Binalyze AIR Release Notes 1.7.40

Share on twitter
Share on linkedin
Share on reddit
Share on telegram

Version 1.7.40

  • New feature: AIR-QRadar integration. Now, an acquisition can be started by triggering AIR via QRadar (credits: Esra Kulüp)
  • New feature: Added Roles and Privileges. Starting from this version AIR contains 70+ user privileges for more fine-grained control
  • New feature: Added backup support for case reports and config files. (Database backup is already available beginning from v1.7.16)
  • New feature: Added AES encryption option for backups
  • New feature: Added SFTP support to store backups on the remote server
  • New feature: Added performing bulk operations on the selected endpoints (adding/removing tags, deleting endpoints, starting acquisition triage, and much more. credits: Babak Mirzahosseiny)
  • New feature: Added triage support to Linux. Now, the file system and memory can be scanned using YARA rules. (credits: Hilko Bengen ( Author of go-yara (
  • New feature: Added Custom Content collection from Linux distributions
  • Added progress update for compression and SFTP upload process on Linux
  • Added sending matched triage rules to Syslog
  • Added advance filter options to data grids
  • Added auto-generated shell script to facilitate Linux deb and rpm packages deployment
  • Added AIR integration guideline to documentation
  • Improved policy creation UI & UX
  • Improved setup process UI & UX
  • Improved custom SSL certificate information
  • Improved task completion status UX
  • Improved nats communication in agent
  • Implemented more secure cookie-based authentication
  • Optimized Audit logging performance
  • Optimized Syslog bulk processing performance
  • Fixed changing proxy settings when the license is lockdown
  • Fixed an issue in the agent installer
  • Fixed some security vulnerabilities
  • Minor changes and bug fixes

Webinars & Events