March 18, 2025 - Content Release
This release includes::
- Updates to parsing and mapping for Airtable and Windows Defender to support additional events and field mappings.
- New parsing and mapping for VMware ESXi.
- Updates to Baracuda Firewall and System Event mapping for normalizedSeverity lookup translation.
Changes are enumerated below.
Log Mappers​
- [New] Airtable Audit C2C Authentication
- [New] VMware ESXi Authentication
- [New] VMware ESXi Catch All
- [New] Windows Defender Catch All
- [Updated] Airtable Audit C2C Catch All
- [Updated] Barracuda Network Firewall Event|Web Firewall Event|Access Firewall Event
- [Updated] Barracuda System Event
- [Updated] Windows Defender ATP Alert
- Enables additional passthrough alerts.
Parsers​
- [New] /Parsers/System/VMware/VMware ESXi
- [Updated] /Parsers/System/Airtable/Airtable Audit C2C
- [Updated] /Parsers/System/Microsoft/Windows Defender ATP Alert JSON