Carbon Black Cloud Splunk App - Release Notes

Release notes

Version 1.1.4

Version 1.1.3

  • Fixes
    • Set trigger to reload custom config files
    • Removed settings that are not used
    • Removed links to a deprecated library

Version 1.1.2

  • Improvements
    • Set SimpleXML Version Tag
  • Fixes
    • Check Splunk 8.1 and 8.2 compatability with jQuery 3.5
    • Add validation checks for trailling slash on Carbon Black Cloud URL
    • Prevent App showing CBC and EDR alert Actions
    • Fix broken tabs in Splunk 8.2

Version 1.1.1

Version 1.1.0

  • New Features
    • Data Input - Audit Logs
    • Data Input - Live Query Results
    • Data Input - Vulnerability Assessment
    • Dashboard - Devices
    • Dashboard - Processes
    • Dashboard - Vulnerabilities
    • Alert Action - Run Live Query
    • Alert Action - Dismiss Alert
    • Alert Action - Update Device Policy
    • Alert Action - Process GUID Details
    • Alert Action - Ban Hash
    • Alert Action - Enrich CB Analytic Events
    • Command - CBC Device Info
    • Command - CBC Hash Info
  • Improvements
    • Events Dashboard performance improvements
    • Update “Top 10 CB Analytics” panel
    • Stability improvements in Alerts Inputs

Version 1.0.0

  • Initial Release
Last modified on February 18, 2022