Posted
Security teams face constant challenges in managing vast amounts of threat data and quickly identifying what matters most. ThreatConnect’s TI Ops 7.7 release addresses these needs with new features like Enhanced Search and Clear Context, designed to streamline threat detection and analysis. By enhancing search precision and consolidating critical information, these updates help teams work more efficiently and respond to threats faster.
Let’s dive into how these features can make a real difference in your daily security operations.
Explore these updates with our TI Ops 7.7 interactive demo
Enhanced Search: Precision in Threat Detection
The latest Enhanced Search improvements provide meaningful capabilities for threat intelligence analysts, with new tools to efficiently navigate datasets, prioritize alerts, and focus on significant threats. By offering advanced filtering and contextual information, this feature helps security teams quickly identify and respond to the most pressing threats.
Key Features:
- Highlighted Matches: The latest Enhanced Search updates now highlight the matches within search results, making it easier to see which fields contain relevant data.
- Advanced Filtering Options: Users can filter search results by matched columns, such as Artifacts, Attributes, Descriptions, Tags, and more. This allows for comprehensive pattern searches and targeted investigations.
- Context Menu Actions: Quick access to relevant actions such as adding items to the exclusion list, exploring in graph view, visualizing ATT&CK tactics, and viewing details directly from the search results.
Streamlined Threat Analysis with Clear Context Features
Threat analysis tools can often be fragmented, requiring users to navigate through multiple clicks and pages to find necessary information. Clear Context addresses this by consolidating critical data into easy-to-find locations. New Clear Context features introduce significant updates into the 7.7 release, aimed at enhancing user experience by providing easily understandable and actionable context for threat analysis.
New Clear Context Features:
- Unified View – Indicator Details Drawer: This feature displays key information such as the earliest date added, owner, last modified date, and more, all in one place.
- Consistent Group Details Drawer UI: Updates to the Group Details Drawer make it consistent with the Indicator Drawer UI, providing clarity and reducing navigation complexity.
Additional Features in 7.7 Release
Wait, there’s more! The 7.7 release includes several other valuable features:
- Intelligence Requirements – Date Filtering: Improved filtering capabilities allow users to filter intelligence requirements by date added and last modified, helping focus on the most recent and relevant data.
- Graph Updates: Users can now add associations to groups and indicators directly within the graph, enhancing visual representation and decision-making.
- Reporting Template Updates: Allows for the presetting of Group Templates with selected attribute types and filters to associate groups and indicators.
TI Ops 7.7 brings practical improvements that help security teams work smarter. Enhanced Search allows for more precise threat detection, while Clear Context reduces the time spent navigating data, letting analysts focus on response. Alongside other updates like Intelligence Requirements filtering and Graph enhancements, these features equip teams to better manage and act on threat intelligence.
If you are ready to see how ThreatConnect can help your organization operationalize threat intelligence, please contact sales@threatconnect.com or request a custom demo today.