v2.5.0

What's Changed

• Bug fixes, documentation and interface improvements, dependency version updates and decreasing the number of FPs.
• New module: Humble security header scanner.

New Contributors

• @martclau made their first contribution in #706
• @cyberamt made their first contribution in #705

Full Changelog: v2.4.0...v2.5.0

v2.4.0

What's Changed

• New module: detecting scripts that are loaded from unregistered domains
• New module: checking whether Drupal version is up-to-date
• Better documentation
• Bugfixes
• Bumping up dependencies, more Nuclei translations and enabled templates

Full Changelog: v2.3.0...v2.4.0

v2.3.0

What's Changed

• Better automatic reporting of exposed files detection (fewer false positives, more true positives)
• Detecting that a domain is about to expire by @anna1492
• A feature to block scanning of a domain, IP or IP range (https://artemis-scanner.readthedocs.io/en/latest/user-guide/configuration.html#blocklist)
• Bumping dependency versions, more Nuclei translations, bugfixes, etc.

Full Changelog: v2.2.0...v2.3.0

v2.2.0

What's Changed

• Added the possibility to choose what scans to run
• Added SSH password brute-force module
• Improved SPF/DMARC check tool
• Added XSS inside tags detection
• Updated dependency versions, minor bugfixes, more Polish Nuclei translations, etc.

New Contributors

• @anna1492 made their first contribution in #512

Full Changelog: v2.1.0...v2.2.0

v2.1.0

What's Changed

• More configurable blocklists (a feature to skip reporting a set of vulnerabilities if they are considered false positives): https://artemis-scanner.readthedocs.io/en/latest/generating-emails.html#blocklist
• A feature to alert (during e-mail reports generation) if too many vulnerabilities were found by Nuclei for a single host - this will decrease the number of false positives
• Prometheus metrics export (data such as number of processed or crashed tasks will be exported in Prometheus format on port 9000)
• Speed improvements (Nuclei scans are executed in batches, fewer crt.sh and gau calls)
• Bumping up dependency versions
• Bug fixes

Full Changelog: v2.0.0...v2.1.0

v2.0.0

Breaking change: the following configuration variables have been renamed:

• SECONDS_PER_REQUEST_FOR_ONE_IP -> SECONDS_PER_REQUEST
• SCANNING_PACKETS_PER_SECOND_PER_IP -> SCANNING_PACKETS_PER_SECOND

What's Changed

• Cleaner configuration documentation
• More Nuclei templates enabled by default, e.g. open HTTP proxy detection
• Supporting Unicode domains
• Support for IP ranges
• Documentation improvements
• More Nuclei vulnerability Polish translations
• Bumping up dependency versions, bug fixes

Full Changelog: v1.4.0...v2.0.0

v1.4.0

What's Changed

• a module that automatically generates human-readable reports with vulnerability descriptions,
• finding exposed login panels for tools such as phpMyAdmin,
• bumping dependency versions,
• fewer false positives.

Full Changelog: v1.3.1...v1.4.0

v1.3.1

What's Changed

• Bumping up dependency versions
• Decreasing the number of FPs
• Skipping intrusive Nuclei templates
• Bug fixes

Full Changelog: v1.2.1...v1.3.1

v1.2.1

What's Changed

• UI bugfix

Full Changelog: v1.2.0...v1.2.1

v1.2.0

What's Changed

• Detecting not only WordPress versions marked as insecure, but also old ones
• UI improvements: the possibility to sort and filter on analysis list
• Using site name to generate passwords for WordPress brute-force
• Bumping dependencies, bug fixes

Full Changelog: v1.1.1...v1.2.0