• Support
  • Forums
  • Blogs
A New Community Experience is Coming! For more information, please see our announcement.

Plugins Feed Update - October 30, 2018

AVPluginsAVPlugins

AlienVault Employee
+5
edited November 2018 in AlienVault USM Appliance > Plugins
Plugins Feed Update - 2018-10-30
2018-10-30

USM Appliance Plugins Feed Release Notes


New plugins available
  • Added new plugin for Microfocus Voltage (microfocus-voltage).

HIDS rules and decoders
  • Updated Alienvault OSSEC rules to generate alerts for Sysmon informational events.

Issues fixed
  • Updated AlienVault-HIDS (ossec-single-line) plugin to parse some informational sysmon events.
  • Updated VMware NSX (vmware-nsx) plugin to support new events.
  • Updated Check Point FireWall (fw1-alt) plugin to add a missing event name and to support new R80.20 events.
  • Updated Fortinet Fortiget (fortigate) plugin to add new DOM-ALL attack sid and to parse new attack event ids.
  • Updated Citrix Systems NetScaler (citrix-netscaler) plugin to extract destination field in some events.
  • Updated Cisco Unified Communications Manager (cisco-cucm) plugin to parse new events.
  • Updated Preempt Security Behavioral Firewall (preempt-fw) plugin to parse new events.
  • Updated HP Switch (hp-switch) plugin to parse new events.
  • Updated Squid Squid Cache Proxy (squid) plugin to parse new events.
  • Updated Palo Alto Networks (paloalto) plugin to correctly parse System Login events with region information.
Tagged:

Share post:

Sign In or Register to comment.