Rumble 1.7.0: Reporting, Fingerprints, and More!
Version 1.7.0 of Rumble Network Discovery is live with big updates to reporting. The
Analysis Reports introduced in version 1.6.2 are now joined by a new
Subnet Grid Report, linked off the main
Subnets Report under the
Query Library has been updated with small tweaks and new built-in query for finding expired TLS certificates, supported by improvements to the scan engine. The Rumble backend has been upgraded to support our larger customers as well as all of our new Starter Edition users.
The command-line Rumble Scanner now generates its own
Network Bridges and
Switch Topology reports outside of the cloud platform. For folks who want to build their own fingerprints, the command-line scanner now supports custom Recog fingerprint stores using the
--fingerprints argument and easy debugging by setting the
--fingerprints-debug boolean flag.
Rumble can now provide a birds-eye view of the network through the
Subnet Grid Report. The backstory on this visualization needs its own blog post, but the short version is that treating the IP address space as a grid and applying color maps based on attributes can identify interesting network properties. The
Subnet Grid Report can be found linked with a icon off of the main Subnets Report. The example below is the
type color map of a public IPv4 network.
The command-line Rumble Scanner now generates the
Network Bridges and
Switch Topology reports. These reports can help you understand the layer 2 topology and layer 3 segmentation of a network without having to upload the scans into the cloud platform.
These report can also be generated using previous scan data. The
--import option can be used multiple times to merge many raw scan files into a combined report.
$ rumble-scanner -o rumble-1.7.0 --import previous-scan/scan.rumble.gz $ start rumble-1.7.0\bridges.html
Alert Rules can now be limited to a specific site or all sites, depending on your preference.
Recurring scans now show the day of the week abbreviation in the user interface.
The Rumble Agent and Rumble Scanner now use version 0.9991 of
Dashboard statistics now only account for
The service timestamp fields
tls.notBeforeTS can now be queried using
time-based query operators.
The complete release notes for v1.7.0 can be found in our documentation at the links below.
If you haven’t had a chance to try Rumble before, or would like to play with the new features, sign up for a free trial and let us know what you think!
October 5, 2021
Rumble 2.7: New dashboard, multi-subscription Azure, AWS ELBs, Splunk add-on improvements, and faster discovery for Rumble Professional
What’s new with Rumble 2.7? User experience improvements Get insights, trends, and visualizations from your dashboard Easily navigate configuration pages for scans, imports, connections, and more Know when your connector credentials are invalid Integration …Read More
September 8, 2021
Rumble 2.6: Integrate with Microsoft Azure Cloud, identify EOL assets, self-host in offline mode, and detect more protocols
What’s new with Rumble 2.6? Synchronize your Azure VM inventory with Rumble Identify assets running end-of-life OS versions Support for NFS, PPTP, and “r” services Updates to the CrowdStrike integration Install and update self-hosted Rumble in offline mode See new …Read More
August 3, 2021
Rumble 2.5: Identify endpoint protection agents, detect wireless & mobile Internet, and scan all your EC2 accounts
What’s new with Rumble 2.5? Identify endpoint protection agents via integrations and unauthenticated scans Fingerprint wireless and mobile Internet on Windows without authentication Better fingerprinting for Windows 10 and 11, desktop/server, secondary IPs Discover …Read More