Risky Business podcast: Integrations for cloud APIs and Censys
Podcast Description: “This week’s sponsor interview is with HD Moore. He’s the founder of Rumble, the network asset discovery scanner, and he’s joining us to talk about some new tricks he’s added to the product, like integrations with cloud service APIs and external discovery products like Censys."
Cloud environments are becoming increasingly more wired to internal corporate networks through VPN connections. More people are looking for a complete view of what’s on their corporate network, what’s inside their cloud environment, and what’s visible externally using a service like Censys.
Rumble doesn’t take a credentials-first approach. Most of the value we deliver is through unauthenticated, fast internal discovery. We combine the results from active scans and the API results to enrich the data we have.
We started to hear about customers who were scanning entire RFC 1918 spaces and finding things they didn’t know about. Rumble would be able to tell them that it’s their AWS environment, and they’re actually routing their external AWS to their internal network. They were asking us questions like, “What instances are on it, what team owns it, what tag is on it?” Rumble has the ability to connect to the AWS instance, support multi-account, and enumerate subaccounts, which means teams can now add owners, tags, and tracking information to those assets.
There are generally two use cases:
- People who are scanning their external environments and want to see what’s visible in Rumble and visible from an external perspective.
- People who are using external IP addresses internally and want to ensure those internal addresses aren’t reachable from the internet.
If you have an IP address, Rumble can cover it.
There are even cases where Rumble knows about the asset even if it doesn’t have the IP address. For example, with our VMware integration, we can tell you which VMs are running–even if they aren’t on your network or attached to anything at all. We do this by getting information out of the guest networking tools and networking API.
Rumble focuses on turning your network into a knowledge base you can search. For example, when there’s breaking news, like with the recent PAX point-of-sale or Hikvision vulns, you can quickly query your inventory for those devices via our Rapid Response program. With vulnerability management flows, it can take weeks as they’re figuring out what they have, scanning the network, and trying to identify things that are vulnerable. Rumble gives you the data ahead of time, so you don’t have to hunt it down.
August 18, 2021
Risky Business: HD Moore talks Rumble and DCE/RPC party tricks
Podcast Description: “I am stoked to be publishing this interview. This Soap Box is brought to you by Rumble, the asset discovery company founded by HD Moore. For those of you who don’t know, HD is a security legend, having done all sorts of amazing research over the …Read More
July 28, 2021
In-depth network discovery made easy
Watch Tom Lawrence at Lawrence Systems give a flawless demo on Rumble (and make our job here in marketing a lot easier). He said, “A tool written born out of necessity, written by a hacker, often, to me, just makes for a better tool.” We couldn’t agree …
July 6, 2021
Shared Security: Asset discovery with Chris Kirsch
Description: “Chris Kirsch co-founder and chief revenue officer at Rumble joins us in our June monthly show to talk about how Rumble is solving the problem of asset discovery. You also get to see a demo of Rumble in action and learn about the many talents that Chris …