The Devo team has released the latest version of Devo SOAR! This product update combines two releases, M124 and M125. In these updates we have added 4 new JSON operators, 3 new integrations, updated integrations with new capabilities as well as bug fixes and enhancements. SOAR Automation is a key feature of Devo Intelligent SIEM, allowing you to automate a large number of daily tasks and give you back essential time to perform key investigations and hunts. First time with Devo SOAR? We have tutorials on the community to help you get started as well as the rich Devo SOAR Documentation portal. Devo SOAR also has a guided playbook builder to interactively create a no-code automation!
Geo Availability
Region | Status |
---|---|
CA | Released |
US | Released |
EU | Released |
APAC | Released |
Table of Contents
New Features
5 New JSON Operations
We are happy to introduce 5 new JSON Operations for use in SOAR Playbooks:
New Integrations added
- KnowBe4 is the world’s largest integrated platform for security awareness training combined with simulated phishing attacks.
- Netskope, a global cybersecurity leader, is redefining cloud, data, and network security to help organizations apply zero-trust principles to protect data.
- Cyberark EPM provides holistic endpoint protection to secure all endpoints and enforce least privilege without disrupting business.
Updated Features
Enhancements
- Run action node when explicitly requested in the playbook.
- Updated action
Download URL
to support usage of custom headers while downloading in File Tools integration. - Trend Micro Workload Security integration has added 6 new actions
List Scheduled Task
,Create Scheduled Task
,Describe Scheduled Task
,Modify Scheduled Task
,Delete Scheduled Task
,Search Scheduled Task
. - Removed Assistance mode functionality.
- Shodan integration has added 17 new actions based on on-demand scanning and network alerts.
Bug Fixes
- The dynamic recipient field is not working when the form is added to a case. We have fixed this now.
- Page number information is lost when opening the batch detail page and returning to the batch listing page. We have fixed this now.
- Missing Jinja support for hostname in
Send Events
action in Devo integration. We have fixed this now. - Issue with Default limit in
Search IOCs
action in CrowdStrike Falcon Host (OAuth Based) integration. We have fixed this now. - Timestamp type-based timezone has rendering issues in easy mode. We have fixed this now.