Skip to content
XDR Forensics Knowledge Base

General

Version Information

Section titled “Version Information”

This section provides details on the versions of various components of the XDR Forensics platform, helping administrators ensure that all parts of the system are up to date.

  1. XDR Forensics: The main application version (e.g., 4.41.1). This represents the core platform’s release and includes the latest features and security updates.
  2. DB (Database): The version of the database used by XDR Forensics (e.g., 6.0.7), which stores all data related to the platform’s tasks and configuration settings.
  3. Responder: The version of the XDR Forensics responder (e.g., 2.50.5) installed on assets for data acquisition and remote interaction.
  4. DRONE: The version of the DRONE analysis engine (e.g., 3.11.0), which processes collected evidence to deliver findings and insights on this and some live artifacts through automated analyzers.
  5. TACTICAL: These versions indicate the status of various responders for different operating systems, including Linux, macOS, Windows, and the legacy version for older Windows systems. For example, the latest responders are at version 3.12.1, ensuring compatibility with the latest operating system environments.
  6. MITRE ATT&CK Analyzer: This version (e.g., 7.0.0) refers to the built-in mapping against the MITRE ATT&CK framework, which helps identify adversary tactics, techniques, and procedures during investigations.
  7. Disk Image Explorer: This component (e.g., version 1.0.0) provides functionality for exploring disk and volume images acquired during investigations.

License

Section titled “License”

This section provides details about the current licensing status of the XDR Forensics installation.

  1. License Key: Displays the license key currently in use (e.g., TEST-LICENSE).
  2. Valid Until: The expiration date of the license (e.g., 2025.09.29), indicating the duration for which the platform is licensed.
  3. Max Client: The maximum number of assets (clients) that can be managed under this license (e.g., 1,000,000 assets).
  4. In Use: The number of assets currently being monitored by XDR Forensics (e.g., 447,908 assets).
  5. Remaining: The number of asset slots still available (e.g., 552,092 assets). This helps ensure scalability and license compliance.