- DATE:
- AUTHOR:
- CyberCloud Team
Release 13 November 2023
We are excited to come with a new release again! Much work has been done to fulfill some major wishes of you. In this release, we introduce some new time-saving features and of course we made existing stuff better.
Features
#594 - File upload capabilities during a penetration test (pentest) have been expanded. Now, users can create links within a pentest risk that directly reference an uploaded file.
#599 - A DomainKeys Identified Mail (DKIM) check is now included in the CyberScan report.
#632 - Penetration tests previously allowed for tracking test account usage, but not the associated passwords. The latest update enables password storage for these accounts, which can be viewed by clicking a new 'eye' icon, and a 'copy' icon has been added for easy duplication of the password.
#659 - Report generation now provides a user interface that displays backend processes and clarifies why there may be a short waiting period.
#692/#712 - The pentest overview page now allows for the display of columns related to frequently used quality assurance checks. At a glance, users can determine whether certain actions, like sending liability waivers to customers or initiating kickoff meetings/emails, have been completed, and if contact persons are included in the pentest.
#711 - While PentestPortal already accommodated cloud target types (like Azure, AWS, GCP, etc.), it did not fully display meta information in the pentest report. This release rectifies that, ensuring complete presentation of cloud target details such as URL and ID.
#715 - In cases where a user cannot find a suitable norm after selecting the DigiD standard during a pentest finding, the absence of a cancel button was noted. This release addresses the issue by adding a cancel button to exit the popup without making a selection.
#713 - The Nessus integration has been improved. Despite previous enhancements, hostnames were not always fully imported. Now, by also incorporating pluginID 10150, the import of the nessusd.db file is more complete and accurate.
Bugfixes
#721 - There was an issue where customers who initiated a PentestPortal environment via the website couldn't add new users, such as colleagues, to their portal. This issue has been resolved.
#709 - The welcome email sent after signing up was unclear, particularly regarding where to log in, as users could easily overlook the link provided under step 2. To improve clarity, a prominent button labeled "Log In" has been added.
We believe that PentestPortal will greatly enhance the experience of individual penetration testers, penetration testing firms and enterprises conducting their own pentests and that PentestPortal contributes to more efficient and effective penetration testing. Your feedback is invaluable in helping us improve and tailor the software to meet your needs.
Thank you for choosing our software, and we look forward to hearing your thoughts on this exciting new release!