What's Changed

• Incident management improvements by @taylorwalton in #304
• Graylog content pack by @taylorwalton in #306
• Minor tweaks by @taylorwalton in #307
• Overview alerts by @taylorwalton in #313
• refactor: Update endpoint in provision.py by @taylorwalton in #316
• refactor: Update incident alert validation error message by @taylorwalton in #317
• Incident reports docx by @taylorwalton in #325
• Update README.md by @taylorwalton in #326
• Update template by @taylorwalton in #327
• Add iocs to alerts by @taylorwalton in #328
• refactor: Update endpoint in provision.py for huntress by @taylorwalton in #329
• Reporting ioc by @taylorwalton in #330
• Convert docx to pdf by @taylorwalton in #331
• fix: Update connector ID for Grafana login attributes in reporting se… by @taylorwalton in #332
• Ai analyst alerts wazuh by @taylorwalton in #334
• fix: Make 'require_values' and 'template' optional in Provider model by @taylorwalton in #335
• Non required custom fileds by @taylorwalton in #336
• Ioc source by @taylorwalton in #337
• Edit 3rd party by @taylorwalton in #339
• Delete multiple alerts by @taylorwalton in #342
• Virustotal ioc by @taylorwalton in #343
• Add URL scanning to IOC type determination and VirusTotal API fetchin… by @taylorwalton in #344
• 345 failed to invoke alert after latest upgrade by @taylorwalton in #346
• Velo artifact rec by @taylorwalton in #349
• Case notification count by @taylorwalton in #352
• Refine OS artifact filtering and enhance error handling for large mes… by @taylorwalton in #353
• Add ai analyst to comment by @taylorwalton in #354
• Precommit fixes by @taylorwalton in #355
• Fix variable name in delete_ioc_name function call for clarity by @taylorwalton in #360
• Enhance alert creation process with error handling and count of succe… by @taylorwalton in #361
• Mssp check by @taylorwalton in #366
• 364 ability to edit comments and delete by @taylorwalton in #367
• Add endpoint to sync agent vulnerabilities by customer code by @taylorwalton in #369
• Change sync vulnerabilities route from GET to POST method by @taylorwalton in #370
• Opensearch async test by @taylorwalton in #371
• precommit fixes by @taylorwalton in #372
• Implement asynchronous vulnerability collection and existence check by @taylorwalton in #373
• Vuln sync manual run by @taylorwalton in #374
• New pushes by @taylorwalton in #375
• 376 wazuh indexer async by @taylorwalton in #377
• License check improvement by @taylorwalton in #380
• 365 ability to merge incident alerts by @taylorwalton in #382
• Add alert_id field to CreatedAlertPayload and update notification han… by @taylorwalton in #383
• Add fallback for process image retrieval in get_process_image function by @taylorwalton in #384
• Add Office365 Syslog Type rule to pipeline rules by @taylorwalton in #386
• Enhance MSSP license check to support MSSP Unlimited after MSSP 1-5 a… by @taylorwalton in #387
• Remove user signup by @taylorwalton in #390
• Refactor Grafana login functions to retrieve credentials directly fro… by @taylorwalton in #391
• fix: new customer button license check by @taylorwalton in #392
• Update template 2 by @taylorwalton in #394
• Update template 3 by @taylorwalton in #395
• fix: update connector_id to connector_name in get_collect_duo_data fu… by @taylorwalton in #396
• fix: sanitize customer name in cluster_node field for event stream co… by @taylorwalton in #398
• Feature/provision haproxy step by @taylorwalton in #399
• fix: correct endpoint path for Wazuh manager restart request by @taylorwalton in #400
• Customer check fix by @taylorwalton in #401
• fix: skip license check for the first customer in MSSP license valida… by @taylorwalton in #402
• fix: mssp license check by @taylorwalton in #403
• fix: add restart policy to all services in docker-compose by @taylorwalton in #405
• Portainer things by @taylorwalton in #407
• Portainer conti by @taylorwalton in #409
• fix: include asset_name in customer notifications and logging by @taylorwalton in #410
• Pnpm switch by @taylorwalton in #412
• fix: updat docker file by @taylorwalton in #414
• fix: update docker file by @taylorwalton in #415
• fix: update docker file by @taylorwalton in #416
• fix: update docker file by @taylorwalton in #417
• Sysmon config reload by @taylorwalton in #419
• Sysmon config cont by @taylorwalton in #420
• docs: enhance sysmon config deployment documentation by @taylorwalton in #422
• fix: update connector references in Grafana datasource creation by @taylorwalton in #423
• feat: enhance YAML file upload endpoint to accept connector name or ID by @taylorwalton in #424
• Velo identify fix by @taylorwalton in #425
• Alert thresholds by @taylorwalton in #429
• Grafana user org by @taylorwalton in #430
• Fix/artifact datetime label by @taylorwalton in #431
• Office365 customer code by @taylorwalton in #433
• Template upgrade by @taylorwalton in #434
• Fix/docker build by @taylorwalton in #435
• Velo sigma by @taylorwalton in #438
• Add Velociraptor header validation and update environment variable in… by @taylorwalton in #439
• Override incident source by @taylorwalton in #440
• Velo sigma exclusion by @taylorwalton in #445
• Mitre by @taylorwalton in #449
• Atomic invoke by @taylorwalton in #450
• Mitre improvement by @taylorwalton in #451
• Atomic test linux by @taylorwalton in #453
• Update agents filter by @taylorwalton in #454
• Velo agents healthcheck by @taylorwalton in #455
• Implement organizations service and API routes; refactor Singul integ… by @taylorwalton in #458
• implemetion the office365 create meta entry by @taylorwalton in #459
• Shuffle singul by @taylorwalton in #460
• Shuffle singul testing by @taylorwalton in #461
• Customer integration meta by @taylorwalton in #462
• Shuffle singul2 by @taylorwalton in #463
  ...

What's Changed

• Log remove by @taylorwalton in #282
• Custom case by @taylorwalton in #284
• refactor: Update connector ID check for YAML file uploads by @taylorwalton in #286
• refactor: Update wazuh manager functions to remove / by @taylorwalton in #287
• Bitdefender integration by @taylorwalton in #289
• Scoutsuite gcp by @taylorwalton in #290
• refactor: Set environment variable for pure-Python implementation of … by @taylorwalton in #291
• Frontend dep upgrades by @taylorwalton in #292
• Datastore by @taylorwalton in #301

Full Changelog: v0.1.1...v0.1.2

What's Changed

• Refactor artifact recommendation error handling by @taylorwalton in #263
• Darktrace by @taylorwalton in #270
• Template update by @taylorwalton in #271
• etw tampering pipeline rule and registery setting in agent.conf by @taylorwalton in #273
• Incident management by @taylorwalton in #275
• Cleanup by @taylorwalton in #279
• Vuln csv export by @taylorwalton in #280
• precommit fixes by @taylorwalton in #281

Full Changelog: v0.1.0...v0.1.1

What's Changed

• chore: Remove unused docker-compose file for SOC Fortress by @taylorwalton in #208
• Wazuh exclusion by @taylorwalton in #212
• Office365 manual alert by @taylorwalton in #213
• creating proper velo client for agent deletion now by @taylorwalton in #214
• Wazuh sca by @taylorwalton in #216
• Manual update agent client by @taylorwalton in #217
• Frontend improvements by @taylorwalton in #218
• Process insights by @taylorwalton in #222
• Wazuh agent upgrade by @taylorwalton in #225
• Velo artifacts rec by @taylorwalton in #227
• Artifact lookup soc by @taylorwalton in #230
• Package lock by @taylorwalton in #231
• Package lock by @taylorwalton in #232
• Scoutsuite by @taylorwalton in #234
• Soc alerts sorting fix by @taylorwalton in #235
• chore: Remove unused code related to Crowdstrike feature flag by @taylorwalton in #236
• chore: Refactor content pack insertion and processing by @taylorwalton in #237
• chore: Deprecate create_alert_route in general_alert.py and update pr… by @taylorwalton in #239
• Web app scan by @taylorwalton in #244
• Azure scoutsuite by @taylorwalton in #246
• Duo integration by @taylorwalton in #247
• Wazuh 4.8 upgrade by @taylorwalton in #249
• Vuln list all by @taylorwalton in #252
• Alert context fix by @taylorwalton in #254
• Velo collect agent org by @taylorwalton in #256
• Velo dif org artifact collect by @taylorwalton in #257
• Epss by @taylorwalton in #261
• Docker compose nuclei by @taylorwalton in #262

Full Changelog: v0.0.9...v0.1.0

What's Changed

• Monitoring alerts by @taylorwalton in #202
• Network connectors by @taylorwalton in #207

Full Changelog: v0.0.8...v0.0.9

What's Changed

• Markdown docker compose by @taylorwalton in #192
• Wazuh rule exclusion by @taylorwalton in #194
• Convert to mysql by @taylorwalton in #195
• Scheduler fix by @taylorwalton in #196
• Scheduler page by @taylorwalton in #201

Full Changelog: v0.0.7...v0.0.8

What's Changed

• Subscribe by @taylorwalton in #183
• Add grafana_url parameter to load_dashboard_json function by @taylorwalton in #185
• License integration by @taylorwalton in #191

Full Changelog: v0.0.6...v0.0.7

What's Changed

• Reporting by @taylorwalton in #179

Full Changelog: v0.0.5...v0.0.6

What's Changed

• Custom default settings by @taylorwalton in #165
• Custom alerting by @taylorwalton in #166
• Stack provisioning by @taylorwalton in #167

Full Changelog: v0.0.4...v0.0.5

What's Changed

• Delete soc alerts bug fix by @taylorwalton in #151
• Update README.md by @taylorwalton in #152
• Add verify_ssl=False to InfluxDB client creation by @taylorwalton in #153
• Update GrafanaApi instantiation to disable SSL verification by @taylorwalton in #154
• Add 'verify' parameter to construct_grafana_url function by @taylorwalton in #156
• Add customer meta table update functionality*** by @taylorwalton in #157
• Alert provisioning fixes by @taylorwalton in #158
• Refactor agent retrieval in wazuh.py to get agent by hostname rather … by @taylorwalton in #159
• instead of raising error, return no results found by @taylorwalton in #160
• Fetch assets within iris alert by @taylorwalton in #162
• Active response by @taylorwalton in #163
• updated overview page by @taylorwalton in #164

Full Changelog: v0.0.3...v0.0.4