[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Automatic vulnerability scanning of Tor Network?

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Automatic vulnerability scanning of Tor Network?
From: "Fabio Pietrosanti (naif)" <lists@xxxxxxxxxxxxxxx>
Date: Fri, 23 Dec 2011 11:13:33 +0100
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 23 Dec 2011 05:13:52 -0500
In-reply-to: <4EF3161E.2030105@xxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "This mailing list is for all discussion about theory, design, and development of Onion Routing." <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <4EF04331.20708@xxxxxxxxxxxxxxx> <CAD8GWstvNas1A8oqPUmruHGFSHvPkGaER+3WdjHa910ZZoqC-w@xxxxxxxxxxxxxx> <4EF0D586.7040305@xxxxxxxxxxxxxxx> <20111221125902.GA28637@xxxxxxxxxxxxxxxxxxxxxxxxx> <c1a65994f83bbca2aab8c95e817f990c.squirrel@xxxxxxxxxxxxxxxx> <CABqy+sp9cFhZi-+MCBn8PP5neoD=x9oxAuHc7QLvFd3cA3rB0Q@xxxxxxxxxxxxxx> <69fe71d319bf11d42e3ec25600f7c0eb.squirrel@xxxxxxxxxxxxxxxx> <4EF27BB7.3090004@xxxxxxxxxxxx> <20111222010957.GC12303@xxxxxxxxxxxxxxxx> <4EF28533.6050203@xxxxxxxxxxxx> <4EF2F185.20002@xxxxxxxxxxxxxxx> <4EF3161E.2030105@xxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx
User-agent: Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10.6; en-US; rv:1.9.2.25) Gecko/20111213 Thunderbird/3.1.17

On 12/22/11 12:35 PM, Jacob Appelbaum wrote:
> I really appreciate that you're not working for people who wish to do
> the Tor network harm. Please do consider the concerns of people in this
> thread and weight your actions against those people. They too are trying
> to help the network, the project, and the users.

Yes, i agree, we can find a common point.
We just all need to move in the same direction, with conflicts and
constructive criticism, but in the same direction.

> Hopefully we'll all meet at CCC for a mate to discuss this in person!

Let's try to sketch down on a etterpad or trac ticket an idea on how to
implement something like this in order to:
- evaluating and pushing hardening of system/network security of Tor nodes
- avoid/mitigate alerts and risks for Tor Operators

That way we can try to match the needs perceived by all different
parties, balancing the risk/return of the initiative.

I'm gonna dump in this email a set of useful links collected during
browsing to do that.

We are probably not interested in Nessus & Metasploit AutoPwn, but it's
important to know that anyone can just aggregate everything into a chain
of automatic portscanning + vulnerability scanning + vulnerability
exploiting.

Python NMAP (A python library which helps in using nmap port scanner):
http://code.google.com/p/python-nmap/

Python NMAP XML Parsing Scripts (nmap xml to sqlite):
https://github.com/d1b/python-nmap-xml-output-parser

Plugin Spotlight: Import Nmap XML Results Into Nessus
http://blog.tenablesecurity.com/2009/08/plugin-spotlight-import-nmap-xml-results-into-nessus.html

MetaSploit AutoPwn Integration with Nessus:
http://www.defenceindepth.net/2009/11/metasploit-autopwn-hacking-made-simple.html

Tor NetworkScanner/ExitAuthority:
https://gitweb.torproject.org/torflow.git/tree/HEAD:/NetworkScanners/ExitAuthority

Scripts to extract exit-node, relays and their listening port:
https://gitweb.torproject.org/tor.git/tree/HEAD:/contrib

-naif
_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] Automatic vulnerability scanning of Tor Network?
  - From: Fabio Pietrosanti (naif)
- Re: [tor-talk] Automatic vulnerability scanning of Tor Network?
  - From: Lee
- Re: [tor-talk] Automatic vulnerability scanning of Tor Network?
  - From: Fabio Pietrosanti (naif)
- Re: [tor-talk] Automatic vulnerability scanning of Tor Network?
  - From: Steven J. Murdoch
- Re: [tor-talk] Automatic vulnerability scanning of Tor Network?
  - From: Chris
- Re: [tor-talk] Automatic vulnerability scanning of Tor Network?
  - From: Robert Ransom
- Re: [tor-talk] Automatic vulnerability scanning of Tor Network?
  - From: Chris
- Re: [tor-talk] Automatic vulnerability scanning of Tor Network?
  - From: Gozu-san
- Re: [tor-talk] Automatic vulnerability scanning of Tor Network?
  - From: andrew
- Re: [tor-talk] Automatic vulnerability scanning of Tor Network?
  - From: Gozu-san
- Re: [tor-talk] Automatic vulnerability scanning of Tor Network?
  - From: Fabio Pietrosanti (naif)
- Re: [tor-talk] Automatic vulnerability scanning of Tor Network?
  - From: Jacob Appelbaum

Prev by Author: Re: [tor-talk] Automatic vulnerability scanning of Tor Network?
Next by Author: Re: [tor-talk] janusvm still safe?
Previous by thread: Re: [tor-talk] Automatic vulnerability scanning of Tor Network?
Next by thread: Re: [tor-talk] Automatic vulnerability scanning of Tor Network?
Index(es):
- Author
- Thread