Change Log

Website Scanner now includes HTTP requests and responses in the findings found with the Website Scanner.

Sniper can exploit a critical flaw in Joomla 4.0.0 through 4.2.7. An improper access check allows unauthorized access to web service endpoints. (CVE-2023-23752)

Website Scanner now extracts the database version after checking and finding SQL injection.

We've added the option to include separated URLs in the Website Scanner to make sure there aren't any redirects and you are scanning the correct ones. You can add a list of your specific URLs and start scanning.

You can now check for XSS through template expressions in AngularJS and Vue apps using our Website Scanner.

We've added the Blind XSS injection type (to the current XSS detectors) you can now detect with our Website Scanner.

We've added 'Group/Order By' payloads in our SQL Injection detector from Website Scanner so you can better detect these high-risk vulns.

We have a new scan option 'Enable extensive modules' you can use to run for an extended period of time. Enabling this option increases the scan duration.

Sniper can exploit a critical RCE flaw in Apache Commons Text packages 1.5 through 1.9. This vuln affects the StringSubstitutor interpolar class, which is included in the Commons Text library.

Sniper can exploit an unauthenticated RCE vuln found in the external control of file name or path in the Fortinet FortiNAC versions. (CVE-2022-39952)

We've implemented an auto-update mechanism system for our VPN Agents. Automatically download and install the newest versions of them. Zero downtime + no redeployment needed.

Sniper can exploit an RCE vuln found in the remote_agent.php file of the Cacti servers (CVE-2022-46169)

The Finding Templates page also got a fresh look and improved design. You can now search and filter for specific templates in a cleaner interface, and more.

Some web apps support HTTP headers that can be used to override parts of the request URL. You can now detect them with our Website Scanner.

Sniper can exploit a command injection vuln in the License Response Servlet (CVE-2023-0699)

For the client-side attack option, you can now choose between different types of macros that are added to the document (plain/obfuscated powershell).

Sniper can exploit an OS command injection vuln found in centOS Web Panel, that allows remote attackers to execute commands via shell metacharacters in the login parameter. (CVE-2022-44877)

Sniper can now exploit a RCE in multiple Zoho ManageEngine on-premise products. (CVE-2022-47966)

Sniper can now exploit a path traversal vuln located in the /public/plugins/endpoint of the Palo Alto servers. (CVE-2017-15944)

The All scans page got a fresh redesign. You can now get a better view of your summary, better filtering for your tool names and start dates, expand and collapse all in the grouped view and more.

When using our Network Scanner, Sniper, or Port Scanners, now you can choose the full port range (starting from 1 to 65535 ports) when scanning your targets.

We've included a Status label for the findings of your scans in the HTMP and PDF reports.

Sniper can now take a screenshot of the target system if it runs Windows. The picture will be available in your scan report and it's part of the Proof-of-Exploit.

We added a new filter in our Pentest Robots for the website scanner block: Login Interface Found. This will match every new URL found by website scanner under the finding Login Interface Found. After this filter, you can add a Password Auditor so you can try to detect weak credentials.

Website Scanner can now detect client-side prototype pollution. You can automatically detect sources for prototype pollution in the URL sent via web messages.

Engagements page also got a fresh look and improved filtering. You can now hide the columns you don’t use to declutter the page and find the entries you want faster.

Sniper can now exploit a Remote Code Execution vulnerability in the /password_change.cgi endpoint of the Webmin server. (CVE-2019-15107).

Sniper can now exploit a Remote Code Execution vulnerability in the htmlawed module from GLPI (CVE-2022-35914).

Sniper can now exploit a Remote Code Execution vulnerability in the Apache APISIX API Gateway server (CVE-2022-24112).

Sniper can now exploit a Remote Code Execution vulnerability in the web-based management interface of Cisco Small Business routers (CVE-2019-1653).

Website Scanner now has full HTTP requests and responses attachments in the evidence fields for all active detection modules like SQL Injection, XSS, SSRF and all the others. This part of the evidence can help you if you want to manually test the finding.

White Label page got a new look and feel, making it easier for you to perform changes. Now you can preview your custom logo, use tags to quickly change your Subject and more.

When using our Network Scanner (in any mode), you will now get all the ports, not just the open ones. The goal is to have a better view of the target.

You can now get notified if a scan doesn't have one or more statuses. You can do this by checking the negation checkbox when creating a new notification.

Our Password Auditor will automatically scan for default credentials based on the service or application found.

Sniper can now exploit a Remote Code Execution vulnerability affecting the web-based management interface of Cisco Small Business RV Series Routers (CVE-2021-1472).

We've added the option to schedule a task once per year.

Overwrite the default maximum time that the Website Scanner is allowed to run (24h). The minimum is 30 minutes if you want to get faster results.

Sniper can now exploit a Remote Code Execution vulnerability affecting pfBlockerNG packages (CVE-2022-31814).

We have updated the VPN Profile Page with a much more efficient design. You can start your Internal Assessments faster with the easier deployment of VPN Agents, batch testing multiple VPN Profiles, and having all the details at a glance with the new slide-over (such as assigned Workspaces or OpenVPN Logs).

In addition to the existing attack type, Dictionary, we've added a new one. Password Spray will try for every password every username in the wordlist, before moving on to the next password. This helps to avoid account lockouts that would normally occur when brute forcing a single account with many passwords.

Sniper can now exploit a Remote Code Execution vulnerability affecting EJS (Embedded JavaScript templates) Node.js package (CVE-2022-29078).

Sniper can now exploit a Server Side Request Forgery vulnerability affecting the Fusion Builder WordPress plugin, used in the well known Avada Wordpress theme (CVE-2022-1386).

You can now use our Sniper tool to create client-side attacks. Generate a 'malicious' file (doc, docm, xls, xlsm) containing obfuscated VBA and send it to your victim user. Once they open and enable the macros, Sniper runs all the extractors on their machine to gather evidence of the successful attack. This approach does not use any exploits.

We've replaced the old Dashboard page with a new, beautiful page. Now you can view the trend of vulnerabilities for the current workspace on the last 14 days, see at a glance the whole picture of the attack surface for the current workspace and more.

Network Scanner can now detect if a Zoho ManageEngine ADAudit Plus server is vulnerable to XML External Entity Injection (CVE-2022-28219).

Sniper can now exploit an Authentication Bypass vulnerability affecting Fortinet FortiOS, FortiProxy and FortiSwitchManager (CVE-2022-40684).

Password Auditor can now discover the Docker API with no authentication configured.

We've created the Pentest-Tools.com Vulnerability & Exploit Database, which contains the list of vulnerabilities that can be detected and the exploits that are currently available in the platform.

You can now sort and filter existing workspaces or add new ones in our new sidebar.

We've replaced the old Robots page with a new page where you can easily sort, filter and more with our new design.

Network Scanner can now detect if a Microsoft Exchange server is vulnerable to Remote Code Execution (CVE-2022-41040/41082).

Network Scanner can now detect if a Grafana server is vulnerable to Authentication Bypass (CVE-2021-39226).

Sniper can now exploit a Remote Code Execution vulnerability affecting Atlassian Bitbucket (CVE-2022-36804).

Added the possibility to chain the CMS Scanners within the Pentest Robots.

We've added a new filter: get notified if a scan result has confirmed findings.

We've replaced the old Workspaces page with a new page where you can easily sort, filter and more with our new design.

Password Auditor will take a screenshot of the authenticated session if weak credentials are found for HTTP web forms.

Network Scanner can now detect if a Sophos server is vulnerable to a Remote Code Execution vulnerability (CVE-2022-1040).

Sniper can now exploit a Remote Code Execution vulnerability affecting Remote Desktop Protocol/Services (CVE-2017-0144).

Password Auditor will try to automatically find the login page and attempt web form authentication if there is no login form at the target URL.

Network Scanner can now detect if a Gitlab Comunity/Enterprise server is vulnerable to a Remote Code Execution vulnerability (CVE-2022-2884).

Sniper can now exploit a Remote Code Execution vulnerability affecting ManageEngine, Password Manager Pro and ManageEngine PAM360 (CVE-2022-35405).

Sniper can now exploit a Remote Code Execution vulnerability affecting the Jenkins Script Security Plugin (CVE-2018-1000861, CVE-2019-1003005, CVE-2019-1003029).

We changed the name of Find Subdomains to Subdomain Finder for better name consistency.

Sniper can now authenticate to the target through MySQL using the provided credentials.

Sniper can now exploit a Pre-Authorization Arbitrary File Read vulnerability affecting Atlassian Jira (CVE-2020-29453).

Network Scanner can now detect if a Microsoft Windows server is vulnerable to a Remote Code Execution vulnerability affecting RDP (CVE-2019-0708).

Sniper can now exploit a Pre-Authorization Arbitrary File Read vulnerability affecting a VMware Workspace One server (CVE-2022-31656).

Network Scanner can now detect if a Zoho ManageEngine ADSelfService Plus server is vulnerable to Stored Cross-Site Scripting (CVE-2022-24681).

Network Scanner can now detect if a Django application is vulnerable to SQL Injection (CVE-2022-34265).

Sniper can now exploit an Authentication Bypass vulnerability (CVE-2022-27925) and an Arbitrary File Upload (CVE-2022-37042) affecting the Zimbra collaboration suite.

Sniper can now exploit a Pre-Authorization Arbitrary File Read vulnerability affecting Atlassian Jira (CVE-2021-26086).

Network Scanner can now detect if an Apache HTTP Server is vulnerable to Cache-Digest Denial of Service Attack (CVE-2020-9490).

Website Scanner is now greatly improved (up to 60%) by parallelising the active detectors.

Sniper can now exploit a Pre-Authorization Arbitrary File Read vulnerability affecting Atlassian Jira (CVE-2019-8442).

Network Scanner can now detect if a Jira server is vulnerable to Information Disclosure (CVE-2020-14179).

Network Scanner can now detect if an Emlog instance is vulnerable to Path Disclosure (CVE-2021-3293).

Sniper can now exploit a Pre-Authorization Arbitrary File Read vulnerability affecting Atlassian Confluence (CVE-2021-26085).

Network Scanner can now detect if an Apache Tomcat Server is vulnerable to Open Redirect (CVE-2018-11784).

Network Scanner can now detect if the web interfaces of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) are vulnerable to Cross-Site Scripting (CVE-2020-3580).

Network Scanner can now detect if an Atlassian Confluence server is vulnerable to an Authentication Bypass vulnerability (CVE-2022-26138).

We've replaced the old Targets page with a new Assets page where you can easily sort, filter and more with our new design. The new version also better reflects the Targets by grouping them under their according Asset and offers more flexibility with selection operations.

Password Auditor can now discover weak credentials for the SMB service.

Password Auditor can now discover weak credentials for the WinRM service.

Sniper can now exploit a Remote Code Execution vulnerability affecting the Timelion visualizer from a Kibana instance (CVE-2019-7609).

Network Scanner can now detect if a Spring Data MongoDB application is vulnerable to SpEL(Spring Expression Language) Injection (CVE-2022-22980).

Sniper can now exploit a Remote Code Execution vulnerability affecting Atlassian Crowd and Crowd Data Center instances (CVE-2019-11580).

Sniper can now exploit a Remote Code Execution vulnerability affecting Microsoft SharePoint (CVE-2019-0604).

Our blog just got a massive revamp. We launched a new blog with a fresh redesign that helps you stay focused and get ethical hacking guides from our offensive specialists.

Sniper can now exploit a Remote Code Execution vulnerability affecting Drupal Core (CVE-2019-6340).

Increased the number of dorks in Google Hacking: find subdomains, search in wayback machine and more.

Sniper can now exploit a OS command injection vulnerability in the CGI program of Zyxel Firewall (CVE-2022-30525).

You can now deploy our VPN Agent in any AWS Cloud Infrastructure and start scanning your assets from within the network.

Deploy the VPN Agent much faster, on any platforms, including Windows, Linux, or even Apple M1, using Docker technology.

Sniper can now authenticate to the target through the SMB protocol using the provided credentials.

Sniper can now exploit a Remote Code Execution vulnerability affecting Atlassian Confluence server instances (CVE-2022-26134).

Sniper can now exploit a Remote Code Execution vulnerability affecting DotCMS systems (CVE-2022-26352).

Now you can send Pentest-Tools.com notifications to your Slack workspace.

Sniper can now exploit a Local File Inclusion vulnerability inside the Console component of Oracle WebLogic Server (CVE-2022-21371).

The Network Scanner can now detect if a Jira Seraph (the core authentication mechanism of Jira) instance is vulnerable to authentication bypass (CVE-2022-0540).

Sniper can now create a visual summary for the network hosts that are currently connected on the target and also the adjacent hosts from nearby subnets.

When deleting a Workspace, you will have the option to move the existing targets (and the associated data e.g. scans) to the default workspace or delete everything.

Sniper can now exploit an RCE vulnerability in F5 BIG-IP (CVE-2022-1388).

Sniper can now exploit an unrestricted file upload vulnerability in certain WSO2 products (CVE-2022-29464).

Sniper can now exploit an unauthenticated RCE vulnerability in Zoho ManageEngine (CVE-2021-44077).

The Network Scanner can now detect if a Jira Server or Data Center instance is vulnerable to a server-side template injection vulnerability (CVE-2019-11581).

Sniper can now be accessed via the API.

Sniper can now exploit an RCE vulnerability in the VMware Workspace ONE Access (CVE-2022-22954).

Sniper can now exploit an RCE vulnerability in Redis (CVE-2022-0543).

Sniper can now exploit an unauthenticated RCE vulnerability in Magento (CVE-2022-24086).

Sniper can now exploit an RCE vulnerability in Apache Struts 2 (CVE-2021-31805).

Sniper can now exploit an RCE vulnerability in the Drupal server (CVE-2018-7600).

Sniper can now exploit an RCE vulnerability in Adobe ColdFusion (CVE-2018-15961).

Sniper can now exploit an RCE vulnerability in Spring Cloud Function - a library in Spring (CVE-2022-22963).

Sniper can now exploit an RCE vulnerability in Spring core - a main component of the Java Spring Framework (CVE-2022-22965 - Spring4Shell).

Website Scanner findings that haven't been automatically validated by our scanner and need further manual verification will be marked with the 'Unconfirmed' tag.

The Domain Finder tool can now be accessed via the API.

Sniper can now authenticate to the target service using the provided credentials. Then it will extract the artefacts as an authenticated user.

Sniper can now exploit an RCE vulnerability in Spring Cloud Gateway (CVE-2022-22947).

The Domain Finder assigns a certain weight (or certainty) to each result to validate its correctness. Now the value of this parameter can be set to better filter the results.

Sniper can now exploit an RCE in the Apache Struts Framework (CVE-2017-12611).

The Network Scanner can now detect if an Oracle Weblogic Server is vulnerable to an Authentication Bypass vulnerability (CVE-2020-14882, CVE-2020-14883).

Choose your own wordlist or pick from the default ones in order to uncover new subdomains by trying each of them in the DNS Enumeration method of the Subdomain Finder.

Sniper can now exploit an Authentication Bypass leading to Remote Code Execution in Zabbix (CVE-2022-23131).

Sniper can now exploit an RCE in the Log4j logging library (CVE-2021-45046).

Sniper can now exploit an Authentication Bypass and RCE vulnerability in Zoho ManageEngine Desktop Central (CVE-2021-44515).

Sniper can now exploit an RCE in the Log4j logging library from Apache Struts 2 (CVE-2021-44228).

Added the possibility to chain the Domain Finder tool within the Pentest Robots.

The Network Scanner can now detect if a Microsoft Windows instance is vulnerable to EternalBlue (CVE-2017-0144).

We added to Website Scanner the capability to detect Server-Side Template Injection.

We added to Website Scanner the capability to detect dangerous Cross-Origin Resource Sharing (CORS) configurations.

We added new notification triggers related to the status of a scan: Stopped by user, VPN Error, Auth Error, Conn Error, Aborted.

We added to the Network Scanner findings that can be further exploited with the Sniper tool an 'Exploit with Sniper' button.

Sniper can now exploit an RCE in Apache Struts (CVE-2018-11776).

Sniper can now exploit an RCE in the Oracle Weblogic server (CVE-2020-14883).

You can now send a notification to additional emails.

We added Webhooks so you can trigger outgoing HTTP POST requests from Pentest-Tools.com to your endpoints whenever certain events have happened

The Network Scanner can now detect if a MobileIron Core server instance is vulnerable to Log4Shell (CVE-2021-44228).

Sniper can now exploit an RCE in the Oracle Weblogic server (CVE-2018-2894).

Sniper can now exploit an RCE in the Zoho ManageEngine ADSelfService Plus (CVE-2021-40539).

The Network Scanner can now detect if an Elasticsearch server is vulnerable to Log4Shell (CVE-2021-44228).

The Network Scanner can now detect if a VMware vCenter instance is vulnerable to Log4Shell (CVE-2021-44228).

Sniper can now exploit an RCE in the Log4j logging library (CVE-2019-17571).

The Password Auditor can now discover weak credentials over the following protocols: MQTT, AMQP, STOMP.

Added the possibility to chain the Network Scanner within the Pentest Robots.

The Network Scanner can now detect if an Apache HTTP Server is vulnerable to Server Side Request Forgery (SSRF) (CVE-2021-40438).

Sniper can now exploit an RCE in the Netgear routers (CVE-2020-17409, CVE-2020-27866).

The Network Scanner can now detect if an Apache Solr instance is vulnerable to Log4Shell (CVE-2021-44228).

The Network Scanner can now detect if an Apache Tomcat instance is vulnerable to Log4Shell (CVE-2021-44228).

The Network Scanner can now detect if an Apache Druid instance is vulnerable to Log4Shell (CVE-2021-44228).

The Network Scanner can now detect if an Apache Flink instance is vulnerable to Log4Shell (CVE-2021-44228).

Sniper can now exploit an RCE in the Log4j logging library (CVE-2021-44228).

Sniper can now exploit a Path Traversal vulnerability in Grafana (CVE-2021-43798).

The Network Scanner can now detect if a server is vulnerable to a RCE vulnerability in the Log4j logging library (CVE-2021-44228).

The Website Scanner can now detect the Apache Log4j vulnerability (CVE-2021-44228).

We added detection for Ruby Code injection in The Full Website Scanner.

Sniper can now exploit an RCE in Apache OFBiz (CVE-2021-26295).

Added detection for Broken Authentication while running an authenticated website scan in the Website Scanner.

Password Auditor can now discover weak credentials for the Redis service.

We added the possibility to see the target description in the All Scans page and the scheduler page. To enable it, check View settings -> Show target description.

The Network Scanner can now detect if a Microsoft Exchange server is vulnerable to Pre-Auth POST Based Reflected XSS (CVE-2021-41349).

Sniper can now exploit an RCE in the Apache Tomcat HTTP Server (CVE-2017-12617).

Sniper can now exploit an RCE in Exim mail server (CVE-2019-10149).

Sniper can now exploit an RCE in Laravel PHP framework (CVE-2021-3129).

We added detection for Perl Code injection in The Full Website Scanner.

We added detection for Python Code injection in The Full Website Scanner.

We have a new scan option for the Network Scanner - Sniper scan, a light scan that allows you to check only for the highly exploitable vulnerabilities in a non-intrusive way.

The Password Auditor now produces findings. Check the Findings page, where you can modify them and create editable reports.

Sniper can now exploit an RCE in the Apache Struts 2 Framework (CVE-2019-0230).

We added a new and more interactive interface for the Sniper scan result.

We added the possibility to delete existing HTTP Request Loggers.

Sniper can now exploit an RCE in Apache Struts (CVE-2017-9791).

Sniper can now exploit an RCE in Apache server (CVE-2014-6271).

Sniper can now exploit an RCE in the Gitlab CE/EE server(CVE-2021-22205).

The Pentest Robots can now be scheduled to scan recurrently from the targets page.

The Network Scanner can now detect if the Micro Focus OBM (Operations Bridge Manager) is vulnerable to Authentication Bypass (CVE-2020-11853 & CVE-2020-11854).

Sniper can now exploit a Local FIle Inclusion in the AJP connector in Apache Tomcat (CVE-2020-1938).

Sniper can now exploit an RCE in Citrix ADC (Application Delivery Controller) and Citrix Gateway (CVE-2021-3223).

Sniper can now exploit a Local File Inclusion in the Node-Red Dashboard through a Path Traversal vulnerability (CVE-2021-3223).

The Network Scanner can now detect if the Zoho ManageEngine ADSelfService Plus is vulnerable to Remote Code Execution (CVE-2021-40539).

We added detection for PHP Code Injection in the Full Website Scanner.

Sniper can now exploit an Arbitrary File Read and a Remote Code Execution through a Path Traversal vulnerability in Apache (CVE-2021-42013).

Password Auditor can now discover weak credentials for the following services: Postgresql, Telnet, and VNC.

Sniper can now exploit an Arbitrary File Read and a Remote Code Execution through a Path Traversal vulnerability in Apache (CVE-2021-41773).

Sniper can now exploit a Local File Inclusion in the Cisco Adaptive Security Appliance or the Cisco Firepower Threat Defense (CVE-2020-3187).

The Network Scanner can now exploit an RCE in VMware vCenter (CVE-2021-21985).

The Full Website Scanner will now generate more screenshots to simplify the reporting flow.

Sniper can now exploit a Local File Inclusion in Pulse Connect Secure (CVE-2019-11510).

The Network Scanner can now detect if the Cisco Adaptive Security Appliance or the Cisco Firepower Threat Defense is vulnerable to Local File Inclusion (CVE-2020-3187).

The Network Scanner can now detect RCE in VMWare vCenter (CVE-2021-22005).

Sniper can now exploit an RCE in the WebAdmin of Sophos SG Unified Threat Management (CVE-2020-25223).

Website Scanner findings that have been automatically validated by our scanner will be marked with the Confirmed tag.

Sniper can now exploit an RCE in the Open Management Infrastructure (OMI) agent that is preconfigured in the Linux VM deployed on Azure (CVE-2021-38647).

We added the possibility to clone an existing Pentest Robot.

Sniper can now exploit an RCE in Atlassian Confluence (CVE-2021-26084).

Sniper can now exploit an Unauthenticated RCE in VMware vCenter (CVE-2021-21972).

The Network Scanner can now detect if Modern Events Calendar Lite is vulnerable to an Unauthenticated Events Export (CVE-2021-24146).

The Network Scanner can now detect SSRF in vRealize Operations Manager API (CVE-2021-21975).

The Network Scanner can now detect XSS in the ProxyOracle exploit (CVE-2021-31195).

The Network Scanner can now detect RCE in VMware vCenter (CVE-2021-21985).

Now you can limit the maximum requests (per second) for the Website Scanner. Check the Engine Options → Limits → Requests per second.

We added the possibility to manually reset the API key.

The URL Fuzzer can now do recursive searches by running automatically inside all the directories already discovered.

The WordPress Scanner can now search for config backups, database exports, or TimThumbs.

Added the possibility to add targets using the CIDR notation (eg. 192.168.1.0/24).

The Network Scanner can now detect CVE-2018-13379 – path traversal in FortiGate SSL VPN appliance.

The HTTP Request Logger tool can now be accessed via the API.

The Network Scanner can now detect Node.js Systeminformation Command Injection (CVE-2021-21315).

The Network Scanner can now detect Remote Code Execution in Microsoft Exchange Server (CVE-2021-28480).

The Network Scanner can now detect the entry point for the ProxyShell attack chain (CVE-2021-34473).

Added the possibility to run a scheduled scan now, on demand.

The New Website Scanner will provide at the end of a scan result some stats: URLs spidered, the total number of HTTP requests, error count, etc.

Added to URL Fuzzer the possibility to control the delay between the requests. A retry delays factor is also added to increase exponentially the delay.

Added the possibility to filter certain results (eg. ignore or match certain HTTP codes, ignore or match if the HTML contains a string) to URL Fuzzer.

We increased the maximum size of a Wordlist from 10000 words to 50000 words.

The Website Scanner findings will now be classified by OWASP 2013, OWASP2017 and CWE. Check the Details of a finding to see more.

The Password Auditor now supports the NTLM authentication protocol.

Added the possibility to specify custom request timing options and the maximum number of retries to URL Fuzzer.

The URL Fuzzer now allows you to fuzz HTTP POST requests.

The Network Scanner can now detect the VMware vCenter Unauthenticated RCE (CVE-2021-21972) vulnerability.

Our new Website Scanner (currently in beta) will now check for sensitive data (email addresses, social security numbers, credit card numbers) in target applications.

We launched a new Website Scanner (currently in beta) fully written by our team. It allows you to select which tests you want to run and it returns less False Positives than the current full scanner.

The Network Scanner can now detect the F5 BIG-IP CVE-2021-22986 unauthenticated remote code execution vulnerability.

The Network Scanner can now detect Hafnium webshells injected during ProxyLogon attacks.

The Network Scanner can now the Microsoft Exchange CVE-2021-26855 SSRF vulnerability (ProxyLogon).

We started to develop custom detection modules which are being added to the standard OpenVAS Network Scanner scans in order to detect high risk vulnerabilities in commercial software.

Besides wordlists, the URL Fuzzer can now send a sequence of numbers as payload.

Check if a Microsoft Exchange server is affected by CVE-2021-26855, a vulnerability which can lead to disclosure of sensitive information and to RCE.

The target name and the workspace have been added to the cards created in Jira.

The Subdomain Finder tool has been improved with additional data sources to discover more subdomains.

You can get a scan notification if the open ports found are other than the ones you defined.

Now you can specify a custom location in URL Fuzzer for the payload using the FUZZ marker in the URL or in query strings.

The URL Fuzzer now allows you to specify custom headers to be sent with each request.

The two-factor authentication is now also available to all the Advanced users (besides Teams).

Now you can further customize the subject of the mail by changing the placeholders.

The subject of the e-mail generated by a scan will contain the name of the tool, the target and the workspace.

All scan results will be sent from the following email address: reports-noreply@pentest-tools.com

The vulnerability scanners for Citrix CVE-2019-19781 and BIG-IP CVE-2020-5902 have been deprecated.

Multiple stability issues have been fixed.

Pentest Robots can now be used to scan the internal networks through VPN.