Intezer Analyze has historical reporting capabilities that let you track your prior analyses and their classifications.
For enterprise users, these reports contain all analyses made by the organization with their respective verdict and malware family classification. This gives the organization visibility to their overall security status, and helps them identify targeted threats, as well as share threat intelligence information easily between global SOC teams.
Table of contents
File Analysis Report
In the file analysis report you can track all analyses your security team has performed by GUI or API, and export this data to a CSV format.
For enterprise users, this report will not only show all analyses performed by the organization, but also the exact user who performed the analysis via the “Analyzed by” column.
Endpoint and Memory Scan Report
This report includes both live endpoint scans and memory dumps that have been analyzed in the organization.
For endpoint scans, you will see the computer name in order to differentiate between the different scans.
Privately Indexed Files Report
Note: This feature is available for enterprise users.
This report shows you all privately indexed files made by your organization and the exact user who performed the indexing.
For each sample, you will be able to see the current verdict and malware family classification, and can revert it back to its original classification if needed, by clicking on “Revert.”