Release Notes

This document provides the most recent summaries release notes for Zercurity.

06/07/2019

  • Added G-suite integration is now publicly available
  • Added more Windows event parsing/handling to SIEM with improved event tagging
  • Updated Osquery to 3.4.0
  • Fixed Windows MSI now works for non-english installations
  • Fixed a bug where not all packages would be displayed on both the dashboard and packages page
  • Fixed an issue with the Hawk API not accepting API keys as they weren’t encoded.

01/06/2019

  • Added API Key support using the Hawk authentication method. Please see our API docs for more information https://api.zercurity.com/
  • Fixed a bug when creating new users that would cause the page to go blank

28/05/2019

  • Added a new asset login section. This section details all the local and remote login sessions made against the asset. This view also includes the processes and commands run during the session.
  • Added better error handling around user signups
  • Added the ability to run distributed queries via teams
  • Added the ability to download invoices from the billing section
  • Added Geo-location to both assets, asset login history and asset location history even if no wifi survey is available.
  • Added the ability to now label discovered assets to help inform network connections
  • Improved page loading around assets and process exploration
  • Improved the billing page to express the minimum and maximum billing for assets
  • Fixed some issues around the processes explorer incorrectly identifying socket sessions
  • Fixed password complexity test when resetting a user’s password via password reset request

14/04/2019

  • New user interface. Menus have been moved the the left hand toolbar.
  • Added breadcrumbs to help navigate investigation workflows.
  • Added process explorer to see a processes execution tree, including the risk of each parent process. Useful for post-breach investigations.
  • Added socket tracking for processes. You can now see all the network connections made by a given processes. Network risk will be tracked in an upcoming release.
  • Process execution states are now tracked correctly based on whether binaries are known or unknown.
  • Assets, applications, packages etc. All now have individual risk categories; Overall risk, outdated, vulnerabilities and malicious risk.
  • Top level sections; assets, applications, packages etc. Are now sortable.
  • Fixed weekly report calculations for week-on-week percentile comparisons.
  • Fixed error handling on fields to correctly show the reported error message.
  • Fixed the MacOSX installer to work with MDM deployments such as JAMF.
  • Updated javascript libraries.

18/03/2019

  • New user interface. Menus have been moved to the left-hand toolbar.
  • Added breadcrumbs to help navigate investigation workflows.
  • Added process explorer to see a processes execution tree, including the risk of each parent process. Useful for post-breach investigations.
  • Added socket tracking for processes. You can now see all the network connections made by a given process. Network risk will be tracked in an upcoming release.
  • Process execution states are now tracked correctly based on whether binaries are known or unknown.
  • Assets, applications, packages etc. All now have individual risk categories; Overall risk, outdated, vulnerabilities and malicious risk.
  • Top level sections; assets, applications, packages etc. Are now sortable.
  • Fixed weekly report calculations for week-on-week percentile comparisons.
  • Fixed error handling on fields to correctly show the reported error message.
  • Fixed the MacOSX installer to work with MDM deployments such as JAMF.
  • Updated javascript libraries.

26/10/2018

  • Added new compliance dashboard for BETA availability.
  • File integrity monitoring (FIM) support is now available to everyone.
  • Fixed some spelling and grammar mistakes.
  • Updated javascript libraries.

10/09/2018

  • Added support for Mac OSX apple system logs, Linux syslog and Windows events. Zercurity now agregates all these events into one place.
  • Added a new assets view that highlights outstanding compliance issues.
  • Updated the osquery test suite to 3.2.6
  • Fixed an issue that caused mac OSX machines to enroll slowly when downloading rulesets.
  • Fixed some issues with shareable links. Which sometimes didn’t load due to the browser caching the response.

27/06/2018

  • Updated the Osquery results tab to allow you so share the results of a query.
  • Updated the way tabbed sections work so that REST API requests are abandoned if the user navigates away.

19/06/2018

  • Added packages pane. Just like with applications, you can now see and search all of your packages in one place.
  • Added new search filters, to help quickly sort through items. For example; you can now filter results to just high risk items.
  • Updated the dashboard. New fresh look with quick links to high risk items.
  • Updated the login lockout window. Now provides a more helpful error message.
  • Moved to the Nivo charting library.
  • Fixed an API issue with the /teams resources. Sometimes not showing teams after an asset had been removed.

14/06/2018

  • Added an event for new application installations.
  • Added an event for new package installations.
  • Added remediation information and actions for malicious applications and packages.
  • Added email alerts for when an assets risk profile changes. These notifications can be disabled from the user settings pane.
  • Updated device events for newly attached devices. Old device events have been removed but can be found under device audit.
  • Fixed package version ordering information as sometimes the order was incorrect.

04/06/2018

  • Upgraded Osquery to 3.2.6
  • Upgraded Google Santa to 0.9.26 and added signed MDM config for OSX
  • Fixed a UI bug when creating a new Santa rule that would cause the screen to go white.

28/05/2018

  • Added vulnerability information to packages that are installed on Ubuntu and Debian assets.
  • Updated certificates section to paginate applications, rather than the top 50.
  • Updated devices section to paginate assets, rather than the top 50.
  • Updated our email templates for GDPR compliance.
  • Updated out documentation to reflect the /packages API.
  • Upgraded UI JS components to the latest versions.
_images/28052018_package.png

14/05/2018

  • Added intercom support so that users can message us with feedback and support questions.
  • Added support to unsubscribe from email alerts and newsletters.
  • Added wifi support to network interfaces under windows.
  • Upgraded UI JS components to the latest versions.
  • Fixed an issue with duplicating packages under windows.

Older release information has been pruned.