sQuo Posted September 10, 2013 Share Posted September 10, 2013 This is the hidden content, please Sign In or Sign Up PunkSPIDER is a global web application vulnerability search engine powered by PunkSCAN. What that means is that we have built a scanner and architecture that can handle a massive number of web application vulnerability scans, set it loose on the Internet, and made the results available to you. It runs off of an Apache Hadoop cluster and is able to handle tens of thousands of scans every day. Current tools are able to perform a limited number of scans, and are not built for stability, they’re meant for single websites (they also crash a lot and often get caught in infinite loops, but we’ll stop complaining now). Because PunkSPIDER is built on an extremely scalable architecture and is built for stability, the number of scan results that the framework can produce per day unattended is virtually limitless. There are various potential applications to PunkSPIDER. The first is to aid organizations in vulnerability detection and mitigation of their publicly available assets. Not every organization has access to a diligent security team that can perform regular vulnerability checks against their web apps. Using PunkSPIDER an organization can simply type in their URL and know whether they have critical vulnerabilities that need fixing. Furthermore, Hyperion Gray believes in open information, and we believe that the general public should have vulnerability scan information on the sites to which it is entrusting its oftentimes critical information. The bad guys have access to this information, so why shouldn’t you? Using PunkSPIDER, you can check whether that store you have saved your credit card info to is terribly insecure and leaking your information all over the place. PunkSPIDER was presented at ShmooCon and successfully funded via a Kickstarter campaign. It is currently in its 1.3.0 release, with a 2.0 release planned for November 2013. . This is the hidden content, please Sign In or Sign Up Link to comment Share on other sites More sharing options...
Recommended Posts