Merge branch 'main' into mssp-dashboard

Author: JV0812

blog-cse/2025-08-19-application.md

@@ -0,0 +1,23 @@
+---
+title: August 19, 2025 - Application Update
+image: https://help.sumologic.com/img/reuse/rss-image.jpg
+keywords:
+  - taxii
+  - threat intelligence
+hide_table_of_contents: true    
+---
+
+import useBaseUrl from '@docusaurus/useBaseUrl';
+
+### New TAXII 2 Threat Intelligence Sources
+
+We're excited to announce the following new threat intelligence sources that allow you to collect TAXII feeds with greater ease. These sources are based on the underlying code of our STIX/TAXII 2 Client Source, but are tailored for each of the vendors to facilitate setup:
+* CISA TAXII Client
+* Dragos TAXII Client
+* Nozomi TAXII Client
+* Recorded Future TAXII Client
+* Unit42 TAXII Client
+
+When you set up a source, search for "taxii" and select the tile for the source you want to install:<br/><img src={useBaseUrl('img/security/taxii-sources.png')} alt="TAXII sources" style={{border: '1px solid gray'}} width="800" />
+
+[Learn more](/docs/send-data/hosted-collectors/cloud-to-cloud-integration-framework/stix-taxii-2-client-source/#taxii-2-sources).

blog-cse/2025-08-20-content.md

@@ -0,0 +1,15 @@
+---
+title: August 20, 2025 - Content Release
+image: https://help.sumologic.com/img/reuse/rss-image.jpg
+keywords:
+  - log mappers
+hide_table_of_contents: true    
+---
+
+This content release includes new log mappers to cover additional security finding sources collected via AWS Security Hub.
+
+### Log Mappers
+- [New] AWS GuardDuty - OCSF Finding Events
+- [New] AWS Inspector - OCSF Finding Events
+- [New] AWS Security Hub Coverage - OCSF Finding Events
+- [New] AWS Security Hub Exposure Detection - OCSF Finding Events

blog-service/2025-08-20-apps-extrahop.md

@@ -0,0 +1,12 @@
+---
+title: ExtraHop RevealX 360 (Apps)
+image: https://help.sumologic.com/img/reuse/rss-image.jpg
+keywords:
+  - apps
+  - extrahop-revealx-360
+hide_table_of_contents: true    
+---
+
+import useBaseUrl from '@docusaurus/useBaseUrl';
+
+We're excited to introduce the new ExtraHop RevealX 360 app for Sumo Logic, which enables you to gain real-time visibility into your security hub findings data. This app can help security teams to monitor detection trends, track changes in risk levels, and gain insights into the most frequently observed MITRE techniques, top destination devices, and key targets on the network. [Learn more](/docs/integrations/webhooks/extrahop-revealx-360).

blog-service/2025-08-20-apps.md

@@ -0,0 +1,12 @@
+---
+title: Vectra (Apps)
+image: https://help.sumologic.com/img/reuse/rss-image.jpg
+keywords:
+  - apps
+  - vectra
+hide_table_of_contents: true    
+---
+
+import useBaseUrl from '@docusaurus/useBaseUrl';
+
+We're excited to introduce the new Vectra app for Sumo Logic. This app leverages the Sumo Logic Cloud-to-Cloud [Vectra source](/docs/send-data/hosted-collectors/cloud-to-cloud-integration-framework/vectra-source/) to collect the detections from the Vectra platform. It provides security analysts with visibility into security threats detected across networks, cloud environments, and endpoints. [Learn more](/docs/integrations/saas-cloud/vectra/).

cid-redirects.json

@@ -1479,6 +1479,7 @@
   "/Dashboards-and-Alerts/Dashboards/Chart-Panel-Types": "/docs/dashboards/panels",
   "/Dashboards-and-Alerts/Dashboards/Chart-Panel-Types/Area-Charts": "/docs/dashboards/panels/area-charts",
   "/Dashboards_and_Alerts/Dashboards/Chart_Panel_Types/Line_Charts": "/docs/dashboards/panels/line-charts",
+  "/Dashboards-and-Alerts/Dashboards/Edit-Dashboards-and-Panels/Change-Gridlines-on-the-Y-Axis": "/docs/dashboards/panels",
   "/Dashboards-and-Alerts/Dashboards/Edit-Dashboards-and-Panels/Change-the-Color-of-a-Chart-by-Value-Range-on-the-Search-Page": "/docs/dashboards",
   "/Dashboards-and-Alerts/Dashboards/Edit-Dashboards-and-Panels/Change-the-Color-of-a-Chart": "/docs/dashboards",
   "/Dashboards-and-Alerts/Dashboards/Get-Started-with-Dashboards-and-Panels/03Share-Dashboards": "/docs/manage/security/create-allowlist-ip-cidr-addresses",
@@ -1636,6 +1637,7 @@
   "/cid/10210": "/docs/integrations/saas-cloud/proofpoint-tap",
   "/cid/10202": "/docs/integrations/saas-cloud/mimecast",
   "/cid/12222": "/docs/integrations/webhooks/snyk",
+  "/cid/12223": "/docs/integrations/webhooks/extrahop-revealx-360",
   "/cid/1119": "/docs/integrations/saas-cloud/druva",
   "/cid/10191": "/docs/integrations/saas-cloud/akamai-datastream",
   "/cid/10194": "/docs/integrations/saas-cloud/proofpoint-on-demand",
@@ -1644,6 +1646,7 @@
   "/cid/10211": "/docs/integrations/saas-cloud/microsoft-azure-ad-inventory",
   "/cid/10203": "/docs/integrations/saas-cloud/microsoft-graph-security-v1",
   "/cid/10205": "/docs/integrations/saas-cloud/microsoft-graph-security-v2",
+  "/cid/10212": "/docs/integrations/saas-cloud/vectra",
   "/cid/10206": "/docs/integrations",
   "/cid/10204": "/docs/integrations/saas-cloud/cato-networks",
   "/cid/10198": "/docs/integrations/saas-cloud/microsoft-graph-azure-ad-reporting",
@@ -3239,6 +3242,7 @@
   "/Manage/Connections-and-Integrations/Webhook-Connections/Webhook_Connection_for_Datadog": "/docs/alerts/webhook-connections/datadog",
   "/Manage/Connections-and-Integrations/Webhook-Connections/Webhook_Connection_for_HipChat": "/docs/alerts/webhook-connections",
   "/Manage/Connections-and-Integrations/Webhook-Connections/Webhook_Connection_for_Microsoft_Azure_Functions": "/docs/alerts/webhook-connections/microsoft-azure-functions",
+  "/Manage/Connections-and-Integrations/Webhook-Connections/Webhook-Connection-for-Microsoft-Azure-Functions": "/docs/alerts/webhook-connections/microsoft-azure-functions",
   "/Manage/Connections-and-Integrations/Webhook-Connections/Webhook_Connection_for_Microsoft_Teams": "/docs/alerts/webhook-connections/microsoft-teams",
   "/Manage/Connections-and-Integrations/Webhook-Connections/Webhook_Connection_for_New_Relic": "/docs/alerts/webhook-connections/new-relic",
   "/Manage/Connections_and_Integrations/Webhook_Connections/Webhook_Connection_for_New_Relic": "/docs/alerts/webhook-connections/new-relic",
@@ -3249,6 +3253,7 @@
   "/Manage/Connections-and-Integrations/Webhook-Connections/Webhook_Connection_for_Slack": "/docs/alerts/webhook-connections/slack",
   "/Manage/Connections-and-Integrations/Webhook-Connections/Webhook_Connections_for_Jira": "/docs/alerts/webhook-connections/jira-server",
   "/Manage/Connections-and-Integrations/Webhook-Connections/Webhook_Connections_for_Jira/Webhook_Connection_for_Jira_Cloud": "/docs/alerts/webhook-connections/jira-cloud",
+  "/Manage/Connections-and-Integrations/Webhook-Connections/Webhook_Connections_for_Jira/Webhook_Connection_for_Jira_Server": "/docs/alerts/webhook-connections/jira-server",
   "/Manage/Content_Sharing": "/docs/manage/content-sharing",
   "/Manage/Content_Sharing/Share_Content": "/docs/manage/content-sharing",
   "/Manage/Content_Sharing/Admin_Mode": "/docs/manage/content-sharing/admin-mode",
@@ -3631,6 +3636,8 @@
   "/Send-Data/Sources": "/docs/send-data",
   "/Send-Data/Sources/02Sources-for-Hosted-Collectors/Amazon_Web_Services": "/docs/send-data/hosted-collectors/amazon-aws",
   "/Send-Data/Sources/02Sources-for-Hosted-Collectors/Amazon_Web_Services/AWS_S3_Source": "/docs/send-data/hosted-collectors/amazon-aws/aws-s3-source",
+  "/Send-Data/Source-FAQs/How-to-recurse-through-subdirectories-in-Amazon-S3-bucket-path-expressions": "/docs/send-data/hosted-collectors/amazon-aws/aws-s3-source",
+  "/Send-Data/Using-the-Collection-Page/Processing-Rules/Create-a-Processing-Rule": "/docs/send-data/collection/processing-rules/create-processing-rule",
   "/Send_Data/Hosted_Collectors": "/docs/send-data/hosted-collectors",
   "/Send_Data/Hosted_Collectors/Configure_a_Hosted_Collector": "/docs/send-data/hosted-collectors/configure-hosted-collector",
   "/Send_Data/Local_Configuration_File_Management": "/docs/send-data/use-json-configure-sources/local-configuration-file-management/new-collectors-and-sources",
@@ -3851,6 +3858,7 @@
   "/07Sumo-Logic-Apps/Messaging/ActiveMQ/ActiveMQ-App-Dashboards": "/docs/integrations/containers-orchestration/activemq",
   "/07Sumo-Logic-Apps/22Security_and_Threat_Detection": "/docs/integrations/security-threat-detection",
   "/07Sumo-Logic-Apps/22Security_and_Threat_Detection/Carbon_Black": "/docs/integrations/security-threat-detection/carbon-black-cloud",
+  "/07Sumo_Logic_Apps/22Security_and_Threat_Detection/Zscaler_Web_Security/Collect-Logs-for-Zscaler-Web-Security": "/docs/integrations/security-threat-detection/zscaler-internet-access",
   "/07Sumo-Logic-Apps/24Web_Servers": "/docs/integrations/web-servers",
   "/07Sumo-Logic-Apps/24Web_Servers/Apache/01-Collect-Logs-for-Apache": "/docs/integrations/web-servers/apache",
   "/07Sumo-Logic-Apps/24Web_Servers/Elasticsearch": "/docs/integrations/databases/elasticsearch",
@@ -4023,6 +4031,7 @@
   "/Search/Search_Query_Language/Search_Operators/Geo_Lookup": "/docs/search/search-query-language/search-operators/geo-lookup-map",
   "/Search/Search-Query-Language/Search-Operators/Geo-Lookup-(Map)": "/docs/search/search-query-language/search-operators/geo-lookup-map",
   "/Search/Search_Query_Language/Search_Operators/num": "/docs/search/search-query-language/search-operators/num",
+  "/Search/Search-Query-Language/Search-Operators/sessionize": "/docs/search/search-query-language/search-operators/sessionize",
   "/Search/Search_Query_Language/Search_Operators/outlier": "/docs/search/search-query-language/search-operators/outlier",
   "/Search/Search_Query_Language/Search_Operators/where": "/docs/search/search-query-language/search-operators/where",
   "/Search/Search_Query_Language/Transaction_Analytics": "/docs/search/search-query-language/transaction-analytics",
@@ -4084,6 +4093,7 @@
   "/Send_Data/Installed_Collectors/Configure_Limits_for_Collector_Caching": "/docs/send-data/installed-collectors/configuration",
   "/Send_Data/Installed_Collectors/Supporting_Information_for_Collector_Installation/Set_a_Collector_as_Ephemeral": "/docs/send-data/installed-collectors/collector-installation-reference/set-collector-as-ephemeral",
   "/Send_Data/Sources/02Sources_for_Hosted_Collectors/AWS_S3_Source": "/docs/send-data/hosted-collectors/amazon-aws/aws-s3-source",
+  "/Send_Data/Sources/02Sources_for_Hosted_Collectors/Amazon_S3_Audit_Source": "/docs/send-data/hosted-collectors/amazon-aws/amazon-s3-audit-source",
   "/Send_Data/Sources/02Sources_for_Hosted_Collectors/AWS_IP_Address_Range": "/docs/send-data/hosted-collectors/amazon-aws",
   "/Send_Data/Sources/02Sources_for_Hosted_Collectors/Grant_Access_to_an_AWS_S3_Bucket": "/docs/send-data/hosted-collectors/amazon-aws/grant-access-aws-product",
   "/Send_Data/Sources/02Sources_for_Hosted_Collectors/HTTP_Source": "/docs/send-data/hosted-collectors/http-source",
@@ -4212,6 +4222,7 @@
   "/Solutions/Kubernetes_Solution/15Save_and_share_dashboards": "/docs/observability/kubernetes",
   "/Solutions/Kubernetes_Solution/01Set_up_collection_for_Kubernetes": "/docs/observability/kubernetes/collection-setup",
   "/Solutions/Kubernetes_Solution/02Set_up_collection_for_Kubernetes": "/docs/observability/kubernetes/collection-setup",
+  "/Solutions/Kubernetes_Solution/06Troubleshoot_with_Explore": "/docs/observability/kubernetes/troubleshoot-with-explore",
   "/Solutions/Kubernetes_Solution/08Kubernetes_and_Dashboard_(Beta)!": "/docs/observability/kubernetes/monitoring",
   "/Solutions/Software_Development_Optimization_Solution": "/docs/observability/sdo",
   "/Solutions/Work_from_Home_Solution": "/docs/observability/work-from-home-vpn",

docs/integrations/microsoft-azure/kubernetes.md

@@ -41,6 +41,16 @@ The AKS - Control Plane app collects logs for the following [Azure Kubernetes Se
 
 For more details on Azure Kubernetes Service logs and metrics, refer to the [Azure documentation](https://learn.microsoft.com/en-us/azure/aks/monitor-aks-reference).
 
+## Setup
+
+Azure service sends monitoring data to Azure Monitor, which can then [stream data to Eventhub](https://learn.microsoft.com/en-us/azure/azure-monitor/essentials/stream-monitoring-data-event-hubs).
+
+You must explicitly enable diagnostic settings for each Kubernetes Service you want to monitor. You can forward logs to the same Event Hub provided they satisfy the limitations and permissions as described [here](https://learn.microsoft.com/en-us/azure/azure-monitor/essentials/diagnostic-settings?tabs=portal#destination-limitations).
+
+Sumo Logic supports metrics collection using [Azure Metrics Source](/docs/send-data/hosted-collectors/microsoft-source/azure-metrics-source).
+
+When you configure the Event Hubs source, plan your source category to ease the querying process. A hierarchical approach allows you to make use of wildcards. For example:  `Azure/AKS/ControlPlane/Logs`.
+
 ### Sample log messages
 
 ```json title="kube-audit"
@@ -214,10 +224,8 @@ import MetricsSourceBeta from '../../reuse/metrics-source-beta.md';
 This section walks you through the process of configuring a pipeline to send logs from Azure Monitor to Sumo Logic.
 
 1. To set up the logs collection in Sumo Logic, refer to [Azure Event Hubs Source for Logs](/docs/send-data/collect-from-other-data-sources/azure-monitoring/ms-azure-event-hubs-source/).
-
-	 When you configure the event hubs source, plan your source category to ease the querying process. A hierarchical approach allows you to make use of wildcards. For example: `Azure/AKS/ControlPlane/Logs`.
 
-   Enable the Kubernetes master node logs in Azure Kubernetes Service to send logs to an event hub created in the previous step.
+   Enable the Kubernetes master node logs in Azure Kubernetes Service to send logs to an Event Hub.
 
 2. Push logs from Azure Monitor to Event Hub.
 	1. Sign in to [Azure Portal](https://portal.azure.com/).

docs/integrations/product-list/product-list-a-l.md

@@ -219,7 +219,7 @@ For descriptions of the different types of integrations Sumo Logic offers, see [
 | <img src={useBaseUrl('img/integrations/misc/eset-logo.png')} alt="Thumbnail icon" width="75"/> | [ESET](https://www.eset.com/us/) | Cloud SIEM integration: [ESET](https://github.com/SumoLogic/cloud-siem-content-catalog/blob/master/vendors/ced86de0-64e4-4e7c-ae25-fb5b3dff3cb8.md) |
 | <img src={useBaseUrl('img/integrations/misc/exabeam-logo.svg')} alt="Thumbnail icon" width="75"/> | [Exabeam](https://www.exabeam.com/) | Cloud SIEM integration: [Exabeam](https://github.com/SumoLogic/cloud-siem-content-catalog/blob/master/vendors/9d2d799d-2d6c-4894-a46f-0cce00641bcb.md) |
 | <img src={useBaseUrl('img/platform-services/automation-service/app-central/logos/exploit-database.png')} alt="Thumbnail icon" width="75"/> | [Exploit Database](https://www.exploit-db.com/) | Automation integration: [Exploit Database](/docs/platform-services/automation-service/app-central/integrations/exploit-database/) |
-| <img src={useBaseUrl('img/integrations/misc/extrahop-logo.png')} alt="Thumbnail icon" width="100"/>  | [ExtraHop](https://www.extrahop.com/)  | Cloud SIEM integration: [Extrahop](https://github.com/SumoLogic/cloud-siem-content-catalog/blob/master/vendors/a8b03e2e-7497-4104-874d-cafd03aeb4c1.md) <br/>Community app: [Sumo Logic for ExtraHop Reveal(x) 360](https://github.com/SumoLogic/sumologic-content/tree/master/ExtraHop%20Reveal(x)%20360)  |
+| <img src={useBaseUrl('img/integrations/misc/extrahop-logo.png')} alt="Thumbnail icon" width="100"/>  | [ExtraHop](https://www.extrahop.com/)  | App: [ExtraHop RevealX 360](/docs/integrations/webhooks/extrahop-revealx-360) <br/>- Cloud SIEM integration: [ExtraHop](https://github.com/SumoLogic/cloud-siem-content-catalog/blob/master/vendors/a8b03e2e-7497-4104-874d-cafd03aeb4c1.md) <br/>Community app: [Sumo Logic for ExtraHop Reveal(x) 360](https://github.com/SumoLogic/sumologic-content/tree/master/ExtraHop%20Reveal(x)%20360)  |
 
 
 ## F