Hello, we have a customer that is utilizing resources in AWS. Would it be possible to create a cloud connector for AWS resources so we can scan for data in S3 buckets and see access permissions assigned by their IAM tool.
PINNED
Scheduled scan progress indicator
Would it be possible to have a progress bar or a file counter to show the progress of the scan?
Add affected target IPs to the remote vulnerability audit "full list" output
Currently if you only check "generate a full list of vulnerability details", you get a PDF with CVE details for vulnerabilities found, but nothing to indicate where that finding was. If you also check "generate a vulnerability summary for each sou...
Add protocol and port number to Remote/Network Vulnerability Results
For example, an SSL/TLS: Certificate Expired might be on a service port other than TCP 443, and it'd be nice to know where the vulnerability was discovered at.
Warn about restricted characters in organization names
It appears the '&' cannot be used in organization names, but if you attempt to create an organization with this symbol in the name, there is no warning or other validation. It acts like the organization has been created, but is actually not.
We have been asked from several auditors on what control/mechanisms as used to inventory and track software in use that is end of life or end of support. Would be great if the system could check the version from software invetory and add in a date...
Can we have Microsoft Intune computer baseline added into the Benchmark tab for reporting purpose? latest is windows 10/11 v 23h2
This would be useful for our customers due to the fact that many are utilizing Intune. Pushing out computer policy is far more efficient this way for our customers. CIS and Microsoft are closely aligned however, they do differ on some aspects.
General feedback from customers is that it has been difficult working with the vulnerability data. Every customer has requested a dashboard to help manage the vulnerability data in the console.
Create a template for deploying the Cavelo internal vulnerability scanner. Template should be for common hypervisors - VMWare, HyperV, and if possible something like virtualbox.
Add functionally to retire asset or decommission Create tenant value for retire asset after offline for XX days Create retire status workflow for removing agent data from reporting and scheduled jobs when endpoint hits threshold above. Data will b...
Expand Benchmark functionality to include remediation
All for direct remediation of benchmark controls to endpoints. Currently pass/fail is a great tool to audit but it is very time consuming to remediate manually. Adding functionality to choose auto remediation of detections that fail for items spec...