Cyware Situational Awareness Platform

You can now view related TDL content based on MITRE ATT&CK tactics, techniques, and sub-techniques directly from the content details page. Additionally, you can also access the ATT&CK Navigator directly from TDL, facilitating effective threat response strategies.

Experience an improved threat defender content creation process with the option to write custom code. This comes as an addition to the existing options of creating content using categories or uploading files directly from your local device.

If peer review is enabled for you, you can now submit your content to other members (peers) of your organization. Peers may subsequently submit your content to analysts for review. This additional step helps you in verifying and validating your content before it is published.

Access open-source intelligence (OSINT) content supported by Collaborate, now seamlessly integrated into TDL as part of the OSINT Repo.

Seamlessly switch between ATT&CK matrices (Enterprise, ICS, and Mobile) to view relevant alerts, intel submissions, and TDL data.

The ATT&CK Navigator also includes the TDL Heat Map, facilitating the visualization of TDL content associated with the ATT&CK matrices.

Sub-techniques are now supported in the ATT&CK Navigator, which helps you explore alerts, intel, or TDL content associated with specific sub-techniques. This addition can help you with detailed threat analysis and response.

Intel Library is now renamed to Intel Lake in Collaborate.

Sorting is now available for Confidence Score, Created Date, and Modified Date columns in the Intel Lake listing.

You can now view the total number of threat intel objects related to an object in the Relations tab.

You can now view related TDL content based on MITRE ATT&CK tactics, techniques, and sub-techniques directly from the content details page. Additionally, you can also access the ATT&CK Navigator directly from TDL, facilitating effective threat response strategies.

Experience an improved threat defender content creation process with the option to write custom code. This comes as an addition to the existing options of creating content using categories or uploading files directly from your local device.

As an analyst, you can enable the peer review process for members, which enables them to review each other's content before submitting it to analysts. For more information, see Configure TDL.Configure TDL

A few statuses have been introduced in TDL, such as Shared as Preview, Under Analyst Review, Declined by Analyst, and more. This provides improved organization and management of threat defender content.

TDL now features a revamped user interface that includes status widgets, making it easier to identify the number of content in various statuses.

The ATT&CK Heatmap feature is now renamed to ATT&CK Navigator in the Analyst Portal.

You can now seamlessly switch between the ATT&CK matrices (Enterprise, ICS, and Mobile) to view associated alerts, intel submissions, and TDL data.

The ATT&CK Navigator now includes the TDL Heat Map, facilitating the visualization of TDL content associated with the ATT&CK matrices.

Sub-techniques are now supported in the ATT&CK Navigator, which helps you explore alerts, intel, or TDL content associated with specific sub-techniques. This addition can help you with detailed threat analysis and response.