![]() ![]() You'll also find fresh CWE references for several modules. You can now remove any content security policy defined in the header or response body by using the new 'CrawlConfig' option. Gives you the ability to import and reference a traffic file within an application by sending requests to the front-end application and back-end server.Īs a quick reminder, now available is the latest release of InsightAppSec's next-gen scan engine.Enables tracking of user actions during authentication.Gives you greater capabilities to determine whether a vulnerability is valid by replaying an attack.Now available at the Chrome web store, version 4.0 improves authentication into your web applications. Quickly apply multiple search criteria - the more filters you add in the search bar, the more refined your results. Navigate throughout applications while maintaining search queries for the session. ![]() Within InsightAppSec, you can enter specific criteria to speed up triaging and prioritization and:Ĭreate and save unique filters as well as leverage quick filters based on vulnerability statuses. This is called a 'Wildcard,' and an admin can now delegate scan configuration, no longer needing to specify each subdomain explicitly.įind vulnerabilities faster with filters. Now they can catch all subdomains with 1 addition to the allowlist. There's also a new way to help security admins help you. Manage security programs via API within InsightAppSec: Manage customer-specific issues more efficiently and run search queries easier with newly included tag management.Īnother scan upgrade you can now take advantage of within InsightAppSec? ' Incremental Scanning.' Help your team to achieve more targeted testing and triaging (that's a lot of alliteration) by scanning only the parts of an application that are new or have changed. You can also reset, enable, or disable the defined Content Security Policy (CSP) for a specified application. New API features for both tCell and InsightAppSec create additional checks and balances as well as new avenues for integration with other systems in your environment.Ĭonfigure policies via API in tCell: Exert greater control by enabling, disabling, or blocking various features via API. Save time and reduce configuration friction to the process by verifying you've entered the correct username and password during/early in the scan configuration. Plus streamline automated login with the new ' Verify Credentials ' feature. To achieve a more accurate and efficient login process into these applications, InsightAppSec interrogates the web application, using javascript to identify login pages, complete credential fields, trigger login action, and return a confidence score. You can now get into modern applications faster with ' Automated Login.' InsightAppSec enhanced the automated authentication process to go beyond simple HTML forms to include applications built with rich user interfaces. However, the new features and functionality below can (mostly) be grouped into these 3 categories. That last one was just to make the entire headline rhyme. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |