Changelog

Synapse-Intel471 Changelog

v0.10.1 - 2025-09-03

Bugfixes

  • Updated the onload handler to migrate risk:vuln:_intel471:risk:level extended properties to risk:vuln:severity for nodes in layers that are not associated with a view.

v0.10.0 - 2025-05-30

Features and Enhancements

  • Updated intel471.breach.search, intel471.dataleak.post.search, intel471.forum.message.search, intel471.forum.post.search, intel471.global.search, intel471.indicators.search, intel471.inforeport.search, intel471.iocs.search, and intel471.vulns.search to populate the it:exec:query:synuser property.

v0.9.0 - 2025-02-04

Features and Enhancements

  • Updated Intel471 API version to 1.20.0.

  • Added intel471.dataleak.post.search command for ingesting data leak blog posts.

  • Added intel471.inforeport.search and intel471.inforeport.get commands for ingesting information and fintel reports.

v0.8.1 - 2025-01-27

Bugfixes

  • Fixed an issue where the --postsbythreaduid argument on the intel471.forum.post.search command was not handled correctly.

v0.8.0 - 2025-01-17

Features and Enhancements

  • Updated deprecated $lib.list() usage to JSON style syntax.

v0.7.0 - 2024-06-28

Features and Enhancements

  • Replace deprecated risk:hasvuln usage with risk:vulnerable.

This release contains an automatic data migration that will run when the package is first upgraded. The migration creates risk:vulnerable nodes from the deprecated risk:hasvuln nodes.

v0.6.1 - 2024-02-20

Features and Enhancements

  • Update deprecated $lib.dict() usage to JSON style syntax.

v0.6.0 - 2024-02-06

Features and Enhancements

  • Use the risk level to set risk:vuln:severity and remove the risk:vuln:_intel471:risk:level extended property.

This release contains an automatic data migration that will set risk:vuln:severity to the existing value of risk:vuln:_intel471:risk:level, and then remove the extended property.

v0.5.0 - 2024-01-05

Features and Enhancements

  • Added iocs.search Optic action for the following forms: hash:md5, hash:sha1, hash:sha256, inet:fqdn, inet:url, inet:ipv4, inet:ipv6, inet:asn, file:base.

v0.4.0 - 2023-10-05

Features and Enhancements

  • Update Intel471 API version to 1.19.7.

  • Add intel471.breach.search, intel471.forum.post.search, and intel471.forum.message.search commands for searching additional Intel471 endpoints.

  • Update intel471.global.search ingest to support forum posts, private messages, and breach alerts.

  • uniq results from search queries to handle duplicate results.

v0.3.0 - 2023-07-28

NOTE: This release is considered Beta and may be subject to change.

Features and Enhancements

  • Update vulnerability ingest to populate the risk:vuln:cvss:v3_0:score and risk:vuln:cvss:v2_0:score properties instead of the deprecated risk:vuln:cvss:score property.

  • Update risk:vuln node generation to deconflict on the :reporter:name property.

v0.2.0 - 2023-06-12

NOTE: This release is considered Beta and may be subject to change.

Features and Enhancements

  • The --debug option for commands now prints the raw HTTP response from the Intel471 API.

  • Add support for ingesting SSL certificate serial number IOCs.

  • Update command documentation to note the maximum number of results returned from the API.

Bugfixes

  • Fix an issue where intel471.gir.sync did not update properties on existing meta:rule nodes created for GIRs.

v0.1.0 - 2023-02-13

NOTE: This release is considered Beta and may be subject to change.

Features and Enhancements

  • Initial beta release of the Synapse-Intel471 Power-Up.