This content release includes new parsing, mapping, and passthrough rule support for Qualys Vulnerability Data as well as changes enumerated below.
Rules​
- [New] MATCH-S00887 Port Forwarding Enabled via Visual Studio Code
- A local port has been forwarded and made available for external connectivity utilizing the Visual Studio Code port forwarding feature
Log Mappers​
- [New] Qualys Vulnerability Data
- [Updated] Windows - Security - 4886
- Adds alternate fields for user_username and device_hostname
- [Updated] Windows - Security - 4887
- Adds alternate fields for user_username and device_hostname
Parsers​
- [New] /Parsers/System/Qualys/Qualys Vulnerability Data