Archery is an opensource vulnerability assessment and management tool which helps developers and pentesters to perform scans and manage vulnerabilities. Archery uses popular opensource tools to perform comprehensive scanning for web application and network. It also performs web application dynamic authenticated scanning and covers the whole applications by using selenium. The developers can also utilize the tool for implementation of their DevOps CI/CD environment.
Overview of the tool: Perform Web and Network Vulnerability Scanning using opensource tools. Correlates and Collaborate all raw scans data, show them in a consolidated manner. Perform authenticated web scanning. Perform web application scanning using selenium. Vulnerability Managment. Enable REST API's for developers to perform scanning and Vulnerability Managment. Useful for DevOps teams for Vulnerability Managment.
Note: Currently, the project is in a development phase and still lot of work going on.
Web Site: https://archerysec.github.io/archerysec/ GitHub: https://github.com/archerysec/archerysec/
This will be a first for me so I'm looking for input on what should be included. A family friend has had a client of their web app request a vulnerability assessment (not pentest, the language of the request made that clear) for their web app hosted on Azure. My assessment of the situation concludes that this is really a box that needs to be checked for contract purposes so I'm thinking a Nessus scan and a well formatted/written report should probably be sufficient. Looking for input/feedback here as to what else you would suggest including?
I'm a long time SF Bay Area resident recently moved to Lake County bc of the housing crisis. I'm looking for books articles websites resources that will help me research and understand local power structures that underpin class oppression and exploitation as well as ecocide.
I'm aware in CA for example that the state property tax restrictions driven by middle class and upper income homeowners is a key power dynamic in driving fiscal austerity oppression in the state. I'd like to understand better the complete power situation from the ground up with an eye to how democratic socialist politics including electoral strategy could start to make a real impact locally or identify what actors are already making significant impact and need to be strengthened.
I'm familiar with Marxism and dont want a 'it's all capitalist we need an independent working class party' analysis bc I consider this simplistic Left religion ideology. I want to be able to research the actual way that class politics uses local power structures through elections to enforce class dominance on the people who live here.
The agricultural interests here probably play the main role in local politics but we are a Blue region in a Blue state so clearly the dems are using some liberal issues to gain support and cover their class allegiances. I'd love to see a real democratic socialist politics enter electoral contests.
I'm a DSA member since a year ago but have had a very difficult time connecting w the North Bay DSA folks who I imagine would have some really interesting things to say about this.
got this question on cyber q.
"Which of the following steps for risk assessment methodology refers to vulnerability identification? "
possible answers:
- A. Determines risk probability that vulnerability will be exploited (High, Medium, Low)
- B. Identifies sources of harm to an IT system (Natural, Human, Environmental)
- C. Assigns values to risk probabilities; Impact values
- D. Determines if any flaws exist in systems, policies, or procedures
answer given is D. However I was swaying towards A. Thoughts?
thanks
Hey CISSP studiers, I just uploaded a new CISSP Domain 6 review video focused on Vulnerability Assessment and Penetration Testing: https://youtu.be/vZ0S8GdWiIk
The final video for domain 6 should be up in a few days, and I'm working on 6 videos for Domain 7.
Here are the other review / Mind Map videos I have completed so far:
Domain 5
- Overview of Access Management: https://youtu.be/BUcoABZzeQ4
- Single Sign-on and Federated Identity Management: https://youtu.be/_U4QMIxVk8M
Domain 6
Security Assessment and Testing: https://youtu.be/eDVZvw5NziA
I hope these help you in your studies!
NAME YOUR PRICE
I'm accepting payments via Paypal because my account in Gcash isn't verified. I do have certifications from eLearnSecurity (eJPT, eWPT, eWPTXv2). I have 2 years of experience on this field and worked as a web developer before for 2 years.
I'm one of the employees that had been laid off due to the pandemic.
Introduced: Sponsor: Rep. John Joyce [R-PA13]
This bill was referred to the House Committee on Energy and Commerce which will consider it before sending it to the House floor for consideration.
I work for a financial institution and I've been in IT for only like a 1.5 years, so I'm still learning this stuff. We have regular IT audits and such and now that I'm the only IT guy, I got to sit with the auditor and helped him fully scan our environment with Nessus. Results came back for around 150 systems and there was something like 500 vulnerabilities, 80% of which were missing critical Windows OS patches.
I was pretty shocked because I always stay on top of monthly Windows updates. The auditor says, "well, it says there's some here from as far back as August of 2016" in a condescending tone. I was pretty pissed but just accepted it and let him finish the scan and then I got the full assessment a few weeks later, which I'm now combing through.
So, first of all, I'm wondering.... don't Windows OS updates supersede past updates? --- meaning, if I miss some critical Windows OS updates for a month or two, but then I get all the critical updates for the following months all the way up until current time, then those newer updates take the place of those missing updates, meaning I no longer have to worry about those missed patches, correct? I assume the only thing Nessus is seeing is that those individual KB's are not listed in the Windows registry, and therefore flags them as not installed, despite the fact that it doesn't matter since all updates after those have been faithfully updated.
Other than that, I was thinking, we currently don't use WSUS because when I came on my job here, they had a 3rd party patch and software management tool called DesktopCentral by ManageEngine. That's how I do updates now, and I can view all the missing updates for every system and all I see are the missing updates for this month and a few for last month (machines that were turned off for weeks).
Additionally, we used to have Kaspersky 8 AV installed which was so unbelievably fucked up... I think it was even managing our Windows updates at one time. Then when I ripped it out of our environment, I had to use their special uninstall tool in safe mode.. so God knows how that messed things up. Some of my servers and computers that used to have Kav can't even run Windows update themselves.
Anyway, I'm hoping someone here has had a similar thing happen so you can maybe give some advice... otherwise, I'll just be knee-deep in manually patching super old updates.
I am Network engineer in a bank and I want to know Which is best vendor for vulnerability assessments?
Qualys or Tenable or Rapid7 or Frontline or TripWire or BeyondTrust or another one
I'm taking the skills assessment test tomorrow, and from what I see there will be a proctoring service that will administer the test. Does that mean that the test will be given in only one language, or will it be something like HackerRank where you have an interactive window in which you can change the language?
Also, do you have access to tools like a terminal or anything that you can use for quick a/b testing or man pages and stuff? I basically live in Python Interactive Mode.
A customer emailed this question to me last week and I thought it was worth sharing the answer, because it can be a bit confusing.
From Emilia: βWhat is the difference between a Vulnerability assessment and Risk assessment? Are they considered to be two different documents?β
A vulnerability assessment and a risk assessment are done on different topics (eg. Risk assessment for food safety, vulnerability assessment for food fraud or intentional adulteration). You would not do both a risk assessment and a vulnerability assessment on the same topic. The resulting documents look pretty much the same as far as I am concerned. Itβs mostly just about the language/words.
A vulnerability assessment is slightly different to a risk assessment; risk is something that has occurred before and will occur again, it can be quantified using existing data. A vulnerability is a weakness that can be exploited by someone or something who wishes to profit or intends harm. A vulnerability can lead to a risk. Because food fraud is difficult to estimate and quantify, we use the word vulnerability rather than risk. In addition, using the word βvulnerabilityβ helps to minimise confusion in the food industry where risk assessments for food safety are commonly performed and well understood.
If you want to learn more about vulnerability assessments for food fraud or intentional adulteration, check out this step-by-step guide: https://www.foodfraudadvisors.com/food-vulnerability-assessment-how/
