2. The new features

2.1. Sigflow detection engine

2.1.1. Engine update

The Sigflow engine was updated.

This update includes security fixes for critical vulnerabilities published recently.

---

2.1.2. Event filtering for the SMB protocol

It is possible to filter the events of the SMB protocol according to the operations performed through it.

---

2.1.3. 100 Mbps support for capture interfaces

100 Mbps is supported for the capture interfaces used by the detection engine.

---

2.2. Installation

2.2.1. Storage prerequisites

It is possible to install a GCap probe on a 100 GB partition.

---

2.2.2. UEFI support

UEFI support has been improved.

---