May 24, 2024

Deepfactor 3.6 Introduces CLI Support for Windows and Mac Users, and Robust Enterprise Capabilities and User Management

Vikas Wadhvani, Director of Engineering—Product, Deepfactor

Next-Gen AppSec Series Webinar

Deepfactor SCA: 80% Less Noise, 50% Lower Cost

Save My Spot >

Deepfactor Application Security Platform Release 3.6 Overview

In this new release, the Deepfactor Application Security Platform now offers customers:

  • Windows & Mac CLI support
  • New SCA capabilities for dependencies, container images, and Kubernetes pod scans
  • Enterprise capabilities and user management

Deepfactor Release 3.6 Highlights

  Features Enhancements
Core Platform ·       Deepfactor CLI (dfctl) for macOS and Windows OS enables users to scan and observe their applications on their development machines.

·       Ability to structure users into multiple teams and configure fine-grained access and isolation.

SBOM, SCA & Container Scans ·       Ability to filter artifacts based on richer criteria such as runtime reachability, EPSS, K8s clusters, etc. so users can quickly prioritize which artifacts to look into first.

·       Ability to filter vulnerabilities and resources based on CISA Known Exploited Vulnerabilities catalog.

Deepfactor Application Security Platform Release 3.6 Details

  1. Teams: With the 3.6 release, Deepfactor allows admins to structure users into teams so that each team gets an uncluttered and isolated access to only their applications. Admins can also configure fine-grained access control using roles within each team. Team and role configurations can be managed either in the SSO provider or in Deepfactor, based on the organization’s policies. The org chart below shows the relation between teams and users using the example of a sample Acme organization:

Teams org chart

You can read more about this feature here.

 

2. Rich filters for artifacts: With 3.6, users can filter artifacts based on a rich set of parameters allowing AppSec teams to find exactly what they are looking for.

Examples:

  • Give me a list of artifacts which have the vulnerable version of log4j in my production cluster

Vulnerable version of log4j, Deepfactor 3.6

 

  • Give me a list of artifacts that have vulnerabilities with EPSS score greater than 20%

EPSS > 20, Deepfactor 3.6

For additional details on release 3.6, for both on-prem and SaaS, please review the Release Notes in Deepfactor Docs.

 

Frequently Asked Questions

1. What operating systems are supported by the new Deepfactor CLI in Release 3.6?

Answer: Deepfactor Release 3.6 introduces CLI support for both macOS and Windows OS, allowing users to scan and observe their applications directly on their development machines.

2. How can administrators manage user access and teams in the new release?

Answer: With Release 3.6, Deepfactor allows administrators to structure users into multiple teams, each with isolated access to their specific applications. Fine-grained access control can be configured using roles within each team, managed either through the SSO provider or directly within Deepfactor, depending on the organization’s policies.

3. What new capabilities are available for filtering artifacts and vulnerabilities?

Answer: The new release includes enhanced filtering capabilities for artifacts based on criteria such as runtime reachability, EPSS, and Kubernetes clusters. Users can also filter vulnerabilities and resources based on the CISA Known Exploited Vulnerabilities catalog, making it easier to prioritize and address critical issues.

Free Trial Signup

The Deepfactor trial includes the full functionality of the platform, hosted in a multi-tenant environment.

Sign up Today! >
Next-Gen AppSec Ep 8: 80 50

Next-Gen AppSec Series Webinar

Deepfactor SCA: 80% Less Noise, 50% Lower Cost

Save My Spot >

About the Author

Vikas Wadhvani, Director of Engineering—Product, Deepfactor

Vikas is a seasoned engineer and product management professional who has been at the trifecta of product, UX and technology at several startups, transforming ideas to products.

Subscribe to our monthly eNewsletter and stay up-to-date on everything Deepfactor has to offer!