[NEWS7691] ESET Enterprise Inspector version 1.5.1485.0 has been released

Release Date: November 6, 2020

ESET Enterprise Inspector version 1.5.1485.0 has been released and is available to download.

It is important to upgrade the EEI Server manually by running the MSI installer.

General improvements

  • Added: Ability to work with rules via Public REST API (list, create, edit and delete)
  • Added: Ability to trigger Network Isolation via Rules (only for Windows endpoints)
  • Added: Support for full Unicode characters
  • Added: Ability to add multiple comments to Detection, Executables, Computers, and Processes
  • Added: Various performance improvements (e.g. faster search, purge, rules engine, and others)
  • Fixed: Issues related to internal server errors and exclusions

New Detection Capabilities

  • Improved detection capability for advanced code injection methods
  • Ability to invalidate trust attributes of compromised processes
  • Information related to the execution of files via shortcuts (LNK files)
  • Visibility into file reading operations for specific scenarios (e.g. reading of passwords)
  • Visibility into WMI Query behavior
  • Information about named pipes (to detect e.g. Cobalt Strike)
  • Visibility into MS Office VBA macros (if enabled in MS Office)
  • Ability to detect suspicious protocols (e.g. TOR, VNC, and BitTorrent)

EEI 1.5.1485.0 requires an ESET Endpoint Security for Windows 7.3.2044.0 to work correctly. Supported Applications.