Educause Security Discussion mailing list archives
Re: Summary Report :: Dorkbot Service [MAY 2019-05]
From: "Lovaas,Steven" <Steven.Lovaas () COLOSTATE EDU>
Date: Tue, 4 Jun 2019 02:59:52 +0000
Hi Cam! We do really appreciate this service. But we haven’t had an alert in a long time. I’m too suspicious to automatically believe that we just fixed all of our problems. Have you had any issues connecting to Colorado State University? (129.82.0.0/16, colostate.edu) Thanks, Steve Sent from my iPhone
On Jun 3, 2019, at 8:44 PM, Cam Beasley <cam () utexas edu> wrote: hello all — i wanted to share summary stats from the Dorkbot web application security service for the past month. Dorkbot covers 87% of all R1 campuses in the US and many of the top universities across 6 continents (and 78 countries). [month = MAY 2019] total campuses subscribed = 1,030 (+29 campuses compared to previous month) —————— verified XSS vulnerable pages = 3,032 (+14% compared to previous month) verified SQLi vulnerable pages = 365 (+10% compared to previous month) verified LFI vulnerable pages = 20 (-20% compared to previous month) verified OSi vulnerable pages = 15 (+50% compared to previous month) verified RFI vulnerable pages = 04 (+100% compared to previous month) —————— 3,143 total verified vulnerable pages (+4% compared to previous month) ++++++++++++++++++++++ % of vulnerability breakdown by campus classification ++++++++++++++++++++++ 44% - Universities in Other Countries 19% - R1 Universities 07% - R2 Universities 05% - Higher Ed Consortiums 04% - M1 Universities 04% - Baccalaureate Colleges: Arts & Sciences Focus 03% - State Agencies 02% - D/PU Universities 02% - Universities in Canada 06% - All Other Entities ++++++++++++++++++++++ signing up for Dorkbot is fast & free. you will receive realtime alerts for any verified vulnerabilities along with a custom monthly report. please see the following for more information: https://security.utexas.edu/dorkbot https://er.educause.edu/blogs/2019/2/dorkbot-a-managed-application-security-assessment-service-for-higher-education please note that many smaller campuses in your area may not be as well connected to this community. feel free to share the signup page with any such campuses you might be associated that could benefit from this service. thanks, ~cam. -- Cam Beasley Chief Information Security Officer Information Security Office The University of Texas at Austin security () utexas edu | 512.475.9242 http://security.utexas.edu =======================================
Current thread:
- Summary Report :: Dorkbot Service [MAY 2019-05] Cam Beasley (Jun 03)
- Re: Summary Report :: Dorkbot Service [MAY 2019-05] Lovaas,Steven (Jun 03)
- Re: Summary Report :: Dorkbot Service [MAY 2019-05] Lovaas,Steven (Jun 03)
- Re: Summary Report :: Dorkbot Service [MAY 2019-05] Chris Wilson (Jun 04)
- Re: Summary Report :: Dorkbot Service [MAY 2019-05] Hall, Rand (Jun 04)
- Re: Summary Report :: Dorkbot Service [MAY 2019-05] Valdis Klētnieks (Jun 04)
- Re: Summary Report :: Dorkbot Service [MAY 2019-05] Cam Beasley (Jun 04)
- Re: Summary Report :: Dorkbot Service [MAY 2019-05] Chris Wilson (Jun 04)
- Re: Summary Report :: Dorkbot Service [MAY 2019-05] Frank Barton (Jun 04)
- Re: Summary Report :: Dorkbot Service [MAY 2019-05] David Curry (Jun 04)
- Re: Summary Report :: Dorkbot Service [MAY 2019-05] Frank Barton (Jun 04)
- Re: Summary Report :: Dorkbot Service [MAY 2019-05] Lovaas,Steven (Jun 03)
- Re: Summary Report :: Dorkbot Service [MAY 2019-05] Lovaas,Steven (Jun 03)