We’re delighted to announce the discharge of Invicti Enterprise On-Premises 2.4. The brand new model brings collectively a variety of updates and enhancements, notably Enterprise Logic Recorder, Azure Key Vault integration, the flexibility to run Invicti Enterprise scans on Linux cases on Amazon Internet Companies (AWS), and prolonged bug detection assist. GraphQL library. We have additionally added many new safety checks, enhancements, and fixes.
Enterprise Logic Logger
We have now launched Enterprise Logic Recorder (BLR) in native merchandise. BLR performance helps maximize scan protection and detect vulnerabilities in website and utility parts that may solely be accessed by particular enterprise logic flows.
Enterprise Logic Recorder lets you seize any distinctive or advanced enterprise logic in your goal internet functions, together with assist for multi-step varieties with quite a few validation standards. When scanning, the crawler makes use of these logical recordings to find extra pages, varieties, and endpoints.
For extra info, see our assist web page on utilizing Enterprise Logic Recorder.
Azure Key Vault integration
We have launched integration with Azure Key Vault to make sure you have loads of choices to guard your secrets and techniques, which is particularly vital because the zero-trust method continues to realize recognition.
Azure Key Vault is a cloud service that lets you securely retailer and entry secrets and techniques corresponding to login credentials. Azure protects these secrets and techniques by utilizing business normal algorithms, safe key lengths, and {hardware} safety modules.
With the brand new integration, you may join Invicti Enterprise to Azure Key Vault out of the field to run authenticated scans throughout all of your internet functions, web sites and APIs with out manually getting into or exchanging delicate credentials.
For extra info, see our assist pages on integrating Invicti Enterprise with Azure Key Vault and configuring inside brokers for secrets and techniques administration companies.
Configuring Invicti Enterprise for Linux on AWS
On this launch, we added the flexibility to configure Invicti Enterprise to run scanning brokers on AWS Linux cases. With this selection enabled, while you begin a brand new scan, Invicti Enterprise creates a brand new Linux occasion for the scanner agent and routinely terminates it as soon as the scan is full.
Because of this enhancement, you may simply auto-scale scans. Now you may provoke as many simultaneous scans as you want and Invicti Enterprise will simply scale all these scanning duties by counting on AWS. This auto scaling possibility can be very price efficient as Invicti Enterprise can run all these duties on Linux cases.
For extra info, see our assist pages on configuring cloud supplier settings and configuring Invicti Enterprise for Linux on Amazon Internet Companies (Ubuntu).
GraphQL library discovery
We have now prolonged the GraphQL discovery capabilities in Invicti Enterprise, enabling scans to find GraphQL endpoints and libraries by sending particular queries to your internet utility. It’s vital to guard all of these endpoints, as they may very well be utilized by malicious actors to stage assaults.
Along with this functionality, we beforehand launched assist for scanning GraphQL-based utility programming interfaces (APIs). Together with improved library detection, the flexibility to scan GraphQL APIs will enhance the safety of your internet functions.
For extra info, see our assist web page on discovering GraphQL libraries.
Extra info
For an entire checklist of what is new, enhancements, and fixes on this replace, see the Invicti Enterprise changelog.
– October 2022 update for Invicti Enterprise on-premises
