-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathmain.tex
More file actions
255 lines (209 loc) · 7.17 KB
/
main.tex
File metadata and controls
255 lines (209 loc) · 7.17 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
\documentclass{beamer}
% \usetheme{Copenhagen}
\usecolortheme{beaver}
\setbeamercolor{block body alerted}{bg=alerted text.fg!10}
\setbeamercolor{block title alerted}{bg=alerted text.fg!20}
\setbeamercolor{block body}{bg=structure!10}
\setbeamercolor{block title}{bg=structure!20}
\setbeamercolor{block body example}{bg=green!10}
\setbeamercolor{block title example}{bg=green!20}
\usepackage{tikz}
\usepackage[utf8]{inputenc}
\usepackage{hyperref}
\hypersetup{
colorlinks=true,
linkcolor=blue,
filecolor=magenta,
urlcolor=cyan,
}
\usepackage{dirtytalk}
\title{Pentesting automation with \textbf{Reconmap}}
\author{Santiago Lizardo}
\date{\today}
\begin{document}
\begin{frame}
\begin{center}
\includegraphics[width=0.7\textwidth]{images/pentester-academy-logo.png}
\end{center}
\maketitle
\end{frame}
\begin{frame}
\frametitle{About the presenter}
\includegraphics[width=0.4\textwidth]{images/santiago-lizardo.png}
\begin{itemize}
\item Reconmap's founder
\item +20 years doing software engineering
\item Cyber security enthusiast
\item \href{https://github.com/santiagolizardo}{https://github.com/santiagolizardo}
\end{itemize}
\end{frame}
\begin{frame}
\frametitle{Reconmap's origin}
Pentesting pain points
\begin{itemize}
\item Repetition
\item Ineffective collaboration
\item Ineffective communication
\end{itemize}
\end{frame}
\begin{frame}
\frametitle{Reconmap's mission}
Reconmap's mission is to \textbf{accelerate the time it takes to do vulnerability assessment and pentesting}, through the use of \underline{templating}, \underline{automation} and \underline{machine learning}.\\
From weeks to days, or days to hours.
\end{frame}
\begin{frame}
\frametitle{Reconmap's approach}
\begin{itemize}
\item Templates to avoid repetition
\item Automation and ML to speed up the process
\end{itemize}
\begin{block}{Result:}
Pentesters spending more time doing research, and less time doing repetitive, boring, tedious work such as parsing files manually or creating handcrafted pentest reports for their clients.
\end{block}
\end{frame}
\begin{frame}
\frametitle{Reconmap's Today - September 2021}
\begin{itemize}
\item 1 year old
\item Open source and SaaS
\item Small but growing community
\item Used in production by people around the world
\end{itemize}
\end{frame}
\begin{frame}{}
\frametitle{Recomap's feature set}
\begin{itemize}
\item Client, project, tasks management all in one.
\item Reusable project and vulnerability templates
\item Automatic pentest report generation (HTML, PDF, DOCX)
\item Command line interface (CLI) and Rest API
\item Integrated browser terminal
\item Can scale to teams and projects of any size.
\item Stats dashboard, user roles, documents, markdown, audit log, integrated search, tagging, data import/export, ...
\end{itemize}
\end{frame}
\begin{frame}
\frametitle{Who is it for?}
Any InfoSec professional:
\begin{itemize}
\item Blue, Purple and Red teams
\item Pentesters
\item Bug bounty hunters
\item Ethical hackers
\item Security researchers
\end{itemize}
\bigskip
Individual or teams
\end{frame}
\begin{frame}
\frametitle{Pentesting step by step with Reconmap}
\begin{enumerate}
\item Create client
\item Create project from scratch or template
\item Complete tasks in the project. Some might require running command automation.
\item Try exploit the vulnerabilities found
\item Generate report for client and share
\end{enumerate}
\end{frame}
\begin{frame}
\frametitle{Step 1: Setup client}
\begin{tikzpicture}
\node (img1) {\includegraphics[height=2cm]{images/clients-list.png}};
\pause
\node (img2) at (img1.center) {\includegraphics[height=3cm]{images/client-details.png}};
\pause
\node (img2) at (img1.south east) [xshift=-3cm] {\includegraphics[height=3cm]{images/users-list.png}};
\end{tikzpicture}
\end{frame}
\begin{frame}
\frametitle{Step 2: Setup project}
\begin{tikzpicture}
\node (img1) {\includegraphics[height=2cm]{images/projects-list.png}};
\pause
\node (img2) at (img1.center) {\includegraphics[height=3cm]{images/project-details.png}};
\pause
\node (img2) at (img1.south east) [xshift=-5cm] {\includegraphics[height=3cm]{images/project-tasks.png}};
\end{tikzpicture}
\end{frame}
\begin{frame}
\frametitle{Step 3: Complete tasks and commands}
\begin{tikzpicture}
\node (img1) {\includegraphics[width=0.8\textwidth]{images/command-run-instructions.png}};
\pause
\node (img2) at (img1.south east) [xshift=-5cm] {\includegraphics[height=4cm]{images/terminal-integration.png}};
\end{tikzpicture}
\end{frame}
\begin{frame}
\frametitle{Step 4: Exploit vulnerabilities}
\begin{tikzpicture}
\node (img1) {\includegraphics[height=3cm]{images/hacker-brain.jpg}};
\pause
\node (img2) at (img1.south west) {\includegraphics[height=5cm]{images/vulnerability-status.png}};
\end{tikzpicture}
\end{frame}
\begin{frame}
\frametitle{Step 5: Generate pentest report}
\begin{tikzpicture}
\node (img1) {\includegraphics[height=4cm]{images/pentest-report-preview.png}};
\pause
\node (img2) at (img1.south east) [xshift=-2cm] {\includegraphics[height=3cm]{images/pentest-report-revisions.png}};
\end{tikzpicture}
\end{frame}
\begin{frame}
\frametitle{Demo}
\begin{center}
\huge{Live demo}
\end{center}
\end{frame}
\begin{frame}
\frametitle{Architecture}
\includegraphics[width=\textwidth]{images/reconmap-architecture.png}
\end{frame}
\begin{frame}
\frametitle{Coming features}
\begin{itemize}
\item Complex workflows (reviewers)
\item Independent customer's portal
\item Secret management
\item More integrations
\end{itemize}
\end{frame}
\section{How to get started?}
\begin{frame}{How to get started?}
\begin{columns}[T]
\begin{column}{.45\textwidth}
\begin{block}{Manual setup}
Follow \href{https://github.com/reconmap/reconmap\#readme}{setup instructions}\\
\bigskip
Easy to install, more difficult to maintain\\
Community support (chat)
\end{block}
\end{column}
\begin{column}{.45\textwidth}
\begin{block}{SaaS}
\href{https://reconmap.com}{Affordable hosting}\\
\bigskip
Ready in minutes\\
Technical support (phone, email, chat)\\
Always latest version
\end{block}
\end{column}
\end{columns}
\end{frame}
\section{Staying in touch}
\begin{frame}{Staying in touch}
\includegraphics[width=0.4\textwidth]{images/reconmap-logo.png}
\begin{itemize}
\item \href{https://github.com/reconmap}{https://github.com/reconmap}
\item \href{https://twitter.com/reconmap}{https://twitter.com/reconmap}
\item \href{https://facebook.com/reconmap}{https://facebook.com/reconmap}
\item \href{https://gitter.im/reconmap/community}{Gitter} chat
\end{itemize}
\bigskip
\includegraphics[width=0.5\textwidth]{images/pentester-academy-logo.png}
\begin{itemize}
\item \href{https://www.pentesteracademy.com}{https://www.pentesteracademy.com}
\item \href{https://twitter.com/DamianGoh13}{https://twitter.com/DamianGoh13}
\end{itemize}
\end{frame}
\end{document}