Demisto Content 17.12.1 release

Demisto Content Release Notes for version 17.12.1 (5041)

Integrations

New Integrations

• Secdo
  -- Secdo's automated incident response platform hunts threats in real time and delivers an endpoint detection and response solution

8 Improved Integrations

• McAfee Advanced Threat Defense
  -- Complex fields are now formatted for better readability
• EWS
  -- Supports searching more than 20000 mailboxes
• OpsGenie
  -- Added ability to get all schedules, and to get on-call for future time
• Check Point Sandblast
  -- Added an option to use the integration without API key (for example, when using on premises)
• ServiceNow
  -- Added type ticket (normal, standard, emergency) argument to the create and update commands. Added ticket state argument to the create and update commands. Added Get group details command
• SplunkPy
  -- Supports queries that start with | on splunk-search
• Tanium
  -- Added option to specify Action Group for tn-deploy-action
• VxStream
  -- Added file detonation

Scripts

5 New Scripts

• ContextGetEmails
  -- Gets all email addresses in context
• ContextGetHashes
  -- Gets hashes (MD5,SHA1,SHA256) from context
• ContextGetIps
  -- Gets all IP addresses in context
• DedupIncidentsByML
  -- Scans given incident (or the the incident currently being investigated), for similar incidents in the Demisto platform, if found , will duplicate and close current incident
• listExecutedCommands
  -- Lists executed commands in War Room

2 Improved Scripts

• ADGetGroupMembers
  -- Fixed script failure when user/computer has no groups
• IsIPInRanges
  -- Fixed subnet calculation

Depracated Scripts

• IsIPInSubnet
  -- Use IsIPInRanges instead

Common Utilities Functions

Javascript New Utilities

• formatTableValuesAdded
  -- format Demisto table cells as strings