Educause Security Discussion mailing list archives

Summary Report :: Dorkbot Service [DEC 2018-12]

From: Cam Beasley <cam () UTEXAS EDU>
Date: Tue, 1 Jan 2019 22:57:01 -0600

howdy all —

happy new year!
i wanted to share summary stats from the Dorkbot web application security service for the past month.
Dorkbot covers 81% of all R1 campuses in the US and many of the top universities across 6 continents.

[month = DEC 2018]

total campuses subscribed = 742 (+122 campuses compared to previous month)

——————
verified XSS vulnerable pages = 2,453 (+82% compared to previous month)
verified SQLi vulnerable pages = 243 (+257% compared to previous month)
verified LFI vulnerable pages =  30 (+100% compared to previous month)
verified OSi vulnerable pages =  1 (-80% compared to previous month)
verified RFI vulnerable pages =  4 (+100% compared to previous month) 
——————

2,731 total verified vulnerable pages (+81% compared to previous month) 


++++++++++++++++++++++
% of vulnerability breakdown by campus classification
++++++++++++++++++++++

45% - R1 Campuses
27% - Universities in Other Countries
07% - R2 Campuses
04% - M1 Campuses
04% - Baccalaureate Colleges: Arts & Sciences Focus
04% - State Agencies
03% - Universities in Canada
06% - All Other Entities

++++++++++++++++++++++

signing up is fast & free. 
please see the following for more information:

https://security.utexas.edu/dorkbot

thanks,

~cam.




--
Cam Beasley
Chief Information Security Officer
Information Security Office
The University of Texas at Austin
security () utexas edu | 512.475.9242
http://security.utexas.edu
=======================================

Attachment: smime.p7s
Description:

Current thread:

Summary Report :: Dorkbot Service [DEC 2018-12] Cam Beasley (Jan 01)
- Summary Report :: Dorkbot Service [JAN 2019-01] Cam Beasley (Feb 04)