Release note 3.1.5

For GLIMPS Malware Expert

It is now possible to create external links to your favorite web services (e.g. VirusTotal, MalwareBazaar, private MISP platform…): in the Expert interface, information such as IP, domain, hash… is followed by an icon allowing you to pivot to a web service previously configured by the user in his settings.
Works both as SaaS (for online resources such as virustotal, malwarebazaar, ….etc) or OnPrem for entities hosting their own CTI databases, such as Opencti or ThreatQ.

For GLIMPS Malware Detect

GLIMPS Malware can act directly on the EDR result to speed up alert processing: if the threat is confirmed by GLIMPS, the verdict in the SentinelOne console is now updated to reflect this confirmation, and the “Analysis Verdict” field is then switched to “True Positive”

For GLIMPS Malware Expert

The new OverPower engine unobfuscates and extracts the key elements of a powershell script, providing a clear view of the script’s behavior. This new engine is available in the Expert interface in the dynamic services section of the submission options.

And many more features and fixes! To find out about all our new features, please contact us below.