Summary Report :: Dorkbot Service [APR 2019-04]

[Cam Beasley <cam () UTEXAS EDU>]

hello all —

i wanted to share summary stats from the Dorkbot web application security service for the past month.

Dorkbot covers 86% of all R1 campuses in the US and many of the top universities across 6 continents (and 69 countries).

[month = APR 2019]

total campuses subscribed = 1,001 (+55 campuses compared to previous month)

——————
verified XSS vulnerable pages = 2,651 (+5% compared to previous month)
verified SQLi vulnerable pages = 333 (-15% compared to previous month)
verified LFI vulnerable pages = 26 (-25% compared to previous month)
verified OSi vulnerable pages = 10 (+25% compared to previous month)
verified RFI vulnerable pages = 02 (-33% compared to previous month) 
——————

3,022 total verified vulnerable pages (+2% compared to previous month)  


++++++++++++++++++++++
% of vulnerability breakdown by campus classification
++++++++++++++++++++++

44% - Universities in Other Countries
31% - R1 Campuses
06% - R2 Campuses
04% - Higher Ed Consortiums
03% - M1 Campuses
02% - Baccalaureate Colleges: Arts & Sciences Focus
02% - Universities in Canada
02% - State Agencies
06% - All Other Entities

++++++++++++++++++++++

signing up for Dorkbot is fast & free. 
please see the following for more information:

https://security.utexas.edu/dorkbot

https://er.educause.edu/blogs/2019/2/dorkbot-a-managed-application-security-assessment-service-for-higher-education

thanks,

~cam.



--
Cam Beasley
Chief Information Security Officer
Information Security Office
The University of Texas at Austin
security () utexas edu | 512.475.9242
http://security.utexas.edu
=======================================

Attachment: smime.p7s
Description: