New release delivers intuitive intelligence filtering, expanded EDR integration capabilities, and critical security updates for cyber threat intelligence teams.
Analyst1, a leading cyber threat intelligence platform, today announced the general availability of version 2.15.0, bringing significant advances in intelligence filtering, a new CrowdStrike Endpoint Security integration, and a range of analyst experience improvements designed to help security teams work faster and more precisely.
Introducing Precise Filters: Intelligence Discovery at Any Scale
The centerpiece of the 2.15.0 release is Precise Filters, a reimagined intelligence search and filtering experience built to match the complexity of real-world analyst workflows. Precise Filters allow teams to start with a simple filter set and expand it into highly targeted, multi-layered collection requirementsโwithout requiring any query language knowledge.
Also Read:ย CIO Influence Interview Withย Jake Mosey, Chief Product Officer at Recast
Existing filters and saved views carry forward automatically. The feature is available across intelligence collections, dashboards, publication drafts and templates, API keys, and users, making it a platform-wide upgrade to how analysts interact with intelligence data and find what matters most.
New CrowdStrike EDR Integration Expands Detection and Response Workflows
Analyst1 2.15.0 introduces a native integration with CrowdStrike Endpoint Security, enabling security teams to automatically export indicators, manage IOC actions, and ingest CrowdStrike alert activity as indicator hit statistics. Key capabilities include:
โข Export SHA256 file hash, domain, IPv4, and IPv6 indicators directly to CrowdStrike
โข Configure CrowdStrike actions, host groups, severities, and platform targeting
โข Remove indicators in CrowdStrike IOC Management previously created by Analyst1
โข Support for Commercial, EU, and GovCloud CrowdStrike environments
Data Expiration Controls Now Active
The Data Expiration Timeframe (Days) setting is now fully functional for supported indicator feeds and Custom Indicator API Sources. This feature helps organizations maintain cleaner, more relevant indicator collections by automatically removing reporting sources that have not updated or referenced an indicator within a configurable timeframe.
โWith 2.15.0, weโre giving analysts the tools they need to work at the speed of the threat,โ saidย Michael Wenger, Director of Product at Analyst1. โPrecise Filters and the CrowdStrike integration reflect our ongoing commitment to building a platform that removes friction and delivers intelligence where it matters most.โ
Additional Platform Improvements
Version 2.15.0 also includes a range of enhancements across the platform:
โข API v2 now includes sensor endpoints, expanding support for sensor-related workflows
โข Dashboard cards can now be created with precise filters through an updated chart selection workflow
โข Administrators can manage when indicators are marked as active or inactive
โข Security updates include PostgreSQL upgraded to 18.3 and Chromium updated to address multiple CVEs
Catch more CIO Insights:ย CIOs as Ecosystem Architects: Designing Partnerships, APIs, And Digital Platforms
[To share your insights with us, please write toย psen@itechseries.comย ]
