Starting with version 1.7.9 all release notes have been consolidated into one page.
The pre-login style has been updated.
The account registration flow has been updated to provide a smoother activation experience.
SMB v2 OS detection now applies more weight to Windows 10 versus Server 2019 in most situations.
SMB v1 OS detection has been improved for non-Windows platforms.
SSO now supports a default role of
No Access. Accounts created through the SSO login process with this default role must be manually promoted to a usable account role.
Users now support a
No Access role for both
All Orgs and specific organizations.
A bug preventing access to the per-account Demo Organization has been resolved. Agents and Scanner downloads for the Demo Organization have been explicitly disabled. Any agents with the Demo Organization will automatically uninstall.
All Rumble Console confirmation dialogs now list the specific item they are confirming. This can prevent misclicks from removing the wrong item.
A fingerprinting regression related to non-Windows machines running SMB services has been resolved. This would unintentionally classify some NAS devices as Microsoft Windows.
Subnet Grid Report.
Subnet Grid View report is now available (via the Subnet Report).
tls.notAfterTS service fields can now be queried using time comparison operators.
The dashboard now shows statistics for live assets only and not all assets.
The license view now ignores demo organizations and sites in the statistics.
The task view now represents scans pending processing more accurately.
service.vhostfields (if present) to make them more consistent with the Rumble Scanner
The Analysis Reports section has been added, including the new
Domain Membership and
Service Attribute reports.
The Query Library has been added, including a set of predefined common queries.
Inventory search queries can now be saved to the
Inventory search action buttons have been slimmed down.
The Explore tab provides easy aceess the
Analysis Reports and
Data retention controls are now available on the Organization Settings page. These can be used to specify data retention periods and remove stale offline assets after a fixed period of time.
Inventory, Site, and Organization search now support exact matches with the
= prefix. An exact hostname match can be specified as
Inventory, Site, and Organization search now support matching empty fields using the
= prefix. An empty hostname match can be specified as
Inventory searches now support the
Inventory Asset and Service search now support the
Inventory Asset and Service search now support
% as a wildcard for address matching. The query
address:%.0.1 will find all assets with an address ending in
A bug that prevented searches for less than one hostname has been fixed (
Active and Failed scan tasks now support the
Copy action. Copied scans scheduled in the past will default to the current time to start.
Single Sign On users can now specify the default organization role of SSO-enrolled users.
Account lockouts are now enforced after 10 failed password-based login attempts.
The Asset Inventory now allows attributes to be queried even if they conflict with a keyword by using the prefix
The Service Inventory now allows attributes to be queried even if they conflict with a keyword by using the prefix
Web services with multiple asset icons now show each icon correctly.
A bug that prevented Sites from being imported has been resolved.
A bug that prevented superusers from logging in directly when SSO was in required mode has been resolved.
The asset inventory now displays any HTTP and UPnP icons acquired during the scan.
The asset inventory now displays an icon for assets with available screenshots.
The inventory search no longer triggers an error on some grouped query corner cases.
The inventory search now supports /32 masks for the
The inventory search now treats the
type keyword as an exact match.
The inventory search now supports filtering based on service counts.
The inventory search now supports filtering based on the RTT and TTL fields.
The inventory search for services now supports filtering based on port ranges.
The asset detail page now describes upstream and downstream layer 2 links.
The asset detail page now lists all acquired icons in the top summary.
The asset detail page now has a Scan action available from the menu.
The new scan page now supports applying a list of tags to all identified assets.
The new scan page agent selection now defaults to the first site-specific agent.
The tasks page now allows recurring scans to be paused an unpaused.
The console now always shows the live agent count on the navigation menu.
The console now applies styling to the print view.
Hostnames consisting of leading digits are now ignored when correlating assets.
A bug that resulted in the wrong timezone being used after SSO login has been resolved.
Scans triggered via API now default to the site scope if no targets were specified.
Scans triggered via API can now specify a list of tags to apply to all identified assets.
Import tasks with the wrong data supplied format are rejected before task creation.
Completed tasks are now always shown in the order they finished (versus were created).
A Cisco IOS fallback fingerprint was leading to false positives and has been disabled.
The License page now lists invoices and allows payment methods to be updated.
The SMB Server GUID attribute is now used to correlate results to assets.
The SNMP sysName and sysObjectID attributes are now used to unmatch assets that have changed IPs or were mistakenly matched through another attribute (shared bogus MAC addresses or similar).
Scans now support specifying the SNMP v3 Context for devices that require this (CatOS).
Scans now support the “Fast” option for the ARP probe, which is on by default in AWS VPC environments.
Agents now support concurrent scans, with the limit configurable per-agent.
Asset correlation avoids accidentally grouping when a forged MAC address is present in routed protocol responses (NetBIOS, SNMP, etc).
Change reports now ignore differences in reverse DNS, hostnames, domain names, and the top-level service count.
Recurring, scheduled, and queued tasks without an available agent will mark the task as failed after 4 hours. Recurring tasks will attempt to run scans normally during the next scheduled period.
Scanner binaries for OEM customers now behave according to the license agreement.
Long task names are now truncated automatically in the task list.
os:linux AND (port:22 OR port:80) AND NOT port:3306.
Clear Queuebutton to remove all queued tasks.
agentinventory search term has been added. This accepts a UUID as well as the agent name.
Max Group Sizeoption to limit the number of concurrent scan targets.
siteinventory search term now accepts a UUID as well as the site name.
taskinventory search term now shows all assets that were last updated by a given task ID.
lowest_ttlfield is no longer considered as a significant change in asset change notifications.
idsearch term to find assets by ID.
syn-max-retriesadvanced parameter for the SYN probe in the new scan configuration screen.
SSO Settingsbutton on the My Team page.
Copyaction in the task list). This simplifies the process of running a one-off scan from an existing recurring scan definition.
Managemenu now include an option to reset the security tokens of a team member (available to superusers only).
Update Siteaction from the
agent failed to queue task.