The Anomali team continues to work with our customers to add their needed capabilities. With our August release, we’ve introduced new capabilities that continue our Focus to Enable Enterprise Organizations to Stay A Step Ahead of Adversaries.
Key Highlights for this Quarter Include:
Creating Extended Visibility with Anomali and MITRE ENGENUITY
Routine task automation accelerating analyst mean-time-to-respond
Scheduled Retrospective Search
Automated Response for The Anomali Platform
Lens + Support for MITRE ATT&CK Enterprise v10 and v11
Simplified installation of Integrator 8.1
Anomali Attack Pattern Detection and MITRE ATT&CK®:
In 2021, Anomali joined MITRE Engenuity’s Center for Threat-Informed Defense to collaborate on the Attack Flow Project to better understand adversary behavior and improve defensive capabilities. This partnership culminated with the public release of the project in March 2022.
The Attack Flow project will provide context around adversary behavior and help security teams expertly profile the adversary. It will also enable them to protect the organization better before an attack, detect it in real-time, and respond post-attack.
I’m excited about this project and the things to come. Listen below to an excerpt from our recent webinar explaining the project.
Routine Workflow Automation:
Customers are always looking for solutions that make their life easier. This release introduces the first phase of our Routine Task Automation Framework within ThreatStream Cloud that adds support for the automation of routine analyst tasks.
This first phase allows users to define an enrichment routine that can be triggered against a given indicator in an investigation. Users can create multiple automated routines to build up a library of regular workflows to create one-click actions instead of an involved sequence of enrichment pivots or transforms.
Users can also s ..
Support the originator by clicking the read the rest link below.
