Rootshell Platform – Patch Notes March 2025

Attack Surface Management (ASM) Visualization

Overview

Introducing the Attack Surface Management (ASM) Visualization, an innovative feature developed to empower end-users with detailed insights into their organizational assets. This new capability enables you to visualize and manage your digital assets effectively, providing a clear understanding of your attack surface and enhancing your security posture.

Key Features

• Comprehensive Visualization Dashboard: Gain immediate access to a dedicated dashboard that displays a detailed visual representation of your digital assets. This visualization helps you quickly understand the scope and details of your assets, including potential security risks.
• Enhanced Asset Triage: The feature allows you to categorise assets in meaningful ways:
  • New Assets: Identify assets that are new to your environment, highlighting potential expansions or unknown entries.
  • In Scope: Track assets that are actively managed and assessed, ensuring continuous monitoring.
  • Under Review: Focus on assets that require further investigation to confirm their security status or ownership.
  • False Positive: Quickly dismiss assets incorrectly flagged as part of your estate, reducing noise and focusing on genuine threats.
  • Rogue: Identify and respond to potential threats from assets that appear legitimate but are actually malicious, such as typo-squatted domains.

User Impact

The ASM Visualization feature is tailored to provide you with a powerful tool for managing your attack surface more effectively. By offering a clear and organized view of your assets, this feature not only enhances your ability to detect and respond to potential vulnerabilities but also supports strategic security planning and compliance efforts.

Importance of ASM Services

In today’s digital landscape, understanding and managing your attack surface is more critical than ever. With increasing cyber threats and expanding digital footprints, having a robust ASM service provides crucial benefits:

• Proactive Security Management: Stay ahead of potential security breaches by having a proactive view of your assets and their vulnerabilities.
• Informed Decision-Making: Make better-informed security decisions based on comprehensive data and visual insights into your asset landscape.
• Enhanced Compliance: Meet compliance requirements more effectively with detailed asset tracking and management capabilities.

Conclusion

The ASM Visualization feature transforms how end-users interact with and manage their digital assets. By providing an intuitive and informative view of your attack surface, it plays a pivotal role in enhancing your overall security strategy, ensuring that you remain one step ahead in a rapidly evolving cyber environment.

ASM Notifications for Enhanced Asset Management

Overview

In conjunction with the introduction of our new Attack Surface Management (ASM) service type, we are pleased to announce the launch of ASM Notifications. This feature is designed to enhance the visibility and management of assets detected through ASM projects, ensuring that users are promptly informed about important changes and statuses.

Key Features

• New Asset Notifications: Users will receive alerts whenever a new ASM-discovered asset is found. Notifications are sent at the closure of the scan, informing users of any new assets detected.
• Untested Asset Notifications: The platform will alert users about any assets that are deemed in scope from an ASM scan but have not undergone at least one of the other security assessments within the platform within a specified timescale. This timescale can be configured within the ASM project settings.
• Rogue Asset Notifications: Notifications are also triggered for assets categorised as rogue at the close of a scan or when an asset status is changed in a closed scan.

Notification Settings

• Configurable Alerts: Users can configure how they receive these alerts—via in-platform notifications, email, or both—through their profile notification settings.
• Default Settings: To avoid notification overload, all ASM alerts are turned off by default. Users can opt-in as per their monitoring needs.

User Impact

ASM Notifications are designed to significantly enhance the operational management of assets within the ASM framework. By providing timely updates on new, in-scope, and rogue assets, users can take immediate action, ensuring that their asset landscape is accurately reflected and securely managed.

Implementation

• Notification Configuration: Users can easily activate and customise their notification preferences in their profile settings to suit their specific needs and preferences.
• Seamless Integration: ASM Notifications are fully integrated with the platform’s existing notification system, providing a seamless user experience.

Conclusion

ASM Notifications bring a new level of support and functionality to our Attack Surface Management service, empowering users to stay informed and responsive to changes in their asset environment. By enabling timely and configurable alerts, we help ensure that our users can maintain an effective and proactive security posture.

Platform Improvements

Stored User-Configurable Columns for Data Tables

Overview

We are enhancing the personalization features on our platform with the introduction of user-configurable columns for all data tables. This improvement allows users to customize and save their preferred column alignments and settings directly to the database, ensuring a consistent and tailored viewing experience across different sessions and logins.

Key Features

• Customizable Column Settings: Users can now adjust and configure the columns displayed on data tables across the platform according to their preferences.
• Persistent User Settings: Once a user sets their preferred column configuration on any data table, such as the Results Issues Page, these settings are saved to the database.
• Automatic Configuration Retrieval: Every time a user logs into the platform, their custom settings are automatically applied, eliminating the need to reconfigure the view with each session.

User Impact

This new feature is particularly beneficial for users who frequently interact with data-rich tables and need to maintain a consistent setup that aligns with their daily operations and analysis tasks. It reduces the time spent on adjusting views and enhances the usability of the platform.

Implementation

Users can set their preferred column configurations via a simple interface directly on the data table page.

The platform will automatically save these preferences to the user’s profile in the database.

Upon returning to the platform or accessing it from different devices, the saved configurations will be automatically applied.

Conclusion

By introducing user-configurable columns for all data tables, we are significantly enhancing the customization capabilities of our platform. This improvement not only saves time for our users but also ensures a more productive and user-friendly experience by allowing them to tailor the platform to their specific needs.

Enhanced ServiceNow Ticket Exports with Issue Severity and Project Details

Overview

Improving the integration with ServiceNow, we have enhanced the ticket export functionality to include more detailed information. Issue severity ratings and project-phase details are now automatically included within the ServiceNow ticket exports. This enhancement is designed to facilitate more precise tracking and management of issues within ServiceNow, especially for bespoke automations that calculate ticket priority based on these additional details.

Key Enhancements

• Issue Severity in Descriptions: The severity rating of an issue is now included at the beginning of the short description in every exported ticket, providing immediate visibility into the criticality of the issue.
• Expanded Ticket Information: Information about the project and phase associated with the issue is now included within the ticket description. This additional context helps in managing tickets and can be used by automated processes within ServiceNow to set priorities and manage workflows more effectively.

User Impact

These enhancements streamline the process of ticket management within ServiceNow by providing essential information right within the ticket details, reducing the need for manual data entry and improving the accuracy of issue handling.

Implementation

Automatic Inclusion: When issues are exported to ServiceNow, the severity rating, project name, and phase information are automatically populated in the relevant fields of the ticket.

Support for Automations: The additional data points support organisations in setting up advanced automations within ServiceNow that leverage issue severity and project context to determine ticket prioritisation and routing.

Conclusion

The inclusion of issue severity and project-phase details in ServiceNow ticket exports marks a significant improvement in our platform’s integration capabilities. By providing more comprehensive data automatically, we enable more efficient issue management and enhance the overall utility of ticketing workflows for our users. This update is part of our ongoing efforts to enhance system integrations and streamline operations for our clients.