Select Page

RELEASED BUILDS

  • Production: Precinct-master-71, Precinct-master-88

Build published to WitFoo Library due for automatic installation at 7/21/2018 2000 (CST)

FEATURES

  • Licensing calculator now uses artifact ClientIP
  • Artifacts are preserved indefinitely when connected to a lead
  • All report widgets can be maximized for examination
  • Reports can now auto-refresh at user selected intervals (feature request: https://community.witfoo.com/suggestions/updating-dashboard/)

INTEGRATIONS

  • NameD Parser
  • Gin Web Framework Parser

IMPROVEMENTS

  • Elasticsearch, Kibana, Curator and NGINX removed from stack in favor of NDB cluster and native data handling
  • Logstash from 6.3.0 to 6.3.1
  • Kafka from 1.1.0 to 1.1.1
  • Java from 1.8.0_171 to 1.8.0_181
  • Advanced database tweaks in NDB
  • Improved performance
  • Improved retention to 75% of disk on data nodes; no longer constrained by RAM
  • Streaming pipelines can detect and spawn dead threads
  • Relational connection established between leads and artifacts for future purposes of chain of custody
  • Improved logic for data retention and pruning
  • Counters of TCP Flags added to Communication records created from NetFlow

BUG FIXES

  • eStreamer null messages should not be inserted
  • TAXII configuration page not visible
  • Tool calculations inaccurate
  • Connections not showing on Linkboard when viewing host
  • Lead status can be inaccurate

RSS Feed for release notes is: https://community.witfoo.com/category/release-notes/feed/

Email notifications for WitFoo Release Notes can be subscribed to here: http://eepurl.com/dBO0EH