July 30, 2024 - Application Update

DNIF HYPERCLOUD Console's latest update, released on July 30th, 2024.

What’s New?

  • DNIF AI Extractor Generator

    • Automates Extractor Generation
      Automates complex extractor building process to save time and effort for security engineers
    • Analyzes log event sources 
      Provides valuable information on the type of device emitting the log sources along with the vendor information.
    • Categorizes log samples
      Identifies different types of log events emitted by the log source.
    • Guides field parsing
      Highlights important fields to parse with detailed justification.
    • Suggests DNIF streams 
      Recommends relevant streams from the DNIF Data Model to parse log events. 
    • Recommends MITRE Techniques & Provides Sample DQL Queries
      Suggest relevant MITRE techniques to investigate with sample DQL queries
       
      Know more about the feature.
  • Extractor Validator

    • Validates Extractor syntax
      Enhances workflow with syntax validations, reducing debugging time.
    • Highlights duplicate streams and fields
      Alerts the security engineer to avoid using duplicate streams and fields.
    • Identifies new streams and fields 
      Prompts the security engineer to consider using existing streams and fields from the DNIF Data Model. The user can alternatively request the addition of new streams and fields.
    • Verifies primary log sources and log events
      Verify whether the given extractor parses the provided log samples.
    • Uniqueness of Log Samples & Extractors
      Verifies the uniqueness of provided log samples against existing extractors.
      Also ensures that the given extractor uniquely parses only the provided log samples.

      Know more about the feature.

Stay tuned for more updates and improvements to the DNIF HYPERCLOUD Console.