v1.5.0
https://docs.openkat.nl/release_notes/1.5.html
OpenKAT 1.5: multi organization support
The main feature of the 1.5 release of OpenKAT is the ability to scan multiple organizations from one OpenKAT instance and manage the data and users for each of them. It comes with an API to automatically deploy organizations and users from an external source.
This gives you the ability to manage OpenKAT for a large group of organizations while maintaining the separation of data and users for each of them. It also allows you to supply credentials to users within those organizations and to give them access to their own data, make reports etc.
In addition to this several other features have been added that support this use case, such as the ability to filter and manage and add objects in bulk and add scanning and inheritance of scan levels from a higher level. They were requested by some of our large scale partners and we will continue working on such features in the forthcoming releases.
Features:
- Most importantly, this is the first version of KAT that offers fully implemented multi-organization support. New organizations can be added in the Rocky admin interface (/admin), after which databases in xtdb and KAT-alogus will be automatically added. Clients can be added for each organization that cannot view data of other organizations
- Certificates can now be created without having a relation to a website
- IPAddresses now inherit a scan level from a netblock if that netblock is known
- NMAP can now scan ip ranges
- Rocky now offers bulk actions for the deletion of OOIs and giving clearance levels to OOIs
- Rocky now offers filtering options based on clearance levels and clearance level types
IMPORTANT
This feature includes a new version of XTDB. Therefore, the env setting XTDB_TYPE has to be set to xtdb-multinode. Also, all data in xtdb will be lost and cannot be moved to this version. If you use a locally installed version, you can change to the xtdb version in this repo: https://github.com/dekkers/xtdb-http-multinode.
Full Changelog
Coordination
What's Changed
- Dynamically checkout the latest release tag with
clone-stableby @Darwinkel in #96 - Give CREATEDB rights to rocky db user by @dekkers in #98
- Update Sphinx docs by @Darwinkel in #97
- Set KAT_VERSION in .env-dist to v1.4.0 by @dekkers in #104
- Enable auto-reload of code for all services by @dekkers in #99
- Passing over xtdb work from Jeroen by @Rieven in #92
- documentation update: introduction into OpenKAT by @ring-ring-ring in #103
New Contributors
Full Changelog: v1.4.0rc1...v1.5.0rc2
Octopoes
What's Changed
- Release 1.4 by @dekkers in minvws/nl-kat-octopoes#31
- Feature/scan level filtering by @Lisser in minvws/nl-kat-octopoes#21
- Update
Certificatemodel by @ammar92 in minvws/nl-kat-octopoes#25 - Feature/scan profile filtering by @Lisser in minvws/nl-kat-octopoes#22
- Add Python 3.11 to the unit test matrix by @Darwinkel in minvws/nl-kat-octopoes#29
- [OpenKAT v1.5] Support multinode XTDB by @Rieven in minvws/nl-kat-octopoes#20
- Add image meta data model v1 by @Donnype in minvws/nl-kat-octopoes#38
- implement by @Lisser in minvws/nl-kat-octopoes#59
- Updated dependabot config by @ammar92 in minvws/nl-kat-octopoes#60
New Contributors
- @Lisser made their first contribution in minvws/nl-kat-octopoes#21
- @ammar92 made their first contribution in minvws/nl-kat-octopoes#25
- @Darwinkel made their first contribution in minvws/nl-kat-octopoes#29
- @Rieven made their first contribution in minvws/nl-kat-octopoes#20
- @Donnype made their first contribution in minvws/nl-kat-octopoes#38
Full Changelog: minvws/nl-kat-octopoes@v1.4.0rc1...v1.5.0rc2
Bytes
What's Changed
- Release 1.4 by @dekkers in minvws/nl-kat-bytes#28
- Test multiple Python versions through Docker and Makefile build arg by @Darwinkel in minvws/nl-kat-bytes#25
- Bump setuptools from 62.3.2 to 65.6.3 by @dependabot in minvws/nl-kat-bytes#27
- Optional input_ooi by @Donnype in minvws/nl-kat-bytes#20
New Contributors
- @Darwinkel made their first contribution in minvws/nl-kat-bytes#25
- @Donnype made their first contribution in minvws/nl-kat-bytes#20
Full Changelog: minvws/nl-kat-bytes@v1.4.0rc1...v1.5.0rc2
Boefjes
What's Changed
- Censys normalizer updates by @ammar92 in minvws/nl-kat-boefjes#26
- [OpenKAT v1.5] make organisation field longer by @Rieven in minvws/nl-kat-boefjes#37
- Release 1.4 by @dekkers in minvws/nl-kat-boefjes#52
- Fix plugins related to
Certificateby @ammar92 in minvws/nl-kat-boefjes#41 - [Nmap] Introduce Nmap ports boefje by @zcrt in minvws/nl-kat-boefjes#40
- [Nmap] Add settings for top-ports and protocol by @zcrt in minvws/nl-kat-boefjes#43
- [bug] RE: LeakIX handle HTTP 204 response by @zcrt in minvws/nl-kat-boefjes#56
- Change workflow file to test multiple Python versions by @Darwinkel in minvws/nl-kat-boefjes#44
- [Nmap] [NetBlock] ✨ introduce Nmap IP range scanning by @zcrt in minvws/nl-kat-boefjes#58
- Fix nmap schema and add test showing integers are not yet supported by @Donnype in minvws/nl-kat-boefjes#60
- Also fix nmap_ip_range integer by @Donnype in minvws/nl-kat-boefjes#68
- implement connection between ipaddresses and netblocks by @Lisser in minvws/nl-kat-boefjes#69
- [OpenKAT v1.5] Do not create _dev organisation in seed by @dekkers in minvws/nl-kat-boefjes#46
- Updated dependabot config by @ammar92 in minvws/nl-kat-boefjes#70
New Contributors
- @Rieven made their first contribution in minvws/nl-kat-boefjes#37
- @Darwinkel made their first contribution in minvws/nl-kat-boefjes#44
Full Changelog: minvws/nl-kat-boefjes@v1.4.0...v1.5.0rc2
Rocky
What's Changed
- Release 1.4.0 by @noamblitz in minvws/nl-kat-rocky#75
- add missing dmarc, dkim and spf findings by @noamblitz in minvws/nl-kat-rocky#35
- Fix ignored flake8 errors and change tests to pytest by @dekkers in minvws/nl-kat-rocky#87
- fix boefje settings forms for integer fields by @noamblitz in minvws/nl-kat-rocky#91
- untested but adding cached network reference support to csv importer. by @underdarknl in minvws/nl-kat-rocky#95
- fix flake8 error on katalogus forms by @underdarknl in minvws/nl-kat-rocky#99
- Release 1.4 by @dekkers in minvws/nl-kat-rocky#102
- Run pytest in CI by @dekkers in minvws/nl-kat-rocky#113
- Bump json5 from 2.2.1 to 2.2.3 by @dependabot in minvws/nl-kat-rocky#103
- feature(scan level filter): implement by @Lisser in minvws/nl-kat-rocky#82
- CSV import introspection by @ammar92 in minvws/nl-kat-rocky#98
- Change Organization model and add API by @dekkers in minvws/nl-kat-rocky#109
- Feature/scan profile filter by @Lisser in minvws/nl-kat-rocky#83
- [Feature] [#C86] Add certificate expiry check by @zcrt in minvws/nl-kat-rocky#88
- Updated file structure for css files within rocky. by @HeleenSG in minvws/nl-kat-rocky#122
- fix(ooi_report): take description from finding_type if None in Finding by @Lisser in minvws/nl-kat-rocky#118
- Update landing_page.html by @ring-ring-ring in minvws/nl-kat-rocky#124
- Added tag styles and colors. Updated to manon v1.1.5 by @HeleenSG in minvws/nl-kat-rocky#133
- Add support for XTDB multinode by @dekkers in minvws/nl-kat-rocky#123
- Add task list params by @jpbruinsslot in minvws/nl-kat-rocky#89
- Fix scan history template artifact by @jpbruinsslot in minvws/nl-kat-rocky#135
- [OpenKAT v1.5] Fix boefje detail checkboxes function at scan oois by @Rieven in minvws/nl-kat-rocky#111
- Feature/multi select by @Donnype in minvws/nl-kat-rocky#86
- Fix/scan levels by @Donnype in minvws/nl-kat-rocky#154
- [OpenKAT v1.5] Multi XTDB and organizations management through organization code as slug by @Rieven in minvws/nl-kat-rocky#115
- Ignore minor updates by @ammar92 in minvws/nl-kat-rocky#155
- refactor raising of scanprofile by @Lisser in minvws/nl-kat-rocky#162
- Make toggle target scoped so it is capable of handling multiple instances on one page by @TwistMeister in minvws/nl-kat-rocky#170
New Contributors
- @Lisser made their first contribution in minvws/nl-kat-rocky#82
- @ammar92 made their first contribution in minvws/nl-kat-rocky#98
- @zcrt made their first contribution in minvws/nl-kat-rocky#88
- @HeleenSG made their first contribution in minvws/nl-kat-rocky#122
- @ring-ring-ring made their first contribution in minvws/nl-kat-rocky#124
- @jpbruinsslot made their first contribution in minvws/nl-kat-rocky#89
- @TwistMeister made their first contribution in minvws/nl-kat-rocky#170
Full Changelog: minvws/nl-kat-rocky@v1.3.0...v1.5.0rc2
Mula
What's Changed
- Test multiple Python versions through Docker build arg by @Darwinkel in minvws/nl-kat-mula#24
- Optional input_oois: use "None" for hash by @Donnype in minvws/nl-kat-mula#17
- Merge release-1.4 into main by @jpbruinsslot in minvws/nl-kat-mula#25
- Use the scan profile mutation queue from octopoes by @jpbruinsslot in minvws/nl-kat-mula#36
- [Feature] task list filters by @jpbruinsslot in minvws/nl-kat-mula#16
New Contributors
- @Darwinkel made their first contribution in minvws/nl-kat-mula#24
- @Donnype made their first contribution in minvws/nl-kat-mula#17
Full Changelog: minvws/nl-kat-mula@v1.4.0rc1...v1.5.0rc2
Contributors
dekkers, jpbruinsslot, and 12 other contributors