Please allow to add multiple computers in the settings, so I can scan multiple computers for available updates.
This is very useful for families (in my family there are multiple computers and VMs), but also for companies.
Please show the scan results of all computers in the list of applications.
Show here a separate table for each computer.
And please show the computer name at top of each table (this is the reason why renaming a computer is so important).
When I installed the VulnDetect Agent on my computer I did not see anything about the agent (no visual indicator that the VulnDetect Agent is installed and running like a desktop icon or a icon in the system tray).
So please show a VulnDetect icon in the System Tray of Windows.
This icon is required for several other suggestions, like:
It would be very useful when I could exclude specific drives and also specific folders from being scanned.
I have two external backup drives, that are connected only Saturdays (for backup purpose) but while they are connected a scan could start and this way the scan takes very long and also backed up portable applications are found (this inflates the list of installed applications).
But I also have a large folder containing many photos that I also would like to exclude.
I know that photos are not detected but VulnDetect scans all folders and subfolders and excluding folders could save time.
The VulnDetect icon in the System tray should show a notification window telling me:
In this dialog there should be a button "Show Details...".
When the user clicks it, then Open the VulnDetect website from the VulnDetect Agent.
For business users this feature (showing a notification window) should be configurable.
So the administrator can allow of forbid this feature.
If the administrator has disabled this feature, then the administrator gets an email with the scan result (also this is configurable).
The software-update tool that I am currently using shows the text "(64 Bit)" to indicate that an application is installed in the 64-Bit version.
This information is interesting to know, so it should also be displayed behind the application name.
I am not sure if there could be different versions available of the same application in 32-Bit and 64-Bit.
If yes, then it is important that you separate between 32-Bit and 64-Bit.
In VulnDetect you show the status "Unsafe" but this can have different reasons:
It would be useful when you show why an application is unsafe.
For users it is important to know if they can do anything or not.
So they need to know "Your app is up-to-date but still has vulnerabilities".
Otherwise I have 5 apps with the status "unsafe" although they are all up-to-date (and I don't understand this and blame VulnDetect).
At the moment you have the status values:
It would be good when you add the additional status Outdated (a normal non-security related update is available)
With the status Outdated VulnDetect could report all available updates, not just security updates.
So VulnDetect could replace all update managers out there in the market.
@KI108
Tom explained in the https://vulndetect.org/topic/150/solved-opera-installed-version-not-detected/5 what the status "Unknown" means.
This is the reason why I suggested Explain the Labels in the List of Applications (so you might up-vote this suggestion).
When I right-click on the VulnDetect icon in the System tray you should offer the entry "Start Full System Scan" in the context menu.
So users can start the scan with two mouse clicks.
While the scan is in progress, you should show a little floating window with a small animation.
After the scan is finished you should open the website with the scan results (the list of applications).
Maybe you automatically log the user in (so the user does not have to enter the login credentials).
For business users this feature (start a scan manually) should be configurable.
So the administrator can allow of forbid this feature.
I clicked in the list of applications next to a link (I wanted to click the link but missed it) and suddenly the entry expanded (so I was able to see the Company and the file path).
I did not expect this because the UI (user interface) does not give me any information that the entries can be expanded and collapsed.
The UI should give users the information when he can interact with it.
So please change the mouse pointer to a hand pointer (so users see that the entry can be clicked).
And please add in front of every entry an icon that indicates that the entry can be expanded (for example the icon ">").
If an entry is expanded then change the icon to "v" (indicates that the expanded entry can be collapsed).
When I right-click on the VulnDetect icon in the System tray you should offer an entry "Search for Updates of the VulnDetect Agent" in the context menu.
If there are no updates available, show a normal message box.
If there are updates available, open the VulnDetect website with the scan results (the list of applications) because there you show a message at the top, that the VulnDetect Agents needs an update and also a link to the new client (one-click-update).
Maybe you automatically log the user in (so the user does not have to enter the login credentials).
For business users this feature (checking for Updates of the VulnDetect Agent) should be configurable.
So the administrator can allow of forbid this feature.
In the list of applications you should add a column "Available Version" where you show the version number of available updates.
For Firefox the available version would be 60.0.1 while the installed version is 59.0.3.
If an application is Up-To-Date, then display "Up-To-Date" instead of a version number in the column "Available Version".
VulnDetect should also scan for installed drives and also offer updates for these drivers.
Up-to-date drivers increase the security of the system a lot (did someone say "Spectre/Meltdown" here?).
In the Configuration you should add a checkbox "Show updates for Drivers" at the new section Scan options (this section is needed for other suggestions).
This checkbox is checked by default.
Some users need to set op a Proxy Server in each application, so the application has access to the internet.
At work for example I have to do this for all my apps.
So please add in the configuration:
@ted This is just a summary what topics are new here in the forums and not a list of implemented features.
The reason why you see so many postings from me is that I have so many suggestions for VulnDetect (a complete concept) and that I posted them all here.
But I am a normal user like you (that became moderator), I am not an official of SecTeer.
Please release a portable version of the VulnDetect local agent that is running without installation.
With such a portable version people can use VulnDetect in environments where they can not install applications (like at work) or where they don't want to install VulnDetect.
This is for example useful when people help others (relatives or friends) keeping the system up-to-date.
Or when I scan the PC of friends to fill the database of detected apps.
I know that this feature is not planned yet but you should consider adding it.
In the list of applications I often see the status "OK" but when I expand the entry then I see that VulnDetect recommends a newer version of this app.
So for many apps there is an update available but I don't see this in VulnDetect because by default all entries are collapsed and you show the Status "OK".
For users the status "OK" is confusing because it implies that everything is OK (secure and also Up-To-Date).
There is no separate visual indicator for "Up-To-Date" and "Update available".
So please add an additional status that shows if an application is Up-to-date or if there is an Update available.
You should also rename the status "OK" to "No known vulnerabilities" (maybe you find something shorter like "Probably Secure").
I know that "Secure" is not correct because there might be unknown vulnerabilities.
This way you can show if an application has vulnerabilities and if it is Up-To-Date.
It would be cool if the local agent of VulnDetect recognizes when I am installing a new application (or an update for an existing application).
Then the agent should check with the servers if the installed application as known vulnerabilities.
If there are vulnerabilities, the local agent should show a warning.
I work in a team that is responsible for Software-Ergonomics, Usability, and Accessibility.
Today I talked to a colleague of mine (a senior UX designer) about VulnDetect and we had some new ideas for a improved design for the List of Application.
Here is a draft of the new design:
Click the image to enlarge it
Each application has a specific purpose and the UI must support the user performing his work-task.
The main goal of VulnDetect is to tell the user wich applications have known vulnerabilities and if there are updates for these vulnerabilities available.
To provide these information quickly and in a clear design, we split up the list of application is several groups:
This way users see at once the vulnerable apps (that require immediate action).
Applications that have no known vulnerabilities are in a separate list (no immediate actions required).
At each application there should also be a label Update Available if there is an update available for this application.
See also Additional Status for Update Available.
So users see at once what patches must be installed ASAP.
After performing a system scan, VulnDetect should mark all applications with the label "New" if:
See also Show Changes over time in the List of Apps.
The label "New" should have a yellow color, so for the label EoL you should select an other color.
You see that the new layout not only increases the usability and the user experience.
It also implements two other suggestions (see links above).
I hope you all like the idea of the new UI and I hope it is implemented soon.
If you like the new UI, please upvote it.
By default the entries in the list of applications are collapsed.
So users can not see the security status of bundled applications.
This can be dangerous if a bundled app has vulnerabilities.
The security status of Microsoft Office 2016 is OK.
Then I expanded Microsoft Office 2016 to check if all bundled programs are listed.
Here I saw that two bundled applications have known vulnerabilities.
This information is not shown by default (when the entry is collapsed).
So you should inherit the vulnerability status from the bundled applications to the parent (main) application.
Means: if one of the bundled apps is insecure then the main app should also be insecure.
This way users see at once that the whole package (application and all bundled applications) is insecure.