Andrew G. Posted September 30, 2019 Report Share Posted September 30, 2019 (edited) Hello all, We are happy to announce a new release of Immunet: Version 7.0.0! This latest version of Immunet provides the same great protection against malware and viruses as before, but also includes Credo and AMSI. Credo is a ML engine that allows endpoint connector to extract feature print of a PE file and send to the cloud to see whether the file is malware or not. ScriptID engine allows AMP connector to analyze scripts prior to execution. It is based on the Windows Antimalware Scan Interface (AMSI). In 7.0.0 version of connector only PowerShell scripts are analyzed. You can get the new installer here. https://download.immunet.com/binaries/immunet/bin/ImmunetSetup.exe If you are running an older version of Immunet, you should be able to upgrade via the 'Update Now' button in the UI. If you don't see the update in your UI we recommend uninstalling Immunet and reinstalling the version downloaded from http://www.immunet.com/index Changes in 7.0.0 Improvements and updates: New Credo engine New ScriptID engine for AMSI Query improvements in Immunet Protect driver Improvement in preforming Immunet registration Improvements in Connectivity test tool Curl version update ImmunetSCMS service now handle crash reporting Driver updates to support No Reboot upgrades New certificate for the ELAM driver Improvements on the Malicious Activity Protection (MAP) to reduce false positive Fixes: Stability Improvements in the Immunet Protect driver Stability Improvements in the SPP Stability Improvement on Immunet Protect shutdown Stability Improvements in the Exploit prevention Edited October 2, 2019 by Andrew G. Change list update 3 Link to comment Share on other sites More sharing options...
ritchie58 Posted October 1, 2019 Report Share Posted October 1, 2019 Nice touch! The update to version 7.0.0.11362 went very smoothly for me compared to the 6.5.0 beta where I had to reboot several times to completely install the build. I do have a question or two. I don't see any new running processes for Credo or AMSI, are these new additions all handled internally without the need for a dedicated Windows process? As before, I've always advocated for a complete change log be included with any new build that is publicly released. Has there been any bug fixes included with this version? One quick observation is that there is definitely more activity with the sys tray's icon gif being activated. Best wishes, Ritchie... Link to comment Share on other sites More sharing options...
Andrew G. Posted October 1, 2019 Author Report Share Posted October 1, 2019 Hi Ritchie, I will look into providing a list of important fixes that are included in the release. To answer some of your other questions: The Credo engine is a new engine that is integrated within the product. The ScriptID engine will monitor PowerShell activity and doesn't require a new process to function. Cheers, Andrew 1 Link to comment Share on other sites More sharing options...
ritchie58 Posted October 2, 2019 Report Share Posted October 2, 2019 Thanks for the new input Andrew, much appreciated! I was assuming these new security protocols would be handled internally but just wanted to make sure on that since I wasn't seeing any new processes. Yeah, that would be very cool if you could provide the list of bug fixes included with this new build. Cheers, Ritchie... Link to comment Share on other sites More sharing options...
Andrew G. Posted October 2, 2019 Author Report Share Posted October 2, 2019 Hi Ritchie, I have add the list of changes that are included in the new release. Cheers, Andrew. Link to comment Share on other sites More sharing options...
ritchie58 Posted October 4, 2019 Report Share Posted October 4, 2019 Hi Andrew, Unfortunately there has been a report of this recurring 503 server error occurring after updating to the new build. That's a bit disconcerting. https://support.immunet.com/topic/5975-cannot-connect-to-update-servers-error-503/?tab=comments#comment-18452 That's something that needs to be looked into ASAP in my opinion! Link to comment Share on other sites More sharing options...
Recommended Posts