📢 Read the latest Release Notes to learn what's new on Hunters! 💡

Release Notes - May 2026

New
  • Updated on May 18, 2026
  • Published on May 16, 2024
Prev Next

Product

Democratize Data — Private Preview Expansion

The Democratize Data private preview is expanding with new capabilities that let you bring custom data into the Hunters platform.

You can now onboard data from your own S3 buckets directly into Hunters. Once ingested, your data is automatically mapped to the OCSF (Open Cybersecurity Schema Framework) data model, making it immediately available for detection and investigation workflows without manual schema configuration.

This means security teams can analyze data sources that aren't covered by built-in integrations, while maintaining full compatibility with the Hunters detection engine.

To participate in the preview or for any related questions, please contact us.

Pathfinder - Organizational Context - private preview

We are pleased to announce the upcoming private preview of the new Pathfinder organizational context capability rolling out.

This feature will enhance investigations by allowing you to add relevant organizational context for Pathfinder to utilize.

During this preview phase, you will be able to manually create this context. Future plans include capabilities for Pathfinder to automatically generate organizational context.

To participate in the preview or for any related questions, please contact us.

Hunters portal navigation bar

We've restructured the Hunters platform navigation to make it easier to find what you need.
The sidebar now groups pages by workflow and persona rather than legacy product boundaries.

This change will be rolled out soon.

We've added a direct Detector settings link beside the detector title within the alert detail panel. This allows you to quickly access the

specific configuration of a detector during triage, providing analysts with immediate context without navigating away from the alert.

Enrichments

Enrichment descriptions are now visible when clicking the question mark button next to the enrichment title.

Security Content

Deprecated detectors

Windows account locked

As part of an ongoing quality monitoring, this detector was found to be very noisy and inaccurate.
This detector will be replaced by a new drilldown that will present recent lock and unlock events for Windows users. In addition, a new scoring model will increase score in case the Windows user was recently locked.
The deprecation time is planned for May 24, 2026.

Integrations

New Integrations Releases:

  1. Cloudflare Magic IDS

  2. Zscaler Deception

  3. BeyondTrust Privileged Remote Access

  4. ServiceNow System Logs

  5. ServiceNow Outbound HTTP Logs

  6. ServiceNow Incident Logs

  7. ServiceNow System Events Logs

  8. ServiceNow User Session Logs