Hello Everyone,
Further to the Analyse It! Introduction, this thread will serve as a changelog.
I've been busy converting Analyse It! to a tool that provides benefits foe everyone - user or pro.
Analyse It! is now no longer in alpha, but in a beta stage.
I am designing Analyse It! with love for the community and not because I was asked/forced to and I think this is clearly visible, just by looking at the UI.
In line of this, many changes have been implemented.
General changes:
Improved caching, modal state management and UI.
Introduced VirusTotal and Hybrid Analysis upload
the process is simple - if 404 is returned (nothing for the file), it will be uploaded. if not, existing reports are pulled.
Introduced Secure Mode through CloudFlare worker
professional analysts or users with paid access to apis can protect them against abuse by using a CloudFlare worker as a backend. The API keys are stored in the CloudFlare worker and nowhere else. They do not leave the machine with every request.
In addition, the application security has been hardened.
Introduced IoC manager
For users who may be doing threat hunting, IoCs from samples can be added under the manager and then exported.
Improved Mitre ATT&CK Matrix - no longer a table but a proper matrix
Now for the users who are not pros
Context-aware heuristic + AI analysis
File origin plays a keyrole in the analysis flow
Overall Threat Factor tab
Uses heuristics to combine multiple verdicts into a single actionable score
Behavioural Scoring
Uses AI to analyse the VT sandbox reports and deloivers clear verdict. Furthermore, the behavioural report UI has been streamlined.
AI Verdict Control
Users can choose verdict lengths and level of detail that suits them.
VirusTotal Deduplication and Interpretation heuristics
Helps users interpret the VirusTotal report and mitigates false positives.
This can be controlled in settings.
PDF Generation
The results can be easily exported and shared with a more knowledgeable person, IT admin or antivirus company support agent.
Further to the Analyse It! Introduction, this thread will serve as a changelog.
I've been busy converting Analyse It! to a tool that provides benefits foe everyone - user or pro.
Analyse It! is now no longer in alpha, but in a beta stage.
I am designing Analyse It! with love for the community and not because I was asked/forced to and I think this is clearly visible, just by looking at the UI.
In line of this, many changes have been implemented.
General changes:
Improved caching, modal state management and UI.
Introduced VirusTotal and Hybrid Analysis upload
the process is simple - if 404 is returned (nothing for the file), it will be uploaded. if not, existing reports are pulled.
Introduced Secure Mode through CloudFlare worker
professional analysts or users with paid access to apis can protect them against abuse by using a CloudFlare worker as a backend. The API keys are stored in the CloudFlare worker and nowhere else. They do not leave the machine with every request.
In addition, the application security has been hardened.
Introduced IoC manager
For users who may be doing threat hunting, IoCs from samples can be added under the manager and then exported.
Improved Mitre ATT&CK Matrix - no longer a table but a proper matrix
Now for the users who are not pros
Context-aware heuristic + AI analysis
File origin plays a keyrole in the analysis flow
Overall Threat Factor tab
Uses heuristics to combine multiple verdicts into a single actionable score
Behavioural Scoring
Uses AI to analyse the VT sandbox reports and deloivers clear verdict. Furthermore, the behavioural report UI has been streamlined.
AI Verdict Control
Users can choose verdict lengths and level of detail that suits them.
VirusTotal Deduplication and Interpretation heuristics
Helps users interpret the VirusTotal report and mitigates false positives.
This can be controlled in settings.
PDF Generation
The results can be easily exported and shared with a more knowledgeable person, IT admin or antivirus company support agent.
