Home page logo

pen-test logo Penetration Testing mailing list archives

DPE - Default Password Enumeration standarization released
From: "SD List" <list () security-database com>
Date: Thu, 26 Jun 2008 17:19:40 +0200 (CEST)

Dear all,

We are again proud and happy to announce that we have just launched a new
Enumeration Project with the hope it will be useful for the security

It can then be used along with softwares that integrates standards as well
as OVAL, SCAP and others.

DPE is the security-database naming scheme that provides structured
enumeration of default logons and passwords of network devices,
applications and Operating Systems.

The main goal is to increase the "password auditing scanners"
interoperability potential. Any kind of tool integrating the XML DPE
scheme will be able to identify and report default access configurations
on specific devices, softwares or operating systems.

Taking into account the benefits of SecurityMetrics standards principles,
DPE integrates the CPE naming scheme (cpe.mitre.org) to describe
information technology systems, plateforms and packages.

DPE provides the default usernames and passwords information for the
following :

- Operating Systems : Unix, Linux, Windows, iSeries AS/400 ...
- Network devices : Routers, firewalls, switches, printers
- Databases : Oracle, MySQL, MS SQL and more
- Web applications : WebSphere, Apache ...
- Administrative Web Based solutions
- Telephony devices and SIP systems
- Other: specific applicances.

See online : More Information and DPE Scheme

We are opened to all your suggestions and contributions to compile this
schema and associated repositories.


security-database.com team


This list is sponsored by: Cenzic

Top 5 Common Mistakes in 
Securing Web Applications
Get 45 Min Video and PPT Slides


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]