Skip to content

Communityupdates#3

Merged
timbMSFT merged 3 commits into
masterfrom
CommunityUpdates
Dec 3, 2018
Merged

Communityupdates#3
timbMSFT merged 3 commits into
masterfrom
CommunityUpdates

Conversation

@timbMSFT

@timbMSFT timbMSFT commented Dec 3, 2018

Copy link
Copy Markdown
Contributor

Update community github with fixes and new office queries.

@timbMSFT timbMSFT requested a review from juliango2100 December 3, 2018 12:30
@timbMSFT
fix up user agent extraction - appears that there has been a change i…
cfc8613 
…n structure of underlying office activity data
juliango2100
juliango2100 approved these changes Dec 3, 2018
View reviewed changes

@juliango2100 juliango2100 left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Approved

zhzhao8888
zhzhao8888 suggested changes Dec 3, 2018
View reviewed changes

@zhzhao8888 zhzhao8888 left a comment
edited
Loading

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Never mind. I see you trying to check into the original folders.

zhzhao8888
zhzhao8888 approved these changes Dec 3, 2018
View reviewed changes

@zhzhao8888 zhzhao8888 left a comment
edited
Loading

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

OK I see you trying to check into the original folders.

@timbMSFT timbMSFT merged commit d392c5e into master Dec 3, 2018
zhzhao8888 added a commit that referenced this pull request Feb 27, 2019
@zhzhao8888
Merge pull request #102 from Azure/Notebook_fixes_#3
cfb66d2 
Notebook fixes #3
@preetikr preetikr mentioned this pull request Apr 24, 2020
Closed
shainw pushed a commit that referenced this pull request May 14, 2020
@duzlov
Merge pull request #3 from Azure/master
ed78588 
2802
@preetikr preetikr mentioned this pull request Sep 16, 2020
Merged
@sreedharande sreedharande mentioned this pull request Oct 19, 2020
Merged
sarah-yo pushed a commit that referenced this pull request Feb 2, 2021
@johnbilliris
Merge pull request #3 from johnbilliris/johnbilliris-GuardicoreThreat…
eb465ab 
…IntelImprovements

Minor fixes for nullable fields from Guardicore ThreatIntel feed
shainw pushed a commit that referenced this pull request Feb 18, 2021
@cyberpion-yotam
Merge pull request #3 from Azure/master
043e544 
Update
shainw pushed a commit that referenced this pull request Mar 22, 2021
Merge pull request #3 from Azomasiel/patch-1
1127048 
Update AlsidForAD.json
@xyzzykdj xyzzykdj mentioned this pull request Jul 8, 2021
Merged
@preetikr preetikr mentioned this pull request Jul 30, 2021
Merged
@holmbert095 holmbert095 mentioned this pull request Aug 24, 2021
Closed
v-maudan pushed a commit that referenced this pull request Sep 30, 2021
@urajat
Merge pull request #3 from armorblox/armorblox-sentinel-solution
895a27f 
Armorblox Sentinel Solution Azure Function changes
oshezaf added a commit that referenced this pull request Jan 16, 2022
@oshezaf
Force validation #3
77efb61
@samikroy samikroy mentioned this pull request Mar 4, 2022
Merged
NikTripathi pushed a commit that referenced this pull request Mar 4, 2022
@0xjunaidpwnz
Merge pull request #3 from frozenstrawberries/SecurityBridge
24b2022 
Initial Commit with the first version
NikTripathi pushed a commit that referenced this pull request Apr 27, 2022
@Mangusingh-te
Merge pull request #3 from Mangusingh-te/hotfix/cs-47091-cs-47380-cs-…
930593c 
…47385-cs-47271

Bumps version. Updates code & solution zip file.
NikTripathi pushed a commit that referenced this pull request Jul 22, 2022
@ajcollins0
Merge pull request #3 from tanium/tanium-typo-fixes-and-playbook-readmes
f581d29 
Tanium typo fixes and playbook readmes
NikTripathi pushed a commit that referenced this pull request Aug 3, 2022
@JustasZDT
Merge pull request #3 from Azure/master
77a02e7 
Merging upstream into master
arledesma pushed a commit to mindstream-it/Azure-Sentinel that referenced this pull request Sep 9, 2022
@Phrozyn
Merge pull request Azure#3 from quantum-sec/feature/XDR-1172
b370b13 
XDR-1172: Set up Upstream Sync for Azure-Sentinel using CI with Azure Pipelines (feat)
mayank88mahajan added a commit to mayank88mahajan/Azure-Sentinel that referenced this pull request Jan 13, 2023
@mayank88mahajan
Azure#3
0cd2476
mayank88mahajan added a commit to mayank88mahajan/Azure-Sentinel that referenced this pull request Jan 14, 2023
@mayank88mahajan
Azure#3-10 queries
4b0acee
v-dvedak pushed a commit that referenced this pull request Aug 2, 2023
@ltipp147
Merge pull request #3 from Azure/master
3cdc1eb 
Merge master back to fork repo
v-atulyadav pushed a commit that referenced this pull request Aug 14, 2023
@vnayak99
Merge pull request #3 from vnayak99/vnayak99-patch-4
71e152e 
Add files via upload
v-atulyadav pushed a commit that referenced this pull request Nov 1, 2023
@jagelta
Merge pull request #3 from Phenox11/Dev
f38ef71 
changes
v-atulyadav pushed a commit that referenced this pull request Mar 12, 2024
@joanabmartins
Merge pull request #3 from joanabmartins/joanabmartins-updateSophosEn…
6a8e793 
…dpointconnector-ccp

Adding tables to .script/tests/KqlvalidationsTests/CustomTables
v-atulyadav pushed a commit that referenced this pull request Sep 10, 2024
@amiracle
Merge pull request #3 from Azure/master
b92d1e0 
Pull changes from Azure Main Repo
v-atulyadav pushed a commit that referenced this pull request Dec 31, 2024
@sean-mcclelland
Merge pull request #3 from Samsung/feature-fix-validations
a2ba574 
Corrected validations and re-packaged the solution.
v-dvedak pushed a commit that referenced this pull request Sep 18, 2025
@V1ManagedServices
Merge pull request #3 from V1ManagedServices/p/MXDR-3374_fix_DefaultA…
34136d5 
…zureCredential

[MXDR-3374] fix default azure credential
jlheard added a commit that referenced this pull request Dec 22, 2025
@github-actions @jlheard
chore: Update Solutions Analyzer CSV files and documentation (#3)
3e860f6 
Co-authored-by: jlheard <1328792+jlheard@users.noreply.github.com>
v-atulyadav pushed a commit that referenced this pull request Jan 16, 2026
@github-actions @anthonylamark
chore: Update Solutions Analyzer CSV files and documentation (#3)
f341b95 
Co-authored-by: anthonylamark <3209818+anthonylamark@users.noreply.github.com>
v-dvedak pushed a commit that referenced this pull request Jan 22, 2026
@github-actions @v-maheshbh
chore: Update Solutions Analyzer CSV files and documentation (#3)
803d26e 
Co-authored-by: v-maheshbh <207855009+v-maheshbh@users.noreply.github.com>
v-dvedak pushed a commit that referenced this pull request Jan 22, 2026
@v-maheshbh
Revert "chore: Update Solutions Analyzer CSV files and documentation (#3
3d8b657 
)"

This reverts commit 803d26e.
v-atulyadav pushed a commit that referenced this pull request Feb 23, 2026
@Edouard360
build ccf mainTemplate json using v3 tool (#3)
2199e4b 
* recompile using v3 tool

* recompile using v3 tool

* self review

* follow up from claude on depends for contentPackages

* revert

* cleanup

* minimize diff
ItaiMargalit pushed a commit to ItaiMargalit/Azure-Sentinel that referenced this pull request May 24, 2026
[IONIX] v3.1.1 — fix CCF paging config and restore table declaration
369f82b 
Fixes two deploy-time bugs in v3.1.0 (PR Azure#13524).

Bug Azure#1 — Paging:
Switched pagingType from "NextPageUrl" to "Offset", matching the IONIX
API's standard DRF LimitOffsetPagination shape. The old config failed
CCF connectivity validation with "Missing NextPageParaName from config"
(RES40002) for every customer on 3.1.0.

Bug Azure#3 — Table declaration:
The original v3.1.1 attempt removed IONIX_Table.json on the theory that
Log Analytics would auto-create the custom table on first DCR write.
That's not how it works — Sentinel's DCR validator requires the custom
output table to already exist, and Connect failed with:

  InvalidOutputTable: Table for output stream
  'Custom-CyberpionActionItems_CL' is not available for destination
  'IONIX-Destination'.

Restored IONIX_Table.json with the 12-column declaration (same shape as
v3.1.0) so the table is created when the solution is installed via
Content Hub (which auto-executes the contentTemplates nested mainTemplate).
This matches the pattern used by every other CCF solution in the catalog
(Auth0, Cloudflare CCF, SAP BTP, CyrenThreatIntelligence — all have the
table declared inside the contentTemplates wrapper, none at top level).

Package regenerated via Tools/Create-Azure-Sentinel-Solution/V3
(createSolutionV3.ps1) — mainTemplate.json + 3.1.1.zip are canonical
V3-tool output.

Verified end-to-end on a fresh Sentinel workspace:
- Solution installs via Content Hub
- CyberpionActionItems_CL table created
- CCF connector connects (green), no RES40002
- First poll ingested 64 deduped action items via Offset paging
- Workbook + analytics rule template both render

Note: customers migrating from the deprecated push connector who already
have a populated CyberpionActionItems_CL table with the legacy 15-18
column set will still hit "Invalid output table schema" on this version
(same behavior as v3.1.0). Migration handling is tracked separately for
v3.1.2 — recommended approach is a new table name for the CCF connector
with a union shim during the transition period.
@freddan58 freddan58 mentioned this pull request May 28, 2026
Open
elakkuvan-r added a commit to elakkuvan-r/Azure-Sentinel that referenced this pull request Jun 4, 2026
@elakkuvan-r
Whisper Security Solution: address remaining review threads (Azure#2, A…
bec976f 
…zure#3, Azure#4)

Azure#2 — Renamed Whisper - BGP Anomaly Hunt → Whisper - ASN Reputation Score Hunt
to match the query's actual logic (compares ASN reputation scores across
24-hour windows, flags increases >20 points). Filename kept stable.

Azure#3 — Standardized the playbook parameter naming across all 10 playbooks
from `playbook-name` (kebab) to `PlaybookName` (PascalCase) per the
Azure-Sentinel repo convention. Updated both the parameter declaration
and every `parameters('playbook-name')` reference.

Azure#4 — Moved the Whisper Security custom API connector ARM template into
its own folder per repo convention:
  Solutions/Whisper/Playbooks/WhisperSecurityConnector.json
    → Solutions/Whisper/Playbooks/WhisperSecurityConnector/azuredeploy.json

Package regenerated to 3.0.29 via Create-Azure-Sentinel-Solution V3.

Azure#1 (parse_json on comma-separated strings) — replied on the thread
explaining deferral until we have live data to verify the actual
ingestion-pipeline output format; not changing code in this round.

Signed-off-by: Elakkuvan Rajamani <elakkuvan@whisper.security>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@juliango2100 juliango2100 juliango2100 approved these changes

+1 more reviewer

@zhzhao8888 zhzhao8888 zhzhao8888 approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@timbMSFT @juliango2100 @zhzhao8888