12Apr2014 (UTC +8) Currently scanning more that 5.22 million Philippine IP addresses (I've been collecting from various open sources for some time). I'm searching for vulnerable apps on regular HTTPS that are vulnerable to Heartbleed.
Normally, commercial vulnerability scanners will take months to take on that scale. But I'm using open-source tools, nmap being a favorite. My ambition is to be done within 24 hours. In less than 2 hours, I've had almost 37000 responses from regular HTTPS-based apps. Of that number, I will later do a simple query for the Heartbleed vulnerability. I will only share the results of the scan regarding the entire PH only, not per industry and certainly not per machine. Because I want to anonymize my data. Drexx Laggui -- CISA, CISSP, CFE Associate, ISO27001 LA, CCSI, CSA http://www.laggui.com ( Manila & California ) Computer forensics; Penetration testing; QMS & ISMS developers; K-Transfer PGP fingerprint = 0117 15C5 F3B1 6564 59EA 6013 1308 9A66 41A2 3F9B _________________________________________________ Philippine Linux Users' Group (PLUG) Mailing List http://lists.linux.org.ph/mailman/listinfo/plug Searchable Archives: http://archives.free.net.ph
