NetApp Ransomware Resilience#10
Merged
SoumyaRanjanNaik merged 931 commits intonetapp-rpsfrom Feb 13, 2026
Merged
Conversation
* Fix issues * Address PR comments --------- Co-authored-by: Derrick Lee <derricklee@microsoft.com>
CyberArk EPM Sentine bug fix
…okGet-ProofPointTapEvents Remove playbook GetProofpointTAPEvents for TAP connector
Solution: Cyren Threat Intelligence v3.0.1 - Auto-connect and Cost Optimization
…ctor Correct Tenable_IE_CL table references in data connector configuration
fixes WindowsAuditChecker workbook intro
Bump solution version to 3.0.11 with updated analytic rule versions, template descriptions, and entity mapping structure. Added a new zip package, updated UI text, and fixed a reference link in createUiDefinition.json.
…ents Updated Windows Security Events to fix the Analytic rules description
…ow-Workbook [Corelight][Dashboard] - Adding AWS VPC Flow Workbook
…ic Rule for Windows Security Events Solution
…thSecureElementsViaFunction/Data-Connectors/azure-core-1.38.0 Bump azure-core from 1.30.0 to 1.38.0 in /Solutions/WithSecureElementsViaFunction/Data Connectors
…ontent Hub loading Root cause: Playbook nested template used reference() to get Function App URL dynamically. Content Hub fails to load playbook templates that use reference() for resources that don't exist at validation time. Fix: Replace reference() with FunctionAppUrl parameter that user provides after deploying Function App first. Changes: - Playbooks/TacitRedToDefenderTI/azuredeploy.json: Replace FunctionAppName parameter with FunctionAppUrl, remove reference() call, update workflow to use @parameters('FunctionAppUrl') - Package/mainTemplate.json: Mirror changes in nested playbook template - Package/createUiDefinition.json: Fix docs.microsoft.com -> learn.microsoft.com - Package/3.0.0.zip: Regenerated Ref: CiscoMeraki/Playbooks pattern uses user-provided parameters, not reference() ARM-TTK: 49/49 passed
Parameterize ProjectId and ZoneId in mainTemplate.json
…27_v2 Updated The Non Domain Controller Active Directory Replication Analytic Rule for Windows Security Events Solution
…rkflow Delete update-solutions-analyzer.yml
…olution_SecurePracticeMailRisk.json
Co-authored-by: Derrick Lee <derricklee@microsoft.com>
…sion Correct contentHub solution version by fetching solution version in m…
Co-authored-by: Derrick Lee <derricklee@microsoft.com>
…tead of Package/ The mainTemplate.json inside 3.0.1.zip still referenced the old Package/functionCode.zip path. Updated to match the new location at Playbooks/TacitRedDefenderTI_FunctionApp/functionCode.zip.
…otes Update ReleaseNotes.md
Update TacitRed-Defender-ThreatIntelligence package to template version 3.0.1. mainTemplate.json: bump playbook descriptions and solution version to 3.0.1, add post-deployment steps to assign Reader and Microsoft Sentinel Contributor roles to the Function App managed identity, and normalize description HTML bullets. Also update packaged zip (3.0.1.zip).
Solution: Cyren Threat Intelligence v3.0.2 - Fix CCF Paging Duplication Bug
…ata-Connectors/cryptography-46.0.5
…Now/Data-Connectors/cryptography-46.0.5
…pid7InsightVM/Data-Connectors/cryptography-46.0.5 Bump cryptography from 42.0.8 to 46.0.5 in /Solutions/Rapid7InsightVM/Data Connectors
…ilPointIdentityNow/Data-Connectors/cryptography-46.0.5 Bump cryptography from 43.0.1 to 46.0.5 in /Solutions/SailPointIdentityNow/Data Connectors
…-v3.0.1 Solution: TacitRed Defender Threat Intelligence v3.0.1 - Fix Content Hub Deployment
…-instead [ASIM] Use sentinel-repo-parser-reviewers group instead
* Changes * Add NetworkCleartext to EventSubType * Revert "Changes" This reverts commit 55feb9c. --------- Co-authored-by: Derrick Lee <derricklee@microsoft.com>
* Work in progress * fix source * [ASIM Parsers] Generate deployable ARM templates from KQL function YAML files. * Add all necessary files * [ASIM Parsers] Generate deployable ARM templates from KQL function YAML files. * Fix error in json * Fix? * [ASIM Parsers] Generate deployable ARM templates from KQL function YAML files. * Add changelog to ASIM folder * [ASIM Parsers] Generate deployable ARM templates from KQL function YAML files. * Move changelog * [ASIM Parsers] Generate deployable ARM templates from KQL function YAML files. * Remove Other as EventType * [ASIM Parsers] Generate deployable ARM templates from KQL function YAML files. * Add post-filtering * [ASIM Parsers] Generate deployable ARM templates from KQL function YAML files. * Fixes to yaml validation --------- Co-authored-by: Derrick Lee <derricklee@microsoft.com> Co-authored-by: github-actions[bot] <>
Implementation of V2 Data Connector for Lumen Defender Threat Feed Solution
Added 5 new detections for Azure Firewall Sentinel Solution
…ainTemplate MailRisk Fix CCF mainTemplate.json parameters
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
20 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
No description provided.