News

Hello all and happy holidays! As a gift that will keep on giving, we at Ecsypno wanted to brighten your every-day worklife from here on out!   Nothing makes or breaks a manual pentest like proper, thorough reconnaissance notes, agreed? However, going over every characteristic of a web application by hand and taking notes is a hell of a tedious process, and I can't imagine everyone's favorite.   Well, fret no longer! Codename RKN to the rescue.   Codename RKN, in essence, performs an inside out analysis of a web application based on its inputs/outputs and presents that data in...

Hello all,   I wanted to take a moment to inform you of the new official release format. From now on, it is recommended to use the official Docker Compose based releases, so as to enjoy a well-tested and stable environment for Codename SCNR and Codename RKN.   For more information regarding the installation process for each product please consult: Codename SCNR Codename RKN   These containers provide a homogeneous environment that runs smoothly on Mac OSX (Intel and Apple Silicon), Linux and MS Windows, allowing you enjoy our products on pretty much any platform supported by Docker.   After...

Hello all, Codename SCNR v1.5 and Codename RKN 1.4 have just been released, both now with support for incremental scans. This means that a scan session is maintained and the following workflow is now possible: Run initial/seed scan. Store its session in a file. Run a re-scan, auditing only newly introduced input vectors, i.e. continuing a previous session. Store its session in a file. And so on and so forth. This has the massive advantage of re-scans being immensely quick, as they will only concern themselves with newly introduced input vectors, rather than being full dumb scans again and again....

Hello all, I would like to introduce to you the new addition to Ecsypno's product line: Codename RKN Codename RKN is the first comprehensive WebApp attack surface mapper. It can help save countless hours from your daily duties by providing amazing insight into a web application's behavior and inner workings. It utilizes DAST and client-side IAST techniques to monitor everything about a black-box and presents its I/O characteristics in an approachable form. Codename RKN digs deep and will let you know how to prepare your penetration test approach for each web application based on how it processes its inputs and...