Group Details Private



Member List

  • RE: [Solved] No Detected Applications & Enumerating Drive Stall

    @scottsan We will come back with either a new version soon or some suggestions about how to troubleshoot it.
    The only workaround so far is by using the ignore option in the registry as discussed in this thread:

    posted in Solved Bugs and Issues
  • RE: Information about maintenance on VulnDetect

    We are currently releasing some breaking changes. So the VulnDetect service is currently unavailable. We will be back in a few minutes.

    See the changelog:

    posted in Announcements
  • RE: Information about maintenance on VulnDetect

    We are upgrading VulnDetect Personal and Vulndetect Corporate this morning. So you are likely to see a bit of downtime while we deploy new servers.

    posted in Announcements
  • RE: [RELEASE] SecTeer VulnDetect Agent v1.0.7.0

    Version was released today.

    The updated version will also be made available via auto updating in a few minutes.

    Manual upgrades can be done using this link:

    posted in Announcements
  • RE: SecTeer Personal VulnDetect (Alpha) launched today

    A new agent has been release today, more details here:

    posted in Announcements
  • RE: [RELEASE] SecTeer VulnDetect Agent v1.0.7.0

    Version was released today.

    This version fixes a bug related to auto updating of the VulnDetect agent itself.

    Users with patching enabled, can "auto update" to version, please ping us here on the chat or via email tom at vulndetect dot com if you wish to test auto updating.

    posted in Announcements
  • RE: SecTeer Personal VulnDetect (Alpha) launched today

    Today we published a new UI and backend update with a tech preview of the auto updating / patching for VulnDetct Personal.

    This is disabled by default, if you wish to get access and test this, please write to tom at vulndetect dot com or send us a message on the chat (@tom).

    Please note that this is functionality from the Corporate edition and that the UI part of it will be completely redone. The underlying technology will remain the same for both Personal and Corporate.

    You can find the updated changelog here:

    posted in Announcements
  • RE: SecTeer Personal VulnDetect (Alpha) launched today


    We've been a bit silent lately, mostly because we've been extremely busy.

    Today we updated the changelogs, so you can get an idea of the recent changes.

    What is less clear when reading the changelogs is the upcoming addition to SecTeer VulnDetect:

    • Automated updates

    We will launch a "tech preview" of the automatic updating capability this week - this will be an "opt-in" feature for a while. Mostly, because we need volunteers to test the quality of the updates, especially the support for localized versions and 32/64bit architecture is important to test.

    Please write to "tom [at] vulndetect [dot] com" if you wish to enable auto updating and help testing.

    The automated updates in SecTeer VulnDetect is powered by chocolatey, usually referred to as choco. Initially SecTeer will provide homegrown packages from our own repo only. Later we may add support for third party repos, including the official choco repo. We chose to use choco, because this a popular, established and well maintained open source project, that aims to "packify" software management. Today, most software on Windows is managed by a variety of installers and update mechanism, the goal of standardizing this is beautiful and we would like to support those efforts.

    In turn choco uses an official Microsoft package standard called NuGet.


    posted in Announcements
  • RE: [RELEASE] SecTeer VulnDetect Agent v1.0.7.0

    Version was made available today:

    posted in Announcements
  • [RELEASE] Secteer VulnDetect Personal, Corporate and backend - 2019-07-10

    The latest version is immediately available after release.

    Corporate: v1.2.6 2019-07-10

    • Fix issue with csv export in Patching Activity page when filters were active.

    Corporate: v1.2.5 2019-07-10

    • Add support for automatic approvals.
    • Add csv export button to Patching Activity page.

    SCHME: v1.6.11 2019-07-10

    • Add support for automatic approvals.

    VulnDetect backend: v1.0.24 2019-07-10

    • Add support for automatic approvals.

    SCHME: v1.6.11 2019-07-10

    • Add support for automatic approvals.

    VulnDetect backend: v1.0.24 2019-07-10

    • Add support for automatic approvals.

    Corporate: v1.2.6 2019-07-10

    • Fix issue with csv export in Patching Activity page when filters were active.

    Corporate: v1.2.5 2019-07-10

    • Add support for automatic approvals.
    • Add csv export button to Patching Activity page.

    Personal: v0.12.0 2019-06-17

    • Add 'Inspect Now' button to the Applications page.
    • Add row expansion indicator to the Applications page.
    • Add icon to indicate which applications have bundled other applications.
    • Add icons to all buttons and consolidate their appearance.

    VulnDetect backend: v1.0.23 2019-06-17

    • Add 'Inspect Now' endpoint for personal users.
    • Minor updates to internal maintenance tools.
    • Fix tests.

    SCHME: v1.6.10 2019-06-13

    • Avoid circular bundle relationships.
    • Add architecture bundle tests, and a flag to allow skipping the self-test for a bundle specification.
    • Extend internal comment field on file entries.

    VulnDetect backend: v1.0.22 2019-06-12

    • Fix regression in Activity endpoints.

    VulnDetect backend: v1.0.21 2019-06-11

    • Add endpoints to enable 'Inspect Now' functionality.
    • Filter out uninteresting activity events by default, to make the Activity page in the corporate UI more useful.
    • Miscellaneous enhancements to internal support and maintenance tools.
    • Update dependencies after audit.

    SCHME: v1.6.9 2019-06-03

    • Fix issue with the handling of tasks and events when agents are disabled or deleted.
    • Change bundling path specification so that .\ or ..\ is required for specifying relative paths. This allows wildcards to be used at the front of the path spec to match any drive.

    VulnDetect backend: v1.0.20 2019-05-28

    • Add owner and status fields to customer model and export those through the admin endpoints.
    • Implement the (soft) deletion of customers through admin endpoints, and add this to the cli-tool.

    VulnDetect backend: v1.0.19 2019-05-27

    • Add support for installing agents using install-tokens.

    VulnDetect backend: v1.0.18 2019-05-16

    • Revert chocolatey back to version 0.10.13, since that wasn't the issue with the agents.
    • Tweak cli support tool.

    VulnDetect backend: v1.0.17 2019-05-15

    • Host chocolatey ourselves to avoid rate-limiting by external servers

    SCHME: v1.6.8 2019-05-14

    • Fix issue with channel evaluation of generic rules.

    SCHME: v1.6.7 2019-05-07

    • Sort results before post-processing for consistency.
    • Add $cmd.softChannel op to make channel ops more useful.
    • Fix various issues with bundle evaluation.

    VulnDetect backend: v1.0.16 2019-05-01

    • Save task changes with choco output to mongoDB for reference.

    VulnDetect backend: v1.0.15 2019-04-30

    • Add more capabilities to the internal management tools, including the ability to enable/disable/delete agents.

    VulnDetect backend: v1.0.14 2019-04-25

    • Miscellaneous feature updates and bug fixes for internal management tools.

    Personal: v0.11.1 2019-04-08

    • Fix formatting issue in expanded product section in Chrome browsers.

    Personal: v0.11.0 2019-04-04

    • Show bundled applications in the expanded section of an application.

    VulnDetect backend: v1.0.13 2019-04-04

    • Apply 'internal' account setting when filtering applications in the personal applications endpoint.

    VulnDetect backend: v1.0.12 2019-04-01

    • Fix issue with Activity page.

    VulnDetect backend: v1.0.11 2019-03-26

    • Support the latest version of chocolatey and update the version that we install to that, choco version 0.10.13.
    • Update include library with changes that instruct the browser to not cache api endpoint responses.

    VulnDetect backend: v1.0.10 2019-03-21

    • Add support for query parameters in the update events endpoint (patching activity).
    • Cleanup.

    VulnDetect backend: v1.0.9 2019-03-16

    • Fix regression in some models.

    VulnDetect backend: v1.0.8 2019-03-15

    • Filter out applications that have the Ignore flag set, which is set for bundled applications that should be ignored.

    VulnDetect backend: v1.0.7 2019-03-07

    • Add csdb migration with columns for bundling.
    • Fix incorrect format in inspection rule timestamp.

    VulnDetect backend: v1.0.6 2019-03-01

    • Add registry rules for MS Office 2013.
    • Fix issue which caused agent domain data to not be saved.

    VulnDetect backend: v1.0.5 2019-02-21

    • Fix issues with fetching and updating group approvals.
    • Add more registry rules for MS Office entries and update the existing ones.

    VulnDetect backend: v1.0.4 2019-02-19

    • Update registry rule for MS Office entries.

    VulnDetect backend: v1.0.3 2019-02-18

    • Add registry rule for MS Office entries.
    • Improve logging on agent check-in.
    • Make database connection pooling more configurable.

    VulnDetect backend: v1.0.2 2019-02-07

    • Update dependencies.
    • Miscellaneous improvements to the admin endpoints.

    Corporate: v1.2.1 2019-01-31

    • Show detected language and architecture in expanded Application, when available.

    Personal: v0.10.2 2018-01-31

    • Show detected language and architecture in expanded Application, when available.

    VulnDetect backend: v1.0.1 2019-01-31

    • Fix issue with updates not displaying in VulnDetect - Personal.
    • Update email templates in VulnDetect - Corporate.

    Corporate: v1.2.0 2019-01-25

    • Add pages for showing Approvals and managing them.

    VulnDetect backend: v1.0.0 2019-01-25

    • Implement approvals for updates at a group level.

    Corporate: v1.1.0 2019-01-15

    • Add support for creating groups, grouping hosts and viewing applications by group.

    VulnDetect backend: v0.12.0 2019-01-15

    • Implement groups for hosts, group creation, editing, removal and populating with hosts.
    • Implement filtering of various endpoints by group.

    VulnDetect login page: v0.9.5 2018-12-28

    • Improve the registration procedure and password reset pages to avoid dead ends in the UI.

    VulnDetect backend: v0.11.2 2018-12-28

    • Fix issue with the local timezone not being applied when sending agents their next inspection time.
    • Increase the default inspection window from 6 hours to 10 hours.
    • Enable patching by default when creating new corporate accounts.
    • Improvements to internal account management and maintenance tools.

    VulnDetect backend: v0.11.1 2018-12-21

    • Fix issue with approving agents to replace existing agents.

    VulnDetect backend: v0.11.0 2018-12-20

    • Add patching/updating to personal VulnDetect.
    • Miscellaneous improvements to the registration process to make it more straight-forward.
    • Miscellaneous minor improvements.

    VulnDetect backend: v0.10.0 2018-12-20

    • SecTeer VulnDetect - Personal (Beta)
    • Implement Patching in the Personal VulnDetect.
    • Remove the Patching/Updates preview components that were taken from the Corporate VulnDetect.

    Personal: v0.10.1 2018-12-20

    • Update page title from alpha to beta

    VulnDetect backend: v0.10.1 2018-12-05

    • Use axios in command-line admin tool.
    • Fix regression.

    VulnDetect backend: v0.10.0 2018-12-04

    • Fix various minor coding style issues.
    • Update application dependencies to newer versions.
    • Miscellaneous enhancements additions to internal account management and maintenance tools, and to the development environment.

    VulnDetect backend: v0.9.3 2018-11-20

    • Add Updates and Update Events endpoints.

    Personal: v0.9.0 2018-11-20

    • Add Tech Preview of Patching/Updates. The UI part is taken from the Corporate VulnDetect and will be completely redone.

    VulnDetect backend: v0.9.2 2018-11-19

    • Add new task states: Attempting and Skipped.
    • Prune repository submodules.

    Personal: v0.8.7 2018-11-19

    • Hasher library is now an npm package, rather than a submodule.

    SCHME: v1.3.0 2018-11-19

    • Add more complete processing of registry inspection data, allowing it to be used in package task generation.
    • Improve package task generation to use variables exported by ops to configuration packages.
    • Prune submodules from repository.
    • Add table for logging vpf modification events.
    • Fix issue with storing registry inspection data.

    VulnDetect backend: v0.9.1 2018-11-08

    • Fix issue with agent check-ins in demo mode.
    • Create customer-settings data where it is missing, for the admin UI.

    Personal: v0.8.6 2018-11-08

    • Fix issue with Configuration page when user has no agent.
    • Set relevant keywords in the page header.

    VulnDetect backend: v0.9.0 2018-11-07

    • Clean up agent check-in and fix minor issues with check-ins when in demo mode.
    • Add endpoints for admin UI.

    VulnDetect backend: v0.8.1 2018-11-05

    • Send tasks to agent checking in, in demo mode and default settings mode.
    • Cap the number of events sent by the API to 100.

    Personal: v0.8.5 2018-11-05

    • Reject invalid DayOfWeek settings in Configuration page.

    VulnDetect backend: v0.8.0 2018-11-02

    • Create corporate accounts in demo mode.
    • Add support for tasks and events, which are used in the patching part.
    • Various additions to the cli internal management tool.
    • Separate email templates for personal and corporate users.
    • Fix issue with last inspection time.
    • Other miscellaneous improvements and bugfixes.

    Personal: v0.8.4 2018-11-02

    • Fix issue with Hour-of-Day of inspection schedule.
    • Show agent download link if an update is available - #165.

    SCHME: v1.2.0 2018-11-02

    • Add support for pkg definitions in rules, and create tasks from them where appropriate.
    • Add support for events in the CSDB.
    • Miscellaneous small improvements and bugfixes

    VulnDetect backend: v0.7.5 2018-10-17

    • Add single configuration endpoint - #142
    • Add cross corporate/personal security tests - #138
    • Add some querying admin endpoints
    • Add tool for handling CSDB migrations

    Personal: v0.8.3 2018-10-17

    • Fetch configuration page as a single request - #142.
    • Fix issues with agent approval form submission - #77, #80, #86.

    VulnDetect backend: v0.7.4 2018-10-04

    • Add inspection rules with the appropriate API endpoint
    • Change the format of inspection messages to the SCHME to remove credentials

    Personal: v0.8.2 2018-10-04

    • Enlarge logo and add product name to header.
    • Remove buttons from the header that hides the sidebar.
    • Show the full logo when the sidebar is shrunk using the sidebar footer button.

    SCHME: v1.1.5 2018-10-04

    • Update message structure to remove database info from mongoDB and messages.
      Instead, look up the info by agent uuid, which is not potentially sensitive information.
      Also, support messages with missing account and agent uuids, which then won't generate results for customers but are still useful for internal processing.
    • Move schme commands code to shared repo

    VulnDetect backend: v0.7.3 2018-09-28

    • Release optimizations - reduce size of deployed package

    SCHME: v1.1.4 2018-09-28

    • Release optimization - reduce size of deployed package

    VulnDetect backend: v0.7.2 2018-09-25

    • Add Dashboard endpoint for corporate
    • Miscellaneous small changes

    VulnDetect backend: v0.7.1 2018-09-18

    • Add persistent sessions, saved in MongoDB

    Personal: v0.8.1 2018-09-18

    • Refactor code in Applications page, no visible changes.

    SCHME: v1.1.3 2018-09-18

    • Implement proper authentication in MongoDB

    VulnDetect backend: v0.7.0 2018-09-17

    • First release of SecTeer VulnDetect Alpha - Personal

    Personal: v0.8.0 2018-09-11

    • Changed name to SecTeer VulnDetect Alpha.

    SCHME: v1.1.2 2018-08-21

    • Fix missing version in inspection results
    • Rename column in vpf_channels for clarity
    • Move display.vilnReferences to stateRefs.vulnReferences

    SCHME: v1.1.1 2018-08-15

    • Fix issue with vulnStatus in found-apps

    SCHME: v1.1.0 2018-08-14

    • Change vuln-status enumeration values to 'Unknown', 'Ok' and 'Insecure'
    • Add new status flags: Untracked, Prerelease, EoL, Malicious, Suspicious, Testing, Internal, and rearrange them in the flags value
    • Add vpf-channels
    • Add registry lookup expression ops

    SCHME: v1.0.3 2018-06-20

    • Minor changes to reduce memory usage.

    VulnDetect backend: v0.4.2 2018-06-19

    • Fix issue in error handling in carma backend.
    • Add more information fields to found applications.

    SCHME: v1.0.2 2018-06-19

    • Work on vpf products and rules. Implement vpf products with lookups as separate entities. This goes hand-in-hand with SPID work on creating and managing rules.

    SCHME: v1.0.1 2018-05-24

    • Load rules from database, rather than files.
    • Add rule uuid and relevant flags to matched file entries, for SPID curators.

    Personal: v0.7.2 2018-05-18

    • Fix issue which caused the Configuration page to sometimes be blank.

    VulnDetect backend: v0.4.1.2 2018-05-14

    • Add ability to change or reset a user's password. Case #74.

    Personal: v0.7.1.2 2018-05-14

    • Add ability to re-set a forgotten password: 'Forgot password?' link available via the login page. Case #74.
    • Add ability to change a user's password: 'Change password' option available under the Configuration page, for a logged in user. Case #74.

    VulnDetect backend: v0.4.1.1 2018-05-10

    • milestone:"Personal Carma Tech Preview Update 1"
    • Show Application icons in the UI - #73
    • Add ability to expand results row to see more information - #75
    • Add last activity and expected next activity times to UI - #76

    Personal: v0.7.1.1 2018-05-10

    • milestone:"Personal Carma Tech Preview Update 1".
    • Show Application icons in the UI - #73.
    • Add ability to expand results row to see more information - #75.
    • Add last activity and expected next activity times to UI - #76.

    VulnDetect backend: v0.4.1.0 2018-05-08

    • First release of SecTeer Personal Carma

    Personal: v0.7.0.1 2018-05-08

    • First release.

    SCHME: v1.0.0 2018-05-08

    • First release of SecTeer Personal Carma, with functional SCHME
    posted in Announcements