CrowdStrike Holdings Inc. is updating its cybersecurity platform with new features that will help companies more effectively protect their cloud environments from hackers.

The enhancements made their debut today. Nasdaq-listed CrowdStrike sells an enterprise cybersecurity platform, Falcon, that ranks as one of the most popular products in its category.

The company says it protects billions of software containers for customers. Across the containers and other assets it secures, Falcon processes several trillion security-related data points per day.

The first new feature CrowdStrike introduced today is called 1-Click XDR. It’s designed to help companies find and fix insecure cloud instances.

CrowdStrike’s Falcon platform uses a piece of software called an agent to detect cybersecurity issues. According to the company, its 1-Click XDR feature automatically detects cloud instances that aren’t running the agent and installs it. On launch, the feature supports Amazon Web Services Inc.’s cloud platform.

“This innovation enables organizations to easily view all unmanaged AWS EC2 instances for Windows and Linux, as well as unregistered accounts, to identify vulnerable workloads and automatically protect them,” CrowdStrike Chief Product Officer Raj Rajamani detailed in a blog post.

AWS customers using CrowdStrike will also gain access to a second new capability called Agentless Snapshot Scanning. According to the company, it’s designed for situations where it’s impractical to install the Falcon agent in a cloud instance. Such situations emerge because of various technical constraints: An instance might, for example, run an operating system not supported by Falcon.

Agentless Snapshot Scanning can scan cloud assets for security issues even when it’s not possible to install an agent. According to CrowdStrike, the feature is capable of mapping out what workloads are running on a given instance. It can also detect known operating system vulnerabilities.

The third major addition to Falcon that CrowdStrike introduced today is a tool called Complete Cloud Attack Path Visualization. It helps administrators understand attack paths, the set of tactics that hackers use to breach a system. 

The tool can visualize tactics that hackers have used in the past to target a company’s systems. Additionally, it allows administrators to explore new breach methods that could potentially be used in a future cyberattack. Companies can use the information surfaced by the tool to improve their security posture.

CrowdStrike is rolling out the capabilities alongside a number of more specialized enhancements. Most notably, the company is upgrading Falcon’s existing feature for detecting insecure cloud configuration settings. CrowdStrike says Falcon can now spot more than 1,000 types of configuration-related security issues.

The enhancements are rolling out about a week after the company announced another update to Falcon. As part of that update, CrowdStrike introduced an artificial intelligence chatbot called Charlotte AI. It’s designed to help administrators more quickly understand and remediate cybersecurity risks. 

Image: CrowdStrike