Enterprise Intelligence

Revised Enterprise Intelligence to provide enterprise-aware context for security detections.

Added support for centralized lookup lists, including Allowed Lists, Block Lists, IOC Lists, UEBA Reference Lists, and Operational Intelligence Lists.

Custom detection rules can be written to reference these lists to deliver enhanced detection capabilities, enabling intelligent filtering, contextual enrichment, and improved detection fidelity.

Detections are automatically categorized and tagged based on matched intelligence lists, improving triage efficiency and response prioritization.