ObjectSecurity OT.AI Platform | v2.0.0 Release Notes

Modified on Tue, 02 Jan 2024 at 01:58 PM

What's New - v2.0.0. Previous version Release Notes can be accessed here.

ObjectSecurity OT.AI Platform General Release v2.0.0 adds a number of new features, functions, and enhancements that greatly improve performance and add value to the Binary Vulnerability Analyses. Enhanced features include Reporting, Weak Pointers Analysis, and Offensive Binary Analysis Deep Dive. In addition, a new pricing option has been made available.

TABLE OF CONTENTS

What's Changed with This Release
New Pricing Option
Feature Details

What's Changed with This Release:

What's New:

Added the ability to generate custom PDF vulnerability reports for assets.
Added the ability to generate custom PDF vulnerability reports for facilities.
Added the dashboard system stats, including CPU and memory usage.
Added the ability to ingress binary files for analysis from an S3 bucket.

What's Updated:

The assessment queue has been updated to display the percentage completion for every assessment conducted per binary.
The assessment queue has been updated to enable users to re-prioritize assessments, binaries, and assets in the queue, stop assessments, stop binaries, and stop assets.
The Deep Dive Page has been updated to enable the user to jump between functions in the disassembler and decompiler.
The CVEs table has been updated to enable sorting by different columns.
The pricing option allows instances to be configured by the binary scan or asset.
Weak Pointers now have an associated confidence score.
Weak Pointers may now be added to the Binary Scan Analysis Report. You can learn about Weak Pointers here.

New Pricing Option

Pay Per Binary Scan: With the Pay Per Binary Scan pricing option. This pricing option is ideal for customers focused on Binary scans versus assets.

Feature details

New Feature: Custom Binary Scan Analysis Vulnerability Reports for Assets in PDF Format

With the addition of the Custom PDF Vulnerability Reports for Assets feature, the user may now generate customized reports for an asset. The asset reports are customizable and allow users to select information per binary to include in their asset report.

New Feature: Custom Binary Scan Analysis Vulnerability Reports for Facilities in PDF Format

With the addition of the Custom PDF Vulnerability Reports for Facilities feature, the user may now generate customized reports for a facility. The facility reports are customizable and allow users to select information per asset to include in their report.

New Feature: Pricing Option Usage Indicator by Number of Binary Scans or Number of Assets

With the addition to the per binary scan basis, the indicators now change to reflect which pricing model you have selected.

New Feature: Resource Usage Indicators (On-Prem, Offline VM Edition Only)

With the addition of the Resource Usage Indicators, the user may now observe the resource consumption of the ObjectSecurity OT.AI Platform on screen.

New Feature: S3 Bucket Binary File Ingress Option

With the addition of the S3 Bucket Ingress feature, the user may now upload binaries to an asset directly from an AWS S3 bucket. Connecting an S3 bucket to the ObjectSecurity OT.AI Platform allows users to create workflows to conduct analyses without manually uploading files.

Updated Feature: Analyses Progress Status Displayed for Each Active Binary Scan Assessment

With the addition of analysis progress indicators, the user has even further visibility on individual test progress. They can also re-prioritize assessments (see reordering below).

Updated Feature: Active Asset Binary Scans, Individual Binary Scans, and Assessments can be Reordered During Processing

With the addition of the queue reorder feature, the user may now reorder analyses, binary, and assessment positions in the queue after they've been added. This enables the user to prioritize which analyses are completed first. If a user is more concerned with one assessment finishing before another, this feature allows them to have that flexibility and control the flow of assessment completion.

Updated Feature: Offensive Binary Analysis, Deep Dive Tool, Now Supports Jump-To Functions

With the addition of the deep dive jump-to-function feature, the user can seamlessly navigate between functions and instructions in the disassembler and decompiler. The deep dive jump-to-function feature introduces the ability to leap directly between instructions in the disassembled view and their corresponding functions in the decompiled view.

New Function: CVE Table Now Supports Sort by Column

With the addition of the sort-by-column for CVEs feature, the user may now view CVE results in their chosen order. CVE results are sortable by CVE name, risk level, and product vendor.

New Feature: Weak Pointer Analysis Can Be Added to the Binary Scan Analysis Vulnerability Reports

Adding the Weak Pointers Analyses Results to Reports gives users more flexibility to create an advanced and all-encompassing vulnerability report.

New Feature: Weak Pointers Analysis Provides Confidence Score

With the addition of the Weak Pointers Analysis Confidence Score, the user now has insight into the exploitability of a given Weak Pointers path. The confidence score adds extreme value in determining if a weak pointer path is exploitable. A high confidence score indicates a Weak Pointers path is confirmed with no false positives or false negative results.