What's new

JA4 fingerprinting support

Deep Discovery Inspector can now recognize JA4 fingerprints to detect anomalies in network traffic.

OT protocol identification and detection

Deep Discovery Inspector now identifies and detects operational technology (OT) protocols for the energy vertical, including PROFINET IO (PNIO-CM and PNIO-MMS).

SHA-256 file hash support

Deep Discovery Inspector now supports the SHA-256 file hash type for Virtual Analyzer Suspicious Objects.

Shadow proxy detection

Deep Discovery Inspector can now identify the real client IP addresses behind shadow proxies.

Active scanner for device discovery

An integrated active scanner enables device discovery when Deep Discovery Inspector operates as a Trend Vision One network sensor, providing greater network visibility.

Virtual Analyzer enhancements

Virtual Analyzer now supports threat analysis using Windows Server 2025, Windows 11 24H2, and Red Hat Enterprise Linux 9.0 sandbox images.

Backup and restore configuration from Trend Vision One Network Inventory

Administrators can back up and restore Deep Discovery Inspector configurations directly from the Network Inventory app in Trend Vision One.

System logs visible in Trend Vision One

Deep Discovery Inspector system logs are now visible and searchable in the Trend Vision One console.

Multi-factor authentication

Administrators can require email one-time passcode (OTP) multi-factor authentication for Deep Discovery Inspector accounts, adding a verification step at logon.

User enumeration blocking

Deep Discovery Inspector now blocks user enumeration attempts to help prevent password-guessing attacks.

Configurable web console access control list

Administrators can configure an access control list (ACL) to restrict web console and SSH access to specific IP addresses or network ranges.

REST Web Service for configuration backup

A new REST Web Service allows external systems to download the Deep Discovery Inspector configuration backup over a REST API by using an API token.