New
- Agent-based policy assessment Bulk Export API. You can now extract and access agent-based policy assessment data results with InsightVM’s Bulk Export API. The API allows you to request and download large data sets directly from the Insight Platform, diminishing unnecessary load on your Security Console. The API is implemented using GraphQL and its output can be easily processed into third-party business intelligence (BI) solutions.
Improved
- SSH algorithm enumeration. SSH algorithm enumeration has been improved for non-standard ports and scans with Nmap service fingerprinting disabled.
- Tagging experience. We’ve made additional performance optimizations to our tagging experience. Insight Agent tags will now be integrated after a scan has completed.
- Policy overrides. We improved the performance of our policy override feature by applying only the latest version of an asset for a policy override that is scoped to all assets. As a result, creation and deletion actions are now more efficient.
Fixed
- We improved Cisco IOS fingerprinting, increasing check accuracy.
- We resolved some scanning issues that resulted from scan engines having too many open files during scans.
- We now prevent unused and invalid SNMP credentials from being used as "Admin" credentials.
- We fixed an issue with the automatic content update feature, which resulted in the Security Console erroneously shutting down.
- We fixed an issue where custom policies weren't able to be uploaded to the Security Console.
- We fixed a false positive in the Microsoft Windows 10 Enterprise CIS Benchmark version 2.0.0 that would occur when the WinRM lockout observation window was set to a high value.