August 27, 2025 - Content Release

This content release includes:

• New mappers and parsing support for additional Cisco ASA events and updates to existing Cisco ASA mappers to support additional fields.
• Updates to AWS Security Hub OCSF Findings mappers to handle username alternate mappings.
• Updates to McAfee Web Gateway CSV parser and mapper to support additional fields.
• Fix to Sysdig Policy Detection JSON mapper to correctly map threat signal name and summary.

Changes are enumerated below.

Log Mappers

• [New] Cisco ASA 109201|109207|113022
• [New] Cisco ASA 317077|317078
• [New] Cisco ASA 725016|771002
• [Updated] AWS GuardDuty - OCSF Finding Events
• [Updated] AWS Inspector - OCSF Finding Events
• [Updated] AWS Security Hub - OCSF Finding Events
• [Updated] AWS Security Hub Coverage - OCSF Finding Events
• [Updated] AWS Security Hub Exposure Detection - OCSF Finding Events
• [Updated] Cisco ASA 113008 JSON
• [Updated] Cisco ASA 302010 JSON
• [Updated] Cisco ASA 303002 JSON
• [Updated] Cisco ASA 313001 JSON
• [Updated] Cisco ASA 50000(4|3) JSON
• [Updated] Cisco ASA 602303-4|602101
• [Updated] Cisco ASA 710005|716058
• [Updated] Cisco ASA 713nnn JSON
• [Updated] Cisco ASA 722034
• [Updated] Cisco ASA 722051|722022|722023|722028|722032|722033|722036|722037|722041 JSON
• [Updated] Cisco ASA 733100|734001|737005|737017|737036|737029|746014|746015|746016 JSON
• [Updated] Cisco ASA 751023|725001|725002|725003|725006|725007|750001|750003|750006|750007|751022 JSON
• [Updated] Cisco ASA Network events
• [Updated] McAfee WebGateway - Parser
• [Updated] Sysdig Policy Detection JSON

Parsers

• [Updated] /Parsers/System/Cisco/Cisco ASA
• [Updated] /Parsers/System/McAfee/McAfee Web Gateway CSV