Skip to main content

Mondoo 11.32 is out!

ยท 2 min read
Tim Smith
Tim Smith
Mondoo Core Team

๐Ÿฅณ Mondoo 11.32 is out! This release includes single-command Azure integration, expanded risk factor support, Windows LTSC/LTSB support, and more!โ€‹

Get this release: Installation Docs | Package Downloads | Docker Container

๐ŸŽ‰ NEW FEATURESโ€‹

Single-command Azure integrationโ€‹

Integrate Mondoo and Azure with just a single command. No more worrying about setting up apps, configuring service principals, or generating certificates. Tell Mondoo what you'd like to scan in your Azure subscription and paste the command in CloudShell. Then kick back, relax, and let Mondoo do the heavy lifting.

Automated Azure integration setup

Detect EOL dates for Windows LTSC and LTSB releasesโ€‹

Mondoo EOL detection support for Windows now includes the Microsoft Long Term Servicing Channel (LTSC) and Long Term Servicing Branch (LTSB) releases. No matter what release of Windows you use, Mondoo detects upcoming EOL dates.

๐Ÿงน IMPROVEMENTSโ€‹

Badges for new policiesโ€‹

Too many cooks in the kitchen? Understand when you or your coworkers enable new policies in a space with a "New" badge on any policy enabled in the last 7 days.

New policy badge

Show risk factors on asset checksโ€‹

Understand risks that elevate security concerns on your assets with risk factors on asset checks tables.

Risk factor on asset check

๐Ÿ› BUG FIXES AND UPDATESโ€‹

  • Improve cloud snapshot scanning to support devices with multiple block devices.
  • Improve performance of Windows SMBIOS discovery.
  • Fix Windows platform detection in local scans.
  • Improve performance of cloud detection on *nix systems. Thanks tomtrix!
  • Don't display assets without vulnerabilities on the vulnerability dashboard.
  • Display the platform for each asset in affected asset tables.
  • Update VMware EOL dates to use the new extended dates.
  • Fix an issue that prevented data exports of some checks.
  • Fix TLS checks in the CIS Azure Foundations benchmark policy to match additional variations of TLS 1.2 and 1.3.
  • Add Ensure error logging is enabled and set to the info logging level check to the CIS NGINX benchmark policy.
  • Fix failures in the Ensure discretionary access control permission modification events are collected check in Linux CIS benchmarks.
  • Improve usage of properties in the CIS NGINX benchmark policy.
  • Improve reliability of last successful scan time on integrations.
  • Add tool tips to asset counts on the spaces page.
  • Add tool tips to the exceptions counts on compliance pages.