Web Application
- _General
- Web Application 01.23
- Web Application 04.23
- Web Application 08.23
- Web Application 11.23
- Web Application 04.24
- Web Application 09.24
- Web Application 05.25
- Web Application 12.25
_General
Web Application 01.23
Features
Implemented a cross-link on the extortion responses child grid to view the related process creations and injections.
Implemented user password aging policy for groups.
Added training mode and the ability to reset a parent group’s training data to its original state on the settings page.
Added the Training License page.
Implemented Amazon Cognito Security.
Added the Automation button above grids that reveal operations to perform after clicking the button.
Web Application 04.23
Features
Partner Portal Updates:
Ability to schedule a demo on the Register Deal page
Implemented new Register Deal process with Cyber Crucible Approval of Deals
Added a Deal Prospect Type when registering deals
Added Monthly and Annual Billing Cycle for deals
Implemented sending quotes for Cyber Crucible approved deals through Stripe and signing quotes before completing a deal
Ability to re-send the Stripe invoice for a completed deal
Ability to edit a deal through a modal, similar to the register new deal modal, pre-filled with the deal’s current information
Agent/License Management:
Ability to release licenses from the Agents page in bulk
Ability to assign licenses to agents in bulk on the Agents page
Ability on the Agents page to view and change the automatic re-licensing settings for agents when they call into our rest server without a license
Users can update agents individually and in bulk
Implemented the ability on the Groups page to view a group’s Id and Client Auth values used in the Agent Installer Script
Implemented the ability to copy whitelists to another group
Upgraded to React 18
Added the reset columns and auto-size all columns options to the context menu on grids when right clicking
Added the download Memory Diff File option to the Extortion Responses grid for applicable responses
Implemented state saving for chart visibility
Added new Application columns to the Identity Access grid for the accessed, accessing, and parent programs.
Implemented column mode toggling on each grid for the amount of columns to show. Modes include: Min, Medium, Max, and Custom
Implemented searching/autocomplete ability in Dropdown Select elements with Material UI
Web Application 08.23
Features
Partner Portal Updates:
Added the Demo Videos page to the Partner Portal
Added the ability to create a POC for approved partner deals
Added the Distributor Group Management page to the Partner Portal for Distributor partners to create and manage their subgroups
Added the Payment Management page to the Partner Portal
Added the ability to change a partner deal’s owner
Added a custom memo field for partner deals to show on the Stripe invoices and quotes
Implemented a Remember Me functionality that allows users to stayed logged in
Added a link to view the Stripe Customer Portal where users can manage their subscriptions and payment methods
Added the ability on the Agent Licenses page to change the group of multiple selected licenses on the grid
Upgraded AG Grid to version 29
Updating dependencies to their latest versions
Removed the Automation button above grids that revealed icons and instead placed the icons directly above the grid
Removed the Columns button above grids that revealed the Grid Column State Options and instead placed the Grid Column State Options directly above the grid
Added the ability to resend user account invitations on the Groups page
Added the Canary Extension Mode column to the Groups page
Added more application labeling to the Identity Access page
Added icons and filtering on Identity Access grid to the No Trusted Cert column for “Disconnected Retrieving Cert Info” and “Timed Out Retrieving Cert Info”
Fixed issue on mobile devices with rendering grids
Web Application 11.23
Features
Added the ability to automatically free licenses for inactive agents.
This feature is a group setting and options are to automatically free licenses for inactive agents in the group after 30/60/90 days, as well as turning this setting off
Whitelist Updates
Added the ability to create an exception with the parent program path and arguments
Added the ability to create an exception to match extortion responses when there are only trusted certs, match only when there are no related injections, and match only when there is no modified memory
Added the ability to create an exception to match specific file access triggers
Added the parent program path and arguments to the extortion responses grid
Added file hashes to the Extortion Response Details Modal
Added new Security Notification alert types:
Behavioral Model Tuned
New Agent Version
Updated the Ransomware Activity alert emails to include a link that will automatically redirect users to the Extortion Responses page with the a filter to show the responses the alert was for
Added option to the Agents page chart to only include counts on the chart for agents that have called in over the past 30/60/90 days, and also the option to not limit the counts
Added examples on the Rest Integration page of calling to the aws /token endpoint. Examples include calling the endpoint with bash, powershell, and command prompt
Updated the permissions for the Incident Manager on the Roles page to only have view/edit for whitelists and silent response rules
The deprecated Response Automation Manager was removed from the Roles page
Added the Browser Utility Process Tuning Modal to the Whitelists, Silent Response Rules, and Extortion Responses pages
Includes the option to select how agents in groups should respond to chrome utility processes
Added option to download the agent using a powershell script
Added the group setting for agents in the group to run in safe mode
Added the OS Name column to the agents grid
Fixed issue on certain grids where column widths and order would reset on icon/button clicks on the page
Web Application 04.24
Features
Added the ability to setup and manage proxy configurations to assist in agent deployment. View more about proxy configurations here
Fixed the issue where the horizontal scrollbar at the bottom of our data grids was not visible due to the grid extending beyond the visible screen height
Added the ability on our Telemetry pages to toggle between viewing all telemetry data or only viewing data that was directly related to an extortion response
Added the group setting for automatically hiding agents in the group when a license is released from an agent, an agent is marked as inactive, or an agent completes an uninstall
Added the ability when clicking a link from one of our notification emails to automatically filter data on the related grid to show what triggered the notification
Updated the Agent Licenses chart to show the counts for both Desktop and Server Licenses
Upgraded AG Grid to version 31
Upgraded Ag Charts to version 9
Added more text filter options to our data grids
Added the Customer Deployment Health page (found under the operations tab)
Web Application 09.24
Features
Added to the Agent licenses page the ability to filter expired licenses from the grid and chart by default. This setting can be updated on the toggle above the agent licenses grid
Implemented multi condition filters for a single column on the server side grids. The server side grids are the grids where all the rows are not loaded into the grid on the initial load due to the large amount of rows on these grids: Extortion Response, Process Creations, Process Injections, and Identity Accesses
Added the multi-year option for Deal Registrations. Deals can be up to 3 years in length, and users have the option to pay up front or pay yearly for multi-year deals
Implemented Temporary Tailored Behaviors. View more here
Added new column on the Identity Access grid for Root Cause Analysis
Updating Security Notifications with two different options for offline agent alerts: Partially and Fully Offline agent alerts
Added new columns to the agents grid for the license expiration date and date license assigned to agent
Added the new Group setting for DMZ Mode for agents in the group to follow. DMZ Mode is for environments where online certificate checking is unavailable. Enabling DMZ Mode will embed CA roots locally on agents in the group and disable OSCP
Added the new Group setting for agents in the group to have an agent icon shown on the related agent machine in the system tray, only agents on version 4.4.8.2 and higher have this capability
Added a sidebar to our data grids to easily change column visibility and order
Web Application 05.25
Features
Added SSO integration for our dashboard login with Microsoft Entra ID (Azure Active Directory)
Users must contact Cyber Crucible and complete a few steps found here to integrate Entra ID SSO for their organization with our dashboard login
Distributor Partner Updates
Improvements to the process of distributors associating reseller subgroups and those reseller subgroups registering and completing deals. A more detailed explanation of the improved Distributor Group Management process can be found here
Added a new Sales Notification type for Distributor Partners to receive alerts when their reseller subgroups create a new Deal Registration
Added ability for Distributor Partners to edit the multi year discounts for their reseller subgroups. This can be found on the Distributor Group Management Page
Added the Distributor Approval column to the Deal Registration for Distributors to manage their reseller subgroup deals
Added the Partner in Motion page found under the Partners tab for distributors partners to register reseller subgroup partners that are in the works
Added the Partner Deal Manager to roles for deal registration related operations
Added new sales notification type for Partner Deal POC activity. This alert applies to the new POC group that is created when a partner creates a POC for a deal. Alerts for this type are sent for agent installs/uninstalls and when the POC licenses expire in the POC group
Added the new Agent installer type “Native CLI”
Added the Edit Group Modal on the Group Management page that allows you to edit the group settings in bulk
Upgraded AG Grid to version 32
Adding password visibility toggle/button for login
Web Application 12.25
Features
Added the new AI Firewall Management page found in the Operations tab
DLL Visualization
Added ability to view related module loads for Extortion Responses, Process Creations, Process Injections, and Identity Accesses
A new column was added to these pages that shows if related untrusted module loads were found. When an untrusted module load is found, the cell in this column will show an icon where clicking it will take users to a new page to view all the related untrusted module loads
Added new columns to Extortion Responses and Identity Access grids:
Modified Module Memory
Modified Module Path
Modified Module Original Memory Hash
Modified Module Current Memory Hash
Modified Module Identifier
Process Execution GUID
Pid
Pid Reuse Number
Added to the Extortion Responses grid the “Data Access Attempted” column, which shows the path on the machine where the data access was attempted at
Updated the Extortion Responses page to now have 2 different grid options. The previous grid option for a more condensed view of the extortion responses with the parent and child grid still exists, a new option for removing the parent/child grid and showing all the data and columns on a single grid now exists
Added columns to the Agents grid showing if the agent is fully configured and the date the agent was first fully configured
Added additional columns to the Agents grid for which OAuth Server and REST Server the agent is calling too, and the WAN IPv4 and IPv6 of the agent
Added Co-branded Collateral to the Partners tab that allows partners to download a .zip file containing all the co-branded collateral material
Upgraded AG Grid to version 34
Added the number of days until a license expires to the Agent Licenses page and Agents page. This can be found as an icon in the Renews column on the Agent Licenses page, and the License Expiration Date column on the Agents page
Added a new option to Security Notifications to include a CSV file in the email alert for Ransomware and Identity Access Alerts containing information on why the alert was triggered. This option was added so users can view why an alert happened right in the email without having to login to the dashboard