Hello all, I'd like to announce the beginning of a new F/OSS project, called Qmap. Qmap is a distributed network mapper/security scanner based on nmap, with backing from Cuboid for its distributed features. The way Qmap currently works is as follows: A ping scan is performed on the given IP range(s). Live hosts are identified. Hosts are split into groups. Different Grid Instances scan each group in parallel. By being supported by Cuboid, Qmap boasts RPC and REST APIs, so integration is dead simple. As you can see, Ecsypno has started to delve into network security waters as well, eventually...
Hello all, First off, apologies for the made-up name in the title, but I'm not sure what this should be called. Contextual scanning...by that I mean that the user can re-enter the vulnerable state of the web application and debug it right then and there. Like calling IRB or pry at the moment of vulnerability; a real joy for pentesters checking a webapp and developers tasked to fix it alike! In addition, you get coverage data so you'll be able to determine how much of a webapp's codebase was covered by the scan, and thus be able to adjust your...
I’d like to introduce the company and its flagship project/product, so, hello from Ecsypno and the SCNR (just a code name, pronounced “scanner”) web application security scanner.