November 29, 2023
© 2023 SOC Prime Inc.
All rights reserved. This product and documentation related are protected by copyright and distributed under licenses restricting their use, copying, distribution, and decompilation. No part of this product or documentation related may be reproduced in any form or by any means without the prior written authorization of SOC Prime. While every precaution has been taken in the preparation of this book, SOC Prime assumes no responsibility for errors or omissions. This publication and features described herein are subject to change without notice.
Threat Detection Marketplace
Inventory Design Updated
We've updated the look of the Inventory page, making it consistent with other pages of Automation:
Removed left-hand navigation since it became redundant
History, View Content, and Edit Content are now available as action icons rather than options of the three-dot menu, which makes it easier to access these actions
The design became consistent with other TDM pages
Help Center Improved
We've made our Help Center closer to the user. Now, you can open it by clicking the question mark icon in the header.
Additionally, we've added quick links to the product tours. Switch between the tabs to open tours for different SOC Prime Platform products.
Password Requirements
On the Account Security page, we've added the recommendations and requirements regarding the choice of password for the SOC Prime Platform account.
Tooltip Updated
On the Search page, we've updated the text of the Content Type filter to ensure that the meaning of its options is clear.
Uncoder AI
We've added the capability to apply Custom Field Mapping, Presets, and Filters as Sigma rule translation settings.
Custom Field Mapping, Presets, and Filters are configured in Platform Settings of the SOC Prime Platform.
In Uncoder AI, they are selected and applied individually to each output platform.
Company Website
Attack Detective Page
We've released a new page that explains the essence of Attack Detective, highlights its benefits, and shows its core use cases.
Threat Detection Marketplace Page
We've released a new page with key details on Threat Detection Marketplace, its main benefits, and insights into the results you can achieve with it.
Threat Bounty Program Page
We've updated the design and copy on the Threat Bounty Program page to highlight the benefits of the Program and the possibilities it opens for its members.
Key Bug Fixes & Improvements
With this release, we’ve made the following key bug fixes and improvements to enhance the user experience with the SOC Prime Platform:
Fixed some issues in Uncoder AI:
An issue where the reverse translation from CrowdStrike to Chronicle Security query actually returned a Chronicle Security rule
A bug where in some cases the original Sigma rule was saved when the user tried to save a modified one
An issue in Uncoder AI where for a while it was impossible to generate translations into IBM QRadar
Issues with filtering by Platform Repositories
Added a warning that shows when the user saves a Dynamic Content List with a heavy Lucene query as one of the filtering parameters
Fixed a bug in Automation where deploying of a rule via Job in rare cases failed with an error ‘NoneType’ object is not subscriptable
Resolved issues on the Jobs page:
Returned the Auto Unlock label
Ensured that the Allow Automatic Unlocking modal always closes after clicking Allow
Made it impossible to run a Job using the Run Now button during 5 minutes after the previous run
Fixed a bug in the Create New Data Plane Profile modal for Elastic Stack by updating a field label from Kibana Space Name to Kibana space URL identifier and providing a corresponding tooltip
Implemented minor text improvements on roota.io