Архив за месяц: Февраль 2017

dirsearch — поиск скрытых директорий

Тип: python-скрипт
Назначение: веб-кроулер, поиск скрытых директорий и файлов​
Страница проекта: https://github.com/maurosoria/dirsearch
Входит в Kali Linux: нет (в 4.8.0, возможно в будущих редакциях включат)

Плюсы: легко поставить, простой в использовании, мультиплатформенный в силу того что это Python. Кроме того, автором заявлено:
— Multithreaded
— Keep alive connections
— Support for multiple extensions (-e|—extensions asp,php)
— Reporting (plain text, JSON)
— Heuristically detects invalid web pages
— Recursive brute forcing
— HTTP proxy support
— User agent randomization
— Batch processing
Минусы: результат сильно зависит от словарей, по которым работает сканер (словари в Kali лежат в /usr/share/dirb/wordlists/)

Читать далее

Announce for «Testing Connected Devices for the Internet of Things»

Broadcast Date: Thursday, February 16, 2017, 2:00 p.m. Eastern
Registration Link: here

The Internet of Things (IoT) and its connected devices are quickly influencing our daily lives. Although consumer goods have received the most publicity, another fast-emerging area is the use of IoT technologies in manufacturing.

Whether for the consumer or the industrial sector, testing embedded and connected devices for the IoT comes with different concerns from traditional software testing. Using industrial IoT as an example, this web seminar will detail the top three software challenges IoT developers and testers face—managing security and vulnerabilities, privacy and regulations, and eliminating silos while maintaining quality—and explore the best practices for addressing them.

Anyone involved in the software development or testing of connected devices will benefit from this web seminar. You will learn:

  • How to effectively manage and maintain an ongoing security assessment for your products
  • How to navigate existing and future connectivity regulations and privacy
  • What software testing tools and processes provide the biggest impact