Changelog

Synapse-Microsoft-Defender Changelog

v0.6.0 - 2024-12-12

NOTE: This release is a BETA preview and may be subject to change!

Features and Enhancements

  • Added microsoft.defender.ti.profiles command to retrieve/query threat actor and tool profiles from Microsoft Defender TI.

v0.5.0 - 2024-09-17

NOTE: This release is a BETA preview and may be subject to change!

Features and Enhancements

  • Add IPv4 support to microsoft.defender.ti.whois and microsoft.defender.ti.whois.history.

v0.4.0 - 2024-04-01

NOTE: This release is a BETA preview and may be subject to change!

Features and Enhancements

  • Add microsoft.defender.ti.reputation command which allows users to enrich an FQDN with reputation data from Microsoft Defender TI.

v0.3.1 - 2024-03-13

NOTE: This release is a BETA preview and may be subject to change!

Bugfixes

  • Fix broken link in microsoft.defender.ti.ssl.search help.

v0.3.0 - 2024-03-06

NOTE: This release is a BETA preview and may be subject to change!

Features and Enhancements

  • Update $lib.bytes usage with $lib.axon APIs.

Bugfixes

  • Use alert/incident creation time for :detected property.

  • Set :created and :updated on proj:ticket nodes created from alerts and incidents.

v0.2.1 - 2024-02-20

NOTE: This release is a BETA preview and may be subject to change!

Features and Enhancements

  • Update deprecated $lib.dict() usage to JSON style syntax.

v0.2.0 - 2024-02-06

NOTE: This release is a BETA preview and may be subject to change!

Features and Enhancements

  • Add a workaround to retry unexpected HTTP 400 errors from the Microsoft Defender TI backend.

Bugfixes

  • Clarify warning message for unsupported DNS record types.

v0.1.0 - 2024-01-05

NOTE: This release is a BETA preview and may be subject to change!

Features and Enhancements

  • Initial release of the Synapse-Microsoft-Defender Power-Up