Changelog

Vertex-Threat-Intel Changelog

v0.13.0 - 2024-12-12

Features and Enhancements

• Add support for extortions and leaks.

• Added details panel button to lift associated nodes for techniques.

• Added hardware tab for managing it:prod:hardware.

• Added software versions tab for managing it:prod:softver.

• Added a secondary tab to manage software versions by software.

• Prevented loading of nodes in hidden tabs until they are selected.

• Added workflow node actions to navigate to the workflow from the following forms:

  • it:prod:hardware

  • it:prod:softver

  • ou:campaign

  • ou:goal

  • ou:industry

  • ou:technique

  • pol:country

  • risk:alert

  • risk:attack

  • risk:compromise

  • risk:threat

  • risk:tool:software

  • risk:vuln

v0.12.0 - 2024-11-18

Features and Enhancements

• Add details panel button to lift vulnerable nodes for TTP vulnerabilities.

• Add details panel button to lift vulnerable nodes for TTP techniques.

v0.11.0 - 2024-09-04

Features and Enhancements

• Add support for generating a new node when linking requires deconflicting on multiple properties (e.g. linking a tool to a threat cluster).

Bugfixes

• Fix an issue where toast message levels were not always properly represented.

v0.10.0 - 2024-05-22

Features and Enhancements

• When linking to a country, filter geo:name nodes to only those that are set on a pol:country node.

v0.9.0 - 2024-04-01

Features and Enhancements

• Display the risk:alert:engine name in the details panel.

v0.8.0 - 2024-02-20

Features and Enhancements

• Add properties to alerts details: priority, severity, verdict.

• Add properties to attacks details: detected, severity.

• Add properties to compromises details: severity.

• Add properties to industries details: names, type.

• Add properties to software details: type.

• Add properties to techniques details: type, sophistication.

• Add properties to threat clusters details: active, country, sophistication, type.

• Add properties to threat groups details: country.

• Add properties to tools details: availability, sophistication, used.

• Add properties to vulnerabilities details: exploited, mitigated, type.

• Update deprecated $lib.dict() usage to JSON style syntax.

Bugfixes

• Fix an issue where autocomplete values could contain duplicates.

v0.7.0 - 2024-02-09

Features and Enhancements

• Add risk:tool:software:type to the tool details panel.

v0.6.0 - 2023-11-22

Features and Enhancements

• Display ou:goal:type and add alternate names.

• Add goals tab for compromises.

• Add risk:alert:type and the vulnerability CVE to alert details.

Bugfixes

• Update ou:goal search to use a pivot from ou:goalname.

v0.5.0 - 2023-10-19

NOTE: This release is considered Beta and may be subject to change.

Features and Enhancements

• Add n-gram search results into autocomplete dialog boxes.

Bugfixes

• Update risk:vuln search to use a pivot from risk:vulnname.

v0.4.0 - 2023-07-05

NOTE: This release is considered Beta and may be subject to change.

Features and Enhancements

• Add refresh button to search query bar.

• Maintain search selection when switching back to a tab.

v0.3.0 - 2023-05-03

NOTE: This release is considered Beta and may be subject to change.

Features and Enhancements

• Add the following props to attack details: type, success, targeted, sophistication.

• Add the following props to campaign details: org:name, success, sophistication.

• Add the following props to compromise details: type, lasttime. Also remove duration.

• Add CVE property to vulnerability creation dialog, and deconflict by CVE and/or name.

• When adding a relationship to a threat cluster add an option to also add the relationship to the threat group.

• Add reporter prop to attacks, campaigns, compromises, and vulnerabilities.

• Add impact tab to compromises.

• Add primary tab for countries.

• Add targeting sub-tabs for campaigns.

• No longer automatically set campaign type to threat when created within the workflow.

• Update boolean fields in details tabs to use a toggle.

• Change the limit for the number of results in the main panel from 10,000 to 1,000.

• Update search to use ou:campname instead of ou:campaign:name.

• Mark the Synapse-Search dependency as optional.

Documentation

• Add link to external User Guide documentation.

Bugfixes

• Fix permissions example in the Admin Guide.

• Remove embedded property fields from details that require multiple property deconfliction.

v0.2.0 - 2023-04-05

NOTE: This release is considered Beta and may be subject to change.

Features and Enhancements

• Add tools secondary tab for software.

• Add secondary tabs for countries targeted by threat groups and threat clusters.

• Add “In the News” primary tab to attacks, campaigns, compromises, organizations, software, and threat groups.

• Display type in campaign profile panel and automatically set to “threat” when new campaigns are created.

• Add profile panel button to lift associated nodes for threat clusters and tools.

• Run consistency checks in profile panel on-demand instead of repeated checking for “warnings”.

Bugfixes

• Use $lib.gen.orgHqByName to avoid creating duplicate ps:contact nodes.

v0.1.0 - 2023-02-06

NOTE: This release is considered Beta and may be subject to change.

Features and Enhancements

• Initial release of the Vertex-Threat-Intel Power-Up