New in 2024.4: Search raw event data for better insights

  • April 4, 2024
  • 1 min read

This month’s update introduces the ability to search raw EDR log data. In the past, you could only search detection-related data using osquery. Now, you’ll be able to search all EDR data, including historical data stored in Emsisoft’s cloud.

New in 2024.4: Search raw event data for better insights

You can use custom views in the Threat Hunting panel to search for specific process starts, registry changes, and more, making it easier than ever to pinpoint when and why a particular event occurred and to contextualize other data. You could, for example, trace the execution history of a particular file across all devices in your Workspace in order to work out any potential impact.

In addition, we’ve altered the way EDR data is processed at the device-level in order to minimize the performance impact on endpoints.

As usual, the update also includes multiple small fixes and improvements to ensure that our products continue to provide you with the best possible protection and the best possible experience.

All enhancements and improvements in a nutshell

Device protection (desktop)

Management console (web app)

How to obtain the new version

So long as you have auto-updates enabled, you will receive the latest version automatically during your regularly scheduled updates.

Emsisoft Enterprise Security + EDR

Robust and proven endpoint security solution for organizations of all sizes. Start free trial

Note to Enterprise users: If you have chosen to receive “Delayed” updates, client systems will receive the new version no earlier than 30 days after the regular “Stable” availability.

Emsi

Emsi

Emsisoft founder and managing director. In 1998 when I was 16, a so called 'friend' sent me a file via ICQ that unexpectedly opened my CD-ROM drive, which gave me a big scare. It marked the start of my journey to fight trojans and other malware. My story

What to read next