First release. Following query commands are supported.
* genian-nac-cves
* genian-nac-nodes
* genian-nac-tags
* genian-nac-add-tag-batch
* genian-nac-remove-tag-batch
* genian-nac-node-groups
* genian-nac-remove-tag
* genian-nac-open-ports
* genian-nac-add-tag
* genian-nac-audit-logs
First release. Support following commands:
* telegram-send
* telegram-send-batch
FortiOS 5.6.7 or above. Support following commands:
* fortigate-add-address
* fortigate-address-groups
* fortigate-addresses
* fortigate-detected-devices
* fortigate-dst-stats
* fortigate-firewall-policies
* fortigate-firewall-policy-usages
* fortigate-kill-session
* fortigate-remove-address
* fortigate-resource-usages
* fortigate-services
* fortigate-sessions
* fortigate-src-stats
* fortigate-users
First release. Support following commands:
* tanium-browse-files
* tanium-connections
* tanium-create-action
* tanium-create-evidence
* tanium-create-evidence-batch
* tanium-delete-connection
* tanium-delete-evidence
* tanium-delete-evidence-batch
* tanium-delete-file-batch
* tanium-dns-events
* tanium-download-evidence
* tanium-download-evidence-batch
* tanium-driver-events
* tanium-evidences
* tanium-file-events
* tanium-image-events
* tanium-network-events
* tanium-process-events
* tanium-question
* tanium-rebase-file
* tanium-registry-events
* tanium-security-events
* tanium-task
* tanium-tasks
First release. Support following commands:
* ahnlab-epp-ack-unknown
* ahnlab-epp-block-network-result
* ahnlab-epp-collect-ahnreport-result
* ahnlab-epp-collect-file-result
* ahnlab-epp-match-node
* ahnlab-epp-nodes
* ahnlab-epp-search-file-result
* ahnlab-epp-start-block-network
* ahnlab-epp-start-collect-ahnreport
* ahnlab-epp-start-collect-file
* ahnlab-epp-start-search-file
* ahnlab-epp-start-unblock-network
* ahnlab-epp-start-v3-scan
* ahnlab-epp-tasks
* ahnlab-epp-unblock-network-result
* ahnlab-epp-unknown-behaviors
* ahnlab-epp-unknown-detail
* ahnlab-epp-unknowns
* ahnlab-epp-v3-scan-result
First release. Support following query commands.
* abuseipdb-blacklist
* abuseipdb-check-ip (support playbook)
* abuseipdb-report-ip (support playbook)
First release. Support following commands:
* o365-azure-ad-logs
* o365-exchange-logs
* o365-general-logs
* o365-sharepoint-logs
* o365-subscriptions
First release
Support following command extensions:
* maili-mails
* maili-sessions
* maili-files
Support following logger extensions:
* Mail-i Mail
* Mail-i Session
* Mail-i File