Skip to main content

Customer Portal
Product Updates
Events
Groups

Home
Search

Recently active topics

9 Topics

Recently active

Most views Most replies

juan.delrioCommunity Manager

Platform Release 8.14.4

Hello everyone, the latest release of the Devo Platform is now live! Release 8.14.4 brings a variety of improvements to Data Search. A new Search button has been added to streamline Data Search workflows. You can launch new searches directly from a search results page without needing to travel to the finder. This will speed up threat hunting efforts dramatically! We have also enhanced error management with a persistent icon that you can refer to, and when possible allows you to reload the data from the error details. Read on to learn more about these features, improvements, and bug fixes! Geo AvailabilityRegion Status GovCloud Pending CA Released US Released EU Released APAC Released Table of ContentsNew Features Search Button in Data Search New Error Handling menu in Data Search Bug Fixes New FeaturesSearch Button in Data SearchYou are now able to run a new search from within an existing search results window without having to access the finders area! The new

juan.delrioCommunity Manager

Platform Release 8.14.3

Hello everyone, the latest release of the Devo Platform is now live! Release 8.14.3 brings a variety of improvements to Alerts. I’m excited to announce streaming mode for Alerts! Once you turn it on, you no longer have to manually refresh the triggered Alerts list; you can engage in real-time with your triggered Alerts! Auditing becomes easier with a new Post-Filter auditing table. We have also added a new Column Visibility to Triggered Alerts table that allows you to show, hide, and reorder columns to create a customized view. Read on to learn more about these features, improvements, and bug fixes! Geo AvailabilityRegion Status GovCloud Pending CA Released US Released EU Released APAC Released Table of ContentsNew Features in Alerts Streaming Mode for Alerts New Post-Filter Auditing New Custom Column Visibility In Activeboards Improved Error Messages Improvements Bug Fixes New Featuresin AlertsStreaming Mode for AlertsTurn on Streaming mode in Alerts t

juan.delrioCommunity Manager

Devo Security Operations: OOTB Alerts Release 31

We're thrilled to announce the latest updates and additions to our alerting system with Release 31. This release introduces a significant enhancement to our alerting system. First, alert templates were updated to ensure more accurate and comprehensive notifications. Second, we developed a Ransomware MOVEit Vulnerability alert pack to detect and respond to potential exploitation attempts, covering the key attack vectors related to this threat.To access Updated Detections, open the Security Operations app inside Devo and navigate to the Content Manager. Here, you can search for the detection name, and manage your alerts. To update or install new alerts and alert packs visit Devo Exchange. Table of ContentsNew Alert Pack: Ransomware MOVEit Updated Alerts available in the Ransomware MOVEit Vulnerability Alert Pack: Additionally updated Alerts AzureUserLoginSuspiciousRisk LinuxMaxSessionsPerUser TLDFromDomainNotInMozillaTLD WinAdminRemoteLogon New Alert Pack: Ransomware MOVEitTo help

juan.delrioCommunity Manager

Devo Platform 8.14.0

Hello everyone, the latest release of the Devo Platform is now live! Release 8.14.0 brings in a new Home Page redesign that makes it more lightweight and relevant to all our users! Jump directly into useful resources with the new top-row cards. Return to your tasks faster with quick launch windows containing all your recent and favorite searches and activeboards. Or start querying your data with the integration of the query window in the center of the page! A new tab in Usage Analytics for Injestion and Licensing and login and table improvements round up the release. Read on to learn more! Geo AvailabilityRegion Status CA Released US Released EU Released APAC Released Table of ContentsNew Features Homepage Redesign Quick Action Cards Query and Recent Alerts Recent Searches and My Favorites Set your HomePage in preferences New Permissions available for HomePage New Ingestion and Licensing metrics in Usage Analytics Authentication Improvements Synthesis a

juan.delrioCommunity Manager

Devo SOAR m132.4

The Devo team has released the latest version of Devo SOAR! This release include a new admin feature to manage built-in integration connections and an assortment of bug fixes. SOAR Automation is a key feature of Devo Intelligent SIEM, allowing you to automate a large number of daily tasks and give you back essential time to perform key investigations and hunts. First time with Devo SOAR? We have tutorials on the community to help you get started as well as the rich Devo SOAR Documentation portal. Devo SOAR also has a guided playbook builder to interactively create a no-code automation! Geo AvailabilityRegion Status CA Released US Released EU Released APAC Released Table of ContentsEnhancement Edit built-in Connections as Admin Bug Fixes EnhancementEdit built-in Connections as AdminAdded support for administrators to upgrade and edit built-in integration connections. Bug FixesRegex_replace operator deleting characters. We have fixed this now. We have fixed the erro

juan.delrioCommunity Manager

Devo Exchange: MITRE ATT&CK Adviser 1.10.0

Hello everyone, the latest release of the MITRE ATT&CK Adviser is now live! The MITRE ATT&CK Adviser is a key tool in understanding your alert coverage and managing your security posture. Everyone has access to this tool through Devo Exchange. Release 1.10.0 adds a few new features and User interaction improvements. Starting with the new Technique Card filter, which now filter available alerts for that card in the Alerts Section. We’ve also enhanced the Log Source Filter to additionally filter the alerts within the chosen Techniques, showing only Alerts related to the selected log source. Read on to learn more! Geo AvailabilityRegion Status GovCloud Released CA Released US Released EU Released APAC Released Table of ContentsNew Features Technique Card Alert Filter Log source filter now affects both alerts and techniques Improvements Alert Filter Improvements New FeaturesTechnique Card Alert FilterClicking on a Technique card will automatically filter the

juan.delrioCommunity Manager

Platform 8.13.0

Hello everyone, the latest release of the Devo Platform is now live! Release 8.13.0! This update delivers on customer-requested features with a bang! Starting with Data Search, we have delivered on the Lookup Syntax convergence, now you can use the same syntax for Lookups in Data search AND API. We have also added a new Lookup Wizard and delivered IP/CIDR matching support in Lookups. In Alerts, this release delivers multiple PostFiltering improvements including a new Date Picker that takes your timezone into account, parameter action types have been added to the post-filter list of actions. We have also added Audit Logs for Delco API requests and more! Read on to find out! Geo AvailabilityRegion Status GovCloud Pending CA Released US Released EU Released APAC Released Table of ContentsNew Features Data Search Lookup syntax convergence Lookup wizard now available IP/CIDR matching is fully supported in Lookups Alerts Postfilter Improvements New Date Pi

juan.delrioCommunity Manager

Devo Parser Catalog update for October

The Devo Parser is one of the secret spices of our unique Hyperstream technology. The Parsers organize raw events stored in tags in different columns and display them in the corresponding tables. This method completely bypasses data indexing and contributes to Devo’s amazing search speeds. Every data source is unique, so we have a great catalog of existing parsers. Our teams review parser performance, build new parsers and update parsers on a regular basis. This article covers all the updated and new parsers available this month. If you require a new parser, please open a support ticket through the support portal located here. You can also visit the new Resources Portal, a single page for all your customer resources! Table of ContentsNew Parsers db.mariadb Updated Parsers adn.f5 box.unix ids.corelight cloud.office365.management cdn.cloudflare cloud.azure mail.mimecast New Parsersdb.mariadbDocumentation in progress Updated Parsersadn.f5Link to Documentationbox.unixLink to Docume

juan.delrioCommunity Manager

Devo Collector Catalog update for October

Every month, the integrations team work on new and updated collectors for you, and I collect them all in this Catalog Update. This post contains new and updated collector information as well as links to their respective pages in our Documentation portal. Be advised that some pages in Documentation may not be available at the time of posting but will be added as soon as they are available. To request new collectors or an update to an existing collector, please open a support ticket through the Support Portal. You can also visit the new Resources Portal, a single page for all your customer resources! Table of ContentsNew Collectors Kiteworks API v1.0.0 Updated Collectors Onelogin v1.3.0 AWS SQS v1.6.1 Rubrik v1.3.1 VMware Carbon Black Cloud v1.4.2 Saleforce v2.5.0 Cortex XDR v2.0.1 Snyk v1.1.1 Google Workspace Alerts v1.8.0 Google Workspace Reports v1.10.0 Microsoft Defender ATP v1.4.1 Recorded Future v1.5.1 Cisco Umbrella v1.4.1 Crowdstrike API v1.9.1 Mimecast v2.1.1 C

Badge winners

natehhas earned the badge Very Important Pineapple
hashghas earned the badge Deep Dive Attendee Helmet
Madhesanhas earned the badge Deep Dive Attendee Helmet
RobTDGhas earned the badge Deep Dive Attendee Helmet
valb97008has earned the badge Deep Dive Attendee Helmet

Show all badges

Powered by Gainsight

Terms & Conditions Cookie settings

Sign up

Already have an account? Login

Login with SSO

or

Username *

E-mail address *

First Name

(Private)

Only you and moderators can see this information

Last Name

(Private)

Only you and moderators can see this information

Company

(Private)

Only you and moderators can see this information

*

Job Title

(Private)

Only you and moderators can see this information

A bit about yourself

City

(Private)

Only you and moderators can see this information

Country

(Private)

Only you and moderators can see this information

Password *

I accept the terms & conditions

loginBox.register.email_repeat

Login to the community

No account yet? Create an account

Login with SSO

or

Username or Email

Password

Remember me

Forgot password?

Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.

Enter your e-mail address

Back to overview

Scanning file for viruses.

Sorry, we're still checking this file's contents to make sure it's safe to download. Please try again in a few minutes.

OK

This file cannot be downloaded

Sorry, our virus scanner detected that this file isn't safe to download.

OK