RoboShadow Release 153 : Highlights in this Release

Below is our end of January release update for you. Thanks to some keen dedication from the RoboShadow Dev team (and our new DevOps environment) we are fully on track to have our "Net Zero" bugs and Priority 1 Client Requests done by the end of Feb. We have now been able to keep our "2 Releases per month" Dev sprints going for 3 consecutive months now, 70% of all the enhancements and fixes come from the user community so thanks ever so much for all of your interactions with us. 

In short, we have now got the LAN Scanner and Cyber Heal into a "Version 1" state now (so out of Beta finally) and we have now paved the way for a core update to the Cyber Heal upgrade process which should allow us full automation hopefully by mid March. 

Please also see as usual the individual fixes / enhancements detailed at the bottom of this mail. Over 180 fixes / enhancements completed in the last 3 weeks.

Recent Release (31st Jan):

• LAN Scanner Upgrades (See Below)

• CVE False Positive Tuning Upgrade

• Major back-end change to the way we store vulnerabilities

• Browser Dynamic Size Upgrade (Enhanced GUI Sizing)

• V Scanner (External) OWASP Handling Upgrade

• LAN Scanner Reporting added to Ultimate Report

Earlier on in the month:

• Cyber Heal Upgrade Enhancements

• Cyber Heal Uninstall Logic

• Cyber Heal Concurrent Jobs Improvements 

• Support for 1000+ Users in 365 integration

(There is still 1 more major upgrade coming to Cyber Heal expected in Feb)

LAN Scanner Upgrades (Version 1):

• 1 Drop Down Only

• Device Online Filtering

• Add remote subnets

• Reporting now added to "Ultimate Report"

(Ability to break down /8 / 16 networks should be coming in the next release). 

Can we remind you that 80% of our users use our platform completely Free to keep themselves Cyber Safe. Startups, Government Organisations, Charities, Healthcare Providers, Small Business, and even security conscious individuals all over the western and developing world. We are very proud of this, and we cant do it without the crowd sourced, feedback, bug hunting, suggestions and ideas that come from you all so please keep them coming. 

181 Fixes / Enhancements Across The Platform:

(We did this in 3 weeks across 2 releases)

• Cyber Heal: Firewall protected status is not shown on GUI, after Firewall is fully enabled.

• Daily Report Missing CVEs and MFA

• Account creation fails

• Remove (Beta) from One-Click Dialogue

• Tenancy: User added to the group issue privileges for the organisations associated with the group.

• PGP Encrypted Email Test

• [LanScanner] Modifications to UI

• Cyber Heal Licensing Click Twice

• Cyber Heal: BYOS doesn't handle capitilised .EXE or .MSI files sometimes

• VScan: The Host deleted does not get added again on Host tab when scan performed or when added manually using add host feature.

• VScan: The Host deleted does not get added again on Host tab when scan performed or when added manually using add host feature.

• [LanScanner] Add Subnet UI modifications

• MFA report in Ultimate report

• VScan: Scan history table does not appear after first scan is processed. Need a page refresh to see the first scan in the scan history table.

• Machine Type missing from the Updates page

• Cyber Heal Rescan API Update

• Cyber Heal: Error 500 is seen when tried to install the application.

• While printing Lan Scanner and V Scanner should be on new page

• Scan history should be the scan history of all scans in the org

• Last scan tab to show last scan performed in the org - remove filtering on device/network CIDR

• Allow searching by device name [by username may come later]

• Swap the positions of devices and network CIDR

• WinGet Installations happening Twice

• Update Command Icons in Frontend

• Lan-Scanner: Show offline and online device status.

• Dropbear banner not returning CVE data

• Cyber Heal: Error 400 is seen in console when tried to upgrade software from Cyber Heal page.

• VScan: Rows per page number in CVEs section under Attack surface mapper is incorrect.

• Device Vulnerabilities: changes not reflected on portal after making changes restarting agent

• Branding: Error 401

• Azure Ad Sync: Sync status not updated

• VScan: Upgrade button fails to load in Vulnerability report received for non-paid account.

• Fix Ultimate report Logo issue While printing page

• Branding: Hide organisations the user doesn't have admin permissions for

• Branding: Delete api call being made during page load

• Branding: Unauthorized api error

• Ultimate report: Issues with CSV report downloaded from report-view page.

• Fix Title issue while Printing page - Ultimate report

• Phone app: implement new CVE service

• Add Logo on last page of report

• CVE data lambda errors

• [LanScanner] I don't like the way we select the network, can we just do machine potentially?

• [LanScanner] only show online devices

• Add organization name under logo in Report view

• are we able to increase this without needing API mods ?

• Can we have the ability to write characters of the name in the drop down and it finds the selection

• Vscan2: add Banner and message for owasp.

• Dev Agent Issues

• Add mac download and doc link.

• The Version of application is not seen updated on Device Vulnerabilities page after application is updated.

• Bulk add group users

• Lock down Tenancies for non-admins

• Provide a way for users to leave the Tenancy

• Rewrite the Tenancy User invite logic

• Tenancy - Can't remove Organisations

• VSCAN2: Rows per page count is not correctly updated when filters are selected in scan history table.

• Ultimate Report: Issues seen with ultimate report view.

• Need a disclaimer about OWASP false positives

• Remove favourite API as this is vscan1 related and no longer needed

• Antivirus: Issues in Windows defender CSV report.

• Some columns is missing in Hardware and Windows Update CSV report downloaded.

• User Added Subnets - i.e. for a devices on a different VLAN

• Cyber Heal Step function - Wont stop on success

• DISK/DATA: Data not being pulled through to device profiles. ΓÇÿinvalid dateΓÇÖ

• Issues seen on device detail window pop-up.

• dataLayer - Pass user email as SHA256 hashed (backend)

• Support requests going into identity

• Windows Update guy not working

• Multiple un-install errors

• Device Vulnerabilities: User info not populated on Device and Device detail tab

• One-Click Upgrade: Error 500 upgrade via WinGet

• Production release issues.

• RoboGuard: The first schedule created does not reflect in real-time.

• VScan: Error 500 seen when tried to download report.

• Cyber Heal Removal Prod API Error

• Phone app: Investigate and fix failing API tests - CVE/Email

• Dev Environment: Data mismatch and redirection issues.

• Phone app: Rename port scan to 'Vulnerability Scan'

• Remove the batcher step function

• Phone app: remove UDP scan option

• Wording issue in Ultimate report and add Organisation name to report

• Rename  Vulnerability Scanner 2 to  External Scanner.

• Remove ad sync doc link.

• Control Timeouts

• Vscan2: Open expansion panel on row click.

• Cannot start scan - Organisation doesn't exist

• Third Party AV: Fortinet

• Hide Azure AD Sync Manual Setup for all users

• No data displayed in devices list for a scan

• Microsoft Syncing Bug with ECS

• Data/Disks: The pop-up option is non functional for the devices seen on "Devices tab".

• Identify and fix ultimate report loading error

• Dev Branch: Review the Auth yaml template for Eventbridge subscriptions

• Dev Branch: Look at the failing Stripe payments

• Microsoft Timing Out

• Microsoft Enter Credentials Error

• Phone app: include test apk in the github test build action

• Phone app: Create test apk for testing release in testlab

• LanScanner - Allow users to add Subnets and let them choose the Device for scanning

• Phone app: Fix missing storePassword for CI build and release

• Cyber Heal Looping Commands

• Microsoft Backend - Auto Execution Daily

• Phone app: add note on device scan page re mac loss

• Disable vue recommended lint plugin until ready

• New Firebase Project for DEV

• Microsoft Sign-in being Cached

• Microsoft Status API

• Lan Scanner: Issues with "No CVEs" label shown for 'N' in column name M/L/N

• Frontend - Single Auth Sign-ins

• Frontend - Microsoft Unmanaged Sign-ins

• Frontend - Microsoft Users

• Frontend - Microsoft Risk Detections

• Frontend - Microsoft Missing Intune Devices

• Frontend - Microsoft Risk Data

• Frontend - Microsoft Intune Devices

• Frontend - Microsoft Azure Devices

• Frontend - Microsoft Intune Compliance Issues

• Frontend - Microsoft Status Test Page

• Lan Scanner: Issue with 'Download CSV' option with Filters selected.

• Add "Filter these results" button after Printable page button

• VScan2: Host count does not appear correct on Vscan2 dashboard.

• Improve login loading status position

• Scan triggered from Hosts tab results in 500 error

• Tenancy Typos: "organisation" should be "organisations" and capital U in User should be lowercase - user.

• Add vuetify tooltips to the display mode buttons

• Licences

• Vanity Pages Version Number

• CORS Devops Updates

• Try and improve scrolling for V Scan new scan setup

• Stop Scrolling for payment (prob make smaller)

• Microsoft Backend - Unmanaged Sign-in Access

• Microsoft Backend - Intune Compliance Data

• Microsoft Backend - Sign-in Data

• Phone app: Review DNSSD and UPNP, check for updates

• Microsoft Backend - Intune & AD Devices

• LanScanner: Improve mobile view

• Can we have this renamed to OS Updates please

• Data/Disks: Issues with the CSV report downloaded.

• Management: Issues with the CSV report downloaded.

• Download CSV: No Validation message is shown on clicking "Download CSV" option if there is no data to export.

• Ian - Missing License

• Device List CSV's From agent Management pulling through all devices from multiple orgs

• Add Lan Scanner (Beta) Data to Ultimate Report

• Lan Scanner running indefinitely if a quick heal is initiated on the same device that is being scanned

• Paul - Duplicate devices

• VScan2: Same IP gets scanned more than once.

• lan scanner UI improvement for Unlicensed devices.

• Fix timed out commands

• Center align this dashboard icons.

• VScan2: Scanner section should show version along with the app name to avoid confusion in the mismatch seen in CVE count.

• Error 500 is seen when tried to create organisation.

• Tenancy: Error 400 is seen for new users when tenancy page is loaded.

•  once we are stable with the new foundation)

• Fix filter alignment on disk/Device page.

• Handle Deleted / Multiple DeviceIds for same device

• Hard to find the right Agent

• OWASP: Alert count shown is different on Host tab and in scan result.

• NIST Data Feed to API Migration

• LAN SCANNER : doesnt say number of devices discovered

• LAN SCANNER : the last scan doesn't populate via web sockets until you refresh

• QA the Windows Event Logs as part of the new agent release.

• Remainder, Ransomware and Firewall Issue when using Intune

• LanScanner: 9 Navigation Issue

• LanScanner: 6: Heartbeat Refresh

• LanScanner: 5. Devices Tabs

• Apache Configure With complete

• Cyber Heal: websocket message for deletion

• Cyber Heal step function - Commands for offline devices

• VScan2: Mismatch in CVEs count on Scan page in scan result of multiple IPs.

• VScan2: Issue with the number of CVEs seen in open Port table.

• Threats not clickable

• PhoneApp: Upgrade Android SDK and libraries to version 33

• PhoneApp: Resolve email data issue with google

• VScan2 Delete hosts - cleanup associated scan data

• Test Phone App Ensure we receive Shodan Data

• VScan2: The CVE count on Host tab is incorrect for non-paid users.

• Vue, Nuxt, Vuetify 3 upgrade

• VScan2: CVE column shows duplicate CVE count on Host tab.

• One-Click Fix: The apps updated or Uninstalled from Dashboard and CVE Vulnerabilities page does not get update in Real time. Need Hard refresh to see the changes done.

As always, please let us know if you have any question or anything we can do to enhance your experience on the platform.

Any Questions?

You can send us an email at hello@roboshadow.com. Additionally, for our current users, there's a convenient 'Support' option within the RoboShadow console, ensuring you get timely and effective responses. We're here to help and ensure your experience with RoboShadow is seamless and beneficial.