Ghostwriter v4.3.5

Summary

This is a minor release that adjusts the linter and report context.

CHANGELOG

[4.3.5] - 30 October 2024

Changed

• The added_as_blank attribute for findings is now included in the template linter

Fixed

• Fixed false values appearing as "" in the report template context after release v4.3.4

Ghostwriter v4.3.4

Summary

This is a minor release to patch an issue with the cloud server creation and update checks for duplicate IP addresses added in a previous release.

CHANGELOG

[4.3.4] - 24 October 2024

Changed

• Adjusted the duplicate IP address checks for cloud servers on a project to make them more robust to catch more edge cases

Fixed

• Fixed an issue with creating a new cloud server on a project

Ghostwriter v4.3.3

Summary

This release includes some enhancements for the CVSS calculator and referencing CVSS information in reports.

CHANGELOG

[4.3.3] - 21 October 2024

Added

• Added display for the temporal and environmental scores on the CVSS v3.1 calculator (Closes #536)
• Added a cvss_data key to the report context that includes the CVSS data for each finding
  • The key is a list that includes four items: the CVSS version, score(s), severity, and your configured color for the severity
  • The score and severity data includes the temporal and environmental scores for CVSS v3.1, so those scores, severities, and colors are lists (base, temporal, environmental)
  • The data is available for use in the report template

Fixed

• Fixed values of zero (e.g., 0 or 0.0) displaying as "No Value Set" for extra fields (Closes #541)
• Fixed a minor style issue with the sidebar

Ghostwriter v4.3.2

Summary

This release includes some quality-of-life improvements and a reworked CVSS calculator.

CHANGELOG

[4.3.2] - 30 Sep 2024

Added

• Add a severities key to the report context that includes a list of all severity categories in the database (Closes #427)
  • Each severity category includes the category's name, color as a hex value, color as an RGB value, color as a hex tuple, and the category's weight
  • Each entry also has a severity_rt RichText object for Word that places the severity in a font color that matches the severity's color
    • This object is identical to the severity_rt object on findings

Changed

• Reworked the CVSS calculators on findings to allow switching between CVSS v3/3.1 and v4 (Closes #232, #356, #387, and #509)
  • Changes include the addition of the "modified" metrics like temporal, environmental, threat, and supplemental sections
• Changed autocomplete suggestions in the WYSIWYG editor to no longer be case-sensitive (Fixes #440)

Fixed

• Fixed archive report generation failing due to the Word template used for the PowerPoint report (PR #528)

Ghostwriter v4.3.1

Summary

This release includes some minor changes requested by the community.

CHANGELOG

[4.3.1] – 25 Sep 2024

Added

• Added a replace_blanks filter to the report template engine to replace blank values in a dictionary with a specified string
  • This filter is useful when sorting a list of dictionaries with an attribute that may have a blank value
• Added an option in the change search in the findings library to search findings attached to reports (Closes #400)
  • Instead of matches from the library, the search will return results for findings attached to reports to which the user has access

Changed

• Changed the serializer for report context to replace null values with a blank string ("") to help prevent errors when generating reports
  • Note: This change may affect templates that rely on null values to trigger conditional logic, but most conditional statements should not be affected
  • Example: The condition {% if not X %} will evaluate to True if X is None or ""
• Changed the report form to allow users with the admin or manager roles to change the report's project (Closes #368)
  • This change allows a report to be moved from one project to another (e.g., you make a copy for a follow-up assessment)
  • This feature is only available to users with the admin or manager roles to prevent accidental data leaks

Fixed

• Fixed an edge case with the Namecheap sync task that could lead to a domain remaining marked as expired after re-purchasing it or renewing it during the grace period

Ghostwriter v4.3.0

Summary

This release introduces significant enhancements and new features. Please read below for some important information in the CHANGELOG. For more information and examples of the few feature, you can read this release blog post:

https://posts.specterops.io/ghostwriter-v4-3-sso-json-fields-976835a7edba

CHANGELOG

[4.3.0] – 23 Sep 2024

Added

• Added two mutations to the GraphQL API to support uploading new evidence files and report template files (Closes #230)
• Added a new adapter for handling authentication for Single Sign-On (SSO) providers
  • The adapter fills-in a nearly full profile for any new accounts (full name, email address, username)
  • Usernames for new accounts will default to the first half of the email address
  • If an existing account has the same email address, the accounts will be linked
  • Review the wiki for more information: https://www.ghostwriter.wiki/features/access-authentication-and-session-controls/single-sign-on
• Added support for loading customized config files
  • These are files you can use to modify settings normally found in /config/settings/base.py and production.py
  • Admins can make changes to the custom config files without worrying about the changes needing to be stashed prior to pulling an update
  • Review this section of the wiki for information: https://www.ghostwriter.wiki/features/access-authentication-and-session-controls/single-sign-on#configuring-an-sso-provider
• Added support for a JSON field type for custom fields
• Added a "Tags" column to the domain and server library tables

Changed

• Updated the django-allauth module used for authentication and SSO
  • Important: This change impacts anyone currently using SSO with Azure
  • The azure provider is now microsoft and SSO configurations will need to be updated
• Changed the cloud infrastructure monitoring task to also check auxiliary IP addresses when determining if a cloud host is tracked in a project
• Cloud hosts tracked on a project no longer require a unique IP address
  • A warning is displayed if a cloud host is tracked on a project with multiple hosts sharing the same IP address
• Changed filtering on tags to be case-insensitive
• On the report dashboard, clicking an autocomplete suggestion for a finding or observation will now add the item to the report

Fixed

• Fixed spaces disappearing after Microsoft Word cross-references placed at the beginning of a new line or paragraph

Ghostwriter v4.3.0-rc1

Summary

This is the release candidate for v4.3.0. The release has been tested and is finalized but includes some bigger changes. We're releasing this as an RC to give people time to review the CHANGELOG and test the release before upgrading. We will tag a final release in a few days.

If anyone reports an issue, we will fix it for the final release.

CHANGELOG

[4.3.0] – 10 Sep 2024

Added

• Added two mutations to the GraphQL API to support uploading new evidence files and report template files (Closes #230)
• Added a new adapter for handling authentication for Single Sign-On (SSO) providers
  • The adapter fills-in a nearly full profile for any new accounts (full name, email address, username)
  • Usernames for new accounts will default to the first half of the email address
  • If an existing account has the same email address, the accounts will be linked
  • Review the wiki for more information: https://www.ghostwriter.wiki/features/single-sign-on
• Added support for loading customized config files
  • These are files you can use to modify settings normally found in /config/settings/base.py and production.py
  • Admins can make changes to the custom config files without worrying about the changes needing to be stashed prior to pulling an update
  • Review this section of the wiki for information: https://www.ghostwriter.wiki/features/single-sign-on#configuring-an-sso-provider
• Added support for a JSON field type for custom fields
• Added a "Tags" column to the domain and server library tables

Changed

• Updated the django-allauth module used for authentication and SSO
  • Important: This change impacts anyone currently using SSO with Azure
  • The azure provider is now microsoft and SSO configurations will need to be updated
• Changed the cloud infrastructure monitoring task to also check auxiliary IP addresses when determining if a cloud host is tracked in a project
• Cloud hosts tracked on a project no longer require a unique IP address
  • A warning is displayed if a cloud host is tracked on a project with multiple hosts sharing the same IP address
• Changed filtering on tags to be case-insensitive

Fixed

• Fixed spaces disappearing after Microsoft Word cross-references placed at the beginning of a new line or paragraph

Ghostwriter v4.2.5

Summary

This fixes a few minor issues with activity logging.

[4.2.5] - 7 August 2024

Changed

• Changed filtered activity logs to sort by the start date instead of relevancy rank

Fixed

• Fixed activity logs not loading additional entries when scrolling to the bottom of the page
• Fixed an issue that could cause an error when importing an activity log csv file with one or more individual cells with content exceeding 128KB

Ghostwriter v4.2.4

Summary

This release fixes a bug and changes the code formatting to make it easier to apply additional formatting to your code samples.

CHANGELOG

[4.2.4] - 29 July 2024

Changed

• Changed the "Inline Code" formatting to work for blocks of text in the WYSIWYG editor (Closes #337)
  • You can now use the "Inline Code" formatting to apply code styling to a block of text in the WYSIWYG editor
  • This change allows you to apply the code style to multiple lines of text without needing to use the TinyMCE "Code Sample" blocks
  • When Ghostwriter detects an entire line or multiple lines of text are formatted as "Inline Code," it will format them as a code block in the report template
  • This change allows for additional formatting options, like highlighting or bolding text within the code block
  • The "Code Sample" button is still present in the WYSIWYG editor if you prefer to use that for code blocks

Fixed

• Fixed an error with template linting when the template did not have a CodeInline or CodeBlock style (Fixes #486)

Ghostwriter v4.2.3

Summary

This release includes some minor bug fixes and a few community contributions and requests.

CHANGELOG

[4.2.3] - 24 July 2024

Added

• Added support for internal hyperlinks in the WYSIWYG editor (Closes #465; thanks to @domwhewell-sage)
  • You can now create internal links to headings when you insert a hyperlink, enter # to start your hyperlink URL, and select a heading
  • Internal links will be converted to cross-references in the report template

Changed

• Applied ListParagraph to the lists in Word reports to ensure proper paragraph styling (PR #482; thanks to @smcgu)
• The autocomplete list for keywords in reports now includes entries for {{.ref <Evidence File Name>}} for evidence references alongside the evidence file (e.g., {{.<Evidence File name>}}) (Closes #479)
• Custom fields for observations and findings now support autocomplete and have the "Upload Evidence" button (Closes #485)

Fixed

• Fixed an issue that could prevent reports from being generated if a related cloud server was missing a hostname (PR #481)