Skip to content

ECS 8.6.0

Compare
Choose a tag to compare
@djptek djptek released this 10 Jan 16:26
· 5 commits to 8.6 since this release
7a4148f

8.6.0 RELEASE

Schema Changes

Added

  • Adding vulnerability option for event.category. #2029
  • Added device.* field set as beta. #2030
  • Added tlp.version to threat #2074
  • Added fields for executable object format metadata for ELF, Mach-O and PE #2083

Improvements

  • Added CLEAR and AMBER+STRICT as valid values for threat.indicator.marking.tlp and enrichments.indicator.marking.tlp to accept new TLP 2.0 markings #2022, #2074