Latest AutoFocus Features

The following topics provide a snapshot of the AutoFocus features introduced in March 2020. This list provides context for the new features, with steps to get started. For information about past releases, refer to AutoFocus Release History.
Latest AutoFocus Features
About Each Feature
Embedded WildFire Reports
AutoFocus™ now provides the full contents of WildFire analysis reports as part of your AutoFocus sample search results. The added information enables you to delve deeper into the operational details of WildFire analysis for additional context on the sample threat posture, behavior, introduction into your network, as well as correlated threat data.
af-search-wildfire-report.png
New threat data contexts include:
  • Causality Chain
    —Displays a visualization of all processes, files, and network calls and their associated behaviors, actions and detection reasons, for samples determined to be part of a larger sequence of events using analysis data provided by WildFire.
    wildfire-report-causality-chain.png
  • Detection Reasons
    —Lists the determining factors why WildFire has reached a particular verdict for a given sample.
    wildfire-report-detection-reasons.png
  • Indicators of Compromise
    —Lists threat indicators that AutoFocus detected in the sample’s WildFire analysis details.
    wildfire-report-ioc.png
  • Detected sample processes and behaviors
    —Lists the file behavior activities and various identifier objects observed by WildFire during sample analysis.
    wildfire-report-analyst-behavior.png
For more information about the concepts referenced in this feature, refer to:

Recommended For You