Releases: yogeshojha/rengine
Releases · yogeshojha/rengine
reNgine v2.2.0
What's Changed
Summary
- Introducing Bounty Hub: Central platform for managing and importing bug bounty programs
- New Built-in notification system for important events and updates
- Enhanced subdomain discovery using Chaos project dataset
- Bug Bounty Mode as user preference to enable or disable features related to bug bounty
- Path exclusion feature for scans
- New visually appealing PDF report template
- Regex support for out-of-scope subdomains
- Stop All Scans killswitch to halt multiple running scans at once
- Smart rescans that automatically import and apply previous scan configurations
- Improved Start Scan UI for consistent configuration across multiple scans
- Support for bulk uploads of nuclei and gf patterns
- API key protection (masking in settings view)
- feat: Allow uploading of multiple gf patterns #1318 by @yogeshojha in #1319
- feat: Introduce stop multiple scans #1270 by @yogeshojha in #1321
- feat: Mask API keys Fixes #1213 by @yogeshojha in #1331
- feat: Allow uploading multiple nuclei patterns #461 by @yogeshojha in #1320
- feat: Introduce github action for auto updating version and changelog on every release by @yogeshojha in #1348
- chores: Removes external IP from reNgine ui by @yogeshojha in #1350
- feat: Implement URL Path Exclusion Feature with Regex Support Fixes #1264 by @yogeshojha in #1354
- feat: Consistent start scan ui across schedule scan, multiple scans. Now supports import, out of scope subdomains, starting path, excluded path for all types of scan #1357 by @yogeshojha in #1361
- Update of template.html with conditional statement by @DamianHusted in #1378
- feat: feat ability to delete multiple scheduled scan #1360 by @yogeshojha in #1382
- feat: Enhanced Out of Scope Subdomain Checking, Support for regex in out of scope scan parameter #1358 by @yogeshojha in #1380
- feat: Store and showcase scan related configuration such as imported subdomains, out of scope subdomains, starting point url and excluded paths fixes #1356 by @yogeshojha in #1383
- Update celery-entrypoint.sh by @SJ029626 in #1390
- feat: Prefll the scan parameters during rescan with the scan configuration values that were being used in earlier scan #1381 by @yogeshojha in #1386
- feat: Added additional templates for PDF reports #1387 by @yogeshojha in #1391
- Replace CVE-2024-41661 with CVE-2023-50094 by @shelbyc in #1393
- hotfix: Workflow autocomment issues by @yogeshojha in #1396
- Fix comment workflow on fork PRs by @yogeshojha in #1400
- Hotfix/workflow cmt1 by @yogeshojha in #1401
- fix author name by @yogeshojha in #1403
- Update of the uninstall.sh script by @DamianHusted in #1385
- feat: Builtin notification system in reNgine #1392 by @yogeshojha in #1394
- feat: Show what's new popup when update happens and new features are released #1395 by @yogeshojha in #1405
- feat: Add Chaos for subdomain enumeration #173 by @yogeshojha in #1406
- Version 2.1.3 contains a patch for CVE-2024-43381 by @shelbyc in #1412
- feat: Introducing Bounty Hub, a central hub to import and manage your hackerone programs to reNgine by @null-ref-0000 in #1410
- feat: Add ability to delete multiple organizations by @yogeshojha in #1417
- feat: Enable bug bounty mode as User Preference to separate bug bounty related features #1411 by @yogeshojha in #1418
- bug: remove watchmedo usage in production #1419 by @yogeshojha in #1424
- feat: Create organization when quick adding targets #492 by @yogeshojha in #1425
- reNgine 2.2.0 by @yogeshojha in #1349
New Contributors
- @DamianHusted made their first contribution in #1378
- @SJ029626 made their first contribution in #1390
- @shelbyc made their first contribution in #1393
Full Changelog: v2.1.3...v2.2.0
Contributors
null-ref-0000, shelbyc, and 3 other contributors
Assets 2
reNgine v2.1.3
What's Changed
Security Update
- (Security) CVE-2024-41661 Stored Cross-Site Scripting (XSS) via DNS Record Poisoning reported by @touhidshaikh Advisory GHSA-96q4-fj2m-jqf7
Bug Fixes
- remove redundant docker environment variables by @jxdv in #1353
- fix: reNgine installation issue due to orjson and langchain #1362 by @yogeshojha in #1363
- #1364 FIx whois lookup and improve performance by executing various modules of whois lookup to run concurrently by @yogeshojha in #1368
- chores: Add error handling for the curl command by @gitworkflows in #1367
- Update Github Actions Workflows by @yogeshojha in #1369
- chores: Fix docker build on master by @yogeshojha in #1373
New Contributors
- @gitworkflows made their first contribution in #1367
Full Changelog: v2.1.2...v2.1.3
Contributors
yogeshojha, touhidshaikh, and 2 other contributors
Assets 2
reNgine v2.1.2
What's Changed
Security update
- (Security) CVE-2024-41661 Fix Authenticated command injection in WAF detection tool reported by @n-thumann Advisory GHSA-fx7f-f735-vgh4
Bug Fixes
- Fix issue while initiating periodic and clocked scan #1322 by @yogeshojha in #1328
- Fix 500 error on "Test Hackerone api Key" by @yogeshojha in #1332
- UI Typos and bug Fixes #1333 by @yogeshojha in #1334
- Fix error during tool update Fixes #1152 by @yogeshojha in #1335
- Upgrade setuptools to 72.1.0 to resolve installation error by @yogeshojha in #1338
- (chores) Fix github pages build by @yogeshojha in #1339
- Fix subdomain import for subdomains with suffixes more than 4 chars Fixes #1128 by @yogeshojha in #1340
Full Changelog: v2.1.1...v2.1.2
Contributors
yogeshojha and n-thumann
Assets 2
reNgine v2.1.1
What's Changed
- fix xss on page title fix #1185 by @yogeshojha in #1296
- fix context key error #1263 #1209 by @yogeshojha in #1294
- fix xss on vulnerability description payloads #1262 by @yogeshojha in #1298
- (bug) fix screenshot csv parser #1299 by @yogeshojha in #1300
- (Security) Fixes #1202 bug risk of leaking the scan result files by @yogeshojha in #1301
- Fix #1291 Refactor Makefiles for windows/linux to accomodate both v1 and v2 of docker compose by @yogeshojha in #1302
- Fix custom_header to accept multiple headers using custom_headers by @yogeshojha in #1303
- Handle hash in url, added navigation for Tabs, Fixes #1155 bug href link with html id does not link to the expected url by @yogeshojha in #1306
- Optimize uninstall scripts to perform operations only related to reNgine Fixes # 1187 by @yogeshojha in #1307
- Added validators to validate URL fixes #1176 by @yogeshojha in #1308
- Fix LLM/langchain issue for fetching vulnerability report using local LLM model Fixed #1292 local model dont use fetch gpt vulnerability details by @yogeshojha in #1311
- Fixes for Clocked and Periodic Scans Fix #1287 Fixes #1015 by @yogeshojha in #1313
- Fix Not able to add todo from All Subdomains Section Fixes #1310 by @yogeshojha in #1314
- Fix #1315 Fix for todo URLs not compatible with slugs by @yogeshojha in #1316
- Fixes #1122 But in port service lookup that caused multiple entries of Port with same port number but different service name/description by @yogeshojha in #1317
- Update contribution guidelines reference by @emmanuel-ferdman in #1286
New Contributors
- @emmanuel-ferdman made their first contribution in #1286
Full Changelog: v2.1.0...v2.1.1
Contributors
yogeshojha and emmanuel-ferdman
Assets 2
reNgine v2.1.0
reNgine 2.1.0 🚀
What's Changed
- ARM support
- Add LLM Toolkit by @yogeshojha in #1259
- use django-env by @fopina in #1230
- Add Lark to notifications. by @iuime in #1137
- Added restart: always to redis container by @null-ref-0000 in #1275
- Dockerfile cleanup: reduce image size 3x by @sa7mon in #1212
- Support for ARM-based platforms and remove obsolete composer version by @metehan-arslan in #1242
- Fix importing CIDR blocks by @pbehnke in #1205
- Added SAN extension to the generated certs by @michschl in #1282
- Release/2.1.0 by @yogeshojha in #1147
- Dockerfile Build Multiple Platforms by @vncloudsco in #1210
New Contributors
- @fopina made their first contribution in #1230
- @iuime made their first contribution in #1137
- @null-ref-0000 made their first contribution in #1275
- @sa7mon made their first contribution in #1212
- @metehan-arslan made their first contribution in #1242
- @pbehnke made their first contribution in #1205
- @michschl made their first contribution in #1282
- @vncloudsco made their first contribution in #1210
Full Changelog: v2.0.6...v2.1.0
Contributors
fopina, sa7mon, and 7 other contributors
Assets 2
reNgine v2.0.6
What's Changed
- Fix installation error and celery workers having issues with httpcore
- remove duplicate gospider references by @Talanor in #1245
- Fix "subdomain" s3 bucket by @Talanor in #1244
- Fix Txt File Var Declaration by @specters312 in #1239
- Bug Correction: When dumping and loading customscanengines by @TH3xACE in #1224
- Fix/infoga removal by @yogeshojha in #1249
- Fix #1241 by @yogeshojha in #1251
New Contributors
- @Talanor made their first contribution in #1245
- @specters312 made their first contribution in #1239
- @TH3xACE made their first contribution in #1224
Full Changelog: v2.0.5...v2.0.6
Contributors
Talanor, specters312, and 2 other contributors
Assets 2
reNgine v2.0.5
What's Changed
- Fix celery unable to load apps
reNgine 2.0.4
What's Changed
- Fix various ffuf bugs by @yarysp in #1199
- Set and update default YAML config with all latest vars by @yarysp in #1200
- Add checks for placeholder in custom tool task by @yarysp in #1201
- Whatportis - Replace purge by truncate to prevent port import error by @yarysp in #1203
- ops(installation): fix nano not being installed when absent by @AnonymousWP in #1143
- Fix uninitialised variable cmd in custom_subdomain_tools by @cpandya2909 in #1207
- [FIX] security: OS Command Injection vulnerability (x2) #1219 by @0xtejas in #1227
- Update README.md | Fixed 1 broken link to the regine.wiki by @jostasik in #1226
New Contributors 🚀
- @yarysp made their first contribution in #1199
- @jostasik made their first contribution in #1226
- @cpandya2909 made their first contribution in #1207
- @0xtejas made their first contribution in #1227
Full Changelog: v2.0.3...v2.0.4
Contributors
cpandya2909, jostasik, and 3 other contributors
Assets 2
reNgine 2.0.3
Bug Fixes
What's Changed
- CI: update GitHub action versions by @jxdv in #1136
- Fixed (subdomain_discovery | ERROR | local variable 'use_amass_config' referenced before assignment) by @Deathpoolxrs in #1149
- chore: update LICENSE by @jxdv in #1153
- Fix subdomains list empty in Target by @psyray in #1166
- Fix top menu text overflow in low resolution by @psyray in #1167
- Update auto comment workflow due to deprecation warnings by @ErdemOzgen in #1126
- Change Redirect URL after login to prevent 500 error by @psyray in #1124
- fix-1030: Add missing slug on target summary link by @psyray in #1123
New Contributors
- @Deathpoolxrs made their first contribution in #1149
- @ErdemOzgen made their first contribution in #1126
Full Changelog: v2.0.2...v2.0.3
Contributors
psyray, ErdemOzgen, and 2 other contributors
Assets 2
reNgine 2.0.2
What's Changed
- Added tooltip text to dashboard total vulnerabilities tooltip by @luizmlo in #1029
- ops(
uninstall.sh): add missing volumes and echo messages by @AnonymousWP in #977 - Fix no results in target subdomain list by @psyray in #1036
- Fix Tool Settings Broken Link by @aqhmal in #1021
- Fix subdomains list empty in Target by @psyray in #1053
- Raise page limit to 500 for popup list by @psyray in #1051
- Add directories count on Directories list by @psyray in #1050
- ops(docker-compose): upgrade to 2.23.0 by @AnonymousWP in #1023
- Fix endpoints list and count by @psyray in #1041
- Fix failing visualization when dorks are present by @psyray in #1045
- Fix note not saving by @psyray in #1047
- Count only not done todos in subdomains list by @psyray in #1048
- Fix user agent definition keyword by @psyray in #1054
- Upgrade project discovery tool at CT build by @psyray in #1055
- Add a check to not load datatables twice by @psyray in #1039
- Nmap port scan fails when Naabu return no port by @psyray in #1067
- chore(issue-templates): incorrect label name by @AnonymousWP in #1066
- Endpoints list popup empty by @psyray in #1070
- Add missing domain id value in subscan by @psyray in #1069
- Fixes for #1033, #1026, #1027 by @yogeshojha in #1071
- Temporary fix to prevent celery beat crash by @psyray in #1072
- fix: ffuf ANSI code processing preventing task to finish by @ocervell in #1058
- Update views.py by @Vijayragha1 in #1074
- Fix crash on saving endpoint (FFUF related only) by @psyray in #1063
- chore(issue-templates): fix incorrect description by @AnonymousWP in #1078
- IOError -> OSError by @jxdv in #1081
- Add directories count on Directories list by @psyray in #1090
- chore(issue-template): don't allow blank issues by @AnonymousWP in #1089
- Fix bad nuclei config name by @psyray in #1098
- disallow empty password by @yogeshojha in #1105
- fix attribute error on scan history #1103 by @yogeshojha in #1104
- issue-633: added already-in-org filter to target dropdown in org form by @SeanOverton in #1106
- Update Dockerfile to fix silicon incompatability by @SubGlitch1 in #1107
- Add source for nmap scan by @psyray in #1108
- Spelling mistake in hackerone.html by @Linuxinet in #1112
- fix(version): incorrect number in art by @AnonymousWP in #1111
- Fix report generation when
Ignore Informational Vulnerabilitieschecked by @psyray in #1100 - fix(tool_arsenal): incorrect regex version numbers by @AnonymousWP in #1086
New Contributors
- @luizmlo made their first contribution in #1029 🥳
- @aqhmal made their first contribution in #1021 🥳
- @C0wnuts made their first contribution in #973 🥳
- @ocervell made their first contribution in #1058 🥳
- @Vijayragha1 made their first contribution in #1074 🥳
- @jxdv made their first contribution in #1081 🥳
- @SeanOverton made their first contribution in #1106 🥳
- @SubGlitch1 made their first contribution in #1107 🥳
- @Linuxinet made their first contribution in #1112 🥳
Full Changelog: v2.0.1...v2.0.2
Once again excellent work on reNgine v2.0.2 by @AnonymousWP, @psyray, @ocervell and everybody else! 🚀
Contributors
psyray, ocervell, and 10 other contributors