Olivia
Online
SysReptor
@SysReptor
#Pentest #Reporting made easy: Design in HTML, Write in Markdown, Render to PDF. Self-hosted or Cloud.
For Pentesters. By Pentesters. ๐
Cloud or On-Prem
Joined August 2022
98 Following
545 Followers
447 Posts
@mindpatchsec We also thought of BlueSky but we decided to build more features than building up an entirely new channel.
We're leaving X ๐ข
You still find us at LinkedIn and in our GitHub Discussions. See you there. ๐
@clipsecio Low reach, low interactions, character limit in posts, dubious owner.
@noraj_rawsec Yeah, fully understand.
I think we never really mastered X, have a low reach of <100 views per post and barely any interactions.
You could watch our GitHub repo to be kept up to date.
...configurations. (see: https://t.co/wIfGRAKMv8)
To all SysReptor users who have SSO enabled: We strongly recommend reviewing the SSO config and settings "require_email_verified" to "true" and "user_identifier_claim" to "email".
(See https://t.co/7cVN4frXcS) 2/2
๐ก๏ธTime for a SysReptor update!
๐ฅณ We've got a great security review and hardening time behind us.
The today's SysReptor release brings several security hardening measures and fixed a minor "user admin" to "superuser" privilege escalation that is exploitable in non-default... 1/n
The inline image editor can now also blur sensitive parts of images. And the best thing is...
...it takes the color values from the edge of the rectangle, so it is impossible to reconstruct the images behind the blur.
"Secure blurring" so to say.
Due to recent Signal messenger blocks we share our #SignalProxy for cencorship circumvention: https://t.co/F3zgU4Fz0G
Please contact us if you notice that the proxy is shut down in your region.
We'll share private proxies with you, if necessary.
#sharingiscaring
๐ก๏ธTime to update SysReptor Professional
We fixed a security issue: Read-write access to personal notes by sharing-link creation with no authorization
SysReptor Community is also affected, but access to personal notes of other users is intended there (because everyone is superuser).
Thank you to Robin L. for reporting โค๏ธ
https://t.co/4KJTs6oR4a
โ๏ธ Multi-select and bulk actions
In the latest SysReptor version you can multi-select projects and run bulk-actions on them.
The same is possible for finding templates and designs.
Support for PostgreSQL 14 is coming to an end in November.
The newest SysReptor version comes with the handy update script "upgrade_postgres.sh".
We recommend updating the self-hosted PostgreSQL databases before v14 reaches end of life.
โจWe made the SysReptor AI integration even better in one of our recent updates. It now supports sub-agents and further tools like planning and keeping to-do lists.
Our objective is to provide the best agentic integration with the LLMs of your choice: self-hosted or self-chosen.
๐ผ๏ธ You can now edit uploaded images in SysReptor. Images are flattened after editing, so your sensitive contents are truly redacted.
You still have the option to revert the edited image to the original.
๐ฅ How privilege elevation and permissions work in SysReptor.
Our co-founder Aron explained this in this video: https://t.co/PsXpARV0tq
We just published our collection of design components that you can copy and paste into your SysReptor report designs.
This makes designing your reports even easier.
https://t.co/qTcMrDS4Vd
๐ฅณ๐ฅณ Finally there: Custom filenames
Specify your filename in the report's meta tags and get your custom filename when publishing the report.
Kudos to Michael for the elegant solution.
More details and a sample at: https://t.co/wBgbSjMQZ2
@briancheong Yes, they sometimes should do 8 tool calls and stop after 3, or they don't work at all. Or they even "forget" what they are supposed to do in the first place.
We introduced an AI agent that allows you using the LLM of your choice.
Our experiments showed that small models often have problems with tool calls or with following instructions.
Large proprietary models mostly work quite well but have the drawback that most of them are hosted in the US (or by US companies), making them unusable for companies with high data privacy standards.
The best performing open model was, in our experience, Kimi K2.
We would be very interested in hearing about your experiences: https://t.co/5y2oYSuqSE
Three fantastic things we're currently implementing:
* Image editor for annotations and cropping
* Allow setting custom filenames for PDF reports (on a per-design basis)
* Exporter for pushing findings to Jira
What else do you need to become even more efficient?
Last Seen Users on Sotwe
Most Popular Users
Elon Musk 
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.3M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.6M followers
KATY PERRY
@katyperry
86.9M followers
Taylor Swift
@taylorswift13
80.7M followers
Lady Gaga
@ladygaga
72.2M followers
Kim Kardashian
@kimkardashian
69.4M followers
Virat Kohli
@imvkohli
68.6M followers
YouTube
@youtube
68.6M followers
Bill Gates
@billgates
63.5M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.2M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60M followers