Anomali continues to innovate with our intelligence-driven solutions. We’re pleased to announce our May Quarterly release, adding direct integrations and enhancements for The Anomali Platform, our cloud XDR solution, and its solutions to ensure our customers can maximize capabilities to receive the full benefits of our detection capabilities.
Key Highlights for this Quarter Include:
Expanding Cloud XDR support with New Direct Telemetry Sources
Enhanced Dashboards for The Anomali Platform
Extended TAXII 2.1 client support for sharing indicators
Granular Dashboard Management in ThreatStream
Health Status Notifications for Threat Intelligence Feeds
Unified Filtering Language across ThreatStream and Integrator
Direct Integrations with Key Endpoint Partners
With this quarterly release, we continue to leverage the power of cloud-to-cloud modern telemetry. We have expanded support for direct integrations with key endpoint vendors, including Microsoft Defender, Crowdstrike, Carbon Black and Amazon Web Services Virtual Private Network .
Users can set up these and many other log sources quickly using the setting interface in The Anomali Platform. The Platform will provide a default data mapping from the log source to our XDR schema which can be easily updated to optimize threat detection.
Screenshot - How a user would map their log source data to the Cloud XDR schema to optimize correlation efficiency.
Enhanced Dashboards
This release also introduces key dashboards that provide multi-dimensional views using our advanced search to provide an instant snapshot of your environment. New dashboards include:
Multi-Dimensional View: presents a number of visualizations showing the occurrence of IOC matches over time, whether by Source Host, Indicator, iType, Severity, Confidence, and more.
Match Analysis View: provides analytics about the threat intelligence feeds, indicator types, indicators, and DGA domains that match events in your netw ..
Support the originator by clicking the read the rest link below.
