Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Exploring Attack Surface Monitoring with Open Source Tools

Rizwan Syed
January 27, 2024
Technology
0
6

Exploring Attack Surface Monitoring with Open Source Tools

Talk Title: Exploring Attack Surface Monitoring with Open Source Tools
Presenter: Rizwan Syed
Event: FOSS United Mumbai January Meet-up, hosted at Red Hat office
Date: Saturday 27th January 2024

Dive into the world of Attack Surface Monitoring (ASM) with this captivating presentation by Rizwan Syed. Gain insights into the crucial coverage ASM offers in today's cybersecurity landscape and explore a range of open-source tools to bolster your defenses. Discover automation techniques that streamline the ASM process, making it both seamless and efficient. Don't miss this opportunity to enhance your understanding of ASM and fortify your cybersecurity posture against emerging threats.

Rizwan Syed

January 27, 2024
Tweet

More Decks by Rizwan Syed

See All by Rizwan Syed
MindMap Attack Surface Tools Resources v1.2
r12w4n
0
20
Scanning the Internet for External Cloud Exposures via SSL Certs
r12w4n
0
9
External Attack Surface Management in Red Teaming - Null Mumbai Meetup
r12w4n
0
5
Automating Reconnaissance Workflows for Effective Penetration Testing
r12w4n
0
13

Other Decks in Technology

See All in Technology
競技としてのKaggle、役に立つKaggle
yu4u
7
2.4k
MLOpsの「壁」を乗り越える、LINEヤフーの Data Quality as Code
lycorptech_jp
PRO
8
670
コードや知識を組み込む / Incorporate Code and knowledge
ks91
PRO
0
150
Gitlab本から学んだこと - そーだいなるプレイバック / gitlab-book
soudai
7
1.4k
Autonomous Database Cloud 技術詳細 / adb-s_technical_detail_jp
oracle4engineer
PRO
15
35k
高専で制御を、大学でセンシングを学び、次は脳みそ
satoshirobatofujimoto
0
120
Documentação de Produtos: Artefatos essenciais na prática
rigolon
1
190
M5と自作基板をくっつけてみた〜M5 Japan Tour 2024 Spring 福冈 (Fukuoka|福岡)〜
keropiyo
0
190
BPStudyの200回を中心にIT業界を振り返る。そしてこれから
haru860
3
430
Python と Snowflake はズッ友だょ!~ Snowflake の Python 関連機能をふりかえる ~
__allllllllez__
2
150
M&A戦略を支えるデータマネジメント (MIDAS Tech Study #16 GENDA Komiyama)
kommy339
1
150
「見せ球」「作って終わり」のLLM機能卒業のために
ryokaneoka0406
0
140

Featured

See All Featured
Teambox: Starting and Learning
jrom
128
8.4k
In The Pink: A Labor of Love
frogandcode
138
21k
Fantastic passwords and where to find them - at NoRuKo
philnash
39
2.5k
Understanding Cognitive Biases in Performance Measurement
bluesmoon
12
1k
Refactoring Trust on Your Teams (GOTO; Chicago 2020)
rmw
26
2.3k
The World Runs on Bad Software
bkeepers
PRO
61
6.7k
How GitHub Uses GitHub to Build GitHub
holman
468
290k
Rebuilding a faster, lazier Slack
samanthasiow
74
8.3k
Responsive Adventures: Dirty Tricks From The Dark Corners of Front-End
smashingmag
245
20k
ParisWeb 2013: Learning to Love: Crash Course in Emotional UX Design
dotmariusz
104
6.6k
Designing for Performance
lara
601
67k
Facilitating Awesome Meetings
lara
43
5.6k

Transcript

  1. Exploring Attack Surface Monitoring with Open Source Tools Rizwan Syed

  2. Attack Surface Attack Surface Monitoring (ASM) refers to the proactive

    and continuous process of identifying and assessing an organization's external-facing assets, vulnerabilities, and potential points of entry for cyber threats. 2

  3. You can’t secure what you don’t know. Exploring ASM 3

  4. Attack Surface 4 Source: Palo Alto Networks Attack surface management

    enables organizations to enhance visibility and mitigate risks associated with their attack surface.

  5. Attack Surface Reconnaissance & Enumeration • Subdomain Discovery • DNS

    Subdomain Bruteforcing • Resolve DNS Records • Extract IP Addresses • Quick Port Scanning • Service Enumeration • HTTP Probing • Detect Tech Stack • URL Extraction and Validation Vulnerability Scanning • Exploitable Vulnerabilities • Misconfigurations • Deep Recon - Shodan • Content Discovery Scans • Sensitive exposed files • Config files / PII Data / Secrets • Web path / Hidden directories • URLs Endpoints • JavaScript Recon • Hard coded credentials • API endpoints • Variables / Parameters 5

  6. Tools Available ProjectDiscovery Tools Subfinder Naabu DnsX Alterx Nuclei Katana

    6 •WebAnalyze •Dmut •FFUF •Dirsearch •Trufflehog •LinkFinder •SecretFinder •GAU •GF •qsinject •Waymore •xnLinkFinder Web •ASNMap •MapCIDR •Shodan-CLI •NMAP Network •TLSx •Anew •Nuclei Templates + Fuzzing Templates •KnockKnock •Subjack •Interlace MISC

  7. CHOMTE.SH CHOMTE.SH is a versatile framework designed for automating reconnaissance

    tasks in penetration testing. It's useful for bug bounty hunters and penetration testers in both internal and external network engagements. Exploring Attack Surface

  8. Installation 20XX 8 git clone https://github.com/mr-rizwan-syed/chomtesh cd chomtesh chmod +x

    *.sh ./install.sh ./chomte.sh docker run --rm -it -v "$(pwd)/Results:/app/chomtesh/Results" r12w4n/chomtesh ./chomte.sh -p vulnweb -d vulnweb.com docker pull r12w4n/chomtesh OR

  9. Thank you Rizwan Syed github.com/mr-rizwan-syed twitter.com/_r12w4n linkedin.com/in/r12w4n/ BreachForce.net 20XX 9