This document is no longer updated as of May 23, 2025. Read new release notes in the Command Platform Help.

Enhancements to crawling/scanning with R7Crawler improvements including technology analysis, Chromium integration, and macro headers. Scan engine stability and responsiveness improvements. OTP support in ChromeHost macros. Password exposure check enhancements, NodeJS update, report config options, PCI 4.0 mapping, CSP meta tag handling, and ChromeDriver upgrade.

This engine release includes Macro based HOTP/TOTP Authentication, enhancements to the SSL Strength and Swagger UI DOM Based attack modules. In addition, we have added enhanced Proxy support capabilities. It also includes various R7Crawler and ChromeHost improvements.

This engine release includes enhancements to the BSQL Injection, File Inclusion and SSL Strength Modules. It also includes various R7Crawler and ChromeHost improvements.

This engine release includes enhancements to the XSS severity when Content-Type is application/json. It also includes R7Crawler improvements, as well as various improvements and fixes for Automated Login Finder (ALF).

This engine release includes enhancements to the HTTP Headers, the X-Powered-By HTTP Header and Server Configuration modules. It also includes Macro playback improvements as well as various improvements and fixes for Automated Login Finder (ALF).

This latest major version release for AppSpider includes new crawler updates, a new REST service, Swagger/OpenAPI upgrade, new attack modules, as well as various improvements.

This release includes a new Selenium ChromeDriver version and an improvement to Swagger UI reports.

This release includes a new attack, a new MSAL authentication option, as well as various fixes.

This release includes a new OWASP Top 10 API Security Risks Report, a new attack, as well as various improvements.

This release includes a new attack template, a new attack, as well as various improvements and fixes.

This release includes updates to Predictable Resource Location, improvements to attack modules, and various fixes.

This release includes improvements to our attack modules and various fixes.

This release includes improvements to attack modules and various fixes.

This release includes various improvements and fixes.

This release includes improvements to attack modules and various fixes.

This release includes support for OpenAPI/Swagger multipart/form-data content type, as well as various improvements and fixes.

This release includes support for GraphQL SDL, as well as various improvements and fixes.

This release includes various fixes.

This release includes a new attack for NoSQLi, as well as various improvements and fixes.

This release includes a new check for HTTPS key length, the ability to upload YAML Swagger/OpenAPI files, attack and scan for GraphQL, as well as various improvements and fixes.

This release includes improvements to our attack modules and various fixes.

This release includes a new Out-of-Band SQL Injection module, several improvements, and a few fixes.

This release includes an updated RCE attack module to detect the Spring4Shell vulnerability.

This release includes the added ability to manage session tokens, a few improvements, and several fixes.

This release includes added TLS support, a few improvements, and some fixes.

This release includes an updated Log4j recommendation and several fixes.

This release includes a new timeout for Bootstrap, a new time-based attack for Postgres, and updated ChromeDriver, and some bug fixes.

This release includes a new Out of Band Injection attack module to detect Log4Shell vulnerabilities.

This release includes a few improvements and couple of fixes.

This release includes a few improvements and several fixes.

This release includes a new scan configuration field, an improvement to the LinksCrawled counter, and a few fixes.

This release includes a new flag to disable fallback authentication, improved SQL Injection module logic, and several fixes.

This release includes an improved XPath Injection module and two fixes.

This release includes new capabilities such as an Information Leakage attack, some improvements, and several bug fixes.

This build has been unstaged from our production environment.

This release for AppSpider includes a new XSS attack, some improvements, and several bug fixes.

This AppSpider release includes a fix for an error that caused authentication failures during scans.

This AppSpider release includes an upgrade to the Selenium ChromeDriver.

This release for AppSpider includes a new execution module, some improvements, and a few bug fixes.

This release for AppSpider includes improvements and a bug fix.

This AppSpider release includes an upgrade to the Selenium ChromeDriver.

This release for AppSpider includes new options, improvements, and some bug fixes.

This AppSpider release includes new OpenAPIv3 enhancements and a bug fix for content-type in Swagger documents.

This AppSpider release includes a bug fix for scans that consistently crashed when run against a customer site

This release for AppSpider includes new features, improvements and some bug fixes.

This latest release for AppSpider includes an update to ChromeDriver, a new attack, and fixed an issue with Swagger parsing.

This latest release for AppSpider includes a fixed issue where a swagger file caused the engine to crash.

This release for AppSpider includes a couple of improvements and some general fixes.

This release ships a Scan Engine improvement and updates the Selenium ChromeDriver.

This release provides the Scan Engine with additional functionality and fixes a false positive.

This release includes an update for the Selenium ChromeDriver and fixes some issues.

This release includes an update for the Selenium ChromeDriver.

This release includes improvements and false positive fixes for some AppSpider attack modules.

We added support for the Selenium .side file format, plus we improved and fixed a few things.

This latest major version release for AppSpider includes new attacks for existing modules, improved features, an upgrade to 64-bit architecture, and general fixes.