diff --git a/README.md b/README.md
index 687e88f..c61116f 100644
--- a/README.md
+++ b/README.md
@@ -67,6 +67,7 @@ These checks are more fuzzy, but allow to detect the following products:
 - malwarebytes
 - vipre
 - sentinel one
+- cybereason
 
 On top of that list, it will detect any installed software containing "antivirus/antiviral/antimalware" in the name.
 
diff --git a/windows_tools/antivirus/__init__.py b/windows_tools/antivirus/__init__.py
index ca5e56f..69516d3 100644
--- a/windows_tools/antivirus/__init__.py
+++ b/windows_tools/antivirus/__init__.py
@@ -54,7 +54,7 @@
     r"trend ?micro",
     "malwarebytes",
     "vipre",
-    "sentinel ?one",
+    r"sentinel ?(one|labs)",
     "cybereason",
 ]