.png?width=700&height=200&name=logo-binalyze-reversed%20(1).png){kind=logo}
Welcome to our monthly product updates roundup! Here’s a rundown of the new features and solutions we released in the past month that you can now take advantage of.
In the past month we released two new products to our lineup to cover all your evidence collection needs; ACQUIRE, a forever free digital evidence acquisition tool, and TACTICAL, the ultimate upgrade of IREC.
ACQUIRE gives you the following product feature highlights:
You can download it now from www.binalyze.com/acquire.
Designed as a natural successor to IREC, TACTICAL collects more than 120 types of digital evidence in less than 10 minutes. In addition, it comes with new features such as offline mode and remote evidence acquisition.
Here are the product feature highlights:
You can download it from www.binalyze.com/tactical
After the first release of our Timeline feature, we started getting good feedback regarding the ease of use, simple UI/UX, and robust feature set. Along with that, we also received quality feedback for further enrichment of the timeline feature, so the first in line was – CSV import.
With the latest AIR release, we have enriched the Timeline capability with the CSV import feature that gives you the possibility to upload your own CSV file and start analyzing the uploaded data on your AIR Timeline. These CSV files can be collected from your cloud platform, firewall logs, or anywhere else. The source doesn’t play any role here. The important thing is that you can upload and start analyzing CSV files quickly and in a simple, collaborative way.
You can download the new version here.
DRONE v1.3.0 release highlights:
Starting from this version, you can provide a list of events for your investigation, and DRONE will automatically enumerate them in the provided time frame.
Now you can have your watchlist of events that you want to prioritize when you investigate a case.
The supported time units are day, week, month, and year.
With this version, you can submit all your findings to your Syslog server when you run DRONE from the command line. This automates your investigation process even more by giving you the possibility to run DRONE remotely, integrate it with your Syslog server and collect all the findings in one central location.
With this version, you can entirely execute DRONE from the command line. By default, the outputs will be saved to a JSON file and the command line.
From now on, we support Sigma repositories, publicly available Sigma rules embedded into DRONE. Typically, these Sigma rules are designed to be executed or scanned on SIEM logs but with DRONE, you can find these IoC’s on a live machine.
If you already have DRONE, just execute the product, and it will automatically download the new version to use the new feature set right away.
If you would like to try DRONE for the first time, please visit www.binalyze.com/drone.
Which of these new updates and solutions will you be trying today? See you next month for more.
Amina Zilic : Nov 19, 2021 2:16:02 PM
Compromise assessment is an analysis of a network of endpoints or a single endpoint to uncover unknown security breaches, malware, and any sign of...
Amina Zilic : Nov 11, 2021 7:26:02 PM
UPDATE 15.11.2021.
Microsoft patches actively exploited Exchange, Excel zero-days (CVE-2021-42321). Please refer to their site for more details.
...
Amina Zilic : Nov 3, 2021 9:59:03 AM
When we plan our incident response strategies and forensic readiness steps, we strongly pay attention to digital evidence acquisition, storage,...
