HD Moore

About HD Moore

HD Moore is the co-founder and CTO of runZero. Previously, he founded the Metasploit Project and served as the main developer of the Metasploit Framework, which is the world's most widely used penetration testing framework.

June 3, 2023

Finding MOVEit File Transfer Services

Reports of active exploitation of a zero-day vulnerability in the MOVEit file transfer software are making the rounds this week. The vendor, Progress Software, has released an advisory and this issue has now been assigned CVE-2023-34362. Attackers are abusing a SQL injection …

Read More

February 14, 2023

runZero 3.5: Automatic asset ownership mapping

What’s new in runZero 3.5? Automatic asset ownership management and tracking, integration performance and scalability, user interface enhancements, new protocols and fingerprints, and new Rapid Response queries!

June 14, 2022

One ping to find them: lean network discovery

Our engineering team focuses on getting the maximum amount of information from the network while sending as little traffic as possible. This lean approach to network discovery is driven by our goal of being fast and safe for all networks. The more we can learn about a system …

Read More

December 10, 2021

How to find applications & services that use Log4J

Last updated on April 26, 2021 at 08:00 CST (-0600) runZero can help you build an up-to-date asset inventory and search for assets that may be affected by Log4J vulnerabilities, such as Log4shell. runZero is not a vulnerability scanner, but you can share runZero’s …

Read More

September 30, 2021

Fingerprinting Windows build numbers

Rumble Network Discovery is now runZero! Our goal at Rumble is to help customers identify everything on their networks, quickly, and without authentication. This process is driven by research, which often leads to dead ends, but sometimes we learn interesting things along …

Read More

August 11, 2021

Fingerprinting Windows versions, AV, wireless cards over the network—all without authentication

Rumble Network Discovery is now runZero! Correctly identifying and categorizing network-connected systems without credentials is a tricky challenge and one of the fun parts of working at Rumble. This process of “fingerprinting” uses thousands of rules, pattern …

Read More

April 13, 2021

Rumble 2.1: Notification Templates, AWS EC2 Enrichment, and Cisco SNTC Exports

Rumble Network Discovery is now runZero! Rumble Network Discovery 2.1 # Rumble 2.1 is now live with support for custom notification templates, AWS EC2 scan enrichment, Cisco serial number exports for SNTC, faster exports, more flexible imports, an updated Splunk Addon, and …

Read More

March 16, 2021

Rumble 2.0: Automation, Subnet Discovery, ServiceNow, and More!

Rumble Network Discovery is now runZero! Rumble Network Discovery 2.0 # Rumble 2.0 is now live with alert and asset automation via the Rules Engine, ridiculously fast scans with subnet discovery, cross-organization management via the Account API, support for ServiceNow CMDB …

Read More

February 11, 2021

SentinelOne Hack Chat: HD Moore

Rumble Network Discovery is now runZero! Podcast Description: “HD Moore is a network security expert, open source programmer, and hacker. He is a developer of the Metasploit Framework, the world’s most used penetration testing software suite, and the founder of …

Read More

February 9, 2021

Rumble 1.16: Duplicate SSH Keys, Rogue Remote Access Solutions, and Device Serial Numbers/Asset Tags

Rumble Network Discovery is now runZero! Rumble v1.16 # Rumble Network Discovery 1.16 is out, helping you find duplicate SSH keys, monitor for rogue remote access solutions, and collect device serial numbers and asset tags. Finding Duplicate SSH Host Keys # Rumble excels at …

Read More