A few days ago I posted here about a red team tool I developed, and have mentioned that I want to keep it closed source. Naturally, I've been accused of paranoia and selling out. Valid accusations.
But I took this debate with me for a few days now.
Should Red Team tools be open sourced?
I know from my work as a security researcher; open source Red Team tools cause us a headache. They are just more tools in the arsenal of kids and low level criminals. If they didn't exist, many adversaries would not be able to cause the mayhem they do today.
"But! Intelligent attackers and nation states surely have tools of their own. Shouldn't pentesters have some tools as well?", I hear you asking.
Well, sure. Basic tools allow pentesters to find vulns that help defenders fix. But Nuclei probably won't find the coveted 0 day that Russian Intelligence has found and are keeping close to the chest. Yes, pentesters may reduce the attack surface of any given platform. But, as I read in some book: "If the NSA wants to track you, you will be tracked".
I don't have an answer. Moreover, the answer may be clear, but I'm just missing it.
I'd love to hear your thoughts.
[link] [comments]
from hacking: security in practice https://ift.tt/DWXiTv9
Comments
Post a Comment