Automation - Deus ex Machina or Rube Goldberg Machine? presented at BlackHatUSA 2005

by Roelof ( RT ) Temmingh, Haroon Meer, Charl van der Walt,


Summary : How far can automation be taken? How much intelligence can be embodied in code? How generic can automated IT security assessment tools really be? This presentation will attempt to show which areas of attacks lend themselves to automation and which aspects should best be left for manual human inspection and analyses.
SensePost will provide the audience a glimpse of BiDiBLAH - an attempt to automate a focussed yet comprehensive assessment. The tool provides automation for:
Finding networks and targets
Fingerprinting targets
Discovering known vulnerabilities on the targets
Exploiting the vulnerabilities found

Roelof ( RT ) Temmingh: Roelof completed his electronic engineer degree in 1995 and has been involved in the security industry for some years now. He started SensePost with some friends in 2000, left SensePost in 2007 and has been running Paterva since then. He has spoke at numerous international conference including BlackHat, Defcon, Cansecwest, FIRST, Hack in the box and co-wrote some book with the rest of the Syngress crowd. He likes to think about and create new and innovative technology is and the driving force behind Maltego.