Posts by HD Moore

June 3, 2023

Reports of active exploitation of a zero-day vulnerability in the MOVEit file transfer software are making the rounds this week. The vendor, Progress Software, has released an advisory and this issue has now been assigned CVE-2023-34362. Attackers are abusing a SQL injection …

February 14, 2023

What’s new with runZero 3.5? Automatic asset ownership mapping and tracking Integration performance and scalability User interface enhancements New protocols and fingerprints New Rapid Response queries Automatic asset ownership mapping and tracking runZero Enterprise …

June 14, 2022

Our engineering team focuses on getting the maximum amount of information from the network while sending as little traffic as possible. This lean approach to network discovery is driven by our goal of being fast and safe for all networks. The more we can learn about a system …

December 10, 2021

Last updated on April 26, 2021 at 08:00 CST (-0600) runZero can help you build an up-to-date asset inventory and search for assets that may be affected by Log4J vulnerabilities, such as Log4shell. runZero is not a vulnerability scanner, but you can share runZero’s …

September 30, 2021

Rumble Network Discovery is now runZero! Our goal at Rumble is to help customers identify everything on their networks, quickly, and without authentication. This process is driven by research, which often leads to dead ends, but sometimes we learn interesting things along …

August 11, 2021

Rumble Network Discovery is now runZero! Correctly identifying and categorizing network-connected systems without credentials is a tricky challenge and one of the fun parts of working at Rumble. This process of “fingerprinting” uses thousands of rules, pattern …

April 13, 2021

Rumble Network Discovery is now runZero! Rumble Network Discovery 2.1 Rumble 2.1 is now live with support for custom notification templates, AWS EC2 scan enrichment, Cisco serial number exports for SNTC, faster exports, more flexible imports, an updated Splunk Addon, and …

March 16, 2021

Rumble Network Discovery is now runZero! Rumble Network Discovery 2.0 Rumble 2.0 is now live with alert and asset automation via the Rules Engine, ridiculously fast scans with subnet discovery, cross-organization management via the Account API, support for ServiceNow CMDB …

February 11, 2021

Rumble Network Discovery is now runZero! Podcast Description: “HD Moore is a network security expert, open source programmer, and hacker. He is a developer of the Metasploit Framework, the world’s most used penetration testing software suite, and the founder of …

February 9, 2021

Rumble Network Discovery is now runZero! Rumble v1.16 Rumble Network Discovery 1.16 is out, helping you find duplicate SSH keys, monitor for rogue remote access solutions, and collect device serial numbers and asset tags. Finding Duplicate SSH Host Keys Rumble excels at …