Subscribe
Up until now, searching between the two lists has been inconsistent. To improve your experience we fixed that and you can now perform a multilines search for both objects and observables.
Additionally, we have removed the "Observables" menu from the main navigation as it was redundant.
After months of work we are proud to release the new page for the details of an object!!
To get a faster access to all the context we have around an object the tabs have been moved to the top of the page, right after the header displaying some common informations.
The exploration graph has been moved to a tab, making it easier to start exploring the data through the graph capabilities the platform offers.
A new "Threat Context" tab has been introduced to improve the way we can see the relationships an object has. On the right side we have access to some statistics along with the possibility to filter the table to see only the objects we are interrested in.
After we opened our observables database a few months ago, we went even further and now it is possible to see the observables linked to a given indicator without having to leave the indicator's page!
On the right side of the page we get access to cards, allowing to get from the first look a first context around the object we are currently looking.
We really hope those changes will help you get the best from our Threat Intelligence and we look forward for you to try it :-)
Come and discover the latest improvements made to the playbooks to simplify the settings and the navigation on the creation interface.
Firstly, the aesthetics of the modules modules have been redone. With the idea that they should be more streamlined and accessible, they now fit perfectly into the graph view.
On the configuration side, the panel has been enlarged and you can now decide how big you want it to be.
Morevoer, the text entry fields have been changed to make room for larger areas that you can adjust as you wish.
And to conclude, do not hesitate to test the behaviour of the scroll wheel of your mouse which offers you a more pleasant scroll on the graph of the playbook that you are building
We have redesigned the core configuration of a playbook with visual and functional improvements.
The actions library is more intuitive and intelligible thanks to icons to facilitate the implementation of modules.
The search has also been improved as it now provides more context about the modules and their entities.
Filters can also be used to refine searches.
We have been working for a few weeks on a new visual theme for the SEKOIA.IO application. This new theme is called Purple Rain. A beta version of this new look is now available to everyone.
The current theme will be permanently replaced by the Purple Rain theme in a month. Don’t forget to share your feedback.
To change the theme, go to your profile page and scroll down to the appearance section. Then, select the Purple Rain theme.
The Purple Rain theme includes:
Always having in mind to enhance the user interface to bring more intuitive screens and a more fluid user experience we now propose a display of the playbooks in a card shape.
It is now easier to (de)activate a playbook using a toggle.
The vision on the proceedings of the runs has also been improved thanks to a clearer display of the number of runs per status.
Improving constantly the user experience on SEKOIA.IO, we moved the notification toast to the right bottom of the screen. The new location of these toasts will allow you accessing important information and the navigation at the top of the screen, at any time.
As soon as a new indicator is added to the SEKOIA.IO knowledge base, a systematic search is carried out to check whether this indicator has already been observed in the past. This feature is called retrohunt.
Today, we have improved the retrohunt so that it takes into account the validity date of the indicator (valid_from) to establish the time window of the search.