Skip to content

Latest commit

 

History

History
293 lines (215 loc) · 14.8 KB

CHANGELOG.md

File metadata and controls

293 lines (215 loc) · 14.8 KB
Raw

Changelog

1.15.0 (2023-01-12)

Features

  • add fours (Snap Shot Security Scanner) (5603e4d)
  • add more alert strings for Nikto and nmap scripts (ae0008c)

Bug Fixes

  • don't log anything for 'empty' port numbers (d077f07)

1.14.0 (2022-10-27)

Features

  • bump version number for consistency (a356a21)
  • change default working directory to /workdir (f430cc0)
  • hardcode name of project/Docker image (a999117)
  • simplify testing stage (7b2662d)

Bug Fixes

  • suppress dockle false positive (2f0957c)

1.13.0 (2022-07-21)

Features

  • add basic pipeline (fff2bc0)
  • add several automated security tests (0469f4f)
  • add workaround for wappalyzer error message (b815d88)

Bug Fixes

  • clean up Dockerfile linting issues (05c6a53)
  • handle connection errors gracefully (8fb96fe)

1.12.0 (2022-01-11)

Bug Fixes

  • remove unused inline pylint directives (0e785bf)

1.11.0 (2021-11-30)

Features

  • enforce timeout for nikto (d751eaa)
  • ensure that Python output is unbuffered (83d7fdd)
  • rewrite deprecated function names (e4bfbec)

1.10.0 (2021-05-27)

Features

  • support file-based argugments (e33a6eb)

1.9.0 (2021-04-15)

Features

  • add multiple options to separate HTTP checks (c038d28)
  • add support for testssl parameters (df202c0)
  • switch protocol when trying to analyze framework (ed25f28)

Bug Fixes

  • change settings YAML syntax for tuning parameters (beaea06)
  • ensure that testssl untrusted parameter is properly used (02dc66d)

1.8.0 (2020-09-18)

Features

  • add option to enforce SSL/TLS check (b641f7a)

Bug Fixes

  • ensure that a host contains a port key (6083104)

1.7.0 (2020-08-24)

Features

  • generate alert when unexpected open port is found (9cbc4a4)
  • display_hosts: add several new options (6c7077e)
  • add display_results helper script (6016cab)
  • improve displaying results, show unexpected open ports (5f8a8af)

Bug Fixes

  • ensure results are shown without specifying host (0efe1c5)

1.6.0 (2020-08-06)

Features

  • add option to use exit code != 0 when alerts are detected (ded66fa)
  • support more Nikto parameters (d5592cc)

Bug Fixes

  • ensure that Control-C is properly handled (8b7c2de)
  • ensure that settings file is not obligatory (8698e9c)
  • in debug mode, show options after all options have been parsed (890054f)

1.5.0 (2020-08-06)

Features

  • add support for YAML settings file (b5d422a)
  • add YAML library requirement (d6e3068)

1.4.0 (2020-08-03)

Features

Bug Fixes

  • change testssl.sh parameter (1fc2f4d)

1.3.0 (2020-06-24)

Features

  • add support to keep or discard line endings from logfiles (c87c07f)
  • optimize WPscan by enforcing update and not showing banner (b855bf4)

Bug Fixes

  • ensure correct type is passed when parsing logs (7c876f8)
  • ensure proper logging when not compacting strings (ed2c84c)
  • ensure that nmap logfile gets properly concatenated into log (8b5a633)
  • ensure universal similar line endings (feb6ab0)

1.2.0 (2020-05-29)

Features

  • add more nmap alerts and info (6371495)
  • add more nmap info strings (7aa7045)
  • remove more prepended characters before alerts / info (cdd5cc9)
  • store obtained information in new info value (81a6fbd)

Bug Fixes

  • move nmap alert strings to info (3c2c281)

1.1.0 (2020-05-28)

Features

  • add initial version of showing obtained nmap plugin info (91b039b)
  • add more nmap alerts (f45224e)
  • add testssl.sh alert (e5536e6)
  • add testssl.sh alerts (f3bf2e6)
  • enforce nikto to run non-interactive (0adf0b9)
  • remove Python2 compatibility (simplify code) (57e62cb)
  • store version string of tool being used (7e8af96)
  • use version first, to enable better sorting (3692207)

Bug Fixes

  • ensure no raw line endings are logged (8c3d981)
  • ensure that line endings are kept when adding logs (f79dbe6)
  • ensure that logfile strings are properly read (10e5e4f)
  • ensure that nmap command line isn't flagged as alert (a093cad)
  • ensure that wpscan ignores any server-supplied redirects (cc19dc3)
  • properly read and append existing logfiles (aae922a)
  • remove obsolete inheritance from object (e231d27)

1.0.0 (2020-05-28)

Features

  • enable JSON output (018d1a9)
  • filter out unnecessary characters in alert string (49b3fea)
  • log alert per port instead of generic lines (3ea2241)
  • log port number with alert line (6c180b6)
  • parse port number to add with nmap alert (9a1daef)
  • record all ciphers when performing testssl.sh (19d05f4)
  • reduce default maximum scan time from 20 to to 10 minutes (fb2c73e)
  • remove whitespace and superfluous line endings in alerts (264ccb4)

Bug Fixes

  • properly split lines in logfiles and tool outputs (02c490e)
  • use format strings and properly show port number (e832c6e)

0.44.2 (2020-05-25)

Bug Fixes

  • make process handler Python3 proof (638bc6e)

0.44.1 (2020-03-04)

Bug Fixes

  • allow program to continue with --no-portscan and without nmap (9e1eaed)
  • respect --dry-run when performing --check-redirect (294d364)
  • setting umask only when necessary (7fbbddd)
  • still use nmap as tool if --no-portscan is specified (85ce908)
  • typo (9fa9b91)
  • use specified port numbers even when nmap is not present (bf83792)
  • use specified ports when not performing portscan (cda920c)