Skip to Main Content
Cavelo

Ideas Portal

ADD A NEW IDEA

Pinned ideas

PINNED AWS Connector
Hello, we have a customer that is utilizing resources in AWS. Would it be possible to create a cloud connector for AWS resources so we can scan for data in S3 buckets and see access permissions assigned by their IAM tool.
PINNED Scheduled scan progress indicator
Would it be possible to have a progress bar or a file counter to show the progress of the scan?

All ideas

Showing 29 of 29

Read-only API keys

Read-only keys are desired at both at the organization level, and at the partner level. It feels odd to use a read-write key to fetch the installer, and we are likely to develop reports at the partner level that will only read data, not write it.
Blaine Kahle about 1 month ago in  0

Support common special characters in Organization Name

...Or at least in the optional Display Name. Characters that are frequent are comma (,), ampersand (&), and period (.) Lawyers are often "Alice, Bob, and Charlie" Medical clients may have "OrgName, P.C." Some prefer to use their ", Inc." or ",...
Blaine Kahle about 1 month ago in  0

Add ability to Filter using Asset Tags in Network Assets view

Just like all the other column headers have a filter function. This will greatly help in drilling down to unknown / new assets when using tags to document already-analyzed findings.
Blaine Kahle about 1 month ago in  0

Software EOL/EOS Data

We have been asked from several auditors on what control/mechanisms as used to inventory and track software in use that is end of life or end of support. Would be great if the system could check the version from software invetory and add in a date...
Rick Mutzel 4 months ago in  0

Add affected target IPs to the remote vulnerability audit "full list" output

Currently if you only check "generate a full list of vulnerability details", you get a PDF with CVE details for vulnerabilities found, but nothing to indicate where that finding was. If you also check "generate a vulnerability summary for each sou...
Blaine Kahle 3 months ago in  0

Add protocol and port number to Remote/Network Vulnerability Results

For example, an SSL/TLS: Certificate Expired might be on a service port other than TCP 443, and it'd be nice to know where the vulnerability was discovered at.
Blaine Kahle 3 months ago in  0

CIS Benchmark

Could it be possible to add CIS Google Workspace Foundations Benchmark to the tool for scanning against the cloud connectors.
Guest about 2 months ago in  0

Warn about restricted characters in organization names

It appears the '&' cannot be used in organization names, but if you attempt to create an organization with this symbol in the name, there is no warning or other validation. It acts like the organization has been created, but is actually not.
Guest 3 months ago in  0

Internal Vulnerability Scanner Hypervisor Template

Create a template for deploying the Cavelo internal vulnerability scanner. Template should be for common hypervisors - VMWare, HyperV, and if possible something like virtualbox.
Rick Mutzel 10 months ago in  0

Can we have Microsoft Intune computer baseline added into the Benchmark tab for reporting purpose? latest is windows 10/11 v 23h2

This would be useful for our customers due to the fact that many are utilizing Intune. Pushing out computer policy is far more efficient this way for our customers. CIS and Microsoft are closely aligned however, they do differ on some aspects.
Guest 4 months ago in  0