Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.
Vulnerability Funalitics
with vulners.com
Kir Ermakov
Skolkovo Cyberday, 2016
2
#:whoami
- vulners.com founder
- QIWI Group CTO/CISO
- Web penetration tester
- Member of “hall-of-fames” (Yandex, Mail....
3
Vulners Database
- Google-style search engine
- 595.000+ security advisories,
exploits and CVE’s
- 65 sources of content...
4
CVE is not a vulnerability
- Suggested to be industry standard
- It’s just identifier
- It’s not forced to use
- Usually...
5
Reserved forever
- Dead CVEs
- Private vulnerabilities
- Mistakes
6
31337 CVE references
- CVE-2016-1000000
- CVE-2103-0989
- CVE-2014-123456
- CVE-2012-58626428
7
Nessus vs. OpenVAS
- All CVEs: 80196
- Nessus CVE links: 35032
- OpenVAS CVE links: 29240
8
Nessus vs. OpenVAS
- All CVEs: 80196
- Nessus CVE links: 35032
- OpenVAS CVE links: 29240
2673 OpenVAS
6639 Nessus
38207...
9
Vendor patch racing
Average “time to patch” in days
10
Scanner racing: RedHat
11
Scanner racing: Debian
12
What about exploit DBs?
- Nobody really cares
- It’s really hard to find the one,
who marked CVE
- Match hell
% of expl...
13
Unique content. ORLY?
- Aggregation or plagiarism?
- Who was the origin?
- ±41% are duplicates
14
Exploit DBs
- Unique content they said
- Ultimate collection they said
- Matched to CVE they said
15
Thanks
- isox@vulners.com
- Analyze with us
- We are really trying to make this world better
- Stop paying for features...
Upcoming SlideShare
Loading in …5
×

Vulnerability Funalitics with vulners.com

869 views

Published on

Some nice cases that we found in our DB.
Few words about CVEs, Exploit Databases and security scanner vendors.

Published in: Internet
  • Be the first to comment

  • Be the first to like this

Vulnerability Funalitics with vulners.com

  1. 1. Vulnerability Funalitics with vulners.com Kir Ermakov Skolkovo Cyberday, 2016
  2. 2. 2 #:whoami - vulners.com founder - QIWI Group CTO/CISO - Web penetration tester - Member of “hall-of-fames” (Yandex, Mail.ru, Apple and so on)
  3. 3. 3 Vulners Database - Google-style search engine - 595.000+ security advisories, exploits and CVE’s - 65 sources of content - Security awareness subscriptions - Linux audit API
  4. 4. 4 CVE is not a vulnerability - Suggested to be industry standard - It’s just identifier - It’s not forced to use - Usually ignored % of advisories without references
  5. 5. 5 Reserved forever - Dead CVEs - Private vulnerabilities - Mistakes
  6. 6. 6 31337 CVE references - CVE-2016-1000000 - CVE-2103-0989 - CVE-2014-123456 - CVE-2012-58626428
  7. 7. 7 Nessus vs. OpenVAS - All CVEs: 80196 - Nessus CVE links: 35032 - OpenVAS CVE links: 29240
  8. 8. 8 Nessus vs. OpenVAS - All CVEs: 80196 - Nessus CVE links: 35032 - OpenVAS CVE links: 29240 2673 OpenVAS 6639 Nessus 38207 OpenVAS 50896 Nessus
  9. 9. 9 Vendor patch racing Average “time to patch” in days
  10. 10. 10 Scanner racing: RedHat
  11. 11. 11 Scanner racing: Debian
  12. 12. 12 What about exploit DBs? - Nobody really cares - It’s really hard to find the one, who marked CVE - Match hell % of exploits without references
  13. 13. 13 Unique content. ORLY? - Aggregation or plagiarism? - Who was the origin? - ±41% are duplicates
  14. 14. 14 Exploit DBs - Unique content they said - Ultimate collection they said - Matched to CVE they said
  15. 15. 15 Thanks - isox@vulners.com - Analyze with us - We are really trying to make this world better - Stop paying for features that are available for free

×