Blog Posts

Rumble v1.16 Rumble Network Discovery 1.16 is out, helping you find duplicate SSH keys, monitor for rogue remote access solutions, and collect device serial numbers and asset tags. Finding Duplicate SSH Host Keys Rumble excels at finding outliers on the network, and finding duplicate SSH keys is one application of this. Vulnerability scanners can find a known bad SSH keys but they don’t look for duplicate keys. Rumble collects all SSH key MD5 hashes and then pivots over the SSH host key MD5 to find keys that exist more than once.
A few weeks ago, one of our customers asked us if we could pull serial numbers out of Cisco devices because this would be very useful for their MSSP business. We were able to update the scan engine quick and this feature is now included as of release 1.15.3. Pulling serial numbers remotely can be very useful to for support questions and to see if a device’s warranty has expired and it should be replaced.
Rumble Network Discovery collects a ton of information by default. SSH versions, pre-authentication banners, and SSH host keys are collected regardless of what port SSH is running on. SSH host keys in particular are an example of something that should always be unique on the network, but often isn’t, with real-world security implications. Unless you knew what the value of the duplicate SSH key was, this used to be a difficult problem to solve.
As of release 1.15.3, Rumble Network Discovery now detects the TeamViewer protocol on your network in addition to the existing coverage for RDP, VNC, SPICE, and PC Anywhere. This rounds off Rumble’s broad support for monitoring remote access solutions. AD-Controlled RDP is Great, but Unmanaged RDP is a Risk Factor Remote Desktop Protocol (RDP) is a useful tool when enabled on a machine that’s properly managed on the domain (that is if you’re properly managing local accounts).
Rumble v1.15 The 1.15 release improves global deployments, fingerprinting, and asset tracking. Rumble is still free for individuals and small businesses with less than 256 assets and is a great fit for security assessments using its temporary project feature. Read on for the full list of changes since v1.14. Global Deployment Support For folks who need a local scanner in each broadcast domain, such as retail environments where each location has overlapping network ranges, the deployment process has become much easier.