back caretBlog

What's New in ExtraHop 8.0 and Reveal(x)

Faster investigations, enhanced device filtering and analysis, and more

While release notes provide a comprehensive view of our 8.0 release updates, here is a preview of our most exciting new features.

Detections

Detections enable teams to quickly assess potential risks and unusual changes on the network—speed matters. In 8.0, we bring relevant data directly into the detection detail page to make it easier and faster for you to investigate.

Detections Detail Page

Each investigative section displays a table with the associated metrics or records. You can click entries within these tables to view the information on their own page and modify the query to continue your investigation as needed.

Investigation Records

We also added a horizontal bar with filters that can quickly toggle your view between detections that match categories in the Attack chain or cautionary and IT Operations (such as watching for expiring certificates).

Horizontal Detections Filter

Assets & Endpoints

The Devices page now enables filtering by model sets. Model sets are logical groupings of known device models from a particular vendor. The filter suggests model sets based on the devices discovered on your network.

Devices Model Filtering

View the analysis level of each device in the device list.

Analysis Levels by Device

Click on a device name in a transaction on the Records page to preview the device properties or click on an external IP address to see the device geolocation and links to the ARIN database.

Device Properties

Devices that provide authentication or essential services to other devices are now identified as a Critical Devices Icon Critical Device.

Critical Device

For ExtraHop Administrators and API Developers

Visit our Customer Portal for upgrade options and let us know if you have any questions!

Related Blogs

Sign Up to Stay Informed