The Defensys company announces the latest version of its Threat Intelligence Platform – Defensys TIP. In v. 2.20 the vendor expanded the list of integrations with security feeds providers and the list of IoC enrichment services. There are also some enhancements in the process of integration with Defensys SOAR.
One of the key features in v. 2.20 is related to the more comprehensive tuning of enrichment services. Now users can manually set the time-to-live for the enrichment data not only by days, but also by hours and minutes. This helps to update the IoC data and to analyze TI data more precisely. Also there is some redesign of the enrichment interface block to work with data from different sources with the unified approach. Furthermore, there was the update of the integration with OPSWAT Metadefender.
Besides the other updates there is an improved logics of the user interface. Alerting rules and integrations are combined into one block that make the delivery of data to the Defensys SOAR more easy enabling to do both of these actions simultaneously. Also a user can choose the way to group events: by the rule or by the IoC value before this data goes to the SOAR. One more improvement helps analysts to receive the information related to all the activities that took place during the particular incident: now there exist activity types related to the incident ID that came from the SOAR in the IoC card.
“We don’t stop improving the technical performance of the system and aspire to make the user experience more convenient and effective. In the nearest version of TIP we will continue to expand the integration capabilities of the platform and also we’re planning to finaly release the feature for user to customize the IoC rating calculation model.” – says Andrey Chechetkin, Deputy CEO of Defensys.