CYTRIX Release Notes (ChangeLog)

Login to the target via SMS OTP

Login to the target via Email OTP

Login to the target via Google & Micrososft SSO

Login to the target via Google & Micrososft Authentication

Login to the target via Basic Authentication

Microsoft SSO (SAML) Login to Cytrix Platform

OKTA SSO (SAML) Login to Cytrix Platform

The scanning mechanism has been improved and works faster and smoother.

Previous vulnerabilities have been improved in terms of detection and attack

Vulnerabilities Phrasing and Content were improved.

Notifications Phrasing and Spelling were improved.

A large number of false positives have been fixed.

Other bugs related to Cytrix performance were fixed.

Text\Visual corrections were made.

Aborted scans occurrences have been minimized significantly.

"IDOR Param" option has been added to the scan, now you have tha ability upload file for IDOR Vulnerability

"One Session" option has been added to the scan

More than 1000 new exploits added to engines

More than 5000 new CVES added

Previous vulnerabilities have been improved in terms of detection and attack

Vulnerabilities Phrasing and Content were improved.

Notifications Phrasing and Spelling were improved.

Other bugs related to Cytrix performance were fixed.

Text\Visual corrections were made.

Aborted scans occurrences have been minimized significantly.

Google SSO Login to Cytrix Platform

Encrepted ZIP has been added to the reports

Add new Integration for "Monday"

Fixed IP option has been added to your Server

"Custom Header" option has been added to the scan

"Hosts File" option has been added to the scan

Dashboard display more Details about the Server.

Vulnerabilities Phrasing and Content were improved.

2500 New ways options have been added to detect Wafs

Notifications Phrasing and Spelling were improved.

Other bugs related to Cytrix performance were fixed.

Text\Visual corrections were made.

Aborted scans occurrences have been minimized significantly.

Dashboard display more Details about the Server.

"Save Event Logs" option has been added to Profile

"Include scans for all ports" modifier has been added to New Scan, allowing users to initiate additional scans on all existing Ports of a Target.

New Formats for Project Reports have been added.

The option of Comparing Projects (based on a Project and its Retest) has been added to the system.

Creating Proxies that use Credentials has been added to the system.

Support knowledge base was updated according to new and updated features.

Number of Event Logs being displayed is now 20.

Exporting Event Logs is now possible after enabling "Save Event Logs" in Profile.

Locking/Unlocking Scans which prevents their Deletion is now possible.

Permissions for User Roles have been updated accordingly.

Retesting Projects Retests is now possible.

Exporting All URLs in Scans won't contain Duplicates.

Vulnerabilities Phrasing and Content were improved.

Notifications Phrasing and Spelling were improved.

Aborted scans occurrences have been minimized significantly.

Text\Visual corrections were made.

Other bugs related to Cytrix performance were fixed.

Other bugs in the Dashboard\UI were fixed.

"Top Vulnerabilities" are now being displayed in the Dashboard.

"Most Vulnerable Targets" are now being displayed in the Dashboard.

"Scan All Ports" modifier has been added to New Scan, allowing users to display all detected Ports in their scans instead of the default 1,000.

"Include scans for all subdomains" modifier has been added to New Scan, allowing users to initiate additional scans on all existing Subdomains of a Target.

New Vulnerabilities have been added to the system.

The option of Comparing Scans (based on existing and a previous scan) has been added to the system.

Exporting a Report the details the Comparison between Scans has been added.

Setting "Priority" for Queued Scans has been added.

Support knowledge base was updated according to new and updated features.

New options are now possible through the Main dropdown menu (top-right corner).

The last 100 Event Logs will be displayed its tab instead of all of them.

New Engines/Checks have been added to the scanning process.

The option of "Retesting" an entire Project ("Project Retest") is now possible.

"Report A Problem" section has been changed to "Tickets".

Scheduled Scans using the Self Login method will now save login details for future occurrences.

Ticket/Issue "Type" has been added to "Tickets" for a better reporting experience.

Vulnerabilities Phrasing and Content were improved.

Searching through All Notifications has been improved.

Notifications Phrasing and Spelling were improved.

Aborted scans occurrences have been minimized significantly.

Text\Visual corrections were made.

Other bugs related to Cytrix performance were fixed.

Other bugs in the Dashboard\UI were fixed.

Users can now add their own Custom Payloads using the "Payloads" section.

The option of "Adding New Vulnerability" manually, is now possible.

Stopping Auto Refresh for the "Scans" section is now possible.

Support knowledge base was updated according to new and updated features.

Cytrix's API Client and API Doc were updated.

Deleting Vulnerabilities from Scans is now possible.

Website Forms tab has been added to Scans.

Actions on Scans in the "Scans" section can now be done using a dedicated dropdown menu.

Actions on certain Vulnerabilities were added.

Emails Phrasing and Spelling were improved.

Notifications Phrasing and Spelling were improved.

Aborted scans occurrences have been minimized significantly.

Text\Visual corrections were made.

Other bugs related to Cytrix's performance were fixed.

Other bugs in the Dashboard\UI were fixed.

Searching by a Scan's Status is now possible.

Users can now Export Reports that contain information regarding specific Vulnerabilities.

The Option to mark "Check Stored Injection" has been added.

Users can now be notified of Paused and Resumed Scans.

Support knowledge base was updated according to new and updated features.

Cytrix's API Client and API Doc were updated.

"Pop-up", Temporary Notifications will be displayed according to the Action taken.

"Stopping" Scans is no longer possible.

"Refresh" button has been removed from Scans.

Changes in the UI of the Storage Section.

All Stop related functions have been removed from API.

Marking Vulnerabilities as FalsePositives can also be done from the Target's 'Home' page.

Reports Phrasing and Spelling were improved.

Emails Phrasing and Spelling were improved.

Notifications Phrasing and Spelling were improved.

Aborted scans occurrences have been minimized significantly.

Text\Visual corrections were made.

Other bugs related to Cytrix's performance were fixed.

Other bugs in the Dashboard\UI were fixed.

The option of Scanning APIs using an API Schema is now available. This requires a license for each subdomain.

Users can now Set Cytrix to 'Scan Only CVEs', which will Detect for CVEs only.

Marking Vulnerabilities as Fixed / Not Fixed is now available.

The option of Retesting Vulnerabilities has been added.

A new 'Storage' section has been added. Use it to upload and use Files.

Users can now configure on Cytrix that a website uses a 'Flash Token'.

Users can now Pause and Unpause Scans.

Cytrix's CVEs database is now updated daily according to the Global CVE Program. Your assets will be Continuously Protected in RealTime according to your license plan.

Support knowledge base was updated according to new and updated features.

Cytrix's API Client and API Doc were updated.

Fixed / Not Fixed Vulnerabilities will now be displayed in the Findings Table in Reports.

To use any file in Scans (txt, XLSX, HAR etc.), users need to upload it to their Storage and then select it.

New version of Captcha Authentication is now being used on the Login screen, to enhance security and at the same time ease the use for the users.

Reports Phrasing and Spelling were improved.

Emails Phrasing and Spelling were improved.

Notifications Phrasing and Spelling were improved.

Aborted scans occurrences have been minimized significantly.

Text\Visual corrections were made.

Other bugs related to Cytrix's performance were fixed.

Other bugs in the Dashboard\UI were fixed.

We added the option of using an Email Modifier when initiating a new scan.

We added the option of creating a Project attached to Jira.

The number of Forms found in a scan will now be displayed.

New Support posts have been added/updated.

Cytrix's API Client and API Doc were updated.

Users with a 'User', 'Private User' and 'Administrator' can no longer be changed to 'Viewers'.

Users with a 'Viewers' can no longer be changed to 'User', 'Private User' and 'Administrator'.

Reports Phrasing and Spelling were improved.

Login Authentication section and fields' functionality were improved.

Report A Problem section and fields' functionality were improved.

Profile section and fields' functionality were improved.

Server Settings section and fields' functionality were improved.

Aborted scans occurrences have been minimized significantly.

Text\Visual corrections were made.

Other bugs related to Cytrix's performance were fixed.

Other bugs in the Dashboard\UI were fixed.

Issues with several functions in the API Client were fixed, including the improvment of functioning in various permissions.

More vulnerabilities were added to our platform.

The Quick Scan function has been added, allowing users to quickly initiate Scans. For more information, go here https://cytrix.io/blog/docs/support/scans/quick-scan/

Users can now integrate and use Jira in their Cytrix server. For more information, go here https://cytrix.io/blog/docs/support/integration/using-jira/

The option of using a Duration Timeout has been added. For more information, go here https://cytrix.io/blog/docs/support/modifiers/duration-timeout/

Users can now perform Scans as Mobile. For more information, go here https://cytrix.io/blog/docs/support/modifiers/scan-as-mobile/

Screenshots have been added to Vulnerabilities and Reports.

New Support posts added/updated.

Cytrix's API Client has been updated.

Login Authentication section and its Login Methods got updated for better functionality.

"Technologies" design and appearance were improved.

Login Profiles methods functionality were improved.

The Dashboard's UI was rearranged and improved.

Aborted scans occurrences have been minimized significantly

Text\Visual corrections were made.

Other bugs related to Cytrix's performance were fixed.

Other bugs in the Dashboard\UI were fixed.

More vulnerabilities were added to our platform.

Two new types of reports can now be exported : "Developer Report" and "Business Impact Report".

The option of exporting a file listing all the Event Logs of a scan has been added.

About 3000 more CVES were added for 40 different technologies.

Cytrix can now fetch all the External Links the Target is communicating with.

New Support posts added/updated.

Cytrix's API Client has been updated.

Users can now use our search engine to search for both Targets and occurences of Vulnerabilities.

Users can now get notified on scans got aborted in Microsoft Teams and Slack.

Descriptions of vulnerabilities, recommendations and business impacts have been expanded and improved.

"Technologies" design and appearance got improved.

Headers functionality got improved.

Resender functionality got improved, link to Resender Support https://cytrix.io/blog/docs/support/scans/resender/ .

Aborted scans occurrences have been minimized significantly.

Text\ Visual corrections were made.

Other bugs related to Cytrix's performance were fixed.

Other bugs in the Dashboard\ UI were fixed.

Users can now receive notifications on scans being aborted.

More vulnerabilities were added to our platform.

We’ve added the option to integrate Slack.

We’ve added the option to integrate Microsoft Teams.

We've added the option of downloading the Self Login file with python for mac and linux.

Users can now enable/disable the “Auto SPA Detection” to let Cytrix determine whether the target is an SPA or not (by disabling it, you can determine it manually).

You can now use Cytrix’s Resender to manipulate HTTP requests in vulnerabilities Cytrix has detected to view different end cases.

For your convenience, additional FAQs have been added to the site https://cytrix.io/frequently-asked-questions/ .

Each scan has a "Technologies" window in the "More Information" tab, listing all the technologies Cytrix has detected.

New Support posts added/updated.

Cytrix's API Client has been updated.

Event Logs will now appear in their own separate tab that will list all events occurred throughout the scan.

Vulnerabilities descriptions, recommendations and business impacts have been expanded and improved.

Aborted scans occurrences have been minimized significantly.

Text\Visual corrections were made.

Other bugs related to Cytrix's performance got fixed.

Other bugs in the Dashboard\UI got fixed.

More vulnerabilities were added to our platform.

We've added the option of adding a Job Title to each user in your server.

New tab named "Settings" has been added to active scans, allowing the user to modify it during the scan. In addition, the user can now attach an existing scan to a certain project.

We've added the option of reviewing all notifications, by clicking on "Show All" in the "Bell" icon on the right-upper corner of the platform.

By clicking on a certain path in the scan's structure under the "More Information" tab on the scan's webpage, users will be redirected to the link.

Admin can now attach number of projects to a user with the "Viewer" role.

The Administrator can now request a Fixed IP in the "Server Settings" section. It's always better to use the default method of dynamic IP

Admin can now receive all server-related notifications to his email, and define which Email address receives these notifications in the "Server Settings".

Users can now receive notifications to the user's email. The user can select\unselect them in the "Profile" section.

Users can now use their Fixed IP when initiating a new scan (if received, by default it's turned on).

Users can now export all the paths that the crawler has found.

Self Login was improved.

API target functionality was improved.

"Exclude" functionality was Improved.

Aborted scans occurrences have been minimized significantly.

Text\visual corrections were made.

Other bugs related to Cytrix's performance were fixed.

Other bugs in the Dashboard\UI were fixed.

A number of False-Positives were fixed.

In the "Profile" section, each user can now use his own API key.

Additional 5,000 WordPress related vulnerabilities were added.

New "Sensitive File" related vulnerabilities were added.

By enabling it in the "Profile" section, you can now get notified via Emails.

Logging by using a "Dialog" has been added.

User can import reports in additional formats : JSON, XML and Executive Summary.

The Admin can now disable the option to use the API for all users.

"Auto Speed" has now moved to the "Settings" tab at the "New Scan".

Self Login is now fully functional.

Text\Visual corrections were made.

The "Integration" Sub-Section has been moved to the "Manage" section.

Other bugs in the Dashboard\UI got fixed.

Other bugs related to Cytrix's performance got fixed.

Aborted scans occurrences have been minimized significantly.