postmodernApr 15, 2024
If you had a command that spidered a website and checked for vulnerabilities, printing out the visited URLs as well as findings as they are discovered, would you also expect such a command to also print out a summary of everything it found once it finished spidering the website?
#securityscanner #ux
chronological log messages only
23.1%
log messages + summary at the end
76.9%
Poll ended at .
Max HarmathyOct 31, 2022

I always had an ambivalent opinion about #SecurityScanner. When using more and more containers, more automation is certainly required. But those scan results should be take with a grain of salt.

As I learned today, the results of #CveScanners not comparable between distributions: https://github.com/docker-library/python/issues/708#issuecomment-1295196071

There is often more than meets the eye.

Include Ubuntu as a variant for faster patch releases · Issue #708 · docker-library/python

When using security scanners, there are often complaints about unfixed CVEs in the Debian image. Debian, for better or worse, seems to value increased stability, leading to more, older (found) bugs...

GitHub
Mikel MastodonAug 12, 2019

👍 Nmap 7.80 kommt mit npcap und vielen Verbesserungen

📌 Die Nmap-Entwickler um Gordon Lyon (auch Fyodor genannt) haben zur gestern in Las Vegas zu Ende gegangenen DefCon eine neue Version ihres Port- und Security-Scanners veröffentlicht. Nmap 7.80 kommt mit vielen Verbesserungen, etwa neuen NSE-Skripten, Bibliotheken und Performancesteigerungen.

#Nmap #Nmap780 #npcap #GordonLyon #Fyodor #DefCon #PortScanner #SecurityScanner #NSE-Skripten #Netzwerk

https://www.pro-linux.de/news/1/27337/nmap-780-kommt-mit-npcap-und-vielen-verbesserungen.html

Nmap 7.80 kommt mit npcap und vielen Verbesserungen - Pro-Linux

Die Nmap-Entwickler um Gordon Lyon (auch Fyodor genannt) haben zur gestern in Las Vegas zu Ende gegangenen DefCon eine neue Version ihres Port- und Security-Scanners veröffentlicht. Nmap 7.80 kommt...