Version 19.0.0 - August 2020

Important

Custom alarm policies are no longer supported. The Report Threshold Violation policy can be assigned one notification profile only.

New Features

- New workflow-based user interface (9)

- DDOS: Support IPv6 (12)

- Address data encryption in Scrutinizer (370)

- Initial Collections implementation (371)

- magicbus_fdw: Avro serialization (476)

- Advanced threat intelligence feeds (481)

- SNMP Enterprise MIB support for Viptela (717)

- Support for new VeloCloud information elements (727)

- Use tenant_id for db ROLE (740)

- Require a license key for free mode (780)

- Support for content updates (781)

- Streaming support for customer data lakes (782)

- Host to host flow connection search (783)

- Plixer Replicator integration (784)

- Update the Silverpeak IPFIX information elements (874)

- Advanced security algorithms (903)

- STIXV1 IP watchlist import (1006)

- STIXV2 IP watchlist import (1007)

- TAXII 2 feed support for IP indicators (1008)

- Domain reputation checking (1142)

- JA3 fingerprinting support (1144)

- Machine learning for security-specific events (1152)

- Machine learning for network-specific events (1153)

- New licensed features (1215)

- ML forecasting in Scrutinizer (1256)

- ServiceNow integration (1258)

- CEF notification action (1411)

Fixes

- Failed “system updates” report “no updates available” (541)

- scrut_util.exe –collect asa_acl gives error Use of uninitialized value $debug in concatenation (614)

- Saved Reports Folder changes are not audited (636)

- Insecure Direct Object Reference (749)

- Vitalser Memory Leak (767)

- Define missing Cisco IEs (unknown_9_20000) (820)

- Define the unknown_elements for Viptela IPFIX exports (865)

- scrut_util –collect db_size is timing out (1196)