Merge branch 'main' into docs-815-threatlookup-operator

Author: jpipkin1

blog-collector/2024/2025-02-18.md renamed to blog-collector/2025-02-18.md

@@ -0,0 +1,17 @@
+---
+title: Version 19.525-42
+hide_table_of_contents: true
+image: https://help.sumologic.com/img/sumo-square.png
+---
+
+import useBaseUrl from '@docusaurus/useBaseUrl';
+
+In this release, we've enhanced the security and stability of the Collector with added support for security patches and a bug fix.
+
+## Security Fix
+
+- Upgraded `com.google.crypto.tink` to version 1.16.0 to address protobuf-java DOS vulnerability (CVE-2024-7254).
+
+## Bug Fix
+
+- Fixed the improper filtering of `AD` objects when `Exclude Distinguished Name Suffixes` filter is configured.

blog-collector/2025-05-14.md

@@ -21,7 +21,6 @@ This release includes:
 
 Changes are enumerated below.
 
-
 ### Rules
 - [New] OUTLIER-S00033 AWS DynamoDB Outlier in PutItem Events from User
     - [Disabled by Default] This rule detects an unusual amount of PutItem events to a DynamoDB resource within an hour time period (DynamoDB data events are required). Verify the user is authorized to modify the DynamoDB tables and instances. This rule is disabled by default due to potential volume of signals, before enabling consider excluding authorized users via match lists, and adjust floor value and model sensitivity as needed.

blog-cse/2025-05-09-content.md

@@ -0,0 +1,51 @@
+---
+title: May 23, 2025 - Content Release
+image: https://help.sumologic.com/img/sumo-square.png
+keywords:
+  - log mappers
+  - parsers
+  - rules
+hide_table_of_contents: true    
+---
+
+import useBaseUrl from '@docusaurus/useBaseUrl';
+
+This content release includes:
+- Rule update
+- New support for CommScope Ruckus SmartZone
+- Additional mappers for CrowdStrike FDR, Google G Suite (Workspace), and Windows PowerShell
+- Updates for existing mappers for CrowdStrike FDR, Google G Suite (Workspace), and Windows PowerShell
+    - Added normalizedAction and action fields to Windows PowerShell mappers
+- Changes to Windows PowerShell JSON parsing to support additional log formats
+
+Changes are enumerated below.
+
+
+### Rules
+- [Updated] MATCH-S00068 O365 - Users Password Changed
+    - Updated to use targetUser_username
+
+### Log mappers
+- [New] CommScope Ruckus SmartZone Default
+- [New] CrowdStrike FDR - DNSRequest
+- [New] Google G Suite - login - risky_sensitive_action_allowed
+- [New] Google G Suite - login challange
+- [New] Windows - Windows PowerShell
+- [Updated] CrowdStrike Falcon Host API DetectionSummaryEvent (CNC)
+    - Added alternate field for threat_name
+- [Updated] CrowdStrike Falcon Host API IdpDetectionSummaryEvent (CNC)
+    - Added alternate field for threat_name
+- [Updated] Google G Suite - login - password_change/recovery_info_change
+    - Added additional mapped fields
+- [Updated] Google G Suite - login.login
+    - Added additional mapped fields
+- [Updated] Google G Suite - logout
+    - Added additional mapped fields
+- [Updated] Windows - Microsoft-Windows-PowerShell/Operational - 4103
+- [Updated] Windows - Microsoft-Windows-PowerShell/Operational - 4104
+- [Updated] Windows - Microsoft-Windows-PowerShell/Operational - 4105
+- [Updated] Windows - Microsoft-Windows-PowerShell/Operational - 4106
+
+### Parsers
+- [New] /Parsers/System/CommScope/CommScope Ruckus SmartZone
+- [Updated] /Parsers/System/Microsoft/Windows PowerShell-JSON

blog-cse/2025-05-23-content.md

@@ -17,4 +17,4 @@ We've updated the onboarding experience to give you the option to bypass data co
 
 A new **Go to App Catalog** option now appears in the left-hand menu on the data setup page, allowing you to browse integrations and pre-built dashboards before configuring data ingestion. This change makes it easier to explore Sumo Logic’s capabilities without committing to a full setup.
 
-To learn more, check out our [quickstart](/docs/get-started/quickstart) and [signup](/docs/get-started/sign-up/#set-up-data-collection) guides.
+To learn more, check out our [quickstart](/docs/get-started/quickstart) and [signup](/docs/get-started/sign-up) guides.

blog-service/2025-02-25-apps.md

@@ -0,0 +1,12 @@
+---
+title: Bitwarden (Apps)
+image: https://help.sumologic.com/img/sumo-square.png
+keywords:
+  - apps
+  - bitwarden
+hide_table_of_contents: true    
+---
+
+import useBaseUrl from '@docusaurus/useBaseUrl';
+
+We're excited to introduce the new Bitwarden app for Sumo Logic. This app enables threat detection and identification of high-risk events such as vault exports or SSO deactivation, supporting continuous monitoring and accelerating incident response for credential and secret management workflows. [Learn more](/docs/integrations/saas-cloud/bitwarden).

blog-service/2025-05-13-apps.md

@@ -0,0 +1,19 @@
+---
+title: New Sumo Logic Onboarding Experience (Get Started)
+image: https://help.sumologic.com/img/sumo-square.png
+keywords:
+  - onboarding
+  - trial
+hide_table_of_contents: true    
+---
+
+We’ve launched a new **Get Started** onboarding page to help you hit the ground running in Sumo Logic. This personalized hub replaces the previous checklist and guides you through key actions such as:
+
+* Ingesting cloud, SaaS, or on-prem log data with just a few clicks.
+* Exploring Kickstart Data dashboards with simulated real-world insights—no setup needed.
+* Installing curated apps from the App Catalog.
+* Using LiveTail to view real-time logs.
+* Inviting teammates to collaborate.
+* Navigating to the in-app pricing page to upgrade your plan.
+
+This redesigned experience simplifies setup, accelerates time to value, and provides clear next steps to help you make the most of your trial. [Learn more](/docs/get-started/quickstart).

blog-service/2025-05-15-get-started.md

@@ -0,0 +1,12 @@
+---
+title: Akamai CPC Source (Collection)
+image: https://help.sumologic.com/img/sumo-square.png
+keywords:
+  - c2c
+  - akamai-cpc-source
+hide_table_of_contents: true    
+---
+
+import useBaseUrl from '@docusaurus/useBaseUrl';
+
+We're excited to announce the release of our new cloud-to-cloud source for Akamai CPC. This source aims to collect CPC-Configs, CPC-Alerts, and CPC-Alert Details data from the Akamai platform and send them to Sumo Logic for streamlined analysis. [Learn more](/docs/send-data/hosted-collectors/cloud-to-cloud-integration-framework/akamai-cpc-source).

blog-service/2025-05-16-collection.md

@@ -0,0 +1,12 @@
+---
+title: Kaltura (Apps)
+image: https://help.sumologic.com/img/sumo-square.png
+keywords:
+  - apps
+  - kaltura
+hide_table_of_contents: true    
+---
+
+import useBaseUrl from '@docusaurus/useBaseUrl';
+
+We're excited to introduce the new Kaltura app for Sumo Logic. This app enables you to gain valuable insights into the critical aspects of your platform operations, such as total entries, user activity trends, and event distributions, helping you monitor, secure, and optimize your content management strategies effectively. [Learn more](/docs/integrations/saas-cloud/kaltura).

blog-service/2025-05-21-apps.md

@@ -0,0 +1,12 @@
+---
+title: Snowflake Logs Source (Collection)
+image: https://help.sumologic.com/img/sumo-square.png
+keywords:
+  - c2c
+  - snowflake-logs-source
+hide_table_of_contents: true    
+---
+
+import useBaseUrl from '@docusaurus/useBaseUrl';
+
+We're excited to announce the release of our new cloud-to-cloud source for Snowflake Logs. This source aims to collect the row data from the supported global tables (`QUERY_HISTORY`, `LOGIN_HISTORY`, `SESSIONS`, `GRANTS_TO_USERS`, `DATA_TRANSFER_HISTORY`, `STAGES`, and Custom Events) from the Snowflake platform and send them to Sumo Logic for streamlined analysis. [Learn more](/docs/send-data/hosted-collectors/cloud-to-cloud-integration-framework/snowflake-logs-source).