June 2020 Update for Invicti Enterprise On-Premises

We’re delighted to announce the latest release of Invicti Enterprise On-Premises. The highlights of this release are: integration for Mattermost, API support for the Discovery Service, and a new SameSite Cookies security check.

This announcement showcases what is new in this latest Invicti Enterprise On-Premises update. We have also added improvements and fixes.

Mattermost Integration

Invicti Enterprise already has many out-of-the-box integrations. With this latest update, we have added a new integration that enables users to send vulnerability details to Mattermost. Mattermost is a team messaging system that integrates with Invicti Enterprise to list and manage detected vulnerabilities.

For further information, see Integrating Invicti Enterprise with Mattermost.

API Support for Discovery Service

The Application Discovery Service of Invicti Enterprise enables you to locate your online collateral and conduct a comprehensive security audit. We have added API support for our Application Discovery Service.

For further information, see Application & Service Discovery Service and Invicti Enterprise API – Discovery.

SameSite Cookies Security Check

The SameSite cookie attribute is used to disable third party usage of cookies, preventing CSRF attacks. In this security check, the scanner will check if the target web application sends the SameSite cookie attribute to the website cookies. We have added a new vulnerability for SameSite Cookies that are set to None and not marked as secure.

For further information, see How to Configure Security Check Options in Invicti Enterprise.

Further Information

For a complete list of what is new, improved and fixed in this update, refer to the Invicti Enterprise Changelog.