Attaxion Release Changelog

A log of recent key product updates and changes in Attaxion EASM

Attaxion is evolving, offering new features and improving the workflows for our users. Below, you can find a log of the latest product updates and changes that've been made based on our user feedback.


Got a feature request? Contact us!

Q4 2024

Key Features:

  • Asset group view: Added a “Groups” page where administrators can create, manage, and delete groups linked to specific asset views. Groups allow team members to filter for the corresponding assets on the Assets, Issues, and Technologies pages. Please see How Can I Create an Asset Group View in Attaxion? for more details.
  • Role-based access control (RBAC) feature: Team leaders can now invite other users and assign them roles. The available roles include Admin, Editor, or Viewer. Please read this documentation to learn how to invite users and define roles.
  • Dedicated ”Ports” tab: A new tab from the left menu has been added. The “Ports” page lists all ports detected for the organization and provides more information on each of them. Learn more about the dedicated tab here.

Q3 2024

Key Features:

  • CISA KEV data. Added a warning if an issue is listed in the CISA KEV catalog (see the documentation for “Vulnerability details” view for more details) to simplify prioritization with the ability to filter for KEVs.
  • EPSS. Added EPSS (exploit prediction scoring system) data for issues with an associated CVE to simplify prioritization.
  • Customizable notifications. Added the ability to set a minimal vulnerability severity for notifications (see documentation for Slack notifications for more details). This option applies to both Slack and email notifications.
  • Asset false positives. Added the ability to mark assets as false-positives to exclude them from being scanned (see the documentation for the “Asset details” view for more details.)
  • Individual asset scanning mode selection. Added the option to select a scan mode for individual assets (see documentation on scanning modes for details.)

Q2 2024

Key Features:

  • Domain autoverification. Added automatic verification for the domain associated with the business email (see the documentation for adding and verifying root assets for details).
  • Vulnerable technology highlighting. Added information about the number of issues for each technology and highlighting technology with red if it’s vulnerable. Added a warning on the technology details page if any version of the technology used across the organization’s assets is known to be vulnerable.
  • Issue statuses. Added "open", "fixed", "accepted risk", and "false positive" statuses to issues. Refer to the documentation on the “Vulnerability details” view and the “Issues” view for more details.
  • Closed ports removed from assets. Attaxion no longer counts closed ports as assets. They do not appear on any asset lists and do not influence the total count of assets.

Q1 2024

Key Features:

  • Scanning modes. Added the ability to switch between passive and active scanning (see the documentation on scanning modes for details).
  • Dynamic issues graph. Added a graph demonstrating the changes in the numbers of issues of different severity levels over time to the main dashboard.