As vulnerabilidades são um comum e perigoso problema que expõe os usuários e empresas para várias ameaças cibernéticas. Algumas vulnerabilidades podem ser bastante assustador, como o bug heartbleed infame e muito recente ataque Drown.
Aprender mais sobre The Drown Attack
Felizmente, security researchers are trying to establish ways to detect vulnerabilities before they are exploited in the wild.
One of the latest attempts towards the prevention of vulnerability exploits is attributed to Dutch security experts from Zerocopter. They have just released a vulnerability detection tool that enables anyone to test a server for the following vulnerabilities:
- Shell Shock
All of the listed vulnerabilities have had a negative impact on a global scale, and it’s a good thing that there’s a way to check yourself (before a vulnerability wrecks your server).
Leia mais sobre Common Vulnerabilities and Exposures
Rogier Trimpe from Zerocopter says that:
We made the tool as part of a staff weekend away for a bit of fun, but it quickly turned out to be quite a serious project. We made it as we wanted people to be aware of the vulnerabilities as they have had such a big impact on the web.
Contudo, the project turned out to be quite serious, and is now available to anyone. Of all the 300 scans per day, the researchers say that 4 % are vulnerable to Drown and 1% is still prone to the Heartbleed bug.
The tool is becoming more popular and has received positive reviews.
You can try the ferramenta de detecção de vulnerabilidade você mesmo.