Posts made by OLLI_S

I downloaded the installer from our FTP repository and wanted to install it in my VM.
But unfortunately the installation was not possible (there seems to be an online check that failed)

Tom, today I read that the Kaspersky Software Updater is no longer supported by AO Kaspersky Lab from June 14, 2019:
https://help.kaspersky.com/KSU/2.0/en-US/126813.htm

So you should mark this product End of Life.

Added the colour contrast for the white exclamation mark on red background (on page "Hosts)

I found a small issue in the 2FA login:
The field where I enter the 2FA code is not named properly, so password managers can not fill this fields.

I am using KeePassXC and this password manager does not only fill the username and password into login fields (if the URL matches), it also fills the 2FA code in the login form.
KeePassXC can generate the 2FA codes.

Normally I see in the field where I have to enter the 2FA code a green icon on the right:

I just click this icon and KeePassXC fills the 2FA code.

At VulnDetect this icon is missing:

So here I have to switch to KeePassXC, search for the entry "VulnDetect", select the entry in the search results, manually copy the 2FA code and paste it in the field.

The fix is very easy and described here:
https://github.com/keepassxreboot/keepassxc-browser/issues/826

So please fix this, all users using password managers will benefit from it.

Added the colour contrast for the white exclamation mark on yellow background (on page "Hosts)

One very important annotation to this feature:

Besides to the QR-Code many services offer the Two-Factor-Token also as plain text (the part behind secret=) that can be copied to the clipboard and then inserted in any Two Factor App on the Desktop.

I am using KeePassXC and this client can also generate 2FA keys for the two-factor-authentication.
I am lucky that many services like GitHub, Google and Paypal (just some examples) offer the Two-Factor-Token as plain text.

Otherwise I have to use a QR-Code scanner on my phone, scan this code, send me the code from my phone to myself, open the mail app, copy the code (the part behind secret=) and paste it in KeePassXC.
Showing the Two-Factor-Token makes it much easier for me (and also other users).

I measured all colour contrast in the Business Edition and created the topic Colour Contrast Issues (Business Edition).
This new topic also includes the colour contrast of the status icons.
So I close this topic.

I checked the colour contrast in the business version of VulnDetect.
For most elements the colour contrast is fulfilling the requirements, so here I list only those elements where the colour contrast is not sufficient.
I know there is a gap between design (what it looking good and sexy) and the required colour contrast. But these requirements are important for all users, not only for users that have visual impairments.

Requirements

All text elements, images containing text and relevant elements without text (e.g. icons) a minimum colour contrast ratio of 4.5:1 is required (to fulfil level AA of the WCAG). For content with a font size of at least 18 Point or 14 Point plus bold a colour contrast ratio of 3.0:1 is required.
Disabled elements (like disabled toolbar icons or disabled edit fields) are excluded from measurement.

International standards:

• ISO 9241-171 - 10.4.5
• WCAG 2.0 - 1.4.3

Colour Contrast Issues

Breadcrumb Navigation (on top of every page)

• 2.7:1 at blue links (like "Home")
• 2.6:1 at title of the current page (like "Dashboard")

Charts in the Dashboard

• 2.9:1 Green chart
• 3.8:1 Red chart
• 2.8:1 Orange chart:
• 1.5:1 Yellow chart
• 3.8:1 Blue line: z

Tables

• 2.5:1 for blue links on grey background
• 2.7:1 for blue links on white background
• 1.5:1 for placeholder-text in the search fields
  For placeholder texts the colour contrast 3.0:1 is sufficient, so use the text color #949494 (HEX) / 148, 148, 148 (RGB)

Buttons

• 2.4:1 for the button "Export to CSV"
• 2.7:1 for the button "Move Selected Hosts To New Group"
• 2.7:1 for the button "Create New Group"
• 2.7:1 for the button "Edit Selected Group"
• 2.4:1 for the button "Automate Selected Approvals"
• 2.7:1 for the button "Approve Version In Selected Approvals"
• 2.9:1 for the button "Disable Selected Approvals"
• 2.7:1 for the button "Save"
• 2.7:1 for the button "Change Password"
• 2.7:1 for the button "Submit" (in "Support")
• 2.7:1 for the button "Login"
• 4.2:1 for the button "Corporate User" in "Login"
• 4.2:1 for the button "Personal User" in "Login"

Stauts icons

• 2.1:1 for the green checkmark on grey background (on page "Hosts)
• 2.4:1 for the white checkmark on green background (on page "Hosts)
• 1.6:1 for the white exclamation mark on yellow background (on page "Hosts)
• 2.9:1 for the white exclamation mark on red background (on page "Hosts)

Status Lables

• 2.9:1 for the status "Insecure"
• 2,4:1 for the status "OK"

Other Elements

• 2.6:1 for the version number of the Agent Installed in the Configuration
• 2.6:1 for the Help Text "Inspections will run at this time..." in the Configuration
• 2.5:1 for the link "support@secteer.com" in "Support"
• 2.7:1 for the link "SecTeer VulnDetect Technical Guide" in "Support"
• 2.6:1 for the placeholder-text in the form fields in "Support"
  For placeholder texts the colour contrast 3.0:1 is sufficient, so use the text color #8995A7 (HEX) / 137, 149, 167 (RGB)
• 2.6:1 for the text "Login to your account" at the login page
• 2.6:1 for the placeholder-text in the form fields in "Login"
  For placeholder texts the colour contrast 3.0:1 is sufficient, so use the text color #8995A7 (HEX) / 137, 149, 167 (RGB)
• 2.7:1 for the link "Forgot password?"
• 2.7:1 for the text "Not Registered?" in "Login"
• 2.7:1 for the text "Get access to SecTeer VulnDetect" in "Login"
• 2.7:1 for the text "SecTeer VulnDetect is free for personal use." in "Login"

I really wonder if it is possible to search for updates of Windows via command line.
This would be a real benefit for users if you start the check via VulnDetect and then show a message in the list of applications that there are Windows Updates available.

I really wonder if it is possible to search for updates of Windows Store Apps via command line.
This would be a real benefit for users if you start the check via VulnDetect.

Hello Tom,

The files you see under "Microsoft\Windows\Containers" belong to one of your virtual machines or containers, thus they shouldn't be bundled with any application on the host machine.

I Really have no idea why NVIDIA GeForce Experience was found in that folder.
I have a VM, but I did definitely not install NVIDIA GeForce Experience there.
@VulnDetect Do you have any idea why NVIDIA GeForce Experience is found in that folder?

Now I see just one entry in the list, so the issue is solved.

The Microsoft PowerToys were updated to 0.15.0

File name and path:     C:\Program Files\PowerToys\PowerToys.exe
Product Name:           PowerToys
Internal Name:          PowerToys Runner
Original Filename:      PowerToys.exe

File Description:       PowerToys Runner
Company:                Microsoft Corporation
Legal Copyright:        Copyright (C) 2019 Microsoft Corporation
Legal Trademarks:       
Comments:               

File Version String:    0.15.0.0
File Version:           0.15.0.0
Product Version String: 0.15.0.0
Product Version:        0.15.0.0

Name of the app:
Folding@home

Developer:
Stanford University

Website:
https://foldingathome.org/

Download Site:
https://foldingathome.org/start-folding/

Version number displayed in the app:
7.5.1

App-Icon (in ICO format)

Notes:

• This is a scientific tool that simulates folding of proteins (to find cure fir many diseases (like cancer).
  The project is distributing the heavy calculation workload to the community (so users like me help researching).
• The application has no version information stored (see below)
• The icon is available in 128 x 128 pixel,

The application has no version information stored in the EXE file.
The desktop icon is executing the following command:

"C:\Program Files (x86)\FAHClient\HideConsole.exe" "C:\Program Files (x86)\FAHClient\FAHClient.exe" --open-web-control

Name of the app:
Free Download Manager

Developer:
FreeDownloadManager.org

Website:
https://www.freedownloadmanager.org/

Download Site:
https://www.freedownloadmanager.org/download.htm

Version number displayed in the app:
5.1.38.7312

App-Icon (in ICO format)

Here the information extracted from the 32-Bit/64-Bit EXE file:

File name and path:     C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe
Product Name:           Free Download Manager
Internal Name:          
Original Filename:      fdm.exe

File Description:       Free Download Manager
Company:                FreeDownloadManager.org
Legal Copyright:        (c) 2003-2016
Legal Trademarks:       
Comments:               

File Version String:    5.1.38.7312
File Version:           5.1.38.7312
Product Version String: 5.1.38.7312
Product Version:        5.1.38.7312

By the way you have an additional small glitch here:
The file path is too long, so it is truncated.
It should be wrapped in two (or multiple) lines.

For NVIDIA GeForce Experience I get on my system the following entries:

1. Version 3.19.0.94 with status Insecure in:
   C:\ProgramData\Microsoft\Windows\Containers\BaseImages\e9cf0c9f-a796-40c7-8313-42c6ce5bb63e\BaseLayer\Files\Users\All Users\NVIDIA Corporation\Downloader\PostProcessing\GFE\a1b8f95e233fed392281175573cfcd07\nodejs\nvnodejslauncher.exe

1. Version 3.20.2.34 with status OK in:
   C:\ProgramData\Microsoft\Windows\Containers\BaseImages\e9cf0c9f-a796-40c7-8313-42c6ce5bb63e\BaseLayer\Files\Users\All Users\NVIDIA Corporation\Downloader\latest\nodejs\nvnodejslauncher.exe

1. Version 3.20.2.34 with status Insecure in:
   C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe

If I expand the bundled NVIDIA GeForce Experience instances, then I get:

Instances 1) and 2) are shown as stand-alone products (not bundled with each other).
In Instance 3) I have many bundled instances.
In my opinion all those instances should be bundled together.

The Microsoft PowerToys were updated to 0.14.1.0

File name and path:     C:\Program Files\PowerToys\PowerToys.exe
Product Name:           PowerToys
Internal Name:          PowerToys Runner
Original Filename:      PowerToys.exe

File Description:       PowerToys Runner
Company:                Microsoft Corporation
Legal Copyright:        Copyright (C) 2019 Microsoft Corporation
Legal Trademarks:       
Comments:               

File Version String:    0.14.1.0
File Version:           0.14.1.0
Product Version String: 0.14.1.0
Product Version:        0.14.1.0

Name of the app:
UserBenchMark

Developer:
UserBenchmark.com

Website:
UserBenchmark.com

Download Site:
UserBenchmark.com

Version number displayed in the app:
2.9.5.0

App-Icon (in ICO format)

Notes:

• The files you download are a EXE-File that can be started without any installation)
• The icon is available in 32 x 32 pixel, here in the forms a smaller version is displayed.

Here the information extracted from the EXE file:

File name and path:     C:\Temp\Downloads\UserBenchMark.exe
Product Name:           UserBenchMark
Internal Name:          
Original Filename:      

File Description:       Benchmark Software
Company:                UserBenchmark.com
Legal Copyright:        UserBenchmark.com
Legal Trademarks:       UserBenchmark
Comments:               hello

File Version String:    2.9.5.0
File Version:           2.9.5.0
Product Version String: 
Product Version:        2.9.5.0

TreeSize Free is detected correctly on my system, but the displayed version number should be altered.
In the application the displayed version number is 4.4.1.510.
In VulnDetect the displayed version number is 4.4.1.

Currently there is an update available to version 4.4.1.512 and this update is also shown in VulnDetect:

So you have to display the full version number!

Tell me if you need a screen shot of the Help -> About window.

Here the information extracted from the EXE file:

File name and path:     C:\Program Files (x86)\JAM Software\TreeSize Free\TreeSizeFree.exe
Product Name:           TreeSize Free
Internal Name:          80
Original Filename:      TreeSizeFree.exe

File Description:       TreeSize Free hard disk space manager
Company:                JAM Software
Legal Copyright:        © 1996-2019 by Joachim Marder e.K.
Legal Trademarks:       
Comments:               https://www.jam-software.com

File Version String:    4.4.1.510
File Version:           4.4.1.510
Product Version String: 4.4.1
Product Version:        4.4.1.0

Adobe Flashis now bundled with Edge.
So this issue is solved.

@Tom If you look at the website that you posted, then you see that all 3 editions have the new edge icon.
You see this icon also in Help -> About:

So you should use the 3 icons on the website for the new edge.
Or - if you want to use only one ion for all editions - use the new icon found here:
https://www.microsoftedgeinsider.com/de-de/welcome/update?channel=dev&version=80.0.320.3