Set Custom IDs for assets

If you have an internal asset management system or CMDB that has its own IDs, you can now add those as custom IDs to ShadowTrackr through the API. The IDs will come back with API results and can be used to select in queries. If set they are also shown in the GUI (but you cannot set them there at the moment). A custom_id does not have to be unique. You can have a single ID for multiple ip addresses or urls.

Automatic False Positive detection update

The TLS and SSL tests come up with quite a lot of results for some older vulnerabilities. These might be a thing for legacy systems, but are almost always fixed in modern systems. That does not always show on the outside and clogs up the vulnerability overviews. You can of course mark them as false positives, but since there can be quick a lot we changed the default. The following vulnerabilities are now by default marked as false positive: CVE-2011-3389, CVE-2013-0169, CVE-2013-3587, CVE-2014-0224.

Big UI update for better UX

The Shadowtrackr User Interface has organically grown over the years. This is a nice way of saying that it got a bit inconsistent and at some places rather ugly even.

This weeks update brings consistency back and adds a better overall user experience.