2024 has been a big year for all of us, and we’re proud to have had our clients, customers, and team along for the ride! We’re proud to share that we’ve pushed 80 product updates this year, including over 270 product improvements, 105+ of which were features requested by our clients! 

With 90%+ of new features guided, tested, and requested by our customers, we’re proud to say that we are helping our customers meet their goals in a meaningful way. We’re proud to have a platform built around the needs of our users and we aim to continue that across 2025! 

So, let’s take a quick look back over 2024! 

Fast Facts: 

  • 105 customer-requested features! 
  • 270 product improvements 
  • 90%+ requested by Customers
  • Team growth in development, marketing, & customer support
  • New customers across five countries

Of course, we didn’t do it alone. Our customers used Cyver Core to upload over 300,000 vulnerabilities, including almost 2,500 critical vulnerabilities and almost 9,000 high vulnerabilities. Plus, you saved tens of thousands of hours generating over 10,000 reports! 

Feature Highlights: 

With 105+ new customer-requested features this year, it’s hard to pick just a few. But, we’re particularly proud of some of our new releases. 

  • AI Content Generation (LLeMy)
  • Report Content Libraries 
  • Timesheets & Planning/Scheduling 

AI Content Generation (LLeMy)

LLeMy is our GenAI copilot, available to help you generate summaries, descriptions, and even remediation data. We brought in an AI expert to help develop custom prompts and built a full integration with our platform to help our clients save as much time on custom content creation as possible. 

“LLeMy is the feature I was most excited to work on this year,” says Rodrigo Santos, software engineer at Cyver, “it’s a step towards helping us all be more productive – because there’s a LOT of text you can generate!” 

Report Content Libraries 

This year, we worked on creating more versatile and modular reporting, allowing Cyver’s streamlined pentest reporting to support the needs of complex pentests, red teaming, and more. Now, you can save content blocks and sections to your library and then easily add them into any report or content area with nothing more than a token. That means your writeups, descriptions, and recommendations can be re-used again and again, across every pentest you do! 

“Supporting red team reports has been on our to-do list from day one, and now we can offer an extremely modular report generation system with flexible reports that can add and change content on the fly!” adds Luis Abreu, “It’s also one of our most requested features and it expands reporting capability for everyone using Cyver Core”. 

Timesheets & Planning/Scheduling 

Team planning is central to managing workloads across teams. That’s why Cyver Core is proud to offer planning features so you can set team availability, hours per week, vacation days, and more – and then seamlessly pull that into planning and scheduling pentests. With everything in place, time and resource management and figuring out when to best schedule pentests is easier than ever. 

And, of course, there’s much more: 

Continuous Assessments 

  • Adjust settings to prioritize Finding Fixes after runs are completed 
  • Add a run description per run 

User Management 

We’ve implemented new roles to allow better user management: 

  • Add client read-only roles for Project-view Only 
  • Add pentester read-only roles with Project-view only 
  • Add Team Manager roles 

Importers 

With 6 new importers, we now offer ready-to-use integrations for almost 35 tools! 

  • Prowler JSON 
  • Nessus XML
  • ScoutSuite JSON
  • HCL APPScan XML 
  • Purple Knight XLS
  • AppCheck JSON

Filtering & Displays

Customize filters and displays to get the dashboards and data views you need. 

  • View, create, order, delete displays and save filters, entries per page, type of view (list, board) and save them across the platform 
  • Filter projects by user members 
  • Use Custom fields to filter pentests in Project and Planning modules 
  • Manage Displays for planning by creating new displays and adjusting visibility based on user and grid
  • Adjust Finding and Asset label visibility per client 

Data Exchange 

Push and pull data from your client’s tools: 

  • New endpoint for creating assets.
  • API call to get data from reports.
  • A new POST API Request that allows importing findings filling these parameters: import options, file type and file content.
  • Enable exporting to Word per report template and download the Word version in the project’s report.
  • Configure a New Webhook Subscription on the Integrations menu to send real-time data from the app to another whenever an event occurs.
  • Configure and style Word independently from PDF in the report template.
  • Connect the platform with Jira On-Prem. 
  • Update the Jira ticket status to reflect the Cyver finding status when Jira is configured for a client.

Findings Management 

With findings management, you can import findings directly from tools, automatically generate tickets, add data from your libraries, and even generate remediation information with AI. Plus, you can offer client tools to track time-to-fix, severity, vulnerability type, and more, at no extra cost to you. 

  • Customize finding status including visibility per client.
  • Configure whether to allow duplicate finding codes.
  • Add a PCI Compliance field with optional Pass/Fail values.
  • Add custom finding fields including up to 5 text boxes, 5 drop downs, 5 long text boxes, custom field names, and adjust visibility and sorting in the Findings Field menu.
  • Use the default severity scoring or adjust and auto-fill severity based on your methodology.
  • Send batch notifications for findings rather than an alert per finding.
  • Adjust finding template visibility, move to another library, or duplicate finding template 
  • Merge new files with up to five existing findings in your library 

Quote Module 

The Quotes module is an optional Add-on that allows you to send proposals, statements of work, and invoices directly in the Cyver Core platform. 

  • Add transaction dates alongside value and currency 
  • Customize the quote module name (E.g., Proposals) 
  • Set and change Quote Status to Approved or Cancelled
  • Request and add Client signatures with a token 
  • Enable clients to request Credit purchases and manage those transactions
  • New Quotes Tokens: {Quote_User_Signature}, {Quote_User_ApprovedBy}, {Quote_User_ApprovedOn}.
  • Select Approvers to sign Quotes from the Client Portal 
  • Clients can Accept or Decline Quotes 
  • Quotes and Credits are displayed in the Client dashboard based on User role. 

Identification & Access Management 

Improve team management and security with identification and access management settings: 

  • Configure session timeout at the tenant level 
  • Profile pictures now display in the icon next to the account 
  • Manage SSO connections in My Settings 
  • Hide username and password from login pages and allow users to use SSO-Only 

Reporting

With Cyver Core, you can fully automate pentest reporting. Or, with our reporting features from 2024, you can streamline even the most complex pentest and red team reports with modular content and sections including content libraries. 

  • Create and manage custom report sections, add as many as you want to a report, create, reorder, delete, and make sections visible, and show or hide report sections on the fly during report generation. 
  • Save report sections to your Library and import them to templates and projects across the platform. 
  • Save blocks of text to your library and add it anywhere with a simple token.
  • Track changes made in reports during edits.
  • Refresh report tokens data in your report.
  • Generate PDF report previews.
  • Add/edit/delete, view and resolve comments in a report. 
  • Set visibility for findings based on labels 
  • Add and generate up to three report templates per project 
  • Choose how assets are displayed: as a list with one column or two columns, or as a table showing IP, Hostname and Port.
  • 38 new report tokens to automatically generate and add report content 

Client Portal 

The Client Portal is your hub and connection point with your clients. This year, we’ve added upgrades including offering client raised vulnerabilities, custom fields, and more. 

  • Enable/Disable displaying findings events.
  • Enable/Disable messaging to collaborate with your clients.
  • Enable asset retesting workflows for your clients
  • Add new fields per client and with options for type and the visibility.
  • Create custom date fields in the client portal 
  • Client users can select multiple findings and change their statuses.
  • Client users can report findings types risk and incident if allowed.
  • Enable client users to see planning for all projects. Planning for individual projects can be managed in the project settings.
  • Enable client security settings to set their own security settings from password complexity to 2FA.
  • Client users can also be added to teams 
  • Allow clients to request pentests to specific days 

Workflow

Workflows allow you to manage work and people across your team: 

  • Send email and portal notifications when assigning tasks 
  • Get popups to display task information, change assignee, or change due date 
  • Assign/re-assign a finding to a client user from the pentester portal.

Pentest Management 

Cyver Core allows you to manage pentests and projects, and this year, we’ve made those features better. 

  • Create project custom fields for Project Templates 
  • Find the project you want to copy using search 
  • Link planning dates to project Methodology so it stays up to date with user changes 
  • Automatically add Default Client Teams to a project when you create it 
  • Apply template settings to a project report without altering the current content 

Asset Management 

  • Select which variabilities will be mapped when findings are imported 

Planning & Scheduling 

Planning and scheduling means you can rapidly see availability and schedule testing. 

  • Manage company working days, holidays / days-off and project planning default days per status all in one menu.
  • Register time and manage timesheets reports all in one place.
  • See pentester availability with projects per pentester/per day, plus default workdays in a dedicated tab in the Planning module 
  • Assign a finding to a member of the testing team for re-testing by filling out the new field ‘Pentester Assignee”.

Images

With image galleries, batch image upload, captions, and more granular image uploads and controls, we’ve added a lot to how you use images across Cyver Core. 

  • Upload images in report templates at a tenant or project level 
  • Set image captions for findings, reports etc.
  • Upload multiple files and images in the Files tab of a project.

Benchmarks

We introduced benchmarks, allowing you to test and set pass/fail scenarios for compliance norms and standards. 

  • Choose, customize, or build your own benchmarks to guide testing.
  • Import benchmark excel files in Settings or in a Project.
  • Enable a benchmark score system now and grids and results adjust automatically. 
  • Export to Excel on a per benchmark level
  • Add benchmark testing weight(s) when calculating Group Score 

We’re proud of everything we’ve managed to finish this year! Thanks to our development and engineering team, our customers, and of course, everyone who worked with us to submit feature requests and tickets to help us improve the platform! 

Thank you for being part of our 2024!