icons in the input and output panels
  • Improved the flow of IOC type selection before translation
  • Fixed a bug where, in some cases, the output platform was changed to "undefined" after a period of inactivity when generating IOC queries

Improvements in translation quality

  • RootA
    • Fixed parsing of the threat field
    • MITRE ATT&CK tactics and techniques are now not included in the description if they have been parsed from the tags field when translating
    • Fixed a bug with RootA with Microsoft Sentinel Query translation into Elasticsearch, AWS Athena, and Sigma when part of the query was missing
    • Fixed a bug with the | where operator in translations from RootA with a Microsoft Sentinel Query into Splunk
    • Fixed a bug where Uncoder IO failed to translate RootA with a Microsoft Sentinel Query into Elasticsearch Rule
    • Fixed a bug with translations from RootA where some unsupported functions didn't appear in comments
    • Fixed tag parsing in translations from RootA with an Elasticsearch Query into Microsoft Sentinel Rule
    • Fixed a bug where RootA with an AWS OpenSearch Query failed to translate into Chronicle Rule
    • Added a check for empty queries in RootA rules
  • Sigma
    • Fixed parsing of the false positives and tags
    • Fixed a bug in translation from Sigma where a new UUID was generated for each translation instead of taking the UUID from the original Sigma rule
  • Falcon LogScale
    • Removed an excessive period (.) in the description field
    • Added escaping with a backslash () in translations
  • Elasticsearch
    • Non-Latin characters are now not encoded
  • Splunk
    • Removed an excessive space in comments with unsupported functions
    • Removed an excessive period (.) in the description field
    • Added missing spaces where values are in parenthesis without OR or AND statement
  • Microsoft Sentinel
    • Fixed a bug with using the | where operator instead of and
    • Removed an excessive space in comments with unsupported functions

Other minor improvements and fixes

  • Fixes in the code structure
Assets 2