This has been a great week. We have achieved a lot in terms of development, testing and generating content / rules.

And we expect to release the first Tech Preview on Tuesday (8th of May).

This is, as I have promised before, a very early stage of the product.

You will be able to install it.

It will scan your system and find around 20 of the most common programs on your Windows desktop.

You should note, that there is no direct communication between the user interface and the agent. This is very unlike the PSI, which was a local program, that talked directly to the agent and could do "live" scans. This will be changed, but it is a low priority and will not be made before later this year.

Also, patching, or auto updating, is not due to be implemented before around August, give or take a bit.

In the first two or three weeks (maybe more), you should not rely on it to provide a reliable reporting of Safe / Unsafe programs.

But we need you to install it anyway, so we get data to generate new rules from. And we will work to improve rules and reporting everyday, from now on.

And remember, we do read all the posts and comments here on https://vulndetect.org - but we are not anywhere near being able to implement all the great ideas and feedback you have provided, yet. (but keep posting)

We are looking for various sources of information about vulns and new security related patches.

We will naturally monitor all relevant vendor websites, but as we all know, the vendors aren't always open and upfront when they fix security related issues, so we need a number of other sources.

And for too long the NVD and CVE has not been up-to-speed, nor do they cover everything.

We are aware of the following open databases:
https://sec.hpi.de/vulndb/
https://vuldb.com/
https://www.securityfocus.com/bid/
https://www.kb.cert.org/vuls/
https://jvn.jp/en/jp/index.html
https://www.exploit-db.com/
http://seclists.org/fulldisclosure/

Please comment on this topic, with links to other sources you may find relevant.

Some users have reported an issue when installing on some (all?) Windows 7 systems. We have identified the cause of this and will soon be releasing a new installer / binary that fixes the issue.

Also, we have some improvements for the UI and the emails in the pipeline.

@OLLI_S Since IE is maintained as component of Windows, it isn't regarded as a separate product.

It's state (if anyone still uses it) is reported via the Windows Updates under the Windows operating system in VulnDetect.

@OLLI_S The files you see under "Microsoft\Windows\Containers" belong to one of your virtual machines or containers, thus they shouldn't be bundled with any application on the host machine.
However, we have made a special rule which will hide files from containers or VMs.
I took the liberty of reprocessing your results, so you should see the changes right away.

@GregAlexandre This is expected and it is due to the way that Office is updated. It is likely to require a reboot before the vulnerable file is removed and replaced by the one in "Updates"

@OLLI_S The version should be fixed now. Can you verify that it correctly shows 8.1.14. Xinorbis is one of those were it needs to be done manually based on user feedback, that is why it says "Unknown, please report".

@scottsan We will come back with either a new version soon or some suggestions about how to troubleshoot it.
The only workaround so far is by using the ignore option in the registry as discussed in this thread:
https://vulndetect.org/topic/144/work-in-progress-exclude-specific-drives-folders-from-scan

We are currently releasing some breaking changes. So the VulnDetect service is currently unavailable. We will be back in a few minutes.

See the changelog:
https://vulndetect.org/topic/472/release-secteer-vulndetect-personal-corporate-and-backend-2019-01-15

We are upgrading VulnDetect Personal and Vulndetect Corporate this morning. So you are likely to see a bit of downtime while we deploy new servers.

Version 0.10.8.0 was released today.

The updated version will also be made available via auto updating in a few minutes.

Manual upgrades can be done using this link:
https://vulndetect.com/dl/secteerSetup.exe

A new agent has been release today, more details here:
https://vulndetect.org/topic/411/release-secteer-vulndetect-agent-v0-10-7-0

Version 0.10.7.0 was released today.
https://vulndetect.com/dl/secteerSetup.exe

This version fixes a bug related to auto updating of the VulnDetect agent itself.

Users with patching enabled, can "auto update" to version 0.10.7.0, please ping us here on the chat or via email tom at vulndetect dot com if you wish to test auto updating.