Skip to content

What’s New in TeskaLabs LogMan.io v25.15

In this release, you’ll find updates that enhance how you manage lookups, assign risk scores, and replay archived data. Here’s a quick overview of what’s new in version v25.15 and why it matters for your security operations.

Smarter Lookups with Feed Integration

Lookups just got a serious upgrade. We've introduced a completely redesigned UI and a new lmio-feeds microservice that pulls data from threat intelligence feeds and stores it in lookups.

What’s new in the Lookup UI?

  • Import and export lookup entries with ease
  • Create feeds directly from the interface
  • Sort and filter lookup items for faster access
  • Support for special characters in lookup entries

Even better, lookups now support both tenant-specific and global scopes, meaning common indicators like IPs or domains can be shared across environments. You can also assign risk scores to individual items and perform automated tests—like checking for pending Windows tasks—to enrich your threat intelligence.

Risk Scoring

Risk score is an indicator of the severity of a complex security event that helps to triage incidents quickly.

You can now assign risk scores to:

  • Detection and correlation rules
  • Network devices, users or other entities in lookups

This gives your team a faster way to understand the severity security events and prioritize investigations. Risk scores are already visible in events generated by built-in rules, and we’re rolling out more features in upcoming versions.

👉 Learn more: Risk Scoring in TeskaLabs LogMan.io

Archive Replay from the UI

Need to reprocess logs? You can now send archived data back through your detection pipeline or load it into the Discover directly from the UI.

Features include:

  • Event filtering before replay
  • Option to send data for detection/correlation or just for visual analysis
  • No need to leave the browser!

This is ideal for testing new rules, re-analyzing incidents, or onboarding new data sources.

UI Enhancements

We’re continuing our mission to make logs more readable. This release improves how MAC addresses are displayed—complete with a network card icon to help you visually parse key fields faster.

Library Access Control

Library is getting access control. Permissions to folders and files are now managed using granular authorization resources, making it easier to control who can see and edit what.

TeskaLabs LogMan.io Common Library Updates

We’ve added new parsers:

  • Palo Alto Networks
  • Cisco ACI
  • Lenovo XClarityController
  • QNAP NAS

Many existing parsing rules now handle edge cases and formatting variations more gracefully.

We're excited for you to try it out—and as always, we’re here for your feedback.

Happy logging!