Friday, March 28, 2008

Updates on d3vscan Alpha 8 release.

    d3vscan Alpha 8 is now scheduled for release sometime next week. This is a major release with significant changes as follows:
1. The beta version of the Neural Network optimized OS detection plugin(non-windows). Zaid's has a blog post about his achievement here.
2. The beta version of OSVDB based vulnerability scanner plugin
3. A unified Windows installer for d3vscan. Installing d3vscan on Windows would merely be a few mouse clicks away. Ondrej played a big role in this.
4. A Gentoo ebuild for d3vscan will be on the portage tree by next week.
5. Several d3vscan bugfixes.

    The d3vscan website has also been redesigned again. It has been stripped down and based solely on HTML. We are aware that the previous website loads really slowly and that was the primary issue we wanted to address. Not only that, the CMS used had an issue of formatting foreign code(Javascript) which caused amok with Google Adsense . I am looking into Drupal CMS for the long run and this website will do for now.


                                             New d3vscan website screenshot

Sunday, March 23, 2008

Video about Umit & Google Summer of Code

              This is a video explaining Google Summer of Code, how to participate with the Umit project and how to make a good proposal to increase your chances of being accepted this year.

Saturday, March 15, 2008

d3vscan Vulnerability Scanner plugin

      I've been working on the vulnerability scanner plugin for d3vscan utilizing the OSVDB database. With the correlation amongst the product_id, version_id and vendor_id, this correlation_id is then used to obtain the respective vulnerability. The issue thus far is that the correlation is made upon a larger subset when Nmap isn't able to populate the osmatch field. I have added checks on the generated osmatch but nonetheless, the accuracy depends on the OS identification. That is where I hope the work of Zaid and Hazwan for the improved Neural Network based OS identification comes in. Here are some screenshots:


                                 The Plugin Screen


                                 Vulnerability Scan Results in Scan View


                                  Vulnerability Scan Results in List View

Monday, March 10, 2008

d3vscan gets 10,000 hits per day!


                                         d3vscan gets 10,000 hits per day!


    Fixed bugs such as modularizing SDP Browsing so that it doesn't freeze d3vscan when it's loading the *.ubt file and several Map View bugs for a closed Alpha 7.1 release. Checked out the statistics of the d3vscan site and found we've just hit 10,000 hits per day(on March 8th). d3vscan was also featured on the main page of Sourceforge.



                                   d3vscan featured on Sourceforge's Main Page

Friday, March 07, 2008

d3vscan Alpha 7 release.

      With the release of Alpha 7, d3vscan has reached it's functionality target. That being said, the next phase would be fine tunning,code cleanup & ironing out bugs. I have decided to drop the radial map in Map View for Bluetooth mode since msbt(Win XP) doesn't support RSSI scanning. I am also looking into the vulnerability scanner plug-in based on OSVDB. Do stick with the sqlite3 module (Python 2.5) if you need any database functionality with your Python applications. Pysqlite is relatively buggy. Zaid and Hazwan are still working on the OS identification optimization plug-ins. Their work is scheduled for the Alpha 8 release.

      I will be away next week and busy preparing for my Google SoC 2008 proposal under the Umit project for the weeks to come. I am excited about GSoC 2008 and Umit. The d3vscan prototyping experience will be invaluable when writing my GSoC proposal. I've been working hard for almost a year now plus this is my last shot at GSoC. The stakes are high. I am keeping my fingers crossed as things unfold.

d3vscan Alpha 7 release highlights:

-Bluetooth Map View
-Real-time SDP browse



                                   Bluetooth Map View


                                   Service Discovery Protocol Browse