We’re delighted to announce the discharge of Invicti Enterprise On-Premises 2.4. The brand new launch rolls collectively a variety of updates and enhancements, most notably the Enterprise Logic Recorder, Azure Key Vault integration, the flexibility to run Invicti Enterprise scans on Linux cases on Amazon Net Providers (AWS), and prolonged GraphQL library detection help. We’ve additionally added many new safety checks, enhancements, and fixes.
Enterprise Logic Recorder
We’ve launched the Enterprise Logic Recorder (BLR) to the on-premises merchandise. BLR performance helps to maximise scan protection and detect vulnerabilities in utility and web site parts which are solely accessible via particular enterprise logic flows.
The Enterprise Logic Recorder means that you can seize any distinctive or complicated enterprise logic in your goal internet apps, together with help for multi-step varieties with quite a few validation standards. When scanning, the crawler then makes use of these logic recordings to find additional pages, varieties, and endpoints.
For extra data, see our help web page on utilizing the Enterprise Logic Recorder.
Azure Key Vault integration
We’ve launched integration with Azure Key Vault to make sure that you’ve loads of choices to guard your secrets and techniques – particularly necessary because the zero belief strategy continues to achieve in reputation.
Azure Key Vault is a cloud service that means that you can securely retailer and entry secrets and techniques akin to login credentials. Azure protects such secrets and techniques via using industry-standard algorithms, safe key lengths, and {hardware} safety modules.
With the brand new integration, you may join Invicti Enterprise to Azure Key Vault out-of-the-box to run authenticated scans throughout all of your internet apps, web sites, and APIs with out manually getting into or exchanging delicate credentials.
For extra data, see our help pages on integrating Invicti Enterprise with Azure Key Vault and configuring inner brokers for secrets and techniques administration providers.
Configuring Invicti Enterprise for Linux on AWS
On this launch, we’ve added the flexibility to configure Invicti Enterprise to run scan brokers on AWS Linux cases. With this feature enabled, once you launch a brand new scan, Invicti Enterprise creates a brand new Linux occasion for the scanner agent and terminates it mechanically as soon as the scan is accomplished.
Because of this enchancment, you may simply auto-scale the scans. Now you can launch as many concurrent scans as you want and Invicti Enterprise will simply scale all these scan duties by counting on AWS. This auto-scaling choice can be very cost-effective, as Invicti Enterprise can run all these duties on Linux cases.
For extra data, see our help pages on configuring cloud supplier settings and configuring Invicti Enterprise for Linux on Amazon Net Providers (Ubuntu).
GraphQL library detection
We’ve expanded the GraphQL detection capabilities in Invicti Enterprise, permitting scans to detect GraphQL endpoints and libraries by sending particular queries to your internet utility. It’s essential to safe all such endpoints, as malicious actors might use them to stage assaults.
Along with this functionality, we beforehand launched help for scanning GraphQL-based utility programming interfaces (APIs). Coupled with improved library detection, the flexibility to scan GraphQL APIs will enhance the safety of your internet purposes.
For extra data, see our help web page on GraphQL library detection.
Additional data
For a whole checklist of what’s new, improved, and stuck on this replace, see the Invicti Enterprise changelog.
