What is the hurdle in doing passive scan's #464

Closed
anantshri opened this Issue May 20, 2015 · 6 comments

Comments

Projects
None yet
3 participants
@anantshri
Member

anantshri commented May 20, 2015

Hi Folks,

For a large number of passive scan results we are providing a link what are the possible reason's we are not doing a scan and giving output in our own report.

I assume they might have some kind of rate limit for some sites but for a lot of others we should be able to get direct response or by leveraging something like Ghost.py a screenshot.

Will make the report a bit more comprehensive

-Anant

@viyatb

This comment has been minimized.

Show comment
Hide comment
@viyatb

viyatb Dec 6, 2015

Member

I think this is because passive means that no traffic from the testing PC to the target. IMHO this is what @7a said in his initial OWTF presentations: that even before the go-ahead is given, the pentester can do valuable recon. (hence no direct traffic to the target is generated from the pentester's server.)

Member

viyatb commented Dec 6, 2015

I think this is because passive means that no traffic from the testing PC to the target. IMHO this is what @7a said in his initial OWTF presentations: that even before the go-ahead is given, the pentester can do valuable recon. (hence no direct traffic to the target is generated from the pentester's server.)

@anantshri

This comment has been minimized.

Show comment
Hide comment
@anantshri

anantshri Dec 6, 2015

Member

I am not asking to send traffic to target but rather send traffic to somethings like shodan etc and get the details instead of just providing links.

May be at this point we can look at including recon-ng (if not done already) and poll its output for final report.

Member

anantshri commented Dec 6, 2015

I am not asking to send traffic to target but rather send traffic to somethings like shodan etc and get the details instead of just providing links.

May be at this point we can look at including recon-ng (if not done already) and poll its output for final report.

@tunnelshade

This comment has been minimized.

Show comment
Hide comment
@tunnelshade

tunnelshade Dec 7, 2015

Member

Hey guys, I think screenshots can be the way to go because scraping becomes very difficult. And screenshots will help a lot especially when something like google search, it can be easily spotted if there are any results. I am afraid this might not be very easy for everything because sometimes we have to wait for sometime before taking a screenshot (when some online resource is used for scanning) but it is definitely worth doing.

Member

tunnelshade commented Dec 7, 2015

Hey guys, I think screenshots can be the way to go because scraping becomes very difficult. And screenshots will help a lot especially when something like google search, it can be easily spotted if there are any results. I am afraid this might not be very easy for everything because sometimes we have to wait for sometime before taking a screenshot (when some online resource is used for scanning) but it is definitely worth doing.

@anantshri

This comment has been minimized.

Show comment
Hide comment
@anantshri

anantshri Dec 7, 2015

Member

exactly some might have anti automation etc. But whatever can work, taking a screenshot of the page would be simplest way to give actionable visual intel. It would not be of much use to machines as in parsable output but atleast before clicking on the link person would have an idea that this is what they can expect.

Member

anantshri commented Dec 7, 2015

exactly some might have anti automation etc. But whatever can work, taking a screenshot of the page would be simplest way to give actionable visual intel. It would not be of much use to machines as in parsable output but atleast before clicking on the link person would have an idea that this is what they can expect.

@viyatb

This comment has been minimized.

Show comment
Hide comment
@viyatb

viyatb Dec 7, 2015

Member

Yes, then this is feasible using PhantomJS. 👍

Member

viyatb commented Dec 7, 2015

Yes, then this is feasible using PhantomJS. 👍

@viyatb

This comment has been minimized.

Show comment
Hide comment
@viyatb

viyatb Jan 25, 2016

Member

Moving this to reboot (PhantomJS will be the requester there so it will be easier to capture screenshots.)

Member

viyatb commented Jan 25, 2016

Moving this to reboot (PhantomJS will be the requester there so it will be easier to capture screenshots.)

@viyatb viyatb closed this Jan 29, 2016

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment