Product

SSL Scanner Overhaul and Improved UI Call Coverage Powered by User-Defined Prompts

This release introduces major enhancements to our AI-powered UI exploration engine, delivering smarter and more adaptive dynamic scanning across modern applications. We've overhauled our SSL scanner to detect 15+ critical SSL/TLS vulnerabilities with improved precision, and rebuilt the taint analysis engine for deeper and more reliable vulnerability detection. The release also expands coverage for secrets detection, mobile misconfigurations, and modern CVEs. Across the board, platform performance has been refined for greater speed, stability, and accuracy.

Tue 22 July 2025

🔒 SSL/TLS Security Enhancements

Complete SSL Scanner Overhaul

We rebuilt our SSL scanner from the ground up to minimize false positives and improve detection accuracy. The new scanner identifies a wide array of critical SSL/TLS vulnerabilities, including:

  • SSL Bleichenbacher Attack

  • TLS Fallback SCSV Not Supported

  • TLS Heartbleed (affects 500,000+ servers globally)

  • Weak Cipher Suites

  • SSL POODLE Attack

  • TLS CCS Injection

  • TLS Ticketbleed

  • TLS CRIME Attack

  • TLS FREAK Attack

  • TLS Logjam (Common Primes & Full Attack)

  • TLS DROWN Attack (Critical severity)

  • Hostname Mismatch

  • Insecure Forward Secrecy

  • Weak Keys (Size & Signature Algorithm)

TLS VULN report

🧬 UI Call Coverage (Dynamic Scanning)

The Monkey Tester has been upgraded to support prompt-based input in addition to the traditional UI automation rules. As a user, you can now write text to test specif use cases in the application. For example "Navigate to the Transfer menu and add an account using the provided custom credentials."

This feature allows:

  • Better adaptability to complex authentication flows

  • More precise control over the exploration of app functionality

  • Improved results for dynamic scans of mobile and web apps

📱 iOS & Android Security Analysis

Enhanced Data Protection Analysis (iOS)

Added rules to detect improperly configured file protection classes by analyzing the value of the com.apple.developer.default-data-protection attribute within IPA application entitlements. Misconfiguration of this attribute can weaken data protection on iOS devices, potentially exposing sensitive user data to unauthorized access or compromise.

Dynamic Scanner Enhancements (iOS & Android)

Retrieve the mobile application data files directly from the device and scan them. This features allows scanning the databases, shared preferences, plist files and ensure the encryption of the stored data and the absence of any sensitive information in the device.

Data Files

New iOS Vulnerability Detections

Added detections for key mobile misconfigurations, including:

  • File sharing misconfigurations
  • Document editing vulnerabilities
  • Sensitive permission overuse (IDFA access tracking)
  • Missing strong encryption declarations

⚡ Performance & IDE Improvements

Drastically Enhanced IDE Performance

Implemented extensive performance optimizations across our Analysis IDE, enabling it to efficiently load hundreds of thousands of artifacts collected from the app—alongside logs and reversed application data—resulting in significantly improved responsiveness without sacrificing comprehensive visibility.

🧠 AI-Powered Secrets Detection

Expanded Secrets Coverage

  • Broader Detection: Added new rules to identify sensitive credentials including Salesforce tokens, Filestack API keys, and SmartyStreets credentials, helping to uncover previously undetected secrets in your code and configurations.

  • Improved Accuracy: Implemented advanced secret validation techniques to dramatically reduce false positive alerts, minimizing alert fatigue and allowing security teams to focus on genuine risks.

🛡️ Threat Center Updates

New CVE Detections

We’ve added detections for several high-impact 2025 CVEs, including:

  • CVE-2025-48827: Unauthenticated API access in vBulletin on PHP 8.1+ - affects 50,000+ installations

  • CVE-2025-4322: Account takeover in the Motors WordPress theme - 100,000+ active sites

  • CVE-2025-32756: RCE in Fortinet products via HTTP overflow

  • CVE-2025-23016: Heap overflow in astCGI fcgi2 (2.x to 2.4.4)

Cisco ISE Fingerprinting

A new fingerprinting module was introduced to detect Cisco Identity Services Engine (ISE) during reconnaissance scans.

🔍 Privacy Analysis Enhancements

Advanced Bot Detection Bypass

Improved crawler logic to mimic human interactions, enabling successful collection of privacy policies protected by bot defenses.

Multi-Format Privacy Policy Parsing

Expanded document parsing capabilities to include PDF and other formats, improving coverage in privacy compliance audits.

⚙️ Taint Analysis Optimization

  • Faster Large Codebase Scanning - Optimized for enterprise-scale applications
  • JavaScript Interface Support - Full coverage for hybrid mobile apps
  • Refined Detection Rules - Minimized noise while preserving critical vulnerability detection

🧰 API & Platform Stability

Backend Fixes

Resolved multiple backend issues that previously impacted API uptime and workflow consistency. These fixes enhance integration stability, reduce scan interruptions, and improve overall platform responsiveness.

📚 Documentation Improvements

Web Scan & Custom User-Agent Support

Updated the documentation to describe how to run authenticated web scans with custom user agents, including:

Access Management Documentation

Added a new guide for managing access permissions and working with Attack Surface Auditors:
Manage Access Tutorial →

Tags:

UI, TLS, taint analysis, secrets, performance

We do newsletters, too

Get the latest news, updates, and product innovations from Ostorlab right in your inbox.

Table of Contents