Login pages. Web apps. Clunky old designs circa 2005. You can spot potentially vulnerable web pages a mile away. But manually evaluating thousands of screen shots to find the “interesting” ones before you can even start pen testing is frustrating and a waste of valuable time.
With Eyeballer, those mind-numbing, eye-blurring manual scans can be a thing of the past.
Eyeballer is an AI-powered, open-source tool designed to help penetration testers assess large-scale external perimeters. Aim it at any screenshot repository and Eyeballer will “look at” rendered web pages to identify which ones are likely to contain vulnerabilities, as well as which ones can be deprioritized during security assessments.
Join us on for our inaugural episode of Tool Talk — a series of interactive “show-and-tell” webcasts featuring popular offensive security tools. Tune in for an up-close look at Eyeballer in action. Follow along, ask questions, and even try it yourself as Bishop Fox Lead Researcher and Eyeballer Co-Creator Dan Petro demonstrates how to use Eyeballer to:
- Assess a repository of screenshots for indications of potential vulnerabilities
- Supplement automated scanning methods to close gaps in coverage
- Improve testing times and accuracy