Version 6.3
Changes
- Expose Indicators of Compromise (IOC)
- Appliance tab added to Analyst web UI
Expose Indicators of Compromise (IOC)
The analysis platform now supports extracting Indicators of Compromise (IOCs) from analysis runs in the Lastline sandbox. This allows the integration of host-based tools supporting IOCs in STIX format, and to verify network events on a potentially compromised machine.
Appliance tab added to Analyst web UI
An additional "appliances"tab has been added to the web portal of an Analyst appliances. This tab offers functionality for:
- displaying the status of appliances
- configuring appliances, or triggering upgrades to the latest version
- displaying system metrics about appliances, such as disk or CPU usage
- displaying appliance logs
- displaying the status of configuration actions on appliances
Released appliance versions
As part of this release, we are making available the following versions of Lastline appliances for use on-premise:
- Lastline Analyst version 607