Threat Intelligence Utilities
| Version | 1.7.0 (View all) |
| Compatible Kibana version(s) | 8.13.0 or higher 9.0.0 or higher |
| Supported Serverless project types What's this? |
Security Observability |
| Subscription level What's this? |
Basic |
| Level of support What's this? |
Elastic |
The threat intelligence utilities package contains a dashboard that provides a high-level overview of data from all connected TI feeds.
To add the dashboard, click Settings > Install Threat Intelligence Utilities assets.
This integration includes one or more Kibana dashboards that visualizes the data collected by the integration. The screenshots below illustrate how the ingested data is displayed.
Changelog
| Version | Details | Kibana version(s) |
|---|---|---|
| 1.7.0 | Enhancement (View pull request) Update Kibana constraint to support 9.0.0. |
8.13.0 or higher 9.0.0 or higher |
| 1.6.0 | Enhancement (View pull request) Update the kibana constraint to ^8.13.0. |
8.13.0 or higher |
| 1.5.0 | Enhancement (View pull request) Update manifest format version to v3.0.3. |
8.5.0 or higher |
| 1.4.1 | Enhancement (View pull request) Changed owners |
8.5.0 or higher |
| 1.4.0 | Enhancement (View pull request) The format_version in the package manifest changed from 2.11.0 to 3.0.0. Removed dotted YAML keys from package manifest. Added 'owner.type: elastic' to package manifest. |
8.5.0 or higher |
| 1.3.0 | Enhancement (View pull request) Add tags.yml file so that integration's dashboards and saved searches are tagged with "Security Solution" and displayed in the Security Solution UI. |
8.5.0 or higher |
| 1.2.3 | Bug fix (View pull request) Fix the query type for matching 'event.dataset'. |
8.5.0 or higher |
| 1.2.2 | Bug fix (View pull request) Update to use new Threat Indicator Match rule names. |
8.5.0 or higher |
| 1.2.1 | Bug fix (View pull request) Update to use security-solution-default. |
8.4.0 or higher |
| 1.2.0 | Enhancement (View pull request) Update package-spec version to 2.7.0. |
8.4.0 or higher |
| 1.1.0 | Enhancement (View pull request) Include ti_util in threat_intel category. |
8.4.0 or higher |
| 1.0.1 | Bug fix (View pull request) Correcting index-pattern references in dashboard |
8.4.0 or higher |
| 1.0.0 | Enhancement (View pull request) Initial draft of the package |
8.4.0 or higher |