Lastline Enterprise On-Premises Release Notes

Version 5.0

New features

  • Download page improvements
  • Improved analysis reports
  • Audit log feature
  • HP Tipping Point SMS Integration
  • Minor fixes and improvements
  • Flexible schedule updates

Released appliance versions

As part of this release, we are making available the following versions of Lastline appliances for use on-premise:

  • Lastline Manager version 580
  • Lastline Engine version 580
  • Lastline All-in-one (pinbox) version 580

Download page improvements

The downloads page of the Lastline Enterprise Portal has been enhanced with a number of improvements: - display full URL - display http referer - display filename from HTTP content-disposition header - filter downloads by application protocol (HTTP, FTP) - display name of file that was extracted from an archive

Improved analysis reports

File analysis reports have been improved by adding the following features:

  • the relationship between analysis subjects (processes monitored during the analysis) is shown graphically
  • it is possible to highlight analysis subjects that exhibit specific classes of behaviors (e.g., network activity, console I/O)

URL analysis reports have been improved by adding the following features:

  • the relationship between visited web pages is shown graphically
  • it is possible to download the content of the web pages that were visited during an analysis
  • the report displays the JavaScript code that was dynamically evaluated when visiting the submitted URLs

Audit log

This release introduces an audit log, which collects and displays security-relevant and other critical activities performed on the system.

At the moment, the audit log stores records of user logins on the manager interface. The audit log interface can be accessed in the audit log section of the administration page.

HP Tipping Point SMS Integration

Lastline Enterprise can be configured to react to the detection of malware by sending reputation information for network hosts to an HP TippingPoint SMS server.

Flexible schedule updates

On Premise appliances will be upgraded if the they have automatic updates enabled.

4.8 5.1