Rumble release notes

v2.3.2

2021-06-16

  • The RFC 1918 coverage report now supports a starting date that can be used to exclude older scans.
  • The Your team page is now searchable, sortable, and supports bulk user actions.
  • Fingerprint updates.

v2.3.1

2021-06-09

  • A bug that prevented single-organization users from viewing sites and tasks has been fixed.
  • A bug that led to offline assets not actually being marked as offline has been fixed.
  • A bug that could prevent full enumeration of Cisco Catalyst switches has been fixed.
  • Fingerprint updates.

v2.3.0

2021-06-08

  • The new RFC 1918 coverage report highlights unscanned address space and hinted ranges.
  • SNMP v3 enumeration of Cisco Catalyst switches now handles per-vlan port mappings.
  • Fingerprint updates.

v2.2.5

2021-05-29

  • Tags are now always displayed with = instead of : to match the search engine syntax.
  • The Subnet Ping and Host Ping modes are now more reliable on large scans.
  • Fingerprint updates.

v2.2.4

2021-05-26

  • A bug that led to a stack trace in the rumblectl command for self-hosted mode has been fixed.
  • Fingerprint updates.

v2.2.3

2021-05-17

  • The self-hosted platform now removes older scanner/explorer binaries during updates.
  • The scan engine now pulls layer-2 information from Force-10 switches.
  • The scan engine now ignores CheckPoint SMTP and SIP interception.
  • The scan engine now extracts hostnames from Zyxel switches.
  • An invalid fingerprint for Cisco IP phones has been fixed.
  • Multiple notifications can now trigger from a single event.
  • Agent fields are now included in the scan-started event.
  • Fingerprint updates.

v2.2.2

2021-05-16

  • The scan engine now extracts additional information from Zyxel switches.
  • The Explorers page now supports sorting, searching, and tagging.
  • Fingerprint updates.

v2.2.1

2021-05-14

  • The scan confirmation dialog now warns when a mix of public and private IPs are in the scope.
  • The SNMP v3 probe now supports sha224, sha256, sha384, and sha512 authentication.
  • The SNMP v3 probe now supports aes192, aes256, aes192c, and aes256c encryption.
  • The self-hosted platform now includes a CLI to manage user accounts.
  • Fingerprint updates.

v2.2.0

2021-05-11

Rumble 2.2.0 is a roll-up of previous 2.1.x releases along with some additional changes and features.

Web console

  • Enterprise customers can now export an HP iLO report which includes serial numbers, physical hardware information, and other fields useful for warranty tracking and server inventory.
  • Virtual machines now indicate the virtualizaton vendor in the asset hardware field and can be searched and filtered by vendor.
  • Virtual machines are now labeled with an icon in the asset view, and router icons are displayed with the other icons.
  • Virtual machine and legacy MAC prefixes are no longer used for age calculation, as they gave inaccurate results.
  • A new report for virtual machine vendors has been added.
  • Vendors in the NDAA Section 889 report have been expanded to include Aztech and subsidiaries.
  • The Name tag can be used to set a preferred hostname for any asset.
  • Tags in inventory views can now be clicked to search the inventory.
  • The alert notification templates can now include information about the name and internal IP address of the explorer which carried out a scan.
  • The alert rules list now shows which rules are currently enabled.
  • Confirmation dialogs now require a typed response for destructive actions.
  • Page layout has been improved for browser window widths between 920 and 1200 pixels.
  • If a scan results in too many changes to list in the task report, the report now explains this.
  • Progress bars now use standard meter elements for smoother updating and better accessibility.
  • Icons and screenshots are now lazy-loaded to speed up initial page rendering.
  • Task duration is now rounded up to the nearest minute.

Explorer and scan engine

  • A better hostname is chosen for each asset by default.
  • VLANs are now tracked on each asset where possible.
  • Minecraft servers are now identified on the network.
  • HP iLO scans now return additional information.
  • Virtual machine hardware is reported if a better fingerprint is not available.
  • Pulse Secure VPN devices running newer firmware are now identified correctly.
  • Additional CA roots can be set via the RUMBLE_TLS_ADDITIONAL_ROOTCA variable.
  • Fingerprint updates.

Self-hosted platform

  • Self-hosted installations now sync license changes during updates.
  • Email validation is relaxed for the self-hosted platform.
  • Install instructions now use curl instead of wget for improved robustness.

Bug fixes

  • The last seen date for assets is now only updated when they have at least one open port and are therefore “alive”.
  • The estimated scan times in recurring task exports are now accurate when default ports are used.
  • A problem with password reset requests for accounts with no last name has been resolved.
  • A possible scan stall issue caused by endpoint software on macOS has been resolved.
  • A memory and CPU leak in the Rumble Explorer has been resolved.
  • User name validation now works correctly when editing user preferences.
  • An issue with user invitations for SSO accounts has been resolved

v2.1.7

2021-05-03

  • The web console now includes a new HP iLO CSV export for warranty tracking (Enterprise).
  • Virtual machine and legacy MAC address prefixes are no longer used for age calculation.
  • Self-hosted installations now sync license changes during updates.
  • Virtual machines are now represented in the asset HW field.
  • VLANs are now tracked on each asset, where possible.
  • Tags are now clickable and lead to inventory searches.
  • Fingerprint updates.

v2.1.6

2021-04-28

  • Rumble Scans on macOS no longer stall when ICMP scans are blocked by endpoint software.
  • The web console now better supports browser widths between 920 and 1200 pixels.
  • An issue with user invitations from an SSO account has been resolved.

v2.1.5

2021-04-27

  • The Rumble Explorer and Rumble Scanner now collect additional information from HP iLO nodes.
  • Fingerprint updates.

v2.1.4

2021-04-26

  • A memory and goroutine leak in the the Rumble Explorer and Rumble Scanner has been fixed.
  • Fingerprint updates.

v2.1.3

2021-04-23

  • The Rumble Explorer and Rumble Scanner now avoid probes on vendor-specific SunRPC services.
  • The latest firmware of Pulse Secure VPNs is now fingerprinted correctly again.
  • An issue with the confirmation dialogs on Chrome has been resolved.
  • The dashboard now defines next steps for new organizations.
  • The bundled npcap version has been upgraded to 1.31.
  • Fingerprint updates.

v2.1.2

2021-04-19

  • The Rumble Explorer and Rumble Scanner now detect the Minecraft service.
  • Confirmation dialogs now require a typed response for permanent actions.
  • Small bugs have been fixed in the default notification templates.
  • Fingerprint updates.

v2.1.1

2021-04-14

  • This update disables automatic npcap upgrades while we investigate a stall issue.

v2.1.0

2021-04-13

Rumble 2.1.0 is a roll-up of previous 2.0.x releases along with some additional changes and features.

Web console

  • Custom notification templates are now available and can be configured as Text, HTML, and JSON formats.
  • Webhook notification channels can now include arbitrary HTTP headers for authentication.
  • Tasks can now be exported as CSV and JSON from the Recurring and Search tabs of the task view.
  • Tags be removed in bulk by specifying -tag in the inventory Tag dialog.
  • Asset CSV bulk imports now ignore cases where there are extra fields.
  • Specific TCP ports can now be excluded from the scan configuration.
  • User invitation links can now be copied to the clipboard.
  • UX tooltips are now easier to read across all platforms.
  • Alert management is no longer organization-specific.
  • Exports with complex queries are now much faster.

Integrations

  • Device serial numbers can now be exported in Cisco Smart Net Total Care format for warranty checks.
  • The Splunk Addon now supports proxy server configuration in version 1.0.11.

Explorer

  • The Explorer now rejects scans tasks when there is not enough free disk space for the scan results.
  • The Explorer now falls back to the install directory for temporary files if needed.
  • The Explorer now tries to upgrade the npcap driver automatically on Windows.

Scanner

  • AWS EC2 metadata is used to enrich scan results if the ec2:DescribeInstances permission is available.
  • SNMP v2 enumeration of ports and vlan membership now uses community indexing automatically.
  • Chromium installations using Snap packages are no longer used for web screenshots.
  • An overly aggressive mDNS fingerprint for LG webOS has been fixed.
  • EC2 instances now report the instance type as the hardware field.
  • Additional bogus SIP helper responses are now ignored.
  • LPD fingerprinting is now limited to a status request.
  • Fingerprint updates.

Events

  • A single event will only trigger a single notification per unique notification channel.
  • The agent-removed event is now generated for all web console agent removal actions.
  • The offline-agent event no longer includes recently removed or forgotten agents.
  • The task-failed event now includes the full organization and site name in the details.
  • The task-failed event is now generated for agent restarts and timeouts.

Self-hosted platform

  • SMTP configuration now supports additional TLS settings.
  • SMTP errors are now logged to syslog correctly.
  • Initial auto configuration is more complete.

v2.0.14

2021-04-06

  • The Rumble Explorer and Rumble Scanner will now gather AWS EC2 instance metadata where possible.
  • Fingerprint updates.

v2.0.13

2021-04-05

  • The Rumble Explorer will now fallback to the install directory for temporary files.
  • Fingerprint updates.

v2.0.12

2021-04-03

  • Exports are now faster across the board, with major speedups for those using deep search queries.
  • The Rumble Verifier has been updated and now supports 2.x macOS binaries.
  • Various bugs related to the new tooltip implementation have been resolved.
  • Chromium will no longer be used for screenshots when installed via Snap.
  • Additional bogus SIP helper responses are now automatically ignored.
  • Self-hosted installs now log SMTP-related errors.
  • Fingerprint updates.

v2.0.11

2021-04-01

  • Fingerprint updates.

v2.0.10

2021-03-30

  • The Rumble Explorer and Rumble Scanner now collect additional Cisco-specific SNMP OIDs.
  • The Cisco Serial Number export is now available for all licensed clients.
  • Fingerprint updates.

v2.0.9

2021-03-30

  • The Rumble Explorer and Rumble Scanner no longer stall in a rare case when enumerating SNMP endpoints.
  • Fingerprint updates.

v2.0.8

2021-03-29

  • The Rumble Explorer now automatically cleans temporary files left by interrupted scans.
  • The Rumble Explorer now prepends “rumble-” to all temporary files.

v2.0.7

2021-03-28

  • The Rumble Explorer out of disk space error has been improved for legibility.

v2.0.6

2021-03-28

  • The Rumble Explorer now performs a disk space check before running a new scan.
  • The Rumble Explorer now reports disk related errors more reliably.
  • Asset CSV imports are now accepted where the records have extra fields.
  • Fingerprint updates.

v2.0.5

2021-03-26

  • The Rumble Explorer and Rumble Scanner now better support enumeration of Catalyst switches.
  • Administrators can copy the invite link for direct sharing with team members.
  • Issues with image links on the self-hosted version have been resolved.

v2.0.4

2021-03-26

  • The Rumble Explorer and Rumble Scanner now handle the LPD protocol more carefully.
  • Fingerprint updates.

v2.0.3

2021-03-23

  • The Rumble Explorer no longer reports an intermittent “no child processes” message on installation.
  • The Rumble Explorer and Rumble Scanner now always return wireless results when iwlist is present.
  • The web console now generates agent-removed events for each agent, including for bulk actions.
  • The web console now generates task-failed events for agent restarts and timeouts.

v2.0.2

2021-03-21

  • The Rumble Explorer now logs connectivity issues with the websocket protocol in more detail.
  • The self-hosted Rumble platform now supports better automatic configuration.
  • Fingerprint updates.

v2.0.1

2021-03-20

  • A bug that resulted in deleted event rules being processed has been resolved.
  • A bug that could lead to scan stalls in Subnet Ping mode has been resolved.
  • Fingerprint updates.

v2.0.0

2021-03-16

Rumble 2.0 is a roll-up of the 1.16.x releases, along with the following changes:

Web console

  • The new Rules Engine supports advanced alerts and automated asset updates.
  • Organization-level Alerts are now managed at the global level.
  • The Explore menu item has been renamed to Reports.
  • The interface received light cosmetic updates.

Deployment

  • Rumble Agents are now Rumble Explorers to better indicate their function.
  • Rumble Explorers and Rumble Scanners moved to the Deploy menu.
  • Self-hosting of the full platform is now available.

REST API

  • The Account API now provides organization, user, and event management.
  • Support for ServiceNow ® ITOM integration via three new API endpoints.

Scan engine

  • Microsoft Exchange and Outlook Web Access detection has improved.
  • A stall bug in the subnet and host ping modes has been fixed.
  • The number of bogus results ignored is now reported.
  • The npcap driver has been upgraded to v1.20.
  • Fingerprint updates.

v1.16.6

2021-03-06

  • Layer-2 topology reports now display the best matching port and not all ports where an asset was seen.
  • The Rumble Agent and Rumble Scanner now handle subnet and host ping modes faster and more accurately.
  • The Rumble Scanner now processes gzip-compressed imports faster.
  • Fingerprint updates.

v1.16.5

2021-02-27

  • Assets that were previously identified with through a TCP RST, but otherwise had no services, have been removed from the platform.
  • The Rumble Agent and Rumble Scanner now collect more data about exposed SSH authentication methods.
  • A regression related to asset tracking based on the TCP/IP fingerprint has been resolved.
  • Fingerprint updates.

v1.16.4

2021-02-26

  • The Rumble scan engine now ignores assets where all TCP ports are closed and no other services are available. This reduces the reporting of bogus hosts when scanning through certain firewalls.
  • The task summary and task details now report how many assets were ignored due to having no valid services. This highlights how much network interference may be present.
  • The macOS binaries have moved to a new code signing process. Agents for macOS that have been offline for some time may require a manual update.
  • The live asset count and project asset count was calculated incorrectly for users with deleted organizations. This has been corrected.
  • Search queries that contained string matches against <% and %> now work as expected.
  • Fingerprint updates.

v1.16.3

2021-02-25

  • Fingerprint updates.

v1.16.2

2021-02-24

  • Rumble Agents can now have tags applied in the per-agent settings page.
  • Events are now regularly generated for offline agents.
  • Fingerprint updates.

v1.16.1

2021-02-21

  • The Rumble scan engine now supports a maximum TTL for all scan traffic.
  • The Rumble scan engine now supports subnet ping and host ping modes.
  • The Rumble scan engine now distributes scan traffic more evenly across subnets.
  • The Rumble scan engine now reports and tracks closed TCP ports.
  • The Rumble scan engine now reports additional ICMP fields.
  • The Rumble scan engine now auto-scales the group size.
  • Apple macOS is now partially supported on ARM systems.
  • Fingerprint updates.

v1.16.0

2021-02-09

  • This includes a roll-up of all 1.15.x point releases.
  • VMware ESXi versions are now reported correctly.
  • Fingerprint updates.

v1.15.6

2021-01-31

  • The Inventory Search, Exports, and Reports are now significantly faster for large organizations.
  • Fingerprint updates.

v1.15.5

2021-01-28

  • The Agents page will now flag any Windows Agents with an obsolete version of Npcap installed.
  • Fingerprint updates.

v1.15.4

2021-01-26

  • The JARM probe in the Rumble Scanner and Rumble Agent has been upgraded.
  • Fingerprint updates.

v1.15.3

2021-01-23

  • The Rumble Scanner and Rumble Agent now gather serial numbers from SNMP devices.
  • The 169.254.0.0/16 subnet is no longer ignored when processing scan results.
  • The Rumble Scanner and Rumble Agent now detect the TeamViewer protocol.
  • Partial site scans now consider ARP cache data from the entire site.
  • The Rumble Scanner now supports importing gzip-compressed scan data.
  • The Rumble Scanner and Rumble Agent now detect the CheckMK service.
  • Fingerprint updates.

v1.15.2

2021-01-19

  • The dashboard now links to the top 5,000 results for asset types and service details.
  • Rumble-provided queries can now be saved as per-account copies and modified.
  • Partial site scans will now use ARP cache entries from the rest of the site.
  • Fingerprint updates.

v1.15.1

2021-01-16

  • This resolves an issue with the Crestron probe that could cause concurrent scans on the same agent to hang.
  • Fingerprint updates.

v1.15.0

2021-01-12

  • This is a roll-up of all 1.14.x point releases.
  • Fingerprint updates.

v1.14.9

2021-01-10

  • The Rumble Agent and Rumble Scanner now support the Crestron discovery protocol.
  • The Rumble Agent and Rumble Scanner now capture TLS fields from PostgreSQL services.
  • Fingerprint updates.

v1.14.8

2021-01-06

  • Rumble Agent proxy usage has been improved to handle additional corner cases.
  • Fingerprint updates.

v1.14.7

2021-01-05

  • Rumble Agent and Rumble Scanner updates now use any proxies configured in the environment.
  • Web screenshots now ignore any proxies configured in the environment.
  • Fingerprint updates.

v1.14.6

2021-01-04

  • A minor memory leak in the Rumble Agent and Rumble Scanner’s HTTP2 probe has been resolved.
  • Web screenshots now ignore any proxy configured for the Rumble Agent communication.
  • Web screenshots no longer leave zombies in additional environments.
  • Fingerprint updates.

v1.14.5

2020-12-28

  • A memory leak in the Rumble Agent and Rumble Scanner has been resolved.
  • Web screenshots no longer leave zombies in environments without init.
  • Fingerprint updates.

v1.14.4

2020-12-24

  • Services with empty virtual hosts will be consolidated into the first non-empty virtual host service where applicable.
  • Subtasks created by a recurring scan will now carry the “defaults” parameters forward.
  • Fingerprint updates.

v1.14.3

2020-12-19

  • A memory leak in the Rumble Agent and Rumble Scanner has been resolved.

v1.14.2

2020-12-17

  • The Rumble Agent and Rumble Scanner runtime has been upgraded.
  • The Rumble Agent and Rumble Scanner now use npcap 1.10.
  • The site scan API now handles custom probe configurations.
  • The task stop API documentation has been updated.
  • Fingerprint updates.

v1.14.1

2020-12-14

  • Agents can now be automatically assigned to their connected sites from the Manage menu.
  • Scan tasks configured through the API now handle the probes parameter correctly.
  • PAN-OS virtual MACs are now ignored for asset correlation.
  • Scan task parameters are now consistently normalized.
  • Fingerprint updates.

v1.14.0

2020-12-08

  • SNMP System Description fingerprints now take precedence over SSH-based OS matches.
  • Fingerprint updates.

v1.13.11

2020-12-02

  • A bug that caused certain API calls to return a 500 instead of a 400 error when called with a non-JSON content type has been resolved.
  • Bogus services caused by captive portals, honeypots, and certain firewalls are now automatically ignored.
  • Fingerprint updates.

v1.13.10

2020-12-01

  • Agent to cloud communication is now limited to the console.rumble.run hostname and two IPv4 addresses (13.248.161.247, 76.223.34.198).
  • The breadcrumbs are now navigable across the product user interface.
  • Fingerprint updates.

v1.13.9

2020-11-25

  • Inventory search boxes now have autocompletion for search keywords (name:, hardware: and so on). Completion can be triggered via keyboard (tab, enter) or mouse.
  • The documentation for search queries has been updated and cleaned up.
  • Tag editing dialogs now autocomplete from your top 50 most used tags.
  • Some search keywords have been updated to be more consistent.

v1.13.8

2020-11-23

  • The Rumble Agent and Rumble Scanner now collect JARM TLS hashes
  • The Explore menu now offers additional reports, including JARM.
  • Fingerprint updates.

v1.13.7

2020-11-20

  • The fingerprinting engine was updated to support more precise device detection.
  • Support for new mDNS fingerprints, including M1-based Apple devices.
  • Various security fixes to address findings from an ongoing audit.
  • Fingerprint updates.

v1.13.6

2020-11-19

  • The task details page now shows the scan speed in the upper left section.
  • Fingerprint updates.

v1.13.5

2020-11-13

  • The Rumble Agent and Scanner have been updated to work with macOS Big Sur.

v1.13.4

2020-11-12

  • The Rumble Agent, Scanner, and Console now use the latest Go runtime.
  • Fingerprint updates.

v1.13.3

2020-11-10

  • Assets with both SMB v1 and v2 enabled are now fingerprinted more consistently.
  • The BACnet probe now supports multiple ports per scan.
  • Fingerprint updates.

v1.13.2

2020-11-08

  • Session and login timeouts can now be configured from the Account Settings page.
  • The Subnet Grid report is now faster and supports RTT, TTL, and Age color modes.
  • Fingerprint updates.

v1.13.1

2020-11-05

  • The new Account Settings page allows MFA to be enforced and provides the ability to block Support access.
  • Fingerprint updates.

v1.13.0

2020-11-03

  • This is a roll-up of all 1.12.x point releases.
  • Fingerprint updates.

v1.12.9

2020-10-25

  • The Rumble Scanner and Rumble Agent now decompress non-negotiated gzip responses from HTTP services.
  • Fingerprint updates.

v1.12.8

2020-10-25

  • The Subnet Utilization report now sorts networks by density more accurately.
  • The Subnet Grid report is now slightly faster with large networks.
  • Asset correlation now ignores bogus replies for SMB and RDP.
  • Fingerprint updates.

v1.12.7

2020-10-24

  • The Team page now contains a tab showing which users have access to the active organization.
  • Users with per-organization admin roles are now able to manage user accounts.
  • Fingerprint updates.

v1.12.6

2020-10-22

  • Users with the “No Access” permission are now able to manage their own account settings.
  • Users can now have a Billing role that is limited to license and entity management.

v1.12.5

2020-10-21

  • Inventory searches with the haspublic keyword now handle multi-homed systems correctly.
  • Inventory searches for full and partial IPv4 addresses are now treated as host queries.
  • The Subnet Utilization percentage is now calculated correctly for sites with non-default masks.
  • Asset tags set from the Inventory page are now additive and will be merged into existing tags.
  • Asset tags are now shown on the overview page.
  • Small improvements to the Task Search page.

v1.12.4

2020-10-21

  • The Rumble Scanner and Rumble Agent now handle an even wider range of SNMP devices when polling the ARP cache.
  • Fingerprint updates.

v1.12.3

2020-10-20

  • The Rumble Scanner and Rumble Agent now handle a wider range of SNMP devices when polling the ARP cache.
  • Fingerprint updates.

v1.12.2

2020-10-17

  • The Rumble Scanner terminal UI has been cleaned up and generally improved.
  • Fingerprint updates.

v1.12.1

2020-10-15

  • The Rumble Scanner and Rumble Agent now deduplicate overlapping target network ranges.
  • Fingerprint updates.

v1.12.0

2020-10-13

  • This is a roll-up of all 1.11.x point releases.

v1.11.9

2020-10-11

  • The Rumble Scanner can now automatically update when run with the upgrade argument.
  • The Rumble Agent can be installed via a static MSI wrapper.
  • Fingerprint updates.

v1.11.8

2020-10-04

  • The scan engine is now more consistent through the addition of UDP retries and by pre-warming the ARP cache for each target group.
  • Fingerprint updates.

v1.11.7

2020-09-28

  • The Rumble Agent and Rumble Scanner now include npcap version 1.0.
  • Fingerprint updates.

v1.11.6

2020-09-23

  • Users with the the Viewer role are now restricted to the Dashboard, Inventory, Explore, and Agents screens.
  • Fingerprint updates.

v1.11.5

2020-09-21

  • A regression in the license expiration tracking of the Rumble Scanner has been resolved.
  • Fingerprint updates.

v1.11.4

2020-09-18

  • Fingerprint updates.

v1.11.3

2020-09-13

  • Fingerprint updates.

v1.11.2

2020-09-11

  • Organizations can now be converted to Projects from the settings page.
  • The top-level organization navigation has been updated.

v1.11.1

2020-09-09

  • Accounts with a default organization role of “user”, but a per-organization role of “none” were inadvertently prevented from accessing certain features.
  • An intermittent crash in the Rumble Agent was identified and resolved.

v1.11.0

2020-09-09

  • This is a roll-up of all 1.10.x point releases.

v1.10.8

2020-09-08

  • Projects are now available as temporary, self-deleting organizations. These are useful for one-off scans and exploring historical data.
  • Web screenshots now try additional Chrome locations on the Windows platform.
  • Over 10,000 new SNMP fingerprints have been added.
  • Small bugfixes and cosmetic improvements.
  • Additional fingerprint updates.

v1.10.7

2020-09-01

  • Web screenshots now retry on timeouts and choose the best quality image automatically.
  • Web screenshots now use more concurrent Chrome processes on x86 systems, based on available memory.
  • The Rumble Agent and Rumble Scanner now track CPU and memory usage across the life of a scan.
  • Fingerprint updates.

v1.10.6

2020-08-22

  • The Rumble Agent, Rumble Scanner, and Rumble Console now compress raw scan by default. The scan.rumble output from the scanner has been renamed to scan.rumble.gz. The web console and API can import both compressed and uncompressed versions of this data. Existing scan data will be migrated to the compressed form automatically. This change helps with bandwidth usage by agents and speeds up large imports over the network.
  • The Tasks view now links to the inventory search for each associated site.
  • The status of agent-run scans is now updated more frequently.

v1.10.5

2020-08-21

  • The completed task list now shows the task runtime in the information column.
  • The task views now also link to the inventory view of each site.
  • Fingerprint updates.

v1.10.4

2020-08-17

  • A regression in the Rumble Scanner that prevented API uploads from succeeding has been resolved.
  • Fingerprint updates.

v1.10.3

2020-08-14

  • Small bug fixes and dependency updates across the platform.
  • Fingerprint updates.

v1.10.2

2020-08-12

  • Site exports and imports now include the registered subnets.
  • Bulk asset updates are now possible by importing a modified CSV export from the Inventory screen.

v1.10.1

2020-08-11

  • A bug that made it difficult to query subnet tags with multiple subnets per tag has been resolved.
  • Fingerprint updates.

v1.10.0

2020-08-04

  • The console user interface received a light update around colors and styles.
  • Event logs are now available in the console.
  • Fingerprint updates.

v1.9.10

2020-08-03

  • A bug that prevented Scan Tags from being shown in the Scan Configuration form has been resolved.
  • The DNS and mDNS probes now always report the protocol, even for error responses.
  • Fingerprint updates.

v1.9.9

2020-08-02

  • Site scopes now automatically convert CIDR input into registered subnets.
  • Scan tasks can now have their Scope and Excludes pinned to their associated site using the string “defaults”.
  • Scan tasks can now be pinned to the default TCP service list using the string “defaults”.
  • A bug that caused non-Windows SMB-enabled services to be identified as Windows has been resolved.
  • A bug that caused SMB v1 to be reported incorrectly as been resolved.
  • Fingerprint updates.

v1.9.8

2020-07-29

  • A bug that prevented the Delete and Merge buttons in the Service Inventory toolbar from working has been resolved.
  • A bug that led to the wrong title being shown in the FTP Service Attribute report has been resolved.
  • Fingerprint updates.

v1.9.7

2020-07-22

  • A bug that prevented the Inventory Import action from recognizing valid scan data has been resolved.
  • The Rumble Agent and Rumble Scanner are now much more reliable for lossy network environments.

v1.9.6

2020-07-21

  • The TCP probes have been updated to be less bursty. This resolves an issue where scans consisting of mostly HTTP services can timeout and lose valid responses.
  • The TCP fingerprinter now handles unexpected termination more gracefully. This improves the reliability of AWS ELB scans and should help with a reliability across a range of services.

v1.9.5

2020-07-20

  • All paid plans now support Continuous recurring scans. These scans will run back-to-back and can simplify continuous monitoring. An agent running continuous scans will not run additional scans unless the Concurrency setting is increased beyond 1.
  • Out-of-date agents will be upgraded prior to new scans being run. For the few agents where upgrades are impossible (read-only partitions, network filters, etc), this can delay each scheduled scan by up to five minutes.

v1.9.4

2020-07-18

  • The Rumble Agent and Rumble Scanner now include a TLS CA root bundle to work around connectivity issues on older platforms. Bundle selection can be controlled via the environment
  • Fingerprint updates.

v1.9.3

2020-07-16

  • The web screenshot features now tries even harder to prevent orphaned Chrome.exe processes.
  • The Rumble Agent now removes all agent-related files on uninstall.
  • Rumble Agents can now be reassigned to other organizations.

v1.9.2

2020-07-12

  • The Export API now supports an optional fields parameter that determines which fields are exported in JSON/JSONL exports. The fields parameter is supported for Assets, Services, Wireless, and Sites.

v1.9.1

2020-07-09

  • A bug in the scan engine that could cause scans to hang when probing unresponsive SSH daemons has been resolved.
  • A bug in the scan engine that could result in SMBv1 being reported erroneously on some NAS devices has been resolved.

v1.9.0

2020-07-06

  • A bug in the TFTP probe that could lead to missing results in some cases has been fixed.
  • The SNMP probe now gathers the route table from many types of switches and routers.
  • TCP SYN scans of non-local targets now try harder when there is congestion.
  • Fingerprint matches that include a hardware version are now given priority.
  • Fingerprint matches for SSH daemons now support more platforms.
  • The permanent organization and permanent site can now be deleted/recreated.
  • The Scan Configuration page now shows a notice when input validation failed.
  • The Scan Configuration now shows SNMP parameters at the top of the form.
  • The Network Bridges report now links all external IPs to an internet cloud.
  • The Network Bridges report now uses subnet masks from Sites.
  • The Subnet Utilization report now provides a Scan link for each network.
  • The Subnet Utilization report now uses subnet masks from Sites.
  • The Subnet Grid report now handles errors more gracefully.
  • A bug that prevented some users from logging in has been resolved.
  • Search queries are now slightly faster across assets and services.

v1.8.14

2020-07-02

  • Tasks are now searchable and sortable via the Search tab.
  • A regression in numerical search queries has been resolved.

v1.8.13

2020-07-01

  • The Scan Configuration page now provides an estimated runtime through a confirmation dialog.
  • Trial accounts are now longer limited to scanning a /16 and may now scan a full /8.
  • The Rumble Agent now supports log configuration using the environment. See the documentation for details.
  • The Rumble Agent and Rumble Scanner now collect SSH pre-auth banners and host keys.
  • Bogus service responses from Fortigate helpers on ports 80 and 8008 are now ignored.
  • Fingerprint updates.

v1.8.12

2020-06-24

  • The Rumble Agent and Rumble Scanner now handle a wider range of ppp-based link types on Linux and macOS.
  • Bogus service responses from Fortigate helpers on ports 21, 25, 80, 110, 143, 8008, 8010, and 8020 are now ignored.
  • Fingerprint updates.

v1.8.11

2020-06-22

  • Bogus service responses from Cisco H.323 helpers on port 1720 are now ignored.
  • The Rumble Agent now stores additional diagnostics in the raw task data.
  • Fingerprint updates.

v1.8.10

2020-06-21

  • Bogus service responses from Fortigate SIP ALG helpers on ports 2000 and 5060 are now ignored.
  • A regression in HTTP handling with redirects and TLS+HTTP headers has been resolved.
  • Fingerprint updates.

v1.8.9

2020-06-20

  • The Rumble Agent and Rumble Scanner now handle malformed HTTP responses and redirects better.
  • Fingerprint updates.

v1.8.8

2020-06-18

  • ICMP Echo probes now record the IP header information from the response (useful for Ripple20/Treck detection).
  • The Rumble favicon.ico MD5 fingerprint database has been contributed to the Recog project.

v1.8.7

2020-06-16

  • The Rumble Agent and Rumble Scanner now support “cooked” interface types (ppp-based VPNs).
  • The scan engine now extracts additional information from Netgear routers.
  • Fingerprint coverage for Netgear routers has been improved.

v1.8.6

2020-06-15

  • Fingerprint updates.

v1.8.5

2020-06-15

  • Fingerprint updates.

v1.8.4

2020-06-15

  • Fingerprint updates.

v1.8.3

2020-06-14

  • Asset Inventory and Search Inventory performance has been improved.
  • The bundled npcap driver in the Rumble Agent and Rumble Scanner for Windows has been upgraded to version 0.9994.
  • Fingerprint updates.

v1.8.2

2020-06-09

  • The Rumble Scanner CSV output now includes populated UUID values.
  • The Rumble Scanner now creates a standalone bridges.json file for third-party processing.
  • Fingerprint updates.

v1.8.1

2020-06-09

  • A bug that could cause agent uninstalls to crash on BSD platforms has been resolved.

v1.8.0

2020-06-09

  • This release is a roll-up of the 1.7.x changes listed below.

v1.7.13

2020-06-08

  • Sites now support registered subnets. Assets can be queried via the associated Site subnet tags.
  • Tags can be set with empty values and queried more precisely through the Inventory search.
  • Asset fingerprinting via favicon.ico hashes has been implemented.
  • The Rumble Scanner now creates a standalone topology.json file for third-party processing.
  • Assets now store the MAC-to-IP relationship in the hidden _macs.ipmap attribute.
  • The Rumble Agent and Rumble Scanner now support OpenBSD on x86 (64-bit).
  • Fingerprint updates.

v1.7.12

2020-06-05

  • This release fixes a bug that prevents the Rumble Agent from restarting automatically after an update on certain Debian-based distributions.
  • Fingerprint updates.

v1.7.11

2020-06-04

  • A reliability bug in the Rumble Agent and Rumble Scanner for BSD-based platforms (macOS, FreeBSD, NetBSD, DragonFly BSD) has been resolved. This bug would manifest as missing scan results in the TCP SYN and ARP probe responses.
  • The bundled npcap driver in the Rumble Agent and Rumble Scanner for Windows has been upgraded to version 0.9992.

v1.7.10

2020-06-02

  • The Rumble Agent and Rumble Scanner now support FreeBSD, NetBSD, and DragonFly BSD. FreeBSD and NetBSD support cover the following architectures: x86 (64-bit, 32-bit), ARM v5, ARM v6, and ARM v7. DragonFly BSD is supported on x86 (64-bit).
  • The Rumble Agent and Rumble Scanner now support additional Linux architectures. These include x86 (64-bit, 32-bit), ARM v5, ARM v6, ARM v7, ARM 64-bit (aarch64), MIPS (BE/LE), MIPS64 (BE/LE), PowerPC64 (LE), and s390x (IBM Z).
  • The Rumble Agent now runs in standalone mode when no supported services backend is detected.
  • The Rumble Agent now supports automatic updates in standalone mode on non-Windows platforms.
  • The Rumble Agent binary now supports command-line flags (-h, -v, -l) and displays usage.

v1.7.9

2020-05-27

  • MAC address fingerprints are now live. The initial set includes fingerprints for devices manufactured by Amazon, Google, Honeywell, August, SimpliSafe, TRENDnet, FLIR, Microsoft, Belkin, Meross, LG, Logitech, Hunter, Lutron, Orbit, Arlo, Panasonic, Sony, Vizio, Chameleon, iRobot, SharkNinja, Netatmo, Nintendo, HP, Intel, Lenovo, Dell, and PC Engines. MAC fingerprints are used as a fallback when more precise fingerprinting is not available.
  • Microsoft SQL Server versions obtained from the network are now mapped to specific releases and patch levels, enabling queries that look for end-of-life versions and missing patches.
  • Chromecast devices now return additional service attributes, including information about the wireless network that they are connected to. Fingerprinting of older Chromecast models (Gen 1) has been improved. MAC addresses and additional IP addresses from the Chromecast web endpoint is now applied to the asset.
  • MySQL and MariaDB version detection now also applies the appropriate OS fingerprint, if known.
  • HTTP services that return JSON responses now camelCase the attribute names and support a wider range of data types. This impacts JSON-based HTTP interfaces such as ElasticSearch and Riak HTTP.
  • OS and Hardware matching is more precise after adjustments were made to the weighting and priorities. The most precise and most confident fingerprint should always be chosen going forward.
  • The confidence of the OS match is now reported as the asset-level match.score attribute. This may be renamed to match.os.score in the future as we accommodate more granular hardware weights.
  • NTLMSSP-based OS matching now disqualifies systems that are obviously not Windows (BSD-based stacks, etc).
  • Brother printers now use distinct hardware and firmware (OS) fingerprints. This should address cases where the firmware version overrode the hardware model by mistake.
  • Release notes are now consolidated across the Platform, Agent, and Scanner.
  • Versioning is now shared across the Platform, Agent, and Scanner.

Archived Release Notes

Prior to version 1.7.9, release notes and versions were split between the Platform, Agent, and Scanner. You can find these archived release notes at the links below.