2024-5-27 17:0:0 Author: research.nccgroup.com(查看原文) 阅读量:11 收藏
We are excited to announce the addition of a new provider in our open-source, multi-cloud auditing tool ScoutSuite (on GitHub)!
In April, we received a remarkable pull request from Asif Wani, Product Security Lead at DigitalOcean APAC, to integrate DigitalOcean services into ScoutSuite. After reviewing the request, NCC Group not only accepted his proposal, but also expanded it with new rules and services.
This new feature is currently included in the last version 5.14.0, adding DigitalOcean as a new cloud provider with twenty-eight new rules based in the hardening features provided by DigitalOcean.
The most significant changes are:
Core
- Added support for DigitalOcean
DigitalOcean
- Added new rules for managed databases
- Added new rules for droplets
- Added new rules for networking devices such as Load Balancers, Firewalls or DNS entries.
- Added new rules for Space Objects (buckets)
- Added new rules for managed Kubernetes clusters
Check out the Github page and the Wiki documentation for more information about ScoutSuite.
We would like to express our gratitude to all our contributors:
Here are some related articles you may find interesting
Cranim: A Toolkit for Cryptographic Visualization
Let’s kick this off with some examples. Here’s a seamless loop illustrating CBC-mode encryption: Here’s a clip showing a code block being rewritten to avoid leaking padding information in error messages: Here’s an illustration of a block cipher operating in CTS mode: You may be surprised to learn that each…
Announcing the Cryptopals Guided Tour Video 17: Padding Oracles!
Hello and welcome back to the Cryptopals Guided Tour (previously, previously)! Today we are taking on Challenge 17, the famous padding oracle attack. For those who don’t know, Cryptopals is a series of eight sets of challenges covering common cryptographic constructs and common attacks on them. You can read more…
Ghidra nanoMIPS ISA module
Introduction In late 2023 and early 2024, the NCC Group Hardware and Embedded Systems practice undertook an engagement to reverse engineer baseband firmware on several smartphones. This included MediaTek 5G baseband firmware based on the nanoMIPS architecture. While we were aware of some nanoMIPS modules for Ghidra having been developed…
View articles by category
如有侵权请联系:admin#unsafe.sh