Every month, the integrations team work on new and updated collectors for you, and I collect them all in this Catalog Update.   This post contains new and updated collector information as well as links to their respective pages in our Documentation portal.  Be advised that some pages in Documentation may not be available at the time of posting but will be added as soon as they are available. To request new collectors or an update to an existing collector, please open a support ticket through the Support Portal. You can also visit the new Resources Portal, a single page for all your customer resources!

Table of Contents

Updated Collectors

Netskope API V2 v2.0.1

Link to Documentation

Change Log

• Improvements 

  • Refactored collector , check migration guide 

  • Updated the DCSDK from 1.11.1 to 1.13.1

• Bugs

  • Fixed Duplication and Delay issue.

  • Fixed 409 Error by adding wait time.

Microsoft Graph v3.1.0

Link to Documentation

Change Log

• Improvements 

  • Alerts categorisation for alerts_v2 service (this change can break compatibility with previous versions)

  • New optional flattening for alerts_v2 service, new separate table for "evidences"

  • Automatic recovery from error 400 "Invalid Skiptoken" returned from Graph API

  • Updated DCSDK from 1.13.1 to 1.14.0

AWS SQS v1.7.4

Link to Documentation

Change Log

• Bugs

  • Fixed bug with log operations

  • Made decorators to be optional. To enable set debug to true.

ServiceNow v2.0.0

Link to Documentation

Change Log

• Improvements 

  • Migrated API to v2 version

  • Implemented OAUTH.

Google Cloud Platform v2.1.0

Link to Documentation

Change Log

Improvements

• New Features 

  • Complete Refactor: The collector has been completely redesigned to provide a more flexible and powerful solution for ingesting data from Google Cloud Pub/Sub.

  • Support for Multiple Data Sources: The collector now supports generic ingestion from Pub/Sub, allowing seamless data collection from any GCP service, including Logging and Security Command Center Findings.

  • New Service: Netskope Web Transactions: Added support for Netskope Web Transactions, enabling seamless data ingestion from Pub/Sub Lite.

  • Streaming Data Collection: The collector now works in streaming mode, significantly reducing latency and improving efficiency.

  • Optimized Performance: The entire codebase has been optimized, reducing memory usage and increasing stability in high-load environments.

  • Enhanced Auto-Categorization: Improved the event auto-categorization mechanism to ensure accurate and efficient tagging.

  • Refactored Codebase: The internal architecture has been restructured, improving maintainability, scalability, and overall performance.

  • Better Error Handling & Logging: Improved error handling mechanisms and log traceability to facilitate troubleshooting.

  • Deployed with DCSDK v1.14.0: Ensuring compatibility with the latest SDK enhancements.

IBM Cloud Activity Tracker v2.0.0

Link to Documentation

Change Log

• Improvements 

  • Migrated the collector to get data from IBM Cloud Activity Tracker to IBM Cloud Logs (Kafka - event streaming).

  • Added unit tests and user guide.

  • Updated DCSDK base Docker image to 1.4.0.

  • Updated DCSDK from 1.10.0 to 1.14.0

Alibaba Cloud v1.2.0

Link to Documentation

Change Log

• Improvements 

  • Updated the DCSDK from 1.7.2 to 1.14.0.

• Bugs

  • Fixed unexpected PullError in actiontrail log service for missing eventVersion

• New Features

  • Fixed Added new services for access logs, db logs, internal audit service logs

AWS v1.12.0

Link to Documentation

Change Log

• Improvements 

  • Updated DCSDK from 1.13.1 to 1.14.0

  • Fixed the bug related to delay in ingestion for Guard Duty

Menlo Security v1.3.0

Link to Documentation

Change Log

• Improvements 

  • Upgraded the DCSDK from 1.13.1 to 1.14.0

  • Fixed the persistence logic.