Articles and Resources created by HD Moore

Talks

LASCON 2024 Keynote: HD Moore - Hacker Numerology

In this keynote HD Moore explores the numbers that define our lives and how to use limited observations of identifiers to reason about the security...

Watch Now

Podcasts

Risky Biz Podcast, Episode 769: Sophos pwns Chinese APTs

This episode features runZero's Founder and CEO, HD Moore, who joins to talk about marrying up the outside and inside views of your network.

Watch Now

Podcasts

La Jaula del N00b Interview with HD Moore

This episode of La Jaula del N00b features HD Moore where he shares his story, challenges, and vision in cybersecurity.

Watch Now

Talks

DEF CON 32: SSHamble: Unexpected Exposures in SSH (Video)

This talk digs deep into SSH, the lesser-known implementations, many of the surprising security issues found along the way, and how to exploit them.

Watch Now

Talks

CypherCon 7.0 Keynote: 25 Years of Vulnerability Mismanagement

HD Moore, Founder and CEO of runZero, gives the keynote address at CypherCon 7.0.

Watch Now

Podcasts

The Coffee and Pizza Podcast #0011: This Hacker (HD Moore) created Metasploit

Tune in to see HD Moore on a special episode of the Pizza and Coffee podcast as he shares challenges the challenges and triumphs associated with...

Rapid Response

How to find Microsoft Windows 10, version 1507 systems on your network

On September 10, 2024, Microsoft disclosed a vulnerability affecting Windows 10, version 1507. Here's how to find affected assets on your network.

runZero Research

How to detect SSH key reuse

Unmanaged SSH keys leaves networks vulnerable to cyber attacks. Learn how Zero helps with auditing SSH keys to reduce unnecessary exposures on your...

Talks

DEF CON 32: SSHamble: Unexpected Exposures in SSH (PDF)

This presentation digs deep into SSH, the lesser-known implementations, many of the surprising security issues found along the way, and how to...

Download Presentation

Webcasts

runZero Hour, Ep. 9: (SSHamble Edition)

Didn't make it to DEF CON 32? We got you! This episode of runZero Hour explores all things SSH, including our new open-source tool: SSHamble.

Watch Now

Rapid Response

How to find IPv6-exposed Microsoft Windows systems on your network

On August 13, 2024, Microsoft disclosed a vulnerability affecting a number of different versions of the Windows operating system. Here's how to...

Talks

Into the Security CAASM with runZero: Dark Reading News Desk at Black Hat 2024

HD Moore, Founder and CEO of runZero, joins the Dark Reading News Desk during Black Hat USA 2024 to talk about cyber asset attack surface...

Watch Now

Webcasts

Safeguarding OT/ICS Assets: Insights from the U.S. Department of Energy

Security experts from the National Renewable Energy Lab’s (NREL) Clean Energy Cybersecurity Accelerator™ (CECA) program join runZero to discuss...

Watch Now

runZero Research

SSHamble: Unexpected exposures in the Secure Shell

We conducted a deep dive into the SSH ecosystem and identified vulnerabilities across a wide range of implementations. During the research process,...

Podcasts

LimaCharlie: Defender Fridays - Decay of Network Segmentation with HD Moore

HD Moore, Founder and CEO at runZero, joined Defender Fridays to discuss the decay of network segmentation.

Webcasts

runZero Hour, Ep. 8: Kaspersky Ban, Energy Sector & regreSSHion

The latest insights (and opinions!) on the impending US ban of Kaspersky products, the FBI's warning for threats against the renewable energy...

Watch Now

Rapid Response

How to find MOVEit file transfer services on your network

Progress software disclosed two new vulnerabilities in their MOVEit Gateway product. Here's how to find affected services on your network.

Rapid Response

How to find Kaspersky products with runZero

The US government has banned the sale of Kaspersky products and services. Here's how to find Kaspersky products in your network.

Webcasts

Unknown Assets are the Achilles Heel of Effective Cyber Defense — And Zero Trust

Achieving complete visibility across complex environments is a core tenet of zero trust. See how to achieve your goals with tips form our experts.

Webcasts

runZero Hour, Ep. 7: Fascinating Payloads & New Revelations in Threat Intelligence

Tune in for our monthly deep dive on the state of asset security. In Episode 7, we welcome a special guest, Brianna Cluck, from GreyNoise.

Watch Now

Podcasts

Hacker History: The history of HD Moore

HD Moore joins Hacker History podcast for a fireside chat about his fascinating history in the security community.

Webcasts

runZero Hour, Ep. 6: The Research Report Deep Dive

Join the runZero Research team as they discuss highlights of their new research and share insights derived from analysis of nearly four million...

Watch Now

Podcasts

GreyNoise Intelligence Storm Watch Podcast: One Year Anniversary Celebration with HD Moore

runZero's Founder and CEO, HD Moore, joins the crew at GreyNoise Intelligence to celebrate the one year anniversary of the Storm Watch podcast.

Webcasts

runZero Hour, Ep. 5: XZ Utils Backdoor

On this episode, the runZero Research team dives into some hot topics including the XZ Utils Backdoor (CVE-2024-3094) and expert analysis of the...

Watch Now

Rapid Response

How to find CrushFTP services

CrushFTP disclosed that versions of their file transfer software have a vulnerability allowing unauthenticated file system access. Here's how to...

Rapid Response

How to find outdated lighttpd services

Outdated versions of the open source lighttpd web server are vulnerable to a handful of security vulnerabilities

Webcasts

Securing OT/ICS Environments: Lessons from the Field

Watch this lively discussion on the latest OT and ICS security challenges and how they are being addressed in the field by OT security experts.

Rapid Response

How to find systems impacted by CVE-2024-3094 (XZ Utils backdoor)

Malicious code was pushed to the libxz-utils project that introduced a backdoor in SSH. Here's how to find potentially vulnerable systems.

Webcasts

runZero Hour, Ep. 4: Network Lookalikes and Fingerprinting Challenges

The fourth episode of runZero Hour, featuring the latest insights, anecdotes, and observations from the runZero Research team.

Watch Now

Rapid Response

How to find TeamCity instances

On March 3rd, 2024, JetBrains disclosed two serious vulnerabilities in the TeamCity On-Premises product.

Webcasts

runZero Hour, Ep. 3: Fingerprinting OT Protocols

Episode 3 of the runZero Hour webcast gave us a flavor of what it’s like to fingerprint OT protocols that aren’t as accessible if you aren’t part...

Watch Now

Podcasts

Infosec Toolshed: Metasploit: Why did he do it?

Every top 10 list of security tools includes Metasploit. But how did the project get started?

Webcasts

runZero Hour, Ep. 2: Deep dive into Transport Layer Security (TLS)

Episode 2 of the runZero Hour webcast took a quick survey of new IoT devices that showed up on the network over the holidays at the end of 2023....

Watch Now

Podcasts

Hacker Valley Media: Protecting What You Can’t See with HD Moore

HD shares how he’s able to deliver attack surface management, visibility into your network, and much more in his journey of creating runZero.

Webcasts

runZero Hour, Ep. 1: Hunting Outliers to Strengthen Security Defense

This inaugural episode of runZero Hour features the latest insights, anecdotes, and observations from the runZero Research team.

Watch Now

Rapid Response

How to find SysAid Help Desk instances

On the evening of November 8th Microsoft Threat Intelligence announced that they had discovered attacks by a ransomware gang against the SysAid...

Rapid Response

How to find Apache ActiveMQ instances

How to find Apache ActiveMQ® instances # On October 25th the Apache team announced a vulnerability (CVE-2023-46604) in ActiveMQ that could lead to...

Rapid Response

How to find Samba instances on your network

How to find Samba v4 instances # On October 10th, the Samba team announced an interesting vulnerability that could allow a remote attacker to...

Rapid Response

How to find Confluence Servers

An actively exploited zero-day has surfaced in popular wiki software Confluence. Deemed “critical” in severity with a CVSS score of 10 out of 10,...

Rapid Response

How to find Exim mail servers on your network

On September 27th, Trend Micro’s Zero Day Initiative (ZDI) published details of a critical zero-day vulnerability that allows an unauthenticated...

Rapid Response

How to find WS_FTP Server instances

How to find WS_FTP Server instances? # On September 27th, Progress Sofware announced eight vulnerabilities in the WS_FTP Server software.

Podcasts

Unsolicited Response Podcast: HD Moore

In this episode HD Moore and Dale Peterson spend the first third of the show talking about Metasploit; early reaction, OT modules, and whether...

Podcasts

The Decibel Podcast: Shining the Light in Dark Places

Jon Sakoda speaks with HD on growing up as one of the most famous cybersecurity hackers who had the courage to publish software vulnerabilities on...

Podcasts

Secure Correspondence: Asset management with HD Moore

On an all-new episode of the Secure Correspondence podcast, learn about asset management through the technical eyes of runZero’s Founder and CEO,...

Podcasts

Risky Biz Podcast, Episode 701: Why Infosec is Wrong about TikTok

This Risky Biz podcast episode covers security news, including the Biden White House's executive order on spyware, why the infosec community writ...

Product Release

runZero 3.5 Automatic asset ownership mapping

What’s new in runZero 3.5? Automatic asset ownership management and tracking, integration performance and scalability, user interface enhancements,...

Podcasts

Risky Biz Podcast, Episode 682: Starlink Goes Dark on Ukraine's Front Line

This Risky Biz podcast episode covers security news, including why former Uber CISO Joe Sullivan’s guilty verdict shouldn’t worry you, and more.

Product Videos

The Evolution of Network Scanning: 25 Years of Nmap

...

Product Release

Hunting for X.509 Certificates

X.509 certificates are used to secure communications over both trusted and untrusted networks. Protocols such as Transport Layer Security (TLS)...

Podcasts

Hacker Valley Media: Keeping It Open Source with Metasploit’s HD Moore

This season of Hacker Valley Red wraps up with another interview of an incredible offensive cybersecurity legend.

Podcasts

Risky Biz Soap Box, Episode 65: Taking Rumble to the cloud

HD talks taking Rumble to the cloud and how to fingerprint ICS/OT devices and not make things, uhhh, explode…

runZero Research

One ping to find them: lean network discovery

Our engineering team focuses on getting the maximum amount of information from the network while sending as little traffic as possible.

Rapid Response

How to find applications & services that use Log4J

runZero can help you build an up-to-date asset inventory and search for assets that may be affected by Log4J vulnerabilities, such as Log4shell.

Podcasts

Darknet Diaries - Episode 114: HD Moore

HD Moore invented a hacking tool called Metasploit. He crammed it with tons of exploits and payloads that can be used to hack into computers. What...

Podcasts

Risky Biz Podcast, Episode 651: How runZero helped customers with Log4Shell

This week’s sponsor interview is with HD Moore, the founder of [runZero]. We’re talking through what how he and his team helped customers respond...

Podcasts

Risky Biz Podcast, Episode 645: Integrations for cloud APIs and Censys

HD talks about some new tricks he’s added to the product, like integrations with cloud service APIs and external discovery products like Censys.

runZero Research

Fingerprinting Windows build numbers

Our goal at Rumble is to help customers identify everything on their networks, quickly, and without authentication. This process is driven by...

Podcasts

Risky Biz Soap Box, Episode 55: Rumble and DCE/RPC party tricks

HD Moore talks Rumble and DCE/RPC party tricks

runZero Research

Fingerprinting Windows versions, AV, wireless cards over the network—all without authentication

Correctly identifying and categorizing network-connected systems without credentials is a tricky challenge and one of the fun parts of working at...

Podcasts

The Tony Shap Show, Episode 72: HD Moore

Tony Shap and HD Moore talk on the The Tony Shap Show.

Product Release

Rumble 2.1 Notification Templates, AWS EC2 Enrichment, and Cisco SNTC Exports

Rumble 2.1 is now live with support for custom notification templates, AWS EC2 scan enrichment, Cisco serial number exports for SNTC, faster...

Podcasts

Risky Biz Podcast, Episode 620: Project Zero Burns Western Counterterrorism Operation

Metasploit creator and Rumble.run founder HD Moore will join us to talk all about his new venture, the Rumble asset discovery tool.

Product Release

Rumble 2.0 Automation, Subnet Discovery, ServiceNow, and More!

Rumble 2.0 is now live with alert and asset automation via the Rules Engine, ridiculously fast scans with subnet discovery, cross-organization...

Podcasts

SentinelOne Hack Chat: HD Moore

In this episode of Hack Chat, we discuss what it takes to become good at hacking, and delve into his newest business venture—Rumble.

Podcasts

Security Weekly: Network Discovery & IT Asset Inventory

HD walks through some visualizations of public IP networks (all of Greece, Iceland, etc.) and highlight the weird and unexpected stuff you can find...

Product Release

Rumble 1.16 Duplicate SSH Keys, Rogue Remote Access Solutions, and Device Serial Numbers/Asset Tags

Rumble Network Discovery 1.16 is out, helping you find duplicate SSH keys, monitor for rogue remote access solutions, and collect device serial...

Podcasts

BarCode Podcast: Rumble with HD Moore

HD Moore, famed developer of the wildly used Metasploit penetration testing tool spoke with me about his current focus, RUMBLE, in addition to his...

Podcasts

Software Engineering Daily: Network Discovery with HD Moore

HD joins the show to talk about how network discovery works and his experience building Rumble.

Product Release

Rumble 1.15 Global Deployments, PostgreSQL, Crestron, and More!

The 1.15 release improves global deployments, fingerprinting, and asset tracking.

Product Release

Rumble 1.14 UX Updates, Security, and mDNS!

A new release of runZero is live with user interface updates, security improvements, and a host of new fingerprints that include mDNS replies.

Product Release

Rumble 1.13 Roles, Correlation, Reports, and More!

The latest version of Rumble is live with small improvements across the board; better reports, improved role management, updates to asset...

Product Release

Rumble 1.12 One Year Later

The 1.12 release work was focused on the less visible parts of the platform; consistency, reliability, performance, bug fixes, infrastructure, and...

Podcasts

Cyphercon, Episode 41: Dumpster Diving with HD Moore

Kyle and HD talk about HD’s youth spent dumpster diving for computer parts and how those early days tinkering and building influenced the creation...

Product Release

Rumble 1.11 Taking Discovery to 11

The release adds Projects; temporary organizations that make it easy to manage one-off scans and professional services with Rumble.

Podcasts

Cyber Security Interviews: The New Normal with HD Moore

In this episode, HD discusses starting with BBSs back in the day, the Metasploit project, project Sonar, Rumble, and much more.

Podcasts

EkoPodcast: Live Chat with HD Moore

A sit down with none other than HD Moore, founder of the Metasploit project and current CEO and founder of Rumble, a network discovery platform.

runZero Research

Recog development with runZero

Overview # Recog may be one of the most underrated open source security projects of all time. Recog started off in the early 2000s as the...

Product Release

Rumble 1.10 Continuous Scans, Site Defaults, and More!

Rumble 1.10 is live with continuous scanning, user interface updates, an event log, updates to the scan engine, additional fingerprints, and a new...

Podcasts

The Infosec & OSINT Show: Advanced Asset Inventory Techniques

This week HD Moore is on the show. We focused on asset identification.

Product Release

Tips & Tricks Data Organization

Introduction # Rumble helps you quickly identify all your assets but organizing those assets can get tricky in large environments. In this edition...

Product Release

Rumble 1.9.0 Scan Engine Updates, Reports, and More!

Rumble 1.9.0 is out with major updates to the scan engine, reports, fingerprinting, user interface, documentation, and much more!

Product Release

Rumble for the Ripple20

The Ripple20 vulnerabilities identified by JSOF impact millions of devices running the Treck operating system, many of which have not and will not...

Product Release

Rumble 1.8.0 Subnets, Fingerprints, BSD Support, and More!

The 1.8.0 release of Rumble Network Discovery adds Registered Subnets to Sites, increases fingerprint coverage across databases, MAC addresses, and...

Podcasts

IT Harvest Podcast: IoT is Driving a New Era of Network Discovery

Richard Stiennon sits down with HD Moore to discuss the Rumble Network Discovery platform.

Product Release

There and Back Again with the Subnet Grid Report

ToneLoc # The Subnet Grid Report introduced in Rumble 1.7.0 is copied from one of my favorite security tools of time, ToneLoc! ToneLoc (the tone...

Product Release

Rumble 1.7.0 Reporting, Fingerprints, and More!

Version 1.7.0 of Rumble Network Discovery is live with big updates to reporting.

Product Release

Rumble Starter Edition Free for Everyone

Rumble Starter Edition is now available as a free tier! This option supports many features of our paid subscriptions, including Inventory, Reports,...

Product Release

Rumble 1.6.2 Analysis Reports & The Query Library

Today’s update comes with two significant features: Analysis Reports and the Query Library.

Podcasts

InfoSec Campus: SecTools Podcast with HD Moore

HD founded Critical Research to address a long-standing need for better network discovery tools. Currently, his research is focused on asset...

Product Release

Rumble 1.6.0 Search Updates, New Fingerprints, and More!

Version 1.6.0 of Rumble Network Discovery is live with support for configurable scan grace periods, data retention policies, additional protocol...

runZero Research

SMB2 Session Prediction & Consequences

Server Message Block Research # The Rumble scan engine received big updates this month for the HTTP, RDP, and SMB protocols. The SMB work was...

Talks

Duo Tech Talk 2019: HD Moore on Modern Network Discovery

Presentation at Duo Tech Talks on December 5th, 2019 in Austin, Texas.

runZero Research

Cisco Webex Username Discovery via mDNS

At the most basic level, Rumble is a search engine for your network; it sends out probes, listens for replies, normalizes the results, applies...

Product Release

Rumble 1.5.0 Scanning Wider and Searching Deeper

Version 1.5.0 of Rumble Network Discovery is live with updates in two major areas; wider scanning, through improved protocol support, scan engine...

Product Release

Rumble 1.4.0 Concurrent Scans & Much More!

This release rolls up our post-1.3.0 work, including major updates to the command-line runZero Scanner and support for asset syncing in Splunk.

Product Release

runZero Scanner Updates & Data Transparency

Data transparancy is one of the key drivers of Rumble development. We do our best to ensure that any data gathered, transmitted, or downloaded is...

Product Release

Syncing Rumble Assets with Splunk

We are excited to announce the availability of an official Splunk Addon for Rumble! This addon uses the new Asset Sync API included in version...

Product Release

Rumble 1.3.0 API, BACnet, Fingerprints & More!

Version 1.3.0 of Rumble Network Discovery is now live with a new Organization API, support for the BACnet protocol, tons of new fingerprints, and...

runZero Research

Security Surprises with SNMP v3

SNMP v3 has been the official version of the protocol since 2004, but still holds a few surprises when it comes to information exposure. Read our...

Product Release

Rumble Network Discovery v1.2.0 Wireless & More!

Version 1.2.0 of Rumble Network Discovery is live with a handful of new features. If you haven’t had a chance to try runZero before, or would like...

Product Release

Authenticated SNMP v3 Support

After announcing v1.1.5 with the new Switch Topology report, quite a few folks wrote in to ask if this feature was available in SNMPv3...

Product Release

Uncovering Unknowns Through Topology Analysis

Version 1.1.5 of the Rumble platform is live! This release includes a new Switch Topology report, updates to the Network Bridges report, and...

Product Release

Rolling Out Rumble Network Discovery v1.1.0

Version 1.1.0 of Rumble Network Discovery is live! This release includes support for Single Sign On (SSO), improved scan management, updates to the...

Product Release

Announcing Rumble Network Discovery v1.0.0

We are thrilled to announce the general availability of Rumble Network Discovery! This release is the result of six months of beta testing by...

Product Release

Rumble Network Discovery Wrapping up Beta

The Rumble Beta program is winding down after an incredible six months. Rumble now tracks over 1.8 million assets, runs approximately 1,500 scans a...

Product Release

Rumble Network Discovery Beta 6

Beta 6 of Rumble Network Discovery is live with a new Service Inventory, per-organization roles for team members, Site import and export, and much...

Product Release

Scanning for HTTP/2 with Rumble

This Tuesday, Jonathan Looney, a researcher at Netflix, disclosed seven different ways to break common HTTP/2 protocol implementations, while an...

Product Release

Hunting for Network Bridges with Rumble

Thanks to the wonderful user feedback from Beta 5, a handful of bug fixes and improvements have been deployed along with a new feature: Network...

Product Release

Rumble Network Discovery Beta 5

The last few months have been incredible thanks to our wonderful beta community and their vocal feedback. Quite a few folks asked for a version of...

Product Release

Better TCP Scans Through UDP Discovery

One of the trickiest parts of network discovery is balancing thoroughness with speed. We strive to provide a fast, low-impact scan by default, but...

Product Release

Rumble Network Discovery Beta 4

This release includes support for macOS agents and scanners, web screenshots, and major improvements to the user interface.

Product Release

Automatic Web Screenshots

We rolled out support for automatic web service screenshots this morning in both the Rumble Agent and the runZero Scanner (v0.6.6+). This option is...

Product Release

Support for Apple macOS Agents & Scanners

Fresh on the heels on Beta 3, we are excited to announce support for the Apple macOS platform. To install the Rumble macOS Agent, copy the download...

Product Release

Rumble Network Discovery Beta 3

Beta 3 is here and ships with network change tracking and notifications (edit: now alerts in v1.0.0)!

runZero Research

DNS Ping Scans via Open Resolvers

Our last post covered some of the ways that Rumble gathers information from DNS services. While working on the tracer implementation, we identified...

runZero Research

DNS Parlor Tricks for Network Discovery

DNS is an amazing protocol. After starting life as a simple mechanism for name resolution, it is now used to enforce TLS rules, prevent email...

Product Release

Rumble Network Discovery Beta 2

Two weeks after our Beta 1 release, we are excited to announce the next iteration of the Rumble Network Discovery platform, Beta 2!

Product Release

Rumble Network Discovery Beta 1

Now that the first beta release of Rumble Network Discovery is available for testing, we wanted to highlight some of the things that the product...

Product Release

Rumble Network Discovery in Beta

We are ridiculously excited to announce the beta program for Rumble Network Discovery, a platform designed to make network asset discovery quick...

About HD Moore

Latest Stories