What's new
Enterprise Security Content Updates v4.3.0 was released on May 30, 2023. It includes the following enhancements.
New analytic story
- Volt Typhoon
New analytics
- Network Share Discovery Via Dir Command
- Active Directory Privilege Escalation Identified
- Windows Ldifde Directory Object Behavior
- Windows Proxy Via Netsh
- Windows Proxy Via Registry
Other updates
- Updated several detections with Atomic GUIDs
- Tagged several existing detections with Volt Typhoon
What's in Splunk Security Content |
This documentation applies to the following versions of Splunk® Security Content: 4.3.0
Feedback submitted, thanks!