• announcement  ASI Signature search. Users must have the asi_signature_search feature to view the modal in the Risk Rules section of ASI

• announcement  Risk History by Host. You can now view more than just the active risks for individual hosts in the risks hosts popup modal

• fix Now translate punycode to unicode in the SQL query responses
• fix Removed Top Level Domains (TLDs) from Feeds
• fix Fixed an issue that caused the dropdown menu for Risk Rules filters to be disabled if a Rule by Issue was expanded
• fix Fixed an issue that caused the SurfaceBrowser app to freeze when searching for a keyword instead of a valid domain
• fix ASI rule templates now properly translate unicode into punycode for the backend to process

• fix  Permanently fixed the more links in the ASI demo ASI dashboard boxes. They no longer head to the now defunct Risks tab
• fix ASI pages should now automatically convert punycode into human readable unicode
• fix SSO stability fix

• fix Fixed a website application error that would occur when searching for specific IP addresses

• Announcement 
  • The Risks tab of ASI Projects has been officially depreciated. You can find similar features with improved performance in the Risk Rules tab
  • Self-Signed Certs can now be found as a Risk Rule named Hosts with Self-Signed SSL/TLS Certificates
  • Staging and Dev Subdomains can now be found as a Risk Rule named Development Infrastructure Exposure
  • Finally, Open Ports can now be found in the new Database Open Ports Risk Rule that has been updated to use ASI snapshots. It looks a little different than the previous two rules but it’s increased accuracy and confidence has improved thanks to its use of ASI snapshots

Changelog February 14, 2022

• NEW!A new template rule has been added to Attack Surface Intelligence. Using Associated Domains with Subdomains automatically populates projects with all hostnames related to your target company.

Now it's possible to expand your Attack Surface analysis efforts by scanning not only the project's domain name and their associated domains, but also every subdomain associated with all the target's related domains.

Bug Fix Fixed a bug that caused the Attack Surface product to display content with a reverse ascending sort order. Content in Attack Surface should now display with desc. order again

Improvement Browser session timeout has been extended to a 6 hour session

improvement Made some visual improvements to the on hover effects for application ports in Explorer Beta 

bug fix Fixed an issue in with Explorer Beta that caused screenshots to sometimes not display a hostname

Happy Lunar New Year!

We've been hard at work getting ready for some new features. Today we're releasing the following

ASR Detailed Application View added to the Beta Explorer Screenshots page. Users with access to our Beta Explorer can begin testing out our new Detailed Application View by clicking on an item. Doing so will bring up a new modal with more detailed information on a given application

IP-Blocks Downloads IP-Blocks downloads were completely reworked to improve the performance of the download operation. This is available once again inside SurfaceBrowser in the following path  /app/sb/domain/[domain]/ip-blocks

Activity Heatmap has been added to surfaceBrowser /app/sb/domain/[domain]/activity

Bug Fix We also fixed an issue with the subdomains endpoint that was not properly filtering the children_only query param

It's time again for a big announcement!

We’re excited to announce our new SSO authentication system. This release includes Okta as the first integration for all SecurityTrails teams that utilize Okta for SSO.

You can find all details on how to enable SSO in your account here.

Stay tuned for more SSO integration announcements soon.