Support MFD v2 firmware
- Added new V2 log schemas: mfd-packet, mfd-pdomain-tcpflag-stats, mfd-policy-qos-stats, mfd-protocol-stats, mfd-ssl-session, mfd-ssl-stats, mfd-daemon-status, mfd-host-traffic-stats
Added MFD v1, v2 common log schemas
- mfd-audit, mfd-alert, mfd-system-event, mfd-qos-stats
Support V4.0 IPv4/IPv6 allow, deny log formats
* vlan_id field exists but the user field does not
First release
- AhnLab AIPS v1.0 parser, logger model, 11 log schemas.
Support six C-TAS feed categories:
- D_C&C (ctas-c2)
- D_공격시도IP (ctas-attack-ip)
- D_유포지 (ctas-malware-dist)
- D_피싱 (ctas-phishing)
- B_악성코드-HASH (ctas-malware-hash)
- B_악성코드-PC (ctas-malware-pc)
First release (for v14.7.0 firmware)
- Dedicated log parser, logger model, and dashboard.
Support new session log format of V2.5 firmware
* Added host, src_country, dst_country fields to fw4_allow, fw4_deny, fw6_allow, fw6_deny log types
Added support for parsing additional message codes
- 106006: Deny inbound UDP
- 106010: Deny inbound protocol 47 src
- 106016: Deny IP spoof
- 106017: Deny IP due to Land Attack
- 106100: ACL log
Normalize the action value of the web filter log type (module_flag 1050) as follows:
* 3001: BLOCK
* 3003: DETECT
Fixed to recognize consecutive quotes as escapes.
Bug fix for last page data not being output
First release
- Support salesforce-query command. (v57.0 API)
First release
- GitHub all, push, download, permission changes, issues, and PR dashboards
- GitHub audit log query command (github-audit-logs)
- GitHub audit logger model and log schema
First release
- AhnLab DPX parser, logger model, 11 log schemas.
Support VirusTotal v3 API
- virustotal-file-report
- virustotal-file-report-batch
- virustotal-url-report
- virustotal-url-report-batch
First release
- MetiEye log parser
- MetiEye logger model
- Webshell detection dashboard
DB2JDBC Driver 4.16.53 version
Tibero JDBC Driver 5.0.0 version
H2 JDBC Driver 2.2.222 version
InterSystems Caché JDBC Driver 2008.2.0.526 version
Teradata Aster JDBC Driver 5.0.3 version