features

• Broader cryptominer detection for xmrig-based miners (Core detection available to Protect, Protect+, and Complete customers)
• Additional kernel exploitation detection methods (Core detection available to Protect, Protect+, and Complete customers)
• Remote Access Tool Download - new detection of remote access tool download and usage (Enhanced detection available to Protect+ and Complete customers)
• User Scoped Systemd Service Created - new detection for creation of user-scoped systemd units, improving persistence coverage (Enhanced detection available to Protect+ and Complete customers)
• Improved quality of alert messages