Trellix Intelligent Sandbox 5.2 is now available.Intelligent Sandbox 5.2 is a major release that adds new features, enhancements, and new platform, environment, or operating system support, such as:
- Malware detonation and analyzer VM creation support for Microsoft Windows 11
- New Machine Learning model capable of identifying obfuscated Java Script files during file analysis
- Better cluster management through CLI commands to sync custom behavior rules and content updates across all nodes in cluster
- New read-only CLI user as an extension of RBAC capability to view and audit the system configuration
- New forensic analysis capability of writing YARA rules over memory dump logs
- Provide analysts with Windows event logs and WMI call traces captured during malware analysis
- Addition of new Windows APIs to capture malware behavior better
- Supports for appliances with Broadcom NIC card
- When you log in for the first time after deployment or upgrade, Intelligent Sandbox 5.2 prompts you to accept the End User License Agreement (EULA)
For a full list of changes, see the Release Notes: https://docs.trellix.com/bundle/trellix-intelligent-sandbox-5.2.x-release-notes
To download Intelligent Sandbox 5.2, go to the Product Downloads site.