Falcon Next-Gen SIEM Data Sink

Released on 10/22/2025

• Gzip compression is now always used.

Released on 10/09/2025

• Added 443 as default port

• Added support for fields in json format

• Changed raw Content-Type to text/plain

• Removed "Splunk " token prefix and added "Bearer " if not present

• Removed Splunk specific parameters (channel, host, index, source, sourcetype)

Released on 09/10/2025

Initial version