We've reorganized our navigation structure to align directly with your operational workflows. See the Google SecOps release notes for more information.
Stay organized with collections
Save and categorize content based on your preferences.
Change log for STEALTHBITS_DEFEND
Date
Changes
2022-11-17
Enhancement:
- Added a new Grok pattern for newly supported CEF logs.
- Mapped the following fields:
- "suser" mapped to "principal.user.userid".
- "duser" mapped to "target.user.userid".
- "shost" mapped to "principal.hostname".
- "sntdom" mapped to "principal.domain.name".
- "Attribute_Name" mapped to "security_result.summary".
- "Operation" mapped to "security_result.description".
- "Policy_Name" mapped to "security_result.rule_name".
- "Attribute_Name" mapped to "security_result.summary".
- "success" mapped to "security_result_action".
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2026-06-18 UTC."],[],[]]
