Posts made by Tom

@OLLI_S Fixed and tested, this time you see it

@OLLI_S Hmm, perhaps. I can't remember if we found any issues with it.

Happy to hear that it is fixed.

@OLLI_S Please do an inspection and see if the result has changed, if not, then hopefully we will see a comment in our curator tool with information extracted from your Uninstall key.

@OLLI_S Yes, this is implemented

@OLLI_S Oups, fixed

@GregAlexandre Ahh, yes, sorry.
If you inspect now, then you'll see it.

Detection and icon added

Detection and icon added

@GregAlexandre Detection and icon added

@OLLI_S I believe this was fixed long ago.

@OLLI_S Some of the suggestions are now live and Personal is now 1.0, thus, no longer beta.

I've checked the spelling of Prerelease, and Prerelease is an official word, without the -, so we kept it as is.

https://vulndetect.org/topic/472/release-secteer-vulndetect-personal-corporate-and-backend-2020-08-20

@OLLI_S I want to see a few detections first, but now I got yours, that's a start...

But it looks straight forward, so I guess the Internal flag will be removed soon

It's been added, but as an Internal product for now.

There is only one other user of this

@GregAlexandre Can you PM me your email address, then I will go check your results

@OLLI_S Interesting.

I can see that we caught one file without a (valid) PE header, which is odd.

With the current rule it requires a (valid) PE header, I will see if we can change the rule soon, but there is only a handful or so who has got F@H installed and it doesn't contain any useful version information, so it doesn't have a high priority.

Perhaps that is yours, the file without a (valid) PE header, that would explain why it has disappeared from your result.

The version you show here, should be detected correctly, as 21.1.3.28, and that should have been the case for a day or two.

We just added a rule for a slightly older version today, that may have been displayed as a "?".

Thank you, icon added.

Thank you for this.

Do you know if they are consistent in rewriting versions like that?

There is no immediate information on their website.

@OLLI_S I'm not much into the details of the two factor authentication. But I will push for a review of it.

However, during the rest of July and the first half of August we have a development freeze, which means that we will only fix critical bugs, due to vacations. The earliest this will be handled is in late August.

Pre-2020 release history (due to post length limitation).

SCHME: v1.11.2 2019-12-18

• Allow settings product name and title from ops.

VulnDetect backend: v1.6.2 2019-12-11

• Improve error handling in the admin part to allow for better error messages in the admin UI.
• Pass inspection scope to SCHME.
• Minor bugfixes.

VulnDetect backend: v1.6.1 2019-12-10

• Improve CAM account permission testing when accessing customer information.
• Fix issue with deleting customers.
• Refactoring of the login and registration code.

VulnDetect backend: v1.6.0 2019-12-06

• Add a permissions system for SPID and CAM accounts and CAM groups to allow for a role-based permission system when accessing customer information.

VulnDetect backend: v1.5.1 2019-11-25

• Add capability to define a default group for new agents, to automatically group them by setting installer options and by associating an install-token with a group.

VulnDetect backend: v1.5.0 2019-11-19

• Update authentication and session handling to improve isolation and allow simultaneous logins to different services, and potentially the same services across different server instances (prod, test, dev').
• Remove some dependencies that were made redundant.

SCHME: v1.11.1 2019-11-19

• Post-package inspections should not create new package upgrade tasks.

VulnDetect backend: v1.4.1 2019-11-11

• Fix issue with agent taks reporting.

VulnDetect backend: v1.4.0 2019-11-11

• Add support for targeted inspections and dynamically generated inspection rules.
• Add support for task priorities and exclusive tasks.
• Miscellaneous refactoring changes.
• Miscellaneous enhancements to internal maintenance tools.
• Update dependencies after audit.

VulnDetect backend: v1.3.3 2019-10-18

• Minor update to internal maintenance tools.

VulnDetect backend: v1.3.2 2019-10-16

• Add support for agent diagnostic tasks.
• Update inspection rules with log verbosity and new registry rules.
• Show applications matched by testing and internal rules in the UI where appropriate.
• Minor updates to internal maintenance tools.

SCHME: v1.10.2 2019-10-16

• Insert results into CSDB in chunks to avoid database errors with too many placeholders.
• Log retries due to database deadlocks.
• In package results, relate install-provider tasks to choco, rather than the package being installed.

Personal: v0.13.0 2019-10-14

• Miscellaneous minor improvements.
• Update dependencies after audit.

Corporate: v1.4.0 2019-10-14

• Miscellaneous minor enhancements.
• Update dependencies after audit.

VulnDetect backend: v1.3.1 2019-10-14

• Fix issue in agent api.

VulnDetect backend: v1.3.0 2019-10-14

• Add better processing of computer names from agent in order to automatically group agents according to Active Directory groups.
• CSDB Migration related to computer names and automatically grouping agents.

SCHME: v1.10.1 2019-10-14

• Fix crash in schme on invalid Vpf-Approvals.

SCHME: v1.10.0 2019-10-14

• Update to support agent name related csdb migration in CARMA.

VulnDetect backend: v1.2.7 2019-10-01

• Create task database entries required for report generation for new customers.

VulnDetect backend: v1.2.6 2019-09-30

• Turn on report generation by default for new customers.

SCHME: v1.9.4 2019-09-27

• Fix issue with the 'testing' account setting not applying correctly.
• Add resultUuid to application result to link them to specific inspection processings, and to link update tasks to inspections.
• Remove unused caching mechanism which isn't compatible with node 12.
• Fix tests to work in both node 8 and 12.

VulnDetect backend: v1.2.5 2019-09-19

• Fix incorrect count of updates in dashboard.

VulnDetect backend: v1.2.4 2019-09-17

• Fix minor issue with internal tool.

VulnDetect backend: v1.2.3 2019-09-17

• Minor Wuzhi-related changes to maintenance tools.

VulnDetect backend: v1.2.2 2019-09-12

• Replace customer demo mode with trial mode.
• Add migration for Wuzhi release.
• Update internal maintenance tool to perform tasks related to Wuzhi.
• Update internal libraries.
• Miscellaneous minor fixes.
• Miscellaneous updates to development environment and coding style.

SCHME: v1.9.3 2019-09-12

• Miscellaneous minor fixes.
• Miscellaneous updates to development environment and coding style.
• Update internal libraries.

VulnDetect backend: v1.2.1 2019-08-20

• Hide applications flagged as libraries in the corporate application results.

SCHME: v1.9.2 2019-08-20

• Fix issue which caused update tasks to be created even when the update was not required.

SCHME: v1.9.1 2019-08-20

• Fix issue which caused updates to apply even when marked as not required.
• Update dependencies after audit.

SCHME: v1.9.0 2019-08-20

• Add support for the library flag and regression flag in vpfs.
• Implement the ..* operator in path matching bundle specifications.
• Change the ** operator to match 0 or more directories in path matching bundle specifications.
• Add a notification queue to rabbitMQ to send notifications about matches.
• Send notification about inspections with applications that are libraries but not bundled.

SCHME: v1.8.0 2019-08-12

• Add special schme mode for big inspections.

SCHME: v1.7.3 2019-08-09

• Fix duplicate-file issue with mongoDB-to-S3 tool.

SCHME: v1.7.2 2019-08-09

• Add tool to copy inspection data from mongoDB to S3.

SCHME: v1.7.1 2019-08-08

• Fix issue with auto-approved tasks not superseding existing unapproved tasks.

SCHME: v1.7.0 2019-08-08

• Add support for fetching inspections from s3, via the fileService.
• Expand the relevant database field to support the s3 path.
• Sort channel ids when inserting into channel-agent-xref table to try to avoid deadlocks.
• Add code to retry certain transactions that fail due to deadlock detection.
• Add --trace-warnings flag to node command-line to better locate unhandled promise rejections.

VulnDetect backend: v1.2.0 2019-08-08

• Add support for using S3 file service as a data storage to pass large amounts of data between services.
• Update dependencies after audit.

VulnDetect backend: v1.1.3 2019-07-18

• Fix issue with reporting tasks to the Schme

VulnDetect backend: v1.1.2 2019-07-18

• Add ability to send messages to the Schme through the cli-tool.

VulnDetect backend: v1.1.1 2019-07-17

• Fix minor issue with logging package task results.

SCHME: v1.6.13 2019-07-17

• Add message and error properties to choco output tables.

SCHME: v1.6.12 2019-07-16

• Add pkg_* tables to record choco package results,
• Report package results in the CR and receive reports in messages from Carma.

Corporate: v1.3.0 2019-07-16

• Implement Hosts Trash to allow two-step deletion of hosts. Hosts are moved to the trash in the Hosts page, and the trash itself is shown and managed in the Configuration page.
• Replace the two check-in columns in the Hosts page with a single status icon column.
• Join the two Move-to-Group buttons in the Hosts page and instead split the modal group dialog into two tabs.
• Update dependencies after audit.

VulnDetect backend: v1.1.0 2019-07-16

• Add endpoints to enable, disable and delete multiple agents, to support the Hosts Trash in the UI.
• Send list of disabled hosts with configuration to suppor the Hosts Trash in the UI.
• Disable demo mode by default for new customers.
• Report upgrade package task results to the Schme.
• Add the ability to erase group approvals to the internal management tools.

Corporate: v1.2.6 2019-07-10

• Fix issue with csv export in Patching Activity page when filters were active.

Corporate: v1.2.5 2019-07-10

• Add support for automatic approvals.
• Add csv export button to Patching Activity page.

SCHME: v1.6.11 2019-07-10

• Add support for automatic approvals.

VulnDetect backend: v1.0.24 2019-07-10

• Add support for automatic approvals.

SCHME: v1.6.11 2019-07-10

• Add support for automatic approvals.

VulnDetect backend: v1.0.24 2019-07-10

• Add support for automatic approvals.

Corporate: v1.2.6 2019-07-10

• Fix issue with csv export in Patching Activity page when filters were active.

Corporate: v1.2.5 2019-07-10

• Add support for automatic approvals.
• Add csv export button to Patching Activity page.

Personal: v0.12.0 2019-06-17

• Add 'Inspect Now' button to the Applications page.
• Add row expansion indicator to the Applications page.
• Add icon to indicate which applications have bundled other applications.
• Add icons to all buttons and consolidate their appearance.

VulnDetect backend: v1.0.23 2019-06-17

• Add 'Inspect Now' endpoint for personal users.
• Minor updates to internal maintenance tools.
• Fix tests.

SCHME: v1.6.10 2019-06-13

• Avoid circular bundle relationships.
• Add architecture bundle tests, and a flag to allow skipping the self-test for a bundle specification.
• Extend internal comment field on file entries.

VulnDetect backend: v1.0.22 2019-06-12

• Fix regression in Activity endpoints.

VulnDetect backend: v1.0.21 2019-06-11

• Add endpoints to enable 'Inspect Now' functionality.
• Filter out uninteresting activity events by default, to make the Activity page in the corporate UI more useful.
• Miscellaneous enhancements to internal support and maintenance tools.
• Update dependencies after audit.

SCHME: v1.6.9 2019-06-03

• Fix issue with the handling of tasks and events when agents are disabled or deleted.
• Change bundling path specification so that .\ or ..\ is required for specifying relative paths. This allows wildcards to be used at the front of the path spec to match any drive.

VulnDetect backend: v1.0.20 2019-05-28

• Add owner and status fields to customer model and export those through the admin endpoints.
• Implement the (soft) deletion of customers through admin endpoints, and add this to the cli-tool.

VulnDetect backend: v1.0.19 2019-05-27

• Add support for installing agents using install-tokens.

VulnDetect backend: v1.0.18 2019-05-16

• Revert chocolatey back to version 0.10.13, since that wasn't the issue with the agents.
• Tweak cli support tool.

VulnDetect backend: v1.0.17 2019-05-15

• Host chocolatey ourselves to avoid rate-limiting by external servers

SCHME: v1.6.8 2019-05-14

• Fix issue with channel evaluation of generic rules.

SCHME: v1.6.7 2019-05-07

• Sort results before post-processing for consistency.
• Add $cmd.softChannel op to make channel ops more useful.
• Fix various issues with bundle evaluation.

VulnDetect backend: v1.0.16 2019-05-01

• Save task changes with choco output to mongoDB for reference.

VulnDetect backend: v1.0.15 2019-04-30

• Add more capabilities to the internal management tools, including the ability to enable/disable/delete agents.

VulnDetect backend: v1.0.14 2019-04-25

• Miscellaneous feature updates and bug fixes for internal management tools.

Personal: v0.11.1 2019-04-08

• Fix formatting issue in expanded product section in Chrome browsers.

Personal: v0.11.0 2019-04-04

• Show bundled applications in the expanded section of an application.

VulnDetect backend: v1.0.13 2019-04-04

• Apply 'internal' account setting when filtering applications in the personal applications endpoint.

VulnDetect backend: v1.0.12 2019-04-01

• Fix issue with Activity page.

VulnDetect backend: v1.0.11 2019-03-26

• Support the latest version of chocolatey and update the version that we install to that, choco version 0.10.13.
• Update include library with changes that instruct the browser to not cache api endpoint responses.

VulnDetect backend: v1.0.10 2019-03-21

• Add support for query parameters in the update events endpoint (patching activity).
• Cleanup.

VulnDetect backend: v1.0.9 2019-03-16

• Fix regression in some models.

VulnDetect backend: v1.0.8 2019-03-15

• Filter out applications that have the Ignore flag set, which is set for bundled applications that should be ignored.

VulnDetect backend: v1.0.7 2019-03-07

• Add csdb migration with columns for bundling.
• Fix incorrect format in inspection rule timestamp.

VulnDetect backend: v1.0.6 2019-03-01

• Add registry rules for MS Office 2013.
• Fix issue which caused agent domain data to not be saved.

VulnDetect backend: v1.0.5 2019-02-21

• Fix issues with fetching and updating group approvals.
• Add more registry rules for MS Office entries and update the existing ones.

VulnDetect backend: v1.0.4 2019-02-19

• Update registry rule for MS Office entries.

VulnDetect backend: v1.0.3 2019-02-18

• Add registry rule for MS Office entries.
• Improve logging on agent check-in.
• Make database connection pooling more configurable.

VulnDetect backend: v1.0.2 2019-02-07

• Update dependencies.
• Miscellaneous improvements to the admin endpoints.

Corporate: v1.2.1 2019-01-31

• Show detected language and architecture in expanded Application, when available.

Personal: v0.10.2 2018-01-31

• Show detected language and architecture in expanded Application, when available.

VulnDetect backend: v1.0.1 2019-01-31

• Fix issue with updates not displaying in VulnDetect - Personal.
• Update email templates in VulnDetect - Corporate.

Corporate: v1.2.0 2019-01-25

• Add pages for showing Approvals and managing them.

VulnDetect backend: v1.0.0 2019-01-25

• Implement approvals for updates at a group level.

Corporate: v1.1.0 2019-01-15

• Add support for creating groups, grouping hosts and viewing applications by group.

VulnDetect backend: v0.12.0 2019-01-15

• Implement groups for hosts, group creation, editing, removal and populating with hosts.
• Implement filtering of various endpoints by group.

VulnDetect login page: v0.9.5 2018-12-28

• Improve the registration procedure and password reset pages to avoid dead ends in the UI.

VulnDetect backend: v0.11.2 2018-12-28

• Fix issue with the local timezone not being applied when sending agents their next inspection time.
• Increase the default inspection window from 6 hours to 10 hours.
• Enable patching by default when creating new corporate accounts.
• Improvements to internal account management and maintenance tools.

VulnDetect backend: v0.11.1 2018-12-21

• Fix issue with approving agents to replace existing agents.

VulnDetect backend: v0.11.0 2018-12-20

• Add patching/updating to personal VulnDetect.
• Miscellaneous improvements to the registration process to make it more straight-forward.
• Miscellaneous minor improvements.

VulnDetect backend: v0.10.0 2018-12-20

• SecTeer VulnDetect - Personal (Beta)
• Implement Patching in the Personal VulnDetect.
• Remove the Patching/Updates preview components that were taken from the Corporate VulnDetect.

Personal: v0.10.1 2018-12-20

• Update page title from alpha to beta

VulnDetect backend: v0.10.1 2018-12-05

• Use axios in command-line admin tool.
• Fix regression.

VulnDetect backend: v0.10.0 2018-12-04

• Fix various minor coding style issues.
• Update application dependencies to newer versions.
• Miscellaneous enhancements additions to internal account management and maintenance tools, and to the development environment.

VulnDetect backend: v0.9.3 2018-11-20

• Add Updates and Update Events endpoints.

Personal: v0.9.0 2018-11-20

• Add Tech Preview of Patching/Updates. The UI part is taken from the Corporate VulnDetect and will be completely redone.

VulnDetect backend: v0.9.2 2018-11-19

• Add new task states: Attempting and Skipped.
• Prune repository submodules.

Personal: v0.8.7 2018-11-19

• Hasher library is now an npm package, rather than a submodule.

SCHME: v1.3.0 2018-11-19

• Add more complete processing of registry inspection data, allowing it to be used in package task generation.
• Improve package task generation to use variables exported by ops to configuration packages.
• Prune submodules from repository.
• Add table for logging vpf modification events.
• Fix issue with storing registry inspection data.

VulnDetect backend: v0.9.1 2018-11-08

• Fix issue with agent check-ins in demo mode.
• Create customer-settings data where it is missing, for the admin UI.

Personal: v0.8.6 2018-11-08

• Fix issue with Configuration page when user has no agent.
• Set relevant keywords in the page header.

VulnDetect backend: v0.9.0 2018-11-07

• Clean up agent check-in and fix minor issues with check-ins when in demo mode.
• Add endpoints for admin UI.

VulnDetect backend: v0.8.1 2018-11-05

• Send tasks to agent checking in, in demo mode and default settings mode.
• Cap the number of events sent by the API to 100.

Personal: v0.8.5 2018-11-05

• Reject invalid DayOfWeek settings in Configuration page.

VulnDetect backend: v0.8.0 2018-11-02

• Create corporate accounts in demo mode.
• Add support for tasks and events, which are used in the patching part.
• Various additions to the cli internal management tool.
• Separate email templates for personal and corporate users.
• Fix issue with last inspection time.
• Other miscellaneous improvements and bugfixes.

Personal: v0.8.4 2018-11-02

• Fix issue with Hour-of-Day of inspection schedule.
• Show agent download link if an update is available - #165.

SCHME: v1.2.0 2018-11-02

• Add support for pkg definitions in rules, and create tasks from them where appropriate.
• Add support for events in the CSDB.
• Miscellaneous small improvements and bugfixes

VulnDetect backend: v0.7.5 2018-10-17

• Add single configuration endpoint - #142
• Add cross corporate/personal security tests - #138
• Add some querying admin endpoints
• Add tool for handling CSDB migrations

Personal: v0.8.3 2018-10-17

• Fetch configuration page as a single request - #142.
• Fix issues with agent approval form submission - #77, #80, #86.

VulnDetect backend: v0.7.4 2018-10-04

• Add inspection rules with the appropriate API endpoint
• Change the format of inspection messages to the SCHME to remove credentials

Personal: v0.8.2 2018-10-04

• Enlarge logo and add product name to header.
• Remove buttons from the header that hides the sidebar.
• Show the full logo when the sidebar is shrunk using the sidebar footer button.

SCHME: v1.1.5 2018-10-04

• Update message structure to remove database info from mongoDB and messages.
  Instead, look up the info by agent uuid, which is not potentially sensitive information.
  Also, support messages with missing account and agent uuids, which then won't generate results for customers but are still useful for internal processing.
• Move schme commands code to shared repo

VulnDetect backend: v0.7.3 2018-09-28

• Release optimizations - reduce size of deployed package

SCHME: v1.1.4 2018-09-28

• Release optimization - reduce size of deployed package

VulnDetect backend: v0.7.2 2018-09-25

• Add Dashboard endpoint for corporate
• Miscellaneous small changes

VulnDetect backend: v0.7.1 2018-09-18

• Add persistent sessions, saved in MongoDB

Personal: v0.8.1 2018-09-18

• Refactor code in Applications page, no visible changes.

SCHME: v1.1.3 2018-09-18

• Implement proper authentication in MongoDB

VulnDetect backend: v0.7.0 2018-09-17

• First release of SecTeer VulnDetect Alpha - Personal

Personal: v0.8.0 2018-09-11

• Changed name to SecTeer VulnDetect Alpha.

SCHME: v1.1.2 2018-08-21

• Fix missing version in inspection results
• Rename column in vpf_channels for clarity
• Move display.vilnReferences to stateRefs.vulnReferences

SCHME: v1.1.1 2018-08-15

• Fix issue with vulnStatus in found-apps

SCHME: v1.1.0 2018-08-14

• Change vuln-status enumeration values to 'Unknown', 'Ok' and 'Insecure'
• Add new status flags: Untracked, Prerelease, EoL, Malicious, Suspicious, Testing, Internal, and rearrange them in the flags value
• Add vpf-channels
• Add registry lookup expression ops

SCHME: v1.0.3 2018-06-20

• Minor changes to reduce memory usage.

VulnDetect backend: v0.4.2 2018-06-19

• Fix issue in error handling in carma backend.
• Add more information fields to found applications.

SCHME: v1.0.2 2018-06-19

• Work on vpf products and rules. Implement vpf products with lookups as separate entities. This goes hand-in-hand with SPID work on creating and managing rules.

SCHME: v1.0.1 2018-05-24

• Load rules from database, rather than files.
• Add rule uuid and relevant flags to matched file entries, for SPID curators.

Personal: v0.7.2 2018-05-18

• Fix issue which caused the Configuration page to sometimes be blank.

VulnDetect backend: v0.4.1.2 2018-05-14

• Add ability to change or reset a user's password. Case #74.

Personal: v0.7.1.2 2018-05-14

• Add ability to re-set a forgotten password: 'Forgot password?' link available via the login page. Case #74.
• Add ability to change a user's password: 'Change password' option available under the Configuration page, for a logged in user. Case #74.

VulnDetect backend: v0.4.1.1 2018-05-10

• milestone:"Personal Carma Tech Preview Update 1"
• Show Application icons in the UI - #73
• Add ability to expand results row to see more information - #75
• Add last activity and expected next activity times to UI - #76

Personal: v0.7.1.1 2018-05-10

• milestone:"Personal Carma Tech Preview Update 1".
• Show Application icons in the UI - #73.
• Add ability to expand results row to see more information - #75.
• Add last activity and expected next activity times to UI - #76.

VulnDetect backend: v0.4.1.0 2018-05-08

• First release of SecTeer Personal Carma

Personal: v0.7.0.1 2018-05-08

• First release.

SCHME: v1.0.0 2018-05-08

• First release of SecTeer Personal Carma, with functional SCHME