The OWASP Amass Project … · Introduction • Jeff Foley (a.k.a caffix), Project Lead for OWASP...

11
The OWASP Amass Project DNS Enumeration written in Go September 6, 2018 Presented by Jeff Foley

Transcript of The OWASP Amass Project … · Introduction • Jeff Foley (a.k.a caffix), Project Lead for OWASP...

Page 1: The OWASP Amass Project … · Introduction • Jeff Foley (a.k.a caffix), Project Lead for OWASP Amass • US Manager, Penetration Testing & Red Teaming at National Grid

TheOWASPAmassProjectDNSEnumerationwritteninGoSeptember6,2018PresentedbyJeffFoley

Page 2: The OWASP Amass Project … · Introduction • Jeff Foley (a.k.a caffix), Project Lead for OWASP Amass • US Manager, Penetration Testing & Red Teaming at National Grid

Introduction

•  JeffFoley(a.k.acaffix),ProjectLeadforOWASPAmass

•  USManager,PenetrationTesting&RedTeamingatNationalGrid

•  https://github.com/caffix•  https://twitter.com/jeff_foley

Page 3: The OWASP Amass Project … · Introduction • Jeff Foley (a.k.a caffix), Project Lead for OWASP Amass • US Manager, Penetration Testing & Red Teaming at National Grid

WhatisAmass?•  DNSenumerationandnetworkmappingtoaidin

understandinganorganization’sattacksurfaceontheInternet

•  Theprojectprovidesasuiteoftoolsthatemployactiveandpassivetechniques:–  Traditionalsubdomainenumerator–  Maltegolocaltransform–  TLScertificatesubdomainnamegrabber–  Morecomingsoon

•  Amassalsosupportsthevisualizationoffindingstobetterunderstandthenetworksbeinginvestigated.

Page 4: The OWASP Amass Project … · Introduction • Jeff Foley (a.k.a caffix), Project Lead for OWASP Amass • US Manager, Penetration Testing & Red Teaming at National Grid

GettingAmass•  OnLinux,AmassiseasytogetwithSnapcraft:

$sudosnapinstallamass

•  Usedocker:$sudodockerbuild–tamasshttps://github.com/OWASP/Amass.git$sudodockerrunamass–v–ip–freq480–dowasp.org

•  UseGotoinstallAmass:$goget–ugithub.com/OWASP/Amass/…

Page 5: The OWASP Amass Project … · Introduction • Jeff Foley (a.k.a caffix), Project Lead for OWASP Amass • US Manager, Penetration Testing & Red Teaming at National Grid

Collaboration/CurrentGoals

•  KeepingupwithnewdatasourcesandpossiblyaddservicesthatrequireAPIkeys

•  Addsupportforadditionalpackagemanagers•  ContinueturningAmassfunctionalitiesintosmallersuitetools.

Page 6: The OWASP Amass Project … · Introduction • Jeff Foley (a.k.a caffix), Project Lead for OWASP Amass • US Manager, Penetration Testing & Red Teaming at National Grid

LessonsLearned

•  OneoflargestAmasscontributionsisthe“Alt&Sweep”technique– Alterations&permutationsofnames(AltDNS)–  ReverseDNSsweepsarounddiscoveredIPaddresses–  Inacyclicrelationship,additionalnetworkinfrastructureisrevealed

•  Duringthelifeoftheproject,manydatasourceshaveincreasedthenumberofnamesprovided.

Page 7: The OWASP Amass Project … · Introduction • Jeff Foley (a.k.a caffix), Project Lead for OWASP Amass • US Manager, Penetration Testing & Red Teaming at National Grid

Demonstration

•  Theowasp.orgenumeration:https://asciinema.org/a/P2kuxzy164LgCfc8uL2YtCMoM

•  Thefb.comenumeration:https://asciinema.org/a/v6B1qdMRILRUflpkwRPhvCTaY

Page 8: The OWASP Amass Project … · Introduction • Jeff Foley (a.k.a caffix), Project Lead for OWASP Amass • US Manager, Penetration Testing & Red Teaming at National Grid

DemonstrationCont.

Page 9: The OWASP Amass Project … · Introduction • Jeff Foley (a.k.a caffix), Project Lead for OWASP Amass • US Manager, Penetration Testing & Red Teaming at National Grid

DemonstrationCont.

Page 10: The OWASP Amass Project … · Introduction • Jeff Foley (a.k.a caffix), Project Lead for OWASP Amass • US Manager, Penetration Testing & Red Teaming at National Grid

DemonstrationCont.

Page 11: The OWASP Amass Project … · Introduction • Jeff Foley (a.k.a caffix), Project Lead for OWASP Amass • US Manager, Penetration Testing & Red Teaming at National Grid

Thankyou!

Questions?


AMASS Deliverable template · This document presents the first iteration of deliverable D7.5 (AMASS open source platform provisioning and website), released by the AMASS WP7 (Industrial

AMASS Deliverable template · This document presents the first iteration of deliverable D7.5 (AMASS open source platform provisioning and website), released by the AMASS WP7 (Industrial

The OWASP Foundation OWASP AppSec Aguascalientes 2010 ¿Qué es OWASP? Miguel Pérez-Milicua Softtek Miembro de OWASP capítulo Aguacalientes.

The OWASP Foundation OWASP AppSec Aguascalientes 2010 ¿Qué es OWASP? Miguel Pérez-Milicua Softtek Miembro de OWASP capítulo Aguacalientes.

Study: Nonprofit Health Plans Amass Excessive Surpluses

Study: Nonprofit Health Plans Amass Excessive Surpluses

AMASS€¦ · AMASS Meeting Attendees: AMASS partners 6 Garazi Juez (Tecnalia, Project Management, WP2 Leader) Huascar Espinoza (CEA, External Advisory Board Coordinator) Stefano

AMASS€¦ · AMASS Meeting Attendees: AMASS partners 6 Garazi Juez (Tecnalia, Project Management, WP2 Leader) Huascar Espinoza (CEA, External Advisory Board Coordinator) Stefano

What is OWASP OWASP Live CD Live Demo Omar Sherin-OWASP Egypt.

What is OWASP OWASP Live CD Live Demo Omar Sherin-OWASP Egypt.

RED TEAMING€¦ · in its ability to deal with advanced attacks. WHAT IS RED TEAMING? Red teaming targets people, processes and technology 02. RED TEAMING VS. PENETRATION TESTING

RED TEAMING€¦ · in its ability to deal with advanced attacks. WHAT IS RED TEAMING? Red teaming targets people, processes and technology 02. RED TEAMING VS. PENETRATION TESTING

Teaming Agreement

Teaming Agreement

Novell Teaming 2...Novell Teaming 2.0 1 novdocx (en) 22 June 2009 Novell ® Novell Teaming 2.0 July 31, 2009 1 Product Overview Novell® Teaming 2.0 offers many enhancements over Teaming

Novell Teaming 2...Novell Teaming 2.0 1 novdocx (en) 22 June 2009 Novell ® Novell Teaming 2.0 July 31, 2009 1 Product Overview Novell® Teaming 2.0 offers many enhancements over Teaming

Owasp Mosc2010 - Tour of Owasp Projects

Owasp Mosc2010 - Tour of Owasp Projects

Amass International Group Inc. - Amassgroup

Amass International Group Inc. - Amassgroup

Teaming Workshops

Teaming Workshops

SpecialQuest Teaming

SpecialQuest Teaming

OWASP Testing Guide - OWASP Summit 2011

OWASP Testing Guide - OWASP Summit 2011

Building Teaming Agreements - diy5b2kdeokq1.cloudfront.net fileCMG Alliance Proprietary TEAMING AGREEMENTS Learning objec7ves • Definions • Teaming agreements VS Joint Venture

Building Teaming Agreements - diy5b2kdeokq1.cloudfront.net fileCMG Alliance Proprietary TEAMING AGREEMENTS Learning objec7ves • Definions • Teaming agreements VS Joint Venture

The AMASS Tool Platform: An Innovative Solution for ...

The AMASS Tool Platform: An Innovative Solution for ...

AMASS: Archive of Motion Capture as Surface Shapesfiles.is.tue.mpg.de/black/papers/amass.pdf · AMASS: Archive of Motion Capture as Surface Shapes Naureen Mahmood1 Nima Ghorbani2

AMASS: Archive of Motion Capture as Surface Shapesfiles.is.tue.mpg.de/black/papers/amass.pdf · AMASS: Archive of Motion Capture as Surface Shapes Naureen Mahmood1 Nima Ghorbani2

OWASP Day - OWASP Day - Lets secure!

OWASP Day - OWASP Day - Lets secure!

Profiling teaming

Profiling teaming

OWASP Cornucopia Ecommerce Website Edition · Web viewAuthentication Cheat Sheet OWASP SCP 47, 52 OWASP ASVS 2.12, 8.4, 8.10 OWASP AppSensor UT1 CAPEC-SAFECode 28 OWASP Cornucopia

OWASP Cornucopia Ecommerce Website Edition · Web viewAuthentication Cheat Sheet OWASP SCP 47, 52 OWASP ASVS 2.12, 8.4, 8.10 OWASP AppSensor UT1 CAPEC-SAFECode 28 OWASP Cornucopia

Teaming wms814

Teaming wms814