Skip to main content

The Devo team has released the latest version of Devo SOAR! This product update combines two releases, M124 and M125.   In these updates we have added 4 new JSON operators, 3 new integrations, updated integrations with new capabilities as well as bug fixes and enhancements.  SOAR Automation is a key feature of Devo Intelligent SIEM, allowing you to automate a large number of daily tasks and give you back essential time to perform key investigations and hunts.  First time with Devo SOAR? We have tutorials on the community to help you get started as well as the rich Devo SOAR Documentation portal.   Devo SOAR also has a guided playbook builder to interactively create a no-code automation!

 

Geo Availability

Region Status
CA Released
US Released
EU Released
APAC Released

 

Table of Contents

 

New Features

5 New JSON Operations

We are happy to introduce 5 new JSON Operations for use in SOAR Playbooks:

New Integrations added

  • KnowBe4 is the world’s largest integrated platform for security awareness training combined with simulated phishing attacks.
  • Netskope, a global cybersecurity leader, is redefining cloud, data, and network security to help organizations apply zero-trust principles to protect data.
  • Cyberark EPM provides holistic endpoint protection to secure all endpoints and enforce least privilege without disrupting business.

Updated Features

Enhancements

  • Run action node when explicitly requested in the playbook.
  • Updated action Download URL to support usage of custom headers while downloading in File Tools integration.
  • Trend Micro Workload Security integration has added 6 new actions List Scheduled TaskCreate Scheduled TaskDescribe Scheduled TaskModify Scheduled TaskDelete Scheduled TaskSearch Scheduled Task.
  • Removed Assistance mode functionality.
  • Shodan integration has added 17 new actions based on on-demand scanning and network alerts.

Bug Fixes

  • The dynamic recipient field is not working when the form is added to a case. We have fixed this now.
  • Page number information is lost when opening the batch detail page and returning to the batch listing page. We have fixed this now.
  • Missing Jinja support for hostname in Send Events action in Devo integration. We have fixed this now.
  • Issue with Default limit in Search IOCs action in CrowdStrike Falcon Host (OAuth Based) integration. We have fixed this now.
  • Timestamp type-based timezone has rendering issues in easy mode. We have fixed this now.

 

 

Be the first to reply!