Web Application _General Created by Dennis Underwood on Jan 02, 2023 Document generated by Confluence on May 18, 2026 19:42 Atlassian Web Application 01.23 Features Implemented a cross-link on the extortion responses child grid to view the related process creations and injections. Implemented user password aging policy for groups. Added training mode and the ability to reset a parent group’s training data to its original state on the settings page. Added the Training License page. Implemented Amazon Cognito Security. Added the Automation button above grids that reveal operations to perform after clicking the button. Web Application 04.23 Features Partner Portal Updates: Ability to schedule a demo on the Register Deal page Implemented new Register Deal process with Cyber Crucible Approval of Deals Added a Deal Prospect Type when registering deals Added Monthly and Annual Billing Cycle for deals Implemented sending quotes for Cyber Crucible approved deals through Stripe and signing quotes before completing a deal Ability to re-send the Stripe invoice for a completed deal Ability to edit a deal through a modal, similar to the register new deal modal, pre-filled with the deal’s current information Agent/License Management: Ability to release licenses from the Agents page in bulk Ability to assign licenses to agents in bulk on the Agents page Ability on the Agents page to view and change the automatic re-licensing settings for agents when they call into our rest server without a license Users can update agents individually and in bulk Implemented the ability on the Groups page to view a group’s Id and Client Auth values used in the Agent Installer Script Implemented the ability to copy whitelists to another group Upgraded to React 18 Added the reset columns and auto-size all columns options to the context menu on grids when right clicking Added the download Memory Diff File option to the Extortion Responses grid for applicable responses Implemented state saving for chart visibility Added new Application columns to the Identity Access grid for the accessed, accessing, and parent programs. Implemented column mode toggling on each grid for the amount of columns to show. Modes include: Min, Medium, Max, and Custom Implemented searching/autocomplete ability in Dropdown Select elements with Material UI Web Application 08.23 Features Partner Portal Updates: Added the Demo Videos page to the Partner Portal Added the ability to create a POC for approved partner deals Added the Distributor Group Management page to the Partner Portal for Distributor partners to create and manage their subgroups Added the Payment Management page to the Partner Portal Added the ability to change a partner deal’s owner Added a custom memo field for partner deals to show on the Stripe invoices and quotes Implemented a Remember Me functionality that allows users to stayed logged in Added a link to view the Stripe Customer Portal where users can manage their subscriptions and payment methods Added the ability on the Agent Licenses page to change the group of multiple selected licenses on the grid Upgraded AG Grid to version 29 Updating dependencies to their latest versions Removed the Automation button above grids that revealed icons and instead placed the icons directly above the grid Removed the Columns button above grids that revealed the Grid Column State Options and instead placed the Grid Column State Options directly above the grid Added the ability to resend user account invitations on the Groups page Added the Canary Extension Mode column to the Groups page Added more application labeling to the Identity Access page Added icons and filtering on Identity Access grid to the No Trusted Cert column for “Disconnected Retrieving Cert Info” and “Timed Out Retrieving Cert Info” Fixed issue on mobile devices with rendering grids Web Application 11.23 Features Added the ability to automatically free licenses for inactive agents. This feature is a group setting and options are to automatically free licenses for inactive agents in the group after 30/60/90 days, as well as turning this setting off Whitelist Updates Added the ability to create an exception with the parent program path and arguments Added the ability to create an exception to match extortion responses when there are only trusted certs, match only when there are no related injections, and match only when there is no modified memory Added the ability to create an exception to match specific file access triggers Added the parent program path and arguments to the extortion responses grid Added file hashes to the Extortion Response Details Modal Added new Security Notification alert types: Behavioral Model Tuned New Agent Version Updated the Ransomware Activity alert emails to include a link that will automatically redirect users to the Extortion Responses page with the a filter to show the responses the alert was for Added option to the Agents page chart to only include counts on the chart for agents that have called in over the past 30/60/90 days, and also the option to not limit the counts Added examples on the Rest Integration page of calling to the aws /token endpoint. Examples include calling the endpoint with bash, powershell, and command prompt Updated the permissions for the Incident Manager on the Roles page to only have view/edit for whitelists and silent response rules The deprecated Response Automation Manager was removed from the Roles page Added the Browser Utility Process Tuning Modal to the Whitelists, Silent Response Rules, and Extortion Responses pages Includes the option to select how agents in groups should respond to chrome utility processes Added option to download the agent using a powershell script Added the group setting for agents in the group to run in safe mode Added the OS Name column to the agents grid Fixed issue on certain grids where column widths and order would reset on icon/button clicks on the page Web Application 04.24 Features Added the ability to setup and manage proxy configurations to assist in agent deployment. View more about proxy configurations here Fixed the issue where the horizontal scrollbar at the bottom of our data grids was not visible due to the grid extending beyond the visible screen height Added the ability on our Telemetry pages to toggle between viewing all telemetry data or only viewing data that was directly related to an extortion response Added the group setting for automatically hiding agents in the group when a license is released from an agent, an agent is marked as inactive, or an agent completes an uninstall Added the ability when clicking a link from one of our notification emails to automatically filter data on the related grid to show what triggered the notification Updated the Agent Licenses chart to show the counts for both Desktop and Server Licenses Upgraded AG Grid to version 31 Upgraded Ag Charts to version 9 Added more text filter options to our data grids Added the Customer Deployment Health page (found under the operations tab) Web Application 09.24 Features Added to the Agent licenses page the ability to filter expired licenses from the grid and chart by default. This setting can be updated on the toggle above the agent licenses grid Implemented multi condition filters for a single column on the server side grids. The server side grids are the grids where all the rows are not loaded into the grid on the initial load due to the large amount of rows on these grids: Extortion Response, Process Creations, Process Injections, and Identity Accesses Added the multi-year option for Deal Registrations. Deals can be up to 3 years in length, and users have the option to pay up front or pay yearly for multi-year deals Implemented Temporary Tailored Behaviors. View more here Added new column on the Identity Access grid for Root Cause Analysis Updating Security Notifications with two different options for offline agent alerts: Partially and Fully Offline agent alerts Added new columns to the agents grid for the license expiration date and date license assigned to agent Added the new Group setting for DMZ Mode for agents in the group to follow. DMZ Mode is for environments where online certificate checking is unavailable. Enabling DMZ Mode will embed CA roots locally on agents in the group and disable OSCP Added the new Group setting for agents in the group to have an agent icon shown on the related agent machine in the system tray, only agents on version 4.4.8.2 and higher have this capability Added a sidebar to our data grids to easily change column visibility and order Web Application 05.25 Features Added SSO integration for our dashboard login with Microsoft Entra ID (Azure Active Directory) Users must contact Cyber Crucible and complete a few steps found here to integrate Entra ID SSO for their organization with our dashboard login Distributor Partner Updates Improvements to the process of distributors associating reseller subgroups and those reseller subgroups registering and completing deals. A more detailed explanation of the improved Distributor Group Management process can be found here Added a new Sales Notification type for Distributor Partners to receive alerts when their reseller subgroups create a new Deal Registration Added ability for Distributor Partners to edit the multi year discounts for their reseller subgroups. This can be found on the Distributor Group Management Page Added the Distributor Approval column to the Deal Registration for Distributors to manage their reseller subgroup deals Added the Partner in Motion page found under the Partners tab for distributors partners to register reseller subgroup partners that are in the works Added the Partner Deal Manager to roles for deal registration related operations Added new sales notification type for Partner Deal POC activity. This alert applies to the new POC group that is created when a partner creates a POC for a deal. Alerts for this type are sent for agent installs/uninstalls and when the POC licenses expire in the POC group Added the new Agent installer type “Native CLI” Added the Edit Group Modal on the Group Management page that allows you to edit the group settings in bulk Upgraded AG Grid to version 32 Adding password visibility toggle/button for login Web Application 12.25 Features Added the new AI Firewall Management page found in the Operations tab DLL Visualization Added ability to view related module loads for Extortion Responses, Process Creations, Process Injections, and Identity Accesses A new column was added to these pages that shows if related untrusted module loads were found. When an untrusted module load is found, the cell in this column will show an icon where clicking it will take users to a new page to view all the related untrusted module loads Added new columns to Extortion Responses and Identity Access grids: Modified Module Memory Modified Module Path Modified Module Original Memory Hash Modified Module Current Memory Hash Modified Module Identifier Process Execution GUID Pid Pid Reuse Number Added to the Extortion Responses grid the “Data Access Attempted” column, which shows the path on the machine where the data access was attempted at Updated the Extortion Responses page to now have 2 different grid options. The previous grid option for a more condensed view of the extortion responses with the parent and child grid still exists, a new option for removing the parent/child grid and showing all the data and columns on a single grid now exists Added columns to the Agents grid showing if the agent is fully configured and the date the agent was first fully configured Added additional columns to the Agents grid for which OAuth Server and REST Server the agent is calling too, and the WAN IPv4 and IPv6 of the agent Added Co-branded Collateral to the Partners tab that allows partners to download a .zip file containing all the co-branded collateral material Upgraded AG Grid to version 34 Added the number of days until a license expires to the Agent Licenses page and Agents page. This can be found as an icon in the Renews column on the Agent Licenses page, and the License Expiration Date column on the Agents page Added a new option to Security Notifications to include a CSV file in the email alert for Ransomware and Identity Access Alerts containing information on why the alert was triggered. This option was added so users can view why an alert happened right in the email without having to login to the dashboard