EventTracker 8.3 - Release Notes

The EventTracker engineering team continues to monitor changes in operation management, enterprise applications, and regulation compliance standards. Version upgrades are made based on customer feedback and experience in the field, providing you the best solution possible.

EventTracker 8.3 (Build 9)

  • STIX/TAXII support in EventTracker
  • Support for Identifying unknown/unsafe dormant executable files in the network
  • Remote Agent Installation using smartcard credential
  • Ability to forward syslog messages through EventTracker agent.
  • Option to configure active watch list lookup in alert configuration.
  • Improved chart and map controls.
  • Inclusion of DNS block lists metadata in Borderware (Update ET82U16-009).
  • Agent health check enhancements (Update ET82U16-012)
  • Eventvault explorer, Behavior and Tile Dashboard enhancements. (Update ET82U16-014)
  • In alerts ability to configure an alert only for systems with given asset value under a given system group. (Update ET82U16-019)
  • Enhancement in LFM to consider the date and time mentioned in the log file. (Update ET82U16-022)
  • Enhancement in reporting new activity in behavior. (Update ET82U16-023)
  • Enhancement in Direct Log Archiver to specify different VCP for each configuration (Update ET82U16-028)
  • Enhancement in EventTracker Receiver to support Alert Email Header (Update ET82U16-033)
  • Enhancement in Network monitoring to monitor listening ports (Update ET82U16-036)
  • Enhancement in Change Audit to track additional metadata of changed files. (Update ET82U16-038)
  • Enhancement in loading of attackers map. (Update ET82U16-040)
  • Option to configure “Set As Start Page” during login in EventTracker Enterprise. (Update ET82U16-042)
  • Enhancement in Alert and User Management (Update ET82U17-048)
  • Performance improvement in behavior (Update ET82U17-055)
  • Direct Log Archiver: Option to configure number of files to be processed in a cycle. (Update ET82U17-071)
  • Aerohive WAP
  • AirWatch MDM
  • Blue Coat ProxySG
  • Cisco IronPort WSA
  • ET Honeynet
  • Hyper V
  • IBM AIX
  • iboss
  • Juniper Secure Access VPN
  • Kaspersky Security Center
  • Malwarebytes
  • Microsoft DHCP Server
  • MySQL
  • Nessus
  • Percona MySQL
  • pfSense
  • SEP
  • TippingPoint
  • Vipre AV
  • Barracuda WSG
  • Check Point
  • Cisco IronPort ESA
  • Cisco Sourcefire
  • Citrix NetScaler
  • EMC Isilon
  • Juniper Netscreen
  • Linux MySQL
  • MSSQL
  • PoliWall
  • Suricata
  • WatchGuard XTM
  • Windows MySQL
  • Cisco ASA
  • Cisco Switch
  • Citrix NetScaler-HTTP or Non
  • Exchange
  • Exchange-Mailbox accesses by non
  • Linux
  • Microsoft IIS
  • MSSQL Audit
  • MSSQL Extended
  • Paloalto firewall
  • SonicWALL UTM
  • ZoneDirector
  • Microsoft DNS
  • BIG-IP LTM
  • AirWatch MDM
  • Barracuda WSG
  • Cisco Sourcefire
  • Citrix NetScaler
  • EMC Isilon
  • ET Honeynet
  • IBM AIX
  • Iboss
  • Microsoft DNS
  • Microsoft IIS
  • MSSQL
  • Nessus
  • Percona MySQL
  • PFSense
  • Poliwall
  • Sonicwall
  • Teamviewer
  • TippingPoint
  • Fix for case comparison in alert expressions.
  • Read only admin is able to do behavior reset.
  • Issues in Flex report configuration while choosing more than one parsing rule of same column alias .
  • EventTracker diagnostics: restore is throwing an error, when user tries to restore from backup file.
  • On launching EventTracker Enterprise shortcut it throws security warning message
  • Fix for Category group mapping issue. (Update ET82U16-008)
  • Fix for the issue where EventTracker Agent CPU usage is high. (Update ET82U16-010)
  • Fix for the issue where Vulnerability scanner identifies EventTracker Service as vulnerable. (Update ET82U16-020)
  • Fix for issue where activity data fails to purge in behavior if rule name contains ‘-‘. (Update ET82U16-025)
  • Handling user permission in attackers and targets dashboard. (Update ET82U16-029)
  • Receiver stops with unhandled exception while processing non reporting systems under certain conditions. (Update ET82U16-032)
  • Fix for the issue where LFM events are not updated with suffix name (Update ET82U16-039)
  • Fix for the issue where security channel event reading is delayed. (Update ET82U17-044)
  • Fix for issue in applying agent configuration if systems are reporting with suffix. (Update ET82U17-047)
  • Fix for the issue where Maxmind Database fails to download. (Update ET82U17-050)
  • Fix for issue where NCM filters are not working. (Update ET82U17-051)
  • Fix for the issue where behavior insertion fails after IP Pair activity purge. (Update ET82U17-060)
  • Fix for the issue where LFM events are being truncated. (Update ET82U17-072)