32
edits
Security/Automation/Winter Of Security 2016: Difference between revisions
Jump to navigation
Jump to search
Security/Automation/Winter Of Security 2016 (view source)
Revision as of 23:27, 16 June 2016
, 16 June 2016→Project Ideas (non-definitive)
(add Security Testing Workflow and Toolchain for Python Websites and Services) |
|||
| Line 99: | Line 99: | ||
This project should ensure [https://nss-crypto.org/ NSS]' TLS implementation interoperates with that of other crypto libraries like [https://openssl.org/ OpenSSL]. It should also automate interoperability testing to integrate with our CI. | This project should ensure [https://nss-crypto.org/ NSS]' TLS implementation interoperates with that of other crypto libraries like [https://openssl.org/ OpenSSL]. It should also automate interoperability testing to integrate with our CI. | ||
=== ssh_scan: Improving Scalability and Feature Set === | |||
Proposed by: claudijd | |||
This project would work on improving the scalability and feature set of ssh_scan, a tool for scanning for ssh policy and compliance (mainly attributes found here https://github.com/claudijd/ssh_scan/blob/master/examples/192.168.1.1.json). This tool is currently open-sourced as more of a prototype tool here (https://github.com/claudijd/ssh_scan). Current feature gaps include the ability to detect the types of authentication (password/key-based/auth), nmap-style targeting and scanning, and IPv6 support. Lastly, it might be useful to have some server-side infrastructure components/API developed for this service with a cool front end to assist with scanning/compliance automation. These are the sorts of things this project team would attempt to solve and deliver during the project window. | |||
=== New Idea Template === | === New Idea Template === | ||