In this release, we've focused on enhancing vulnerability automation capabilities, improving the user experience, and expanding asset discovery and monitoring features.

Our goal remains the same: making modern vulnerability management accurate and risk-based, with a focus on enhancing the workflows where security engineers spend their day-to-day time. The entire ProjectDiscovery platform is available with APIs and a range of integrations. Talk to our team to set it up for your organization.

New Features

• Automatic Real-Time Vulnerability Scan: Enable automated vulnerability scans that trigger whenever new Nuclei templates are added to the platform, ensuring immediate detection of the latest vulnerabilities as soon as they are released. This feature is currently available only to Enterprise customers. Contact our team to upgrade your account. Enable it by following the guide here.

• Configurable Discovery and Scan Automation: Users can now choose to automatically run asset discovery before scanning or initiate a vulnerability scan immediately after discovery. This behavior is configurable, allowing you to enable or disable automation based on your needs.

• Asset Discovery Alerts: Configurable alerting for asset discovery and monitoring events to keep you informed in real-time.

UI/UX Improvements

• Improved Scan Logs: Enhanced scan logs with a severity filter and uniform colors for easier navigation and analysis.

• Nuclei Templates Feed Timeline: Added a timeline visualization for the Nuclei templates feed, providing a clearer view of updates over time.

• Assets and Vulnerability Trends: Introduced trend graphs for assets and vulnerabilities, offering actionable insights on historical changes and trends.

• Unique Assets in Billing Cycle: Users can now view, search, and export a list of unique assets scanned during the current billing cycle for better usage tracking and analysis.

Bug Fixes

• Fixed Hyperlink Issue in Report URLs: Resolved incorrect hyperlink generation for reports in integration tickets.

• Corrected Missing Options for Scheduled Scans: Fixed the issue where some scheduled scan options were not being displayed properly.

• Fixed Asset Skipping in Nuclei Project: Addressed an issue that caused assets to be skipped during scanning under certain conditions.

• Resolved httpx Upload Issue: Fixed a problem with httpx upload causing metadata update issues when renaming.

• Fixed IP Target Input Issue: Resolved an issue with using IP addresses as target input for scan creation from the live template feed.

Other Updates

• Chaos Project Integration: Users of any tier can now instantly retrieve asset data for domains with public enumeration, as part of the Chaos project integration, for faster analysis and discovery.

• Weekly Discovery Data Refresh for Free Tier: Discovery data for public domains available to free-tier users will now be refreshed weekly in an automated, scheduled manner to ensure up-to-date information.

• Asset Inventory Access Changes: Asset Inventory access is now disabled for users in the free tier to prevent abuse and reduce performance load. Asset data will still be accessible via individual asset groups.

What's next?

We're working on expanding automations—configuring automatic vulnerability scans based on multiple asset or template events to further streamline your security processes.

We're committed to continuous improvement, delivering new features and optimizing existing ones to provide an unmatched experience. Stay tuned for more updates! Keep sending us your ideas and feedback—we're just getting started.