Web Application 11.23

Owned by Mark Weideman
Dec 06, 2023
2 min read

Features

  • Added the ability to automatically free licenses for inactive agents.

    • This feature is a group setting and options are to automatically free licenses for inactive agents in the group after 30/60/90 days, as well as turning this setting off

  • Whitelist Updates

    • Added the ability to create an exception with the parent program path and arguments

    • Added the ability to create an exception to match extortion responses when there are only trusted certs, match only when there are no related injections, and match only when there is no modified memory

    • Added the ability to create an exception to match specific file access triggers

  • Added the parent program path and arguments to the extortion responses grid

  • Added file hashes to the Extortion Response Details Modal

  • Added new Security Notification alert types:

    • Behavioral Model Tuned

    • New Agent Version

  • Updated the Ransomware Activity alert emails to include a link that will automatically redirect users to the Extortion Responses page with the a filter to show the responses the alert was for

  • Added option to the Agents page chart to only include counts on the chart for agents that have called in over the past 30/60/90 days, and also the option to not limit the counts

  • Added examples on the Rest Integration page of calling to the aws /token endpoint. Examples include calling the endpoint with bash, powershell, and command prompt

  • Updated the permissions for the Incident Manager on the Roles page to only have view/edit for whitelists and silent response rules

  • The deprecated Response Automation Manager was removed from the Roles page

  • Added the Browser Utility Process Tuning Modal to the Whitelists, Silent Response Rules, and Extortion Responses pages

    • Includes the option to select how agents in groups should respond to chrome utility processes

  • Added option to download the agent using a powershell script

  • Added the group setting for agents in the group to run in safe mode

  • Added the OS Name column to the agents grid

  • Fixed issue on certain grids where column widths and order would reset on icon/button clicks on the page

Â