We are excited to announce the latest addition to the Online Suite - a general purpose text editor. While this may not sound exciting on the surface, there are a few interesting possibilities we are very interested to see unfold. For example, Text is just a simple text editor but combined with Fiddles we have the sort of PasteBin we always wanted. Additionally, you can use the tool to save notes, readmes and other types of useful information in your personal projects or as private fiddles if you have our pro subscription.
Landing WebReaver Alpha
AppBandit 0.3.0 is out. This release includes many performance and style improvements. You can download the latest version from the official page. If you already have AppBandit just wait for the automatic update notification.
We have launched an exciting new feature in BinView which allows you to navigate through all ASCII strings in a binary file, find their location and scroll them in position in the hex viewer. This feature will significantly speed up the time to reverse engineer unknown binary formats. Furthermore we have implemented several useful filters to help you search for known hash values, emails and other useful strings.
Starting from SecApps Extension Version 3.1.0 binary HTTP requests and responses are fully supported. This means that tools such as HTTPView are able to display the exact binary contents of pictures, audios and videos. This feature will also greatly improve interaction with binary protocols like protbuf when accessed by the builtin hex viewer.
We are very excited to announce the first official release of Cohesion - a devsecops web security penetration testing tool specifically designed to be used as part of Continuous Integration pipelines and more.
Cohesion comes with a built-in scanner, fuzzer, and a proxy. The scanner is a standalone security testing solution which will spider the target and execute tests against all parameterized forms and links. The fuzzer is most suitable or testing individual requests, therefore, it fits perfectly in the production pipeline of web services. Finally, the proxy can be used to dynamically scan any request in transit therefore it can be easily combined with existing unit and integration tests.
Just follow the online documentation to learn more about Cohesion.
SecApps Pro users now can create and share Private "Fiddles". Private Fiddles are only advertised to the people you share them with. No one else has access. With private fiddles you can significantly improve the time to investigate and respond to security vulnerabilities. Once configured your fiddle will contain all required information to reproduce the vulnerability and even re-test it on the spot. The fiddle is just a link, which means it can be shared in emails, vulnerability tracking systems, chat sessions and more.
Getting started with "Private Fiddles" is easy. If you are using the Scanner, simply click the grid button to open the issue in Rest or Fuzzer. Once the information is loaded, click the "Fiddle" button and select the "Create Private Fiddle" option. Share the link. You can also create the fiddle manually, load it directly from AppBandit or HTTPView and much more.
Behold the new Launchpad. Not only you can launch all available apps but now we provide information about your recent cloud storage files and "fiddles". We have also substantially improved all profile features, subscription screens, trial management features and much more. Check it out today and let us know what you think.
Landing AppBandit Beta
We are extremely excited to announce the public beta release of our latest tool - AppBandit. AppBandit, or AB for short, is an intercepting penetration testing proxy built on top of our existing technology stack you are already familiar with from our online testing suite. With AppBandit we are not just making a brand new proxy in the same vein as all others but also extending the existing proxy concepts and workflows with new ideas and tooling not seen anywhere else. It is a complete game changer.
The Pown Apps
Together with Pown.js we are very excited to announce a new pown feature, which allows you to use the tools from the online suite directly from the pown command line. This feature enables some interesting capabilities. For example you can interface command line tools with the online suite and vice versa.
Read more about this exciting new feature on our blog.