Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

VC-2316 Add fingerprinting for ivanti pulse secure #614

Merged
merged 2 commits into from
Jun 13, 2024
Merged

VC-2316 Add fingerprinting for ivanti pulse secure #614

merged 2 commits into from
Jun 13, 2024

Conversation

egazizov-r7
Copy link
Contributor

@egazizov-r7 egazizov-r7 commented Jun 12, 2024
edited
Loading

Description

Added Fingerprinting for Ivanti Pulse Secure

Motivation and Context

After rebranding Pulse Secure to Ivanti, the vendor hid information about subsequent versions and their hashes, we had to come up with a new approach for retrieving information about the version of the product, this approach uses SNMP to collect version information.

How Has This Been Tested?

Ran nexpose with these arguments on vCenter:

./run.sh nexpose -Dr7.deploy.local.recog=true -Drecog.dir=~/rapid7/recog

And then scanned an existing Ivanti Connect Secure scan target.

Scan results before change:
image

Scan results after change:
image

Types of changes

  • New feature, Added new fingerprinting for Ivanti Connect Secure

Checklist:

  • I have updated the documentation accordingly (or changes are not required).
  • I have added tests to cover my changes (or new tests are not required).
  • All new and existing tests passed.
image

@egazizov-r7 egazizov-r7 self-assigned this Jun 12, 2024
@egazizov-r7 egazizov-r7 changed the title Bonsai/vc 2316 add fingerprinting ivanti pulse secure VC-2316 Add fingerprinting for ivanti pulse secure Jun 12, 2024
@egazizov-r7 egazizov-r7 requested a review from droesel-r7 June 12, 2024 14:13
@egazizov-r7 egazizov-r7 marked this pull request as ready for review June 12, 2024 14:24
martinvotruba-r7
martinvotruba-r7 approved these changes Jun 12, 2024
View reviewed changes
Copy link
Contributor

@martinvotruba-r7 martinvotruba-r7 left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@adfoster-r7
Copy link
Contributor

Could we rebase this PR against the latest main to verify CI is passing

@egazizov-r7 egazizov-r7 force-pushed the bonsai/VC-2316-add-fingerprinting-ivanti-pulse-secure branch from 3286f06 to d19ad50 Compare June 13, 2024 07:45
@egazizov-r7 egazizov-r7 merged commit e789cb5 into main Jun 13, 2024
23 checks passed
@egazizov-r7 egazizov-r7 deleted the bonsai/VC-2316-add-fingerprinting-ivanti-pulse-secure branch June 13, 2024 08:38
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@martinvotruba-r7 martinvotruba-r7 martinvotruba-r7 approved these changes

@droesel-r7 droesel-r7 Awaiting requested review from droesel-r7

Assignees

@egazizov-r7 egazizov-r7

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@egazizov-r7 @adfoster-r7 @martinvotruba-r7