New Release: August 2020

2020-08-14
Written By Stas Filshtinskiy
August2020

This month is special for us. Two years since releasing our community platform – AttackForge.com. In two years AttackForge got thousands of users from all over the world.

We always wanted to give back to community and help newcomers. With AttackForge.com everyone can run their own pentest using industry approved methodologies and terminology. Every student can build their own portfolio of pentesting projects and take it with them to job interviews. Every pentester or small boutique can manage their projects, track progress, and keep customers satisfied with professional and comprehensive reports, without ever touching MS Word styling menu 😉.

Azure DevOps integration

In this release we have added to AttackForge integration capabilities and improvements to user experience.

Pentesters find vulnerabilities, a lot of them. Engineers fix vulnerabilities. The longer time between when vulnerability is found and to the moment when it is fixed means that organisation is vulnerable for longer, or solution is not going live when expected. There is direct benefit (in time, money and reduced risk) in getting vulnerabilities right in front of engineers. AttackForge had integration with Jira and ServiceNow for quite some time. This release has added another very popular tool – Azure DevOps. An authorized user on the project can now easily self-export vulnerabilities as Work Items directly to the ADO Projects.

Azure DevOps is quickly becoming the industry preferred toolset for managing security vulnerabilities in dev ops. AttackForge helps to ensure developers are getting the vulnerability information in their native tools.

Workload management

When large pentesting projects start, it always take time to split the work within the team. The bigger the project and the team – more time is spent on coordination rather than doing what we love to do - breaking things. AttackForge had methodologies and test cases built into the pentesting workflows from the beginning. Now, based on your feedback we added new feature – test cases can be assigned to individual pentesters. Authorized users can filter test cases by the Test Suite, and also filter by:

  • Test Cases Assigned to Me

  • Not Tested

  • Tested

  • Testing In Progress

  • Not Applicable

No time wasted on resolving who was supposed to do what.

User Experience improvements

Every release has numerous improvements in User Experience. This time the biggest are:

  • Export vulnerabilities directly via your project instead of having to go through the Connector tool.

  • Ability to filter & export any data table on AttackForge screens to CSV. Quite useful if you like to play with your spreadsheets like some of us.

  • Ability to see and drill down for more information in Analytics – such as Days Open for every vulnerability, and extra data in data tables to help with SLAs.

  • ReportGen is now available in the Reporting module, along with all other on-demand report formats (PDF, DOCX, HTML, CSV, JSON & ZIP)

  • Performance improvements to all data tables to ensure AttackForge is speedier than ever!

 To be continued next month…

For the full set of new features & updates this month – check out the release notes:
https://support.attackforge.com/attackforge-enterprise/release-notes#2020-08-14

Stas Filshtinskiy
Previous

New Release: September 2020
Next

New Release: July 2020