As the digital attack surface continues to evolve, it’s crucial to stay ahead of the curve in terms of cybersecurity. That’s why we are excited to share with you the advancements we’ve made to our platform to better protect our customers from cyber threats. In this blog series, we will continuously highlight the newest features and updates that make the smarterSec Security Platform even more powerful for safeguarding your digital assets. From enhanced threat detection to improved user experience, our improvements will help our customers to stay one step ahead of potential security breaches. Whether you’re a current user or just interested in learning more about smarterSec, this blog series is for you. Your feedback is more than welcome. So, join us as we take a closer look at the latest innovations for the smarterSec Security Platform.
If you want to dive deeper into the functionalities of the smarterSec Security Platform, you can find more information here: smarterSec Security Platform
New features & improvements
Main features
Load-balancing with multiple scanning-service and extraction-service is now configurable
A configuration page has been added to simplify the configuration of the SSP load balancing. This allows new scanning and extraction services to be connected on the fly.
Testcases can now be disabled for certain Kernel-Versions (SAP NetWeaver)
Due to the different release versions and components of a target, not always all Testcase are applicable. It was already possible to check for components in table CVERS. These checks were now extended to also check the kernel version of a target system.
Enhanced email alerting
Work has continued on the email alert functionality from the previous release. The following options have been added:
- Unsubscribe from notifications at any time without losing your notification configuration.
- Send out notifications as soon as new findings are detected.
- Exclude specific Testcases from the notifications.
Pre-Checks for SAP NetWeaver Targets to confirm Firewall-Setup
The installation requires several manual steps (e.g. assigning roles or configuring the firewall). As a result, problems can arise along the way. In order to quickly identify and resolve connectivity issues, a series of pre-checks have been added. These can quickly verify the correct setting of each component and identify potential problems.
Content
SAP NetWeaver AS ABAP
36 Testcases were added and improved for this target type. One focus point was to find GDPR issues across users and malicious configurations. Another priority was to extend user related Testcases in the areas of: User Accounts, User Authentication, and Authorization Checks. Furthermore, several enhancements were implemented in the categories of: Logging, Transport Management, Password Policies, and Patch Management.
SAProuter
This release multiple Testcases were added across the categories:
- Logging
- Patch Management
- ACL Files
- Data Encryption
We will update you on our new platform features regularly here in this blog – stay tuned and give us a follow on LinkedIn to not miss any further updates!
Related topics: Managed Security Service for the smarterSec Security Platform // smarterSec Security Platform