February 10, 2021
Added a new Image Exclusions configuration option to exclude system files from generating events from Windows endpoints. For more information, see Image Exclusions.
Removed shell_history table
The shell_history table has been removed from the default Uptycs seed profiles to optimize memory usage. For more information, see Uptycs Profiles.
User driven security
Enhanced the user driven security (UDS) feature to support macOS, Linux, and Windows endpoints. For more information, see User Driven Security.
AWS event rules
Added AWS event rules (by using dynamic lookup tables) to detect the events generated by the use of new service, country, region, user and exfiltration from the RDS database instance. For more information, see AWS.
Added VirusTotal links in the PIVOTS tab that navigates to the relevant files, domains, and IP addresses that are responsible for the detection. For more information, see Detections.
Added the following API enhancements:
|API||Description (Support to...)|
|/detections||Expose extra columns region, tenantId and tenantName.|
|/destinations||Send alert notifications to S3 buckets.|
|/alertRules||Bulk update API.|
|/eventRules||Bulk update API.|