Every month, the integrations team work on new and updated collectors for you, and I collect them all in this Catalog Update. This post contains new and updated collector information as well as links to their respective pages in our Documentation portal. Be advised that some pages in Documentation may not be available at the time of posting but will be added as soon as they are available. To request new collectors or an update to an existing collector, please open a support ticket through the Support Portal. You can also visit the new Resources Portal, a single page for all your customer resources!
Table of Contents
Updated Collectors
Devo Collector Thinkst Canary v1.3.0
- Improvements
- The DCSDK Docker base image has been updated from "1.3.1" to "1.5.0"
- The DevoCollectorSDK Python package (devo-collector-sdk) has been updated from "1.13.1" to "1.16.2"
ServiceNow API Collector v2.2.0
- Improvements
- Updated DCSDK to 1.16.2
- Updated docker base image to 1.5.1
Trend Micro Vision One Collector v1.5.1
- Improvements
- Updated DCSDK to 1.16.2
- Updated docker base image to 1.5.1
- Bug Fixes
- Fixed collector restart issue because of start time restriction
Cortex XDR Collector v2.2.0
- Improvements
- Updated DCSDK to 1.16.2
- Updated docker base image to 1.5.1
Fastly Next-Gen WAF Collector v1.4.0
- Improvements
- Updated DCSDK to 1.16.2
- Updated docker base image to 1.5.1
Malwarebytes Nebula Collector v1.2.0
- Improvements
- Updated DCSDK to 1.16.2
- Updated docker base image to 1.5.1
Cisco Meraki Collector v2.1.0
- Improvements
- The DCSDK Docker base image has been updated to "1.5.1"
- The DevoCollectorSDK Python package (devo-collector-sdk) has been updated to "1.16.2"
Tencent Collector v1.5.0
- Improvements
- The DCSDK Docker base image has been updated to "1.5.1"
- The DevoCollectorSDK Python package (devo-collector-sdk) has been updated to "1.16.2"
- Bug Fixes
- Fix in tencent log fetcher to handle multiple time formats
Box Collector v2.2.0
- Improvements
- The DCSDK Docker base image has been updated to "1.5.1"
- The DevoCollectorSDK Python package (devo-collector-sdk) has been updated to "1.16.2"
Trellix Epo Collector v1.2.0
- Improvements
- The DCSDK Docker base image has been updated to "1.5.1"
- The DevoCollectorSDK Python package (devo-collector-sdk) has been updated to "1.16.2"
AWS Collector v1.14.0
- Improvements
- Updated DCSDK to 1.16.2
- Updated docker base image to 1.5.1
Sophos Central Collector v2.2.0
- Improvements
- The DCSDK Docker base image has been updated from "1.5.0" to "1.5.1"
- The DevoCollectorSDK Python package (devo-collector-sdk) has been updated from "1.16.1" to "1.16.2"
Salesforce Collector v3.5.0
- Improvements
- The DCSDK Docker base image has been updated from "1.5.0" to "1.5.1"
- The DevoCollectorSDK Python package (devo-collector-sdk) has been updated from "1.16.1" to "1.16.3"
- Fixes
- Fetched complete user list in User service to ensure full data ingestion
- Handled Interval field parsing in EventLogFile service
AWS SQS Collector v1.11.0
- Improvements
- The DCSDK Docker base image has been updated from "1.5.0" to "1.5.1"
- The DevoCollectorSDK Python package (devo-collector-sdk) has been updated from "1.16.2" to "1.16.3"
- Bug Fixes
- Fixed TypeError issue in setup
Office 365 Exchange Reports Collector v1.2.0
- Improvements
- The DCSDK Docker base image has been updated from "1.5.0" to "1.5.1"
- The DevoCollectorSDK Python package (devo-collector-sdk) has been updated from "1.16.1" to "1.16.2"
ExtraHop Revealx Collector v1.4.0
- Improvements
- The DCSDK Docker base image has been updated from "1.5.0" to "1.5.1"
- The DevoCollectorSDK Python package (devo-collector-sdk) has been updated from "1.16.1" to "1.16.2"
Cybereason Collector v1.6.0
- Improvements
- The DCSDK Docker base image has been updated from "1.5.0" to "1.5.1"
- The DevoCollectorSDK Python package (devo-collector-sdk) has been updated from "1.16.1" to "1.16.2"
Cylance Collector v1.4.0
- Improvements
- The DCSDK Docker base image has been updated from "1.5.0" to "1.5.1"
- The DevoCollectorSDK Python package (devo-collector-sdk) has been updated from "1.16.1" to "1.16.2"
- Bug Fixes
- Fixed time format in url for threats and detections services
Prisma Cloud Logs Collector v2.1.0
- Improvements
- The DCSDK Docker base image has been updated from "1.3.1" to "1.5.1"
- The DevoCollectorSDK Python package (devo-collector-sdk) has been updated from "1.13.1" to "1.16.2"
Mimecast Collector v2.4.0
- Improvements
- The DCSDK Docker base image has been updated from "1.3.1" to "1.5.1"
- The DevoCollectorSDK Python package (devo-collector-sdk) has been updated from "1.13.1" to "1.16.2"
- Fixes
- Fixed the auth token api 429 errors
Darktrace Collector v1.2.0
- Improvements
- The DCSDK Docker base image has been updated from "1.3.1" to "1.5.1"
- The DevoCollectorSDK Python package (devo-collector-sdk) has been updated from "1.13.1" to "1.16.2"
Netskope V2 Collector v2.1.0
- Improvements
- The DCSDK Docker base image has been updated from "1.3.1" to "1.5.1"
- The DevoCollectorSDK Python package (devo-collector-sdk) has been updated from "1.13.1" to "1.16.2"
Microsoft Github Collector v3.1.0
- Improvements
- The DCSDK Docker base image has been updated from "1.2.0" to "1.5.1"
- The DevoCollectorSDK Python package (devo-collector-sdk) has been updated from "1.12.1" to "1.16.2"
Cisco Umbrella Collector v1.5.0
- Improvements
- The DCSDK Docker base image has been updated from "1.3.1" to "1.5.1"
- The DevoCollectorSDK Python package (devo-collector-sdk) has been updated from "1.12.4" to "1.16.2"
TenableIO Collector v2.2.0
- Improvements
- Upgraded the DCSDK to 1.16.2
- Upgraded SDK image base to 1.5.1
- Bug Fixes
- Fixed wrong parameter issue with was_vulnerabilities service
Recorded Future Collector v1.6.0
- Improvements
- The DCSDK Docker base image has been updated from "1.3.1" to "1.5.1"
- The DevoCollectorSDK Python package (devo-collector-sdk) has been updated from "1.12.4" to "1.16.2"
Duo Collector v2.2.1
- Improvements
- The DCSDK Docker base image has been updated from "1.3.1" to "1.5.1"
- The DevoCollectorSDK Python package (devo-collector-sdk) has been updated from "1.13.1" to "1.16.2"
- Fixes
- Fix for index out of range error
- Variable referenced before assignment
Microsoft Defender Cloud Apps Collector v1.5.0
- Improvements
- The DCSDK Docker base image has been updated from "1.3.1" to "1.5.1"
- The DevoCollectorSDK Python package (devo-collector-sdk) has been updated from "1.13.1" to "1.16.2"
- Updated default request_period_in_seconds value to 21600 for snapshot type of services
- Fixes
- Fixed duplicate files fetching issue by saving modifiedDate in persistence
Microsoft Office365 Management Collector v2.7.0
- Improvements
- Upgraded the DCSDK to 1.16.2
- Upgraded SDK image base to 1.5.1
- Fixes
- Fixed ZoneInfo keys may not be absolute paths error
Forcepoint SWG Collector v2.0.0
- Improvements
- Upgraded DCSDK from "1.12.2" to "1.16.2"
- Upgraded docker base image from "1.3.0" to "1.5.1"
- Fixes
- Resolved the 429 error due to api limit by introducing
autoconfig
parameter in the config
- Resolved the 429 error due to api limit by introducing
Qualys Collector v2.4.0
- Improvements
- Upgraded DCSDK from "1.12.2" to "1.16.2"
- Upgraded docker base image from "1.3.0" to "1.5.1"
- Fixes
- Fixed dependency issue
Abnormal Security Collector v2.1.0
- Improvements
- Refactored entire codebase to use templates
- Replaced non paginated apis with paginated apis
- Upgraded DCSDK to 1.16.2
- The DCSDK Docker base image has been updated to "1.5.1"
- Fixes
- Fixed the issue of offset exceeding 10000, handling 400 error
- Added error handling to ignore event with 5** error for
/threat/{id}
and/cases/{id}
apis
- Added
- Added new audit service for audit logs collection
- Added new table for audit logs
mail.abnormalsecurity.audit
VMware Carbon Black Cloud Collector v2.0.0
- Improvements
- Upgraded DCSDK to "1.16.2"
- Upgraded docker to "1.5.1"
- Fixes
- Fixed 403 forbidden issue
OCI OSS Collector v2.1.0
- Improvements
- The DCSDK Docker base image has been updated to "1.5.0"
- The DevoCollectorSDK Python package (devo-collector-sdk) has been updated to "1.13.1"
- Fixes
- Added a Cursor regeneration mechanism on expiration of cursor
- Updated the error code of various pull errors
Microsoft Defender ATP Endpoint Collector v2.2.1
- Improvements
- The DCSDK Docker base image has been updated to "1.5.1"
- The DevoCollectorSDK Python package (devo-collector-sdk) has been updated to "1.16.2"
- Fixes
- Fixed the unknown url bug in the assessments service
- Decreased the number of requests to handle the 429 issue
Lark Collector v1.4.0
- Improvements
- The DCSDK Docker base image has been updated to "1.5.1"
- The DevoCollectorSDK Python package (devo-collector-sdk) has been updated to "1.16.2"
- Fixes
- Added new filter in audit logs of user type
Snowflake Collector v4.2.0
- Improvements
- Upgraded the DCSDK to 1.16.3
- Upgraded SDK image base to 1.5.1
- Made private_key_pwd field optional
- Fixes
- Fixed custom service issue
Trend Micro Apex Central Collector v2.0.0
- Improvements
- Upgraded the DCSDK to 1.16.2
- Upgraded SDK image base to 1.5.1
Trend Micro Deepsec Collector v1.5.0
- Improvements
- Upgraded the DCSDK to 1.16.2
- Upgraded SDK image base to 1.5.1
Flashpoint Intelligence Collector v1.3.0
- Improvements
- The DCSDK Docker base image has been updated from "1.3.0" to "1.5.1"
- The DevoCollectorSDK Python package (devo-collector-sdk) has been updated from "1.12.2" to "1.16.3"
Big ID Collector v1.2.0
- Improvements
- Upgraded the DCSDK to 1.16.3
- Upgraded the docker base image to 1.5.1
- Fixes
- Fixed the 500 error code by requesting data in batches