Mondoo 11.30 is out!

November 12, 2024 · 2 min read

Tim Smith

Mondoo Core Team

🥳 Mondoo 11.30 is out! This release includes notes for cases, expanded Windows snapshot scanning, updated policies, and more!

Get this release: Installation Docs | Package Downloads | Docker Container

🎉 NEW FEATURES

Notes for cases

Cases are an important way to communicate with the team fixing security issues. Now you can provide the context that downstream teams need to remediate problems quickly: When you create a case, you can write a note, which automatically syncs to your ticketing or project management system.

Notes

Package data in Windows snapshot scans

You can now expose package vulnerabilities on Windows cloud hosts without deploying agents. Windows cloud snapshot scans now include package discovery.

Parse fstab entries with MQL

Dive head first into Linux fstab entries with new MQL resources for fstab data.

fstab.entries: [
  0: {
    fsck: 1
    options: "defaults,noatime"
    device: "UUID=7c4e7e0e-ce36-42f9-b456-16f78f3a1eb1"
    fstype: "xfs"
    mountpoint: "/"
    dump: 1
  }
  1: {
    fsck: 2
    options: "defaults,noatime,uid=0,gid=0,umask=0077,shortname=winnt,x-systemd.automount"
    device: "UUID=C155-24D2"
    fstype: "vfat"
    mountpoint: "/boot/efi"
    dump: 0
  }
]

Discover VMware distributed virtual switches and port groups

Mondoo's new and expanded MQL resources for VMware let you discover and secure VMware distributed virtual switches and port groups.

vsphere.datacenters { distributedPortgroups { name properties } }

and

vsphere.datacenters {distributedSwitches {*} }

🧹 IMPROVEMENTS

CIS Debian 12 v1.1.0 benchmark policy

Secure Debian 12 systems with the latest recommendations from the Center for Internet Security. This newly updated policy includes 365 updates including all new checks, updated descriptions, and improved remediation steps.

CIS macOS 12 v3.1.0 benchmark policy

Secure legacy macOS 12 systems with the newly updated macOS 12 (Monterey) benchmark, including updated checks, recommendations, and remediation steps.

Resource updates

files.find

New depth field

microsoft.conditionalAccess

The namedLocations field now returns the new microsoft.conditionalAccess.namedLocations resource

vsphere.vswitch.dv

New moid field

🐛 BUG FIXES AND UPDATES

Improve help in the GitHub provider.
Handle nil directory names in the files.find resource.

🥳 Mondoo 11.30 is out! This release includes notes for cases, expanded Windows snapshot scanning, updated policies, and more!​

🎉 NEW FEATURES​

Notes for cases​

Package data in Windows snapshot scans​

Parse fstab entries with MQL​

Discover VMware distributed virtual switches and port groups​

🧹 IMPROVEMENTS​

CIS Debian 12 v1.1.0 benchmark policy​

CIS macOS 12 v3.1.0 benchmark policy​

Resource updates​

files.find​

microsoft.conditionalAccess​

vsphere.vswitch.dv​

🐛 BUG FIXES AND UPDATES​