Thursday, April 10, 2014

HeartBleed links

Wanted to post a few links I used in the HeartBleed simulcast last night (and a few others emailed to me after the fact):
  • ISC list of potentially vulnerable vendors is here.
  • Snort signatures from FoxIT are located here.
  • MetaSploit vulnerability test module is located here.
  • Server to test for HeartBleed is located here.
Check out the full post over at the SANS DFIR blog.

1 comment:

  1. Jake: Rapid7 has a freeware app that scans an IP range for HB vulnerability:

    http://www.rapid7.com/resources/free-security-software-downloads/openssl-heartbleed-vulnerability-scanner.jsp

    ReplyDelete

Note: Only a member of this blog may post a comment.