Educause Security Discussion mailing list archives

Re: Summary Report :: Dorkbot Service [MAY 2018-05]


From: Andrew Scheifele <drew () SALTYCLOUD COM>
Date: Mon, 4 Jun 2018 10:43:30 -0500

Good Morning Cam,

Do you mind providing the number breakdown of campuses per category? It is
very interesting that R1 campuses are accounting for 67% of the
vulnerabilities. I am guessing they are a much smaller proportion of the
total number of schools - albeit with a much bigger web footprint per
campus.

Thanks,
Drew
__________________________________

Andrew Scheifele, PhD

Co-Founder | Salty Cloud, PBC
saltycloud.com | +1.512.222.9711


On Sat, Jun 2, 2018 at 10:16 PM, Cam Beasley <cam () utexas edu> wrote:

howdy all —

i wanted to share high level stats from the Dorkbot service for the past
month.

[month = May 2018]

total campuses subscribed = 451 (+36 campuses compared to last month)

——————
verified XSS vulnerable pages = 1,798 (-7% compared to last month)
verified SQLi vulnerable pages = 407 (+43% compared to last month)
verified LFI vulnerable pages = 30 (-42% compared to last month)
verified RFI vulnerable pages = 2 (+100% compared to last month)
verified OS injection vulnerable pages = 24 (+33% compared to last month)
——————

2,261 total verified vulnerable pages reported (-1% compared to last
month)

++++++++++++++++++++++
% of vulnerabilities breakdown by campus classification
++++++++++++++++++++++

67% - R1 campuses
07% - Universities outside of North America
06% - R2 campuses
06% - M1 campuses
04% - Baccalaureate Colleges: Arts & Sciences Focus
03% - R3 campuses
03% - All other institutions
02% - M2 campuses
02% - Universities in Canada

++++++++++++++++++++++

the sign up process is very easy for interested campuses - plus this
service is available at no cost to EDUs.

please see the following for more information:

 https://security.utexas.edu/dorkbot

thanks,

~cam.


--
Cam Beasley
Chief Information Security Officer
Information Security Office
The University of Texas at Austin
security () utexas edu | 512.475.9242
http://security.utexas.edu
=======================================
https://www.facebook.com/utaustiniso
https://twitter.com/UT_ISO
=======================================

Current thread: