Vulnerability Scans (Weekly)
We use Intruder.io, which performs a suite of security vulnerability checks (over 148000) against our primary application servers and websites weekly.
To give you an idea of what some of the security checks conducted by Intruder.io include, below is a list of some of the checks we subject our environment to every week:
Vulnerable software & hardware
- Web servers, e.g., Apache, Nginx
- Mail servers, e.g., Exim
- Development software, e.g., PHP
- Network monitoring software, e.g., Zabbix, Nagios
- Networking systems, e.g., Cisco ASA
- Content management systems, e.g., Drupal, WordPress
- Other well-known weaknesses, e.g., ‘Log4Shell’ and ‘Shellshock’
Web Application Vulnerabilities
- Checks for multiple OWASP Top Ten issues
- SQL injection
- Cross-site scripting (XSS)
- XML external entity (XXE) injection
- Local/remote file inclusion
- Web server misconfigurations
- Directory/path traversal, directory listing & unintentionally exposed
- content
Attack Surface Reduction
- Publicly exposed databases
- Administrative interfaces
- Sensitive services, e.g. SMB
- Network monitoring software
Information Leakage
- Checks for information that our systems report to end-users, which should remain private. This information includes data that could be used to assist in the mounting of further attacks, such as:
- Local directory path information
- Internal IP Addresses
Encryption weaknesses
- Weaknesses in SSL/TLS implementations, such as:
- ‘Heartbleed’, ‘CRIME’, ‘BEAST’ and ‘ROBOT’
- Weak encryption ciphers and protocols
- SSL certificate misconfigurations
- Unencrypted services such as FTP
Common mistakes & misconfigurations
- VPN configuration weaknesses
- Exposed SVN/git repositories
- Unsupported operating systems
- Open mail relays
- DNS servers allowing zone transfer
While the above list is not comprehensive, it should give you some idea of how seriously we take environmental security.