Changelog July 14, 2022

  • announcement  ASI Signature search. Users must have the asi_signature_search feature to view the modal in the Risk Rules section of ASI

  • announcement  Risk History by Host. You can now view more than just the active risks for individual hosts in the risks hosts popup modal


Changelog June 30, 2022

  • fix Now translate punycode to unicode in the SQL query responses
  • fix Removed Top Level Domains (TLDs) from Feeds
  • fix Fixed an issue that caused the dropdown menu for Risk Rules filters to be disabled if a Rule by Issue was expanded
  • fix Fixed an issue that caused the SurfaceBrowser app to freeze when searching for a keyword instead of a valid domain
  • fix ASI rule templates now properly translate unicode into punycode for the backend to process

Changelog Jun 23, 2022

  • fix  Permanently fixed the more links in the ASI demo ASI dashboard boxes. They no longer head to the now defunct Risks tab
  • fix ASI pages should now automatically convert punycode into human readable unicode
  • fix SSO stability fix

Changelog June 13, 2022

  • Announcement 
    • The Risks tab of ASI Projects has been officially depreciated. You can find similar features with improved performance in the Risk Rules tab
    • Self-Signed Certs can now be found as a Risk Rule named Hosts with Self-Signed SSL/TLS Certificates
    • Staging and Dev Subdomains can now be found as a Risk Rule named Development Infrastructure Exposure
    • Finally, Open Ports can now be found in the new Database Open Ports Risk Rule that has been updated to use ASI snapshots. It looks a little different than the previous two rules but it’s increased accuracy and confidence has improved thanks to its use of ASI snapshots

    Associated Domains with Subdomains

    Changelog February 14, 2022

    • NEW!A new template rule has been added to Attack Surface Intelligence. Using Associated Domains with Subdomains automatically populates projects with all hostnames related to your target company.

    Now it's possible to expand your Attack Surface analysis efforts by scanning not only the project's domain name and their associated domains, but also every subdomain associated with all the target's related domains.



    Changelog February 2, 2022

    Improvement Browser session timeout has been extended to a 6 hour session

    improvement Made some visual improvements to the on hover effects for application ports in Explorer Beta 

    bug fix Fixed an issue in with Explorer Beta that caused screenshots to sometimes not display a hostname


    ASR Technologies & IP-Blocks Downloads

    Happy Lunar New Year!

    We've been hard at work getting ready for some new features. Today we're releasing the following

    ASR Detailed Application View added to the Beta Explorer Screenshots page. Users with access to our Beta Explorer can begin testing out our new Detailed Application View by clicking on an item. Doing so will bring up a new modal with more detailed information on a given application

    IP-Blocks Downloads IP-Blocks downloads were completely reworked to improve the performance of the download operation. This is available once again inside SurfaceBrowser in the following path  /app/sb/domain/[domain]/ip-blocks

    Activity Heatmap has been added to surfaceBrowser /app/sb/domain/[domain]/activity

    Bug Fix We also fixed an issue with the subdomains endpoint that was not properly filtering the children_only query param

    Single Sign-On (SSO) Authentication!


    It's time again for a big announcement!

    We’re excited to announce our new SSO authentication system. This release includes Okta as the first integration for all SecurityTrails teams that utilize Okta for SSO.

    You can find all details on how to enable SSO in your account here.

    Stay tuned for more SSO integration announcements soon.

    Show Previous EntriesShow Previous Entries