A Word(list) to the Wise: Precision Scanning Unlocked
Granular scanning, enhanced playbooks, and improved reporting.
We are here to share the latest enhancements designed to refine your experience with ULTRA RED. This update includes greater control, improved organization, and enhanced usability across the platform.
Custom Wordlist
A new capability in path and directory scanning. While previously you could define domains and subdomains for scanning, you can now specify exact paths within them. Additionally, if your wordlist contains only words (without “/”), it will be used to enumerate directories.
By default, wordlist uploads support files up to 40KB, equivalent to ~200 lines with up to 200 characters each. For more extensive needs, a paid upgrade is available to increase this limit to 500KB, accommodating up to 2,500 lines.
Playbooks Enhancements
The “Asset Created” trigger now has a new internal action that allows you to automatically set a sensitivity rating for assets based on the existing conditions in the playbook.
Vector-related triggers have been expanded to include Malware vectors.
New Filters
WHOIS Data: A new search bar in Asset Management allows users to locate asset owners by querying attached WHOIS data. This feature ensures quick access to ownership information for improved asset tracking and management.
Main Domain: Filter your assets to all subdomains belonging to a specific main domain.
Event Type: Timelines now include a dropdown menu to filter events by their type.
API Enhancements
We’ve extended our API functionality with the following updates:
Assets endpoints now return additional fields: “Last Scanned” and “Last Vulnerable.”
Malware vectors are now included in vector-related endpoints.
The assets endpoint now allows you to request assets by name, for more details see our API documentation.
Reports
The Target Assets and Target Vectors CSV reports now include more fields and have been standardized for consistency, whether generated from the Asset Management and Vectors screens or the Reports screen.
Malware vectors have been added to the Target Summary report and the Target Vectors report.
The Vector Findings report can now be generated for Malware vectors via an “Export Findings” button.
Asset Details Overlay Tabs
The asset details overlay has been redesigned for better organization and future enhancements. All the data is now separated into the following dedicated tabs:
Vectors & Remediations
VITA
Technology and IP Insights
Discovery Chain
Additional Info
Tamper Detection
Timeline
Mark Findings as Safe
Ever come across a finding you’ve already reviewed and know doesn’t need further action? With this new feature, you can mark such findings as “Safe.” Whether it’s an outdated technology, an enrichment, or an open port, this lets you flag it as handled—so next time, you’ll know at a glance that it’s already been addressed.
General Improvements
Your license’s expiration date now appears directly on the Overview screen, conveniently located next to the number of assets used in the license.
We’ve made it easier to manage email notifications. You can now unsubscribe from all email alerts from within the email itself by following these instructions:
Locate and click the “unsubscribe” link at the bottom of the email.
You will be redirected to a webpage. Enter the email address you wish to unsubscribe and click “Request to unsubscribe.”
You'll receive an unsubscribe request email if the email address is on our list.
Open the email and click the provided link (“Click here to unsubscribe”) to finalize the process.
The link will take you to a confirmation page showing the status of your request.
