5.x releases

New features and enhancements for the 5.x Anvilogic platform releases.

See What's New for a summary of the most recent releases and their new features and enhancements.

Release 5.9.1

August 17, 2023

This release introduces health insights to notify you when detections fail to run.

Release 5.9

August 10, 2023

This release provides the following new features and enhancements:

  • Ability to ingest custom raw data into Snowflake. Each field from the raw log is extracted as a table column in Snowflake.

  • Enhancements to the Hunt experience, including the following:

    • Ability to add multiple events of interest (EOIs) to evidence with a single step.

    • Improved performance dealing with issues related to timeouts and maximum number of entries.

Release 5.8

July 27, 2023

This release provides the following new features and enhancements:

  • A guided onboarding workflow so new customers can integrate the Anvilogic platform with Splunk, perform key actions, and start getting detections.

  • Added the following third-party vendor alert integrations:

    • GitHub Dependabot ALerts

    • Wiz.io Alerts

  • Ability to add to an allow list from the event viewer in Unified Detections.

  • Validation for threat scenario deployment so make sure that any dependent threat identifiers and their dependent macros are also available and deployed.

Release 5.7

June 29, 2023

This release provides the following new features and enhancements:

  • A guided onboarding workflow so new customers can integrate the Anvilogic platform with Splunk or Snowflake, perform key actions, and start getting detections.

  • A scratchpad is added to the Unified Detections canvas so you can create custom SQL queries and save your own macros.

  • MITRE mapping for third-party vendor integration data is improved to consider the data categories mapped in your environment.

Release 5.6

June 15, 2023

This release provides the following new features and enhancements:

  • Ability to ingest Google Security Command Center vendor alerts.

  • After you integrate the Anvilogic platform with Snowflake, you can view details of the integration, such as the connected Snowflake instance and search commands.

  • Improvements to Hunt and Investigate.

  • Usability enhancements and bug fixes.

Release 5.5

June 2, 2023

This release provides the following new features and enhancements:

  • When you deploy a rule in a threat identifier, a new workflow validates and checks for dependent macros before the rule is deployed.

  • The Anvilogic platform provides recommended follow-up tasks upon completion of certain workflows, such as building and deploying content, maturity score updates, and investigations.

Release 5.4

May 18, 2023

This release provides the following new features and enhancements:

  • Ability to ingest Tanium Cloud endpoint vendor alerts.

  • Usability enhancements and bug fixes.

Release 5.3

May 4, 2023

This release adds the ability to ingest Microsoft Defender logs into Snowflake and enable Anvilogic detections.

Release 5.2

April 20, 2023

This release includes the following new features and enhancements:

  • New Hunt pages to help you drill down and investigate your hunting insights, or start a new hunt from scratch.

    • Add evidence to any hunt to create a threat trail.

    • Generate a PDF report of any hunt.

    • Save and revisit your hunts at any time.

  • Ability to ingest AWS Cloudtrail logs into Snowflake and enable Anvilogic detections.

  • The tactics, techniques, and threat groups on the Anvilogic platform are updated to support the latest version of the MITRE ATT&CK framework.

This may have impact on your threat priorities, maturity score, and MITRE mappings within existing threat identifiers and threat scenarios. Any impacted threat scenarios are queued for deployment. Ensure that you deploy them, if you do not have auto-deploy turned on.

Release 5.1

April 6, 2023

This release includes the following new features and enhancements:

  • The home page is updated to highlight prioritized trending topics, personalized tasks and recommended content for the user who is logged in, and actionable insights.

  • Stylistic enhancements on the Maturity Score history page.

Release 5.0

March 30, 2023

This release provides a unified searching capability so you can create threat identifiers across multiple connected data repositories.

Last updated