RIPT 1 – Background

RIPT stands for Remote Internal Penetration Test. The following posts document the development of a small, cheap, reliable, and secure device for sending to clients when an onsite presence is not possible.

Our goal as a security organization is to become trusted advisors to our clients. Such a relationship is typically built on extended direct contact so “sending a box” has never been our modus operandi. As vulnerability assessment and penetration testing services become more and more commoditized, though, price becomes the discriminator that wins the bid. Many of our competitors have already moved to remote testing, which lowers costs by eliminating travel. We can’t become a trusted advisor if we can’t get the initial business.

For one-off engagements with existing clients we had a solution where we sent a pre-configured laptop that would SSH back to our lab. This worked, but was not optimal. Laptops are not robust items to send around the world for one, and many clients limit what types of connections are allowed out of their environment.

The RIPT scanner is not meant to be a replacement for an onsite engagement or for other commercially available solutions.

RIPT 1 – Background – http://wirefall.com/archives/346
RIPT 2 – Requirements – http://wirefall.com/archives/353
RIPT 3 – High Level Overview – http://wirefall.com/archives/355
RIPT 4 – RIPT Relay (Basics) – http://wirefall.com/archives/364
RIPT 5 – RIPT Relay (SSH over SSL/TLS) – http://wirefall.com/archives/358
RIPT 6 – RIPT Relay (SSH) – http://wirefall.com/archives/367
RIPT 7 – RIPT Server (Install Kali) – http://wirefall.com/archives/374
RIPT 8 – RIPT Server (Safe Boot) – http://wirefall.com/archives/376
RIPT 9 – RIPT Server (USB Key) – http://wirefall.com/archives/378
RIPT 10 – RIPT Server (SSH) – http://wirefall.com/archives/386
RIPT 11 – RIPT Server (VNC) – http://wirefall.com/archives/392
RIPT 12 – RIPT Server (HTTP Proxy / Squid) – http://wirefall.com/archives/395
RIPT 13 – RIPT Server (SSH Tunnels) – http://wirefall.com/archives/399
RIPT 14 – RIPT Server (Tunnels as a Service) – http://wirefall.com/archives/410
RIPT 15 – RIPT Server (Boot Parameters) – http://wirefall.com/archives/415
RIPT 16 – RIPT Server (Logging) – http://wirefall.com/archives/425
RIPT 17 – RIPT Server (Hardening) – http://wirefall.com/archives/427
RIPT 18 – RIPT Client (Windows) – http://wirefall.com/archives/436
RIPT 19 – RIPT Client (Linux) – http://wirefall.com/archives/453
RIPT 20 – RIPT Client (SSH/VNC/HTTP Proxy/SOCKS Proxy) – http://wirefall.com/archives/471
RIPT 21 – Errata – http://wirefall.com/archives/562

 

Leave a Reply

Your email address will not be published. Required fields are marked *