AR-11244 | New Plugin: Checkpoint Harmony Secured Entities

AR-11239 | New Plugin: Sonicwall TZ 570 CEF

AR-11238 | New Plugin: Sonicwall TZ370 For Syslog

AR-11230 | New Plugin: Checkpoint Harmony

AR-11222 | New Rule: Linux Container Escape - User-Mode Helper

AR-11220 | New Rule: GET Requests - AWS API Gateway

AR-11216 | New Rule: Windows Downdate Detections

AR-11214 | New Rule: Detect Execution of Rundll32.Exe for UDL Files

AR-11206 | New Rule: Detect Windows Lolbas Being Run with No Commandline

AR-11173 | New Rule: Username Hidden from Remote Connections

AR-11164 | New Rule: Detect Possible Keylogging Activity Via Powershell

AR-11265 | Plugin Improvement: Fortinet FortiWeb - Update to Parse Additional Data To "Invalid HTTP Body Triggered Signature ID” Event

AR-11262 | Plugin Improvement: ZScaler ZIA CSV

AR-11261 | Plugin Improvement: Silverfort

AR-11241 | Plugin Improvement: Checkpoint Harmony Event Logs

AR-11229 | Plugin Improvement: Extract API Group Field for Amazon EKS API Server Audit Plugin

AR-11196 | Rule Improvement: Include Vectra AI Data Source in Vectra Data Source Rule Pack

AR-10853 | Rule Improvement: Add RRM tools RMMToolServiceInstall & RMMToolServiceSusPath Rules

AR-10107 | Plugin Improvement: IronTraps

AR-11279 | Rule Improvement: Review AWS WAF Silent Rules

AR-11287 | Rule Improvement: Fix Operand Logic of Global Whitelists

AR-11263 | Plugin Improvement: NXlog FIM - Incorrect Event Names

AR-11250 | Rule Improvement: Exclude Localsystem and SYSTEM from RMMToolServiceInstall

AR-11208 | Plugin Improvement: CheckPoint FW1

AR-11203 | Plugin Improvement: Netskope CEF App

AR-11201 | Rule Improvement: OTX Mirai Indicators of Compromise - External Scanning