Change log for SOPHOS_CENTRAL
Date | Changes |
---|---|
2025-07-30 | Enhancement:
- Added initial declaration for 'application' raw field to avoid parsing error. - Added a null check for `target.process.file.full_path`. |
2025-01-30 | Enhancement:
- Added support to parse unparsed JSON logs. |
2025-01-08 | Enhancement:
- Added "url", "action", and "scan_name" in statedata to parse unparsed logs. - Mapped "user_id" to "principal.user.userid". |
2024-09-05 | Enhancement:
- Added support to parse unparsed JSON logs. - Mapped "location" to "principal.cloud.availability_zone". |
2024-05-17 | Enhancement:
- Mapped "data.core_remedy_items.items.0.descriptor" and "core_remedy_items.items.0.descriptor" to "target.process.file.full_path". |
2024-05-14 | Bug-Fix:
- Changed mapping of "target.user.userid" from "duid" to "suser". - Mapped "duid" to "security_result.detection_fields". |
2022-12-27 | Enhancement -
- Creating a new parser. |