Stix-shifter

Changes:

* CLI and coding tutorials [1105](https://github.com/opencybersecurityalliance/stix-shifter/pull/1105)
* Adding RHACS(StackRox) UDI connector [1055](https://github.com/opencybersecurityalliance/stix-shifter/pull/1055)
* Added Utility for normalization of connectors [1078](https://github.com/opencybersecurityalliance/stix-shifter/pull/1078)
* CrowdStrike: Added User-Agent string to API Client for tracking [1064](https://github.com/opencybersecurityalliance/stix-shifter/pull/1064)
* Process unique ID [1051](https://github.com/opencybersecurityalliance/stix-shifter/pull/1051)
* Added matcher lib support for 2.1 [960](https://github.com/opencybersecurityalliance/stix-shifter/pull/960)
* In query Enhancement [1022](https://github.com/opencybersecurityalliance/stix-shifter/pull/1022)
* Infoblox add docstrings for module [719](https://github.com/opencybersecurityalliance/stix-shifter/pull/719)
* Release/3.3.x json to stix [598](https://github.com/opencybersecurityalliance/stix-shifter/pull/598)

Fixes:

* Id contributing properties from json to py [1093](https://github.com/opencybersecurityalliance/stix-shifter/pull/1093)
* splunk: fix STIX timestamp processing [1084](https://github.com/opencybersecurityalliance/stix-shifter/pull/1084)
* Fixing absolute path for id_contributing_properties.json [1079](https://github.com/opencybersecurityalliance/stix-shifter/pull/1079)
* Fix mapping and added hex to int transformer [1068](https://github.com/opencybersecurityalliance/stix-shifter/pull/1068)
* Downgrade boto3 version to 1.21.21 [1036](https://github.com/opencybersecurityalliance/stix-shifter/pull/1036)
* Fix the length of the results of Qradar connector [1034](https://github.com/opencybersecurityalliance/stix-shifter/pull/1034)
* Revert "Change certificate parameter type for consistency" [1031](https://github.com/opencybersecurityalliance/stix-shifter/pull/1031)
* reaqta: enable certification authentication [1028](https://github.com/opencybersecurityalliance/stix-shifter/pull/1028)
* fix configuration in proofpoint and sumologic [745](https://github.com/opencybersecurityalliance/stix-shifter/pull/745)
* Validator review code change for Proofpoint [739](https://github.com/opencybersecurityalliance/stix-shifter/pull/739)

--------------------------------------

Changes:

* Added reaqta from_stix generate script [977](https://github.com/opencybersecurityalliance/stix-shifter/pull/977)
* Change certificate parameter type [1000](https://github.com/opencybersecurityalliance/stix-shifter/pull/1000)
* splunk: add index to options [993](https://github.com/opencybersecurityalliance/stix-shifter/pull/993)
* Best practices document for connector development [986](https://github.com/opencybersecurityalliance/stix-shifter/pull/986)
* Update supported attributes and overview readme [976](https://github.com/opencybersecurityalliance/stix-shifter/pull/976)
* Guardium rel 1.10 [958](https://github.com/opencybersecurityalliance/stix-shifter/pull/958)
* Updated the readme mappings for darktrace. [942](https://github.com/opencybersecurityalliance/stix-shifter/pull/942)
* Added Darktrace UDI connector. [896](https://github.com/opencybersecurityalliance/stix-shifter/pull/896)
* Update table of mappings for ReaQta and IN operator support [937](https://github.com/opencybersecurityalliance/stix-shifter/pull/937)
* Updated the Readme mapping files [932](https://github.com/opencybersecurityalliance/stix-shifter/pull/932)
* Adding SentinelOne UDI connector [888](https://github.com/opencybersecurityalliance/stix-shifter/pull/888)
* Reaqta connector [879](https://github.com/opencybersecurityalliance/stix-shifter/pull/879)

Fixes:

* Fixed unique_cybox_objects storing [1005](https://github.com/opencybersecurityalliance/stix-shifter/pull/1005)
* fallback to random UUID if STIX object contains no defined id contributing properties [990](https://github.com/opencybersecurityalliance/stix-shifter/pull/990)
* error_test timeouts on translate and status [987](https://github.com/opencybersecurityalliance/stix-shifter/pull/987)
* fix two deprecation warnings [940](https://github.com/opencybersecurityalliance/stix-shifter/pull/940)
* splunk: fix mapping of process command line [918] [971](https://github.com/opencybersecurityalliance/stix-shifter/pull/971)
* splunk: fix incorrect dst_ref.value mapping [919] [970](https://github.com/opencybersecurityalliance/stix-shifter/pull/970)
* splunk: fix translation of IN, LIKE, and MATCHES [789] [969](https://github.com/opencybersecurityalliance/stix-shifter/pull/969)
* fix eventType mapping for reaqta connector [967](https://github.com/opencybersecurityalliance/stix-shifter/pull/967)
* Reaqta: Fix network traffic for inbound and mapping update [952](https://github.com/opencybersecurityalliance/stix-shifter/pull/952)
* Remove deprecated SourceImage field from aql search [950](https://github.com/opencybersecurityalliance/stix-shifter/pull/950)
* Reaqta: implemented grater/less fields translation, fixed from_stix fields sorting, fixed unittests [938](https://github.com/opencybersecurityalliance/stix-shifter/pull/938)
* Reaqta Connector:Update mapping and unittest [964](https://github.com/opencybersecurityalliance/stix-shifter/pull/964)
* Fixed stix parsing with setvalue types [907](https://github.com/opencybersecurityalliance/stix-shifter/pull/907)

Dependency update:

* Bump boto3 from 1.21.5 to 1.22.10 [935](https://github.com/opencybersecurityalliance/stix-shifter/pull/935)
* Bump xmltodict from 0.12.0 to 0.13.0 [934](https://github.com/opencybersecurityalliance/stix-shifter/pull/934)
* Bump stix2-matcher from 2.0.1 to 2.0.2 [915](https://github.com/opencybersecurityalliance/stix-shifter/pull/915)

--------------------------------------

Changes:

* Updated mappings for PaloAlto readme [890](https://github.com/opencybersecurityalliance/stix-shifter/pull/890)
* Added Palo Alto Cortext XDR UDI Connector [858](https://github.com/opencybersecurityalliance/stix-shifter/pull/858)
* package utils/normalization [882](https://github.com/opencybersecurityalliance/stix-shifter/pull/882)
* add sample transformer to template modules [870](https://github.com/opencybersecurityalliance/stix-shifter/pull/870)
* Added IN operator for Vision One UDI connector [861](https://github.com/opencybersecurityalliance/stix-shifter/pull/861)
* Update arcsight custom attributes [865](https://github.com/opencybersecurityalliance/stix-shifter/pull/865)
* results metadata support [813](https://github.com/opencybersecurityalliance/stix-shifter/pull/813)
* Template projects rename [854](https://github.com/opencybersecurityalliance/stix-shifter/pull/854)
* doc update for operators and custom transformers [846](https://github.com/opencybersecurityalliance/stix-shifter/pull/846)
* Adding BaseNormalization Class [820](https://github.com/opencybersecurityalliance/stix-shifter/pull/820)
* Add IN operator for sumologic connector [845](https://github.com/opencybersecurityalliance/stix-shifter/pull/845)
* Adding IN operator support to CB connector [835](https://github.com/opencybersecurityalliance/stix-shifter/pull/835)
* Stix validator update [838](https://github.com/opencybersecurityalliance/stix-shifter/pull/838)
* CrowdStrike: Adding IN operator support [842](https://github.com/opencybersecurityalliance/stix-shifter/pull/842)
* Adding changelog [833](https://github.com/opencybersecurityalliance/stix-shifter/pull/833)
* New UDI connector module for IBM Security Verify [802](https://github.com/opencybersecurityalliance/stix-shifter/pull/802)
* Adding connector name in the error responses [824](https://github.com/opencybersecurityalliance/stix-shifter/pull/824)

Fixes:

* use simple setup for mysql endpoints [885](https://github.com/opencybersecurityalliance/stix-shifter/pull/885)
* Mysql tablename fix [868](https://github.com/opencybersecurityalliance/stix-shifter/pull/868)
* RestApiClient in stix-shifter using https mount call [864](https://github.com/opencybersecurityalliance/stix-shifter/pull/864)
* Fixed StixObjectId conversion to string [863](https://github.com/opencybersecurityalliance/stix-shifter/pull/863)
* Fixed stix-validator 3.0.2 usage in translator [851](https://github.com/opencybersecurityalliance/stix-shifter/pull/851)
* remove process_user field mapping from windows-registry-key stix object [850](https://github.com/opencybersecurityalliance/stix-shifter/pull/850)
* Secret server 1.9 [836](https://github.com/opencybersecurityalliance/stix-shifter/pull/836)
* Fixed calculating and updating deterministic IDs and the… [826](https://github.com/opencybersecurityalliance/stix-shifter/pull/826)

--------------------------------------

Changes:

* CrowdStrike connector mapping update [823](https://github.com/opencybersecurityalliance/stix-shifter/pull/823)

Dependency update:

* Downgrade pyopenssl from 22.0.0 to 21.0.0

--------------------------------------

Breaking changes:

* Handling unmapped operators in stix pattern
* Optimization of results translation

Changes:

* Added New connector: Cybereason
* Added Stix 2.1 ids and mapping update in [731](https://github.com/opencybersecurityalliance/stix-shifter/pull/731) [#721](https://github.com/opencybersecurityalliance/stix-shifter/pull/721)
* Added stix-shifter CLI parameters to configure max returned results and saving to a file in [730](https://github.com/opencybersecurityalliance/stix-shifter/pull/730)
* Azure Sentinel Mapping update in [710](https://github.com/opencybersecurityalliance/stix-shifter/pull/710)
* Handling unmapped operators in stix pattern in [744](https://github.com/opencybersecurityalliance/stix-shifter/pull/744)
* Placeholder for datadog certificate in [782](https://github.com/opencybersecurityalliance/stix-shifter/pull/782)
* Proofpoint: Update labels in configuration in [792](https://github.com/opencybersecurityalliance/stix-shifter/pull/792)
* Added Operator list in adapter guide in [804](https://github.com/opencybersecurityalliance/stix-shifter/pull/804)
* Splunk mapping update in [797](https://github.com/opencybersecurityalliance/stix-shifter/pull/797)
* Keep both helper description and the link description in [818](https://github.com/opencybersecurityalliance/stix-shifter/pull/818)
* Optimization of results translation in [718](https://github.com/opencybersecurityalliance/stix-shifter/pull/718)
* QRadar mapping update in [751](https://github.com/opencybersecurityalliance/stix-shifter/pull/751)

Fixes
* Datadog ssl cert fix.[758](https://github.com/opencybersecurityalliance/stix-shifter/pull/758)
* cbcloud: fix ipv4 stix pattern translation [761](https://github.com/opencybersecurityalliance/stix-shifter/pull/761)
* fix configuration in proofpoint and sumologic [745](https://github.com/opencybersecurityalliance/stix-shifter/pull/745)
* Crowdstrike unittest fix [775](https://github.com/opencybersecurityalliance/stix-shifter/pull/775)
* Fix error reponse of ms defender connector [747](https://github.com/opencybersecurityalliance/stix-shifter/pull/747)
* fix: handling zero and non-zero values for the transformers [774](https://github.com/opencybersecurityalliance/stix-shifter/pull/774)
* Fix Proofpoint: avoid mapping error for standard STIX Pattern translation [786](https://github.com/opencybersecurityalliance/stix-shifter/pull/786)
* Proofpoint results connection fix [739](https://github.com/opencybersecurityalliance/stix-shifter/pull/739)
* Fix local build and install [779](https://github.com/opencybersecurityalliance/stix-shifter/pull/779)
* fix collections.abc warning [793](https://github.com/opencybersecurityalliance/stix-shifter/pull/793)
* fix instances of reserved STIX 2.1 id property [819](https://github.com/opencybersecurityalliance/stix-shifter/pull/819)
* Fix category in ecs to be list type [734](https://github.com/opencybersecurityalliance/stix-shifter/pull/734)
* fix debug cli param [735](https://github.com/opencybersecurityalliance/stix-shifter/pull/735)
* fix azure sentinel: Incorrect string conversion of datasource values [771](https://github.com/opencybersecurityalliance/stix-shifter/pull/771)

Dependency update
* Bump stix2-patterns from 1.3.0 to 1.3.2
* Bump flatten-json from 0.1.7 to 0.1.13
* Bump flask from 1.1.2 to 2.0.3
* Bump python-dateutil from 2.8.1 to 2.8.2
* Bump jsonmerge from 1.7.0 to 1.8.0
* Bump colorlog from 4.1.0 to 6.6.0
* Bump adal from 1.2.2 to 1.2.7
* Bump pyopenssl from 20.0.1 to 22.0.0
* Bump stix2-validator from 1.1.2 to 3.0.2
* Bump boto3 from 1.17.20 to 1.21.5 4.0.0 (2022-02-23)