New Cortex Xpanse features and enhancements in release 2.8 (February 2025).
The table below describes the features and enhancements introduced in the Cortex Xpanse Expander 2.8 (February 2025) release.
Note
Cortex Xpanse typically upgrades customers over a three-week time frame. Contact customer success to find out your specific upgrade date.
Feature | Description |
|---|---|
Simplified Self-Service Asset Management | The new bulk asset management features enable you to proactively add/remove assets, such as IP address ranges, paid-level domains, and subdomains, across your attack surface. |
Expanded coverage for automated exposure remediation | The newly added support for Kubernetes Control Plane Component, LDAP Server, NetBIOS Name Server, NFS Rpcbind Server, Rpcbind Server, and SMB Server, enable you to save time and reduce manual work across a broader set of attack surface exposures. |
Dozens of new Attack Surface Rules and Attack Surface Tests | The new rules and tests expand detection coverage for existing and new KEV vulnerabilities. You can also discover over 100 unique OT/IoT devices, providing unmatched visibility across industrial and connected device environments. |
Attack Surface Rules to identify malicious domain takeover | Cortex Xpanse has released two attack surface rules to help identify malicious domain takeover of customer-owned domains. These policies detect malicious redirects and content injection for gambling sites, hacktivism, and extortion sites. These new rules will be enabled by default. |
Dynamic Protocol Detection | For a subset of our protocols and ports, Cortex Xpanse can dyamically detect 60+ server protocols. For details, reach out to your customer success contact. |
New API capabilities | These enhancements introduce new APIs to configure IdP and SSO authentication settings, enabling administrators greater control and efficiency in enforcing and managing access control. |