DATE:
AUTHOR:
CyberCloud Team
PentestPortal.io

Release 27 September 2024 (new PDF renderer)

DATE:
AUTHOR: CyberCloud Team

We're excited to announce a new release of PentestPortal!

Features

Main Feature #PP-251: PDF Rendering Migration
The core feature of this release is the migration from the current wkhtml2pdf PDF rendering engine to a Chrome headless browser-based solution using DotPDF.io. We removed the old wkhtmltopdf system. The utility qpdf is still retained for encryption purposes. Also we updated templates to the new syntax. Tested on full reports, single risk reports, pentest waivers and basic scan reports.

Feature #PP-274: Ability to sort port lists when linking a risk to a target. Ports are now listed in ascending order, making it easier to find specific ports during the risk assignment process.

Feature #PP-269: Removed raw and structured JSON data from the Basic Scan page detail view of CyberScanner for a cleaner presentation.

Bug Fixes

  • #PP-273: Fixed an issue where only the first line of the English liability waiver was displayed in English. The entire document now shows correctly.

  • #PP-272: Resolved a problem where original target hostnames were sometimes overwritten when importing output from external tools. The import flow now checks whether the plugin value is an IP address, an ISP hostname, or a custom hostname, ensuring the correct assignment of values.

  • #PP-271: Fixed a bug where risk numbering doubled when a risk was assigned to both in-scope and out-of-scope targets. Risks are now processed correctly based on their scope, and findings linked solely to out-of-scope targets receive proper out-of-scope numbering.

  • #PP-268: Fixed invoice history display issues at the reseller level.

  • #PP-267: Resolved an issue with half-hourly error emails from CyberScanner.

  • #PP-266: Basic scan report generation issues caused by translation updates have been fixed.

  • #PP-265: Various spelling errors in the liability waiver pop-up have been corrected.

  • #PP-263: Addressed a bug where status texts ("not applicable" and "not compliant") were not displaying correctly in the ASVS compliance section of the pentest report. These now appear as expected, replacing erroneous "[text not found]" messages.

  • #PP-260: Fixed an issue where the spelling mistake "Ignoren" prevented proper list updates. This now functions as intended.

  • #PP-150: Resolved an issue where payloads in code blocks were interpreted as links when copied from PDFs. Code blocks should no longer be parsed, allowing for clean copying of payloads.

  • #PP-110: Fixed table break issues in CyberScanner reports where the bottom border was frequently misplaced on new pages.

We believe that PentestPortal will greatly enhance the experience of individual penetration testers, penetration testing firms and enterprises conducting their own pentests and that PentestPortal contributes to more efficient and effective penetration testing. Your feedback is invaluable in helping us improve and tailor the software to meet your needs.

Thank you for choosing our software, and we look forward to hearing your thoughts on this exciting new release!

Powered by LaunchNotes