Skip to content Skip to main navigation Skip to footer

Changelog

October 2021

Exploit for CVE-2021-42013 (Apache Path Traversal)

New services supported in Password Auditor

Exploit for CVE-2021-41773 (Apache Path Traversal)

Exploit for CVE-2020-3452 (LFI in Cisco ASA and Cisco FTD)

Exploit for CVE-2021-21985 (RCE in VMware vCenter)

September 2021

More screenshots in the Full Website Scanner

Exploit for CVE-2019-11510 (LFI in Pulse Secure)

Detection for CVE-2020-3187 (LFI in Cisco ASA and Cisco FTD)

Detection for CVE-2021-22005 (RCE in VMware vCenter)

Exploit for CVE-2020-25223 (RCE in Sophos SG UTM)

Confirmed tag for Website Scanner findings

Exploit for CVE-2021-38647 (RCE in Multiple Azure Linux Deployments)

Clone Robot

Exploit for CVE-2021-26084 (RCE in Atlassian Confluence)

Exploit for CVE-2021-21972 (RCE in VMware vCenter)

August 2021

Detection for CVE-2021-31195 (ProxyOracle)

Detection for CVE-2021-21985 (VMware vCenter RCE)

Custom limit for Website Scanner requests

Manually reset the API Key

Recursion in URL Fuzzer

More enumeration options in WordPress Scanner

Add targets as CIDR

Detection for CVE-2018-13379 (FortiOS path traversal)

Added API support for HTTP Logger

July 2021

Detection for CVE-2021-21315 (Node.js Systeminformation RCE)

Detection for CVE-2021-28480 (Microsoft Exchange RCE)

Detection for CVE-2021-34473 (Pre-auth Path Confusion vulnerability)

June 2021

Scheduled scans can now be run on demand

Scan Stats for the New Website Scanner

Control the delay between requests in URL Fuzzer

May 2021

Option to filter certain results in URL Fuzzer

Increased Wordlist limit

OWASP 2013, OWASP 2017 and CWE findings classification

NTLM support for Password Auditor

Custom timing options in URL Fuzzer

April 2021

Support for POST data in URL Fuzzer

Detection for CVE-2021-21972 (VMware vCenter RCE)

New detector added to our New Website Scanner

New Website Scanner

March 2021

Detection for CVE-2021-22986 (F5 BIG-IP RCE)

Detection for Hafnium webshells (ProxyLogon)

Detection for CVE-2021-2685 (MS Exchange ProxyLogon)

New tests added to Network Scanner

New payload type in URL Fuzzer

ProxyLogon Scanner

February 2021

More info on Jira issues

Find Subdomains improvements

Notification for ports that shouldn’t be open

Custom payload in URL Fuzzer

Custom headers in URL Fuzzer

2FA for Pro Advanced

Custom e-mail subject

E-mail subject changed

E-mail address changed

Deprecated Citrix and BigIP scanners

January 2021

Robots improvements

Robots through VPN

December 2020

Robots

November 2020

Screenshots added to Website Scanner

Scan Groups

Screenshots in Attack Surface

October 2020

Custom wordlists for Password Auditor

Automatically ignore dead targets

Custom wordlists for URL Fuzzer

Deprecated GhostCat and SMBGhost tools

Configure scan authentication from Targets page

Scheduler page updates

September 2020

Configure scan notifications from Targets page

Session timeout increased

Target description included in reports

August 2020

Automatically mark False Positives for future scans

Pentest Report (docx) improvements

More options for generating single-scan reports

July 2020

VPN Agent in VirtualBox format

New API methods and updates

Scanner for BIG-IP CVE-2020-5902

Aggregated scan results

Scan notifications

Deduplicate findings

June 2020

Two-Factor Authentication

VPN Agent for Hyper-V

May 2020

Unique identifiers for vulnerabilities

[Bugfix] Correctly set the CVSS and CVE

Import targets with descriptions

VPN Agent for internal network scans

Upgrade/downgrade subscription

April 2020

Announcing the Support Center

Added ‘Getting Started’ page

New filters for Findings page

Custom logo in docx report (whitelabel)

New filters for Attack Surface page

View invoices in MyAccount

Launching the Attack Surface view (beta)

Updates to web scanner authentication module

Major updates to Findings editor

Edit findings produced by tools

March 2020

Export scan results as JSON

Announcing COVID-19 services

Send tickets to Jira

New tool: SSL/TLS Scanner

New tool: SMBGhost Scanner

New tool: Ghostcat Scanner

February 2020

API support for port scanning tools

New API calls and updates

January 2020

New tool: Citrix vulnerability scanner

Delete multiple scheduled scans