• Sign in to Neowin Faster!

    Create an account on Neowin to contribute and support the site.

  • 0
Sign in to follow this  
Followers 0

A post I made about .gov.uk domains got picked up by New Scientist, Here is the article...Published today.

Asked by +John Teacake

Question

+John Teacake    454
Posted

The idea came from a few weeks ago after a conversion on a Friday afternoon with a colleague. To say that I am passionate about this kind of stuff is an understatement. The motivation stems from a deep rooted personal interest of mine.

 

Anyway I wrote some computer scripts (In Python) to collate the data and ran it. I initially published it here.

 

https://github.com/tg12/MappingGovUKDomains

 

https://www.reddit.com/r/netsec/comments/ayumsf/mapping_the_state_of_the_govuk_domain_space/

 

Whilst I wasn't expecting this at all I have to say that it has been an very interesting project and I am quite proud of it. I was approached by a journalist who works for Wired/New Scientist. They seemed very interested about running an article if I could answer a few questions about it all, So I enlisted the help of a fellow Redditor. Very talented individual with direct experience in the InfoSec world and we came up with the results.

Here is the article. It makes for interesting reading.

 

https://www.newscientist.com/article/2197453-thousands-of-security-flaws-found-on-uk-government-websites/

 

Here is the data we generated.

 

https://github.com/nannal/GovUK-CVE

 

Please feel free to ask any questions. If you want to publish this further on your blog/site or wherever I would be very grateful/more than happy about it.

  • Like 4

Share this post

Link to post
Share on other sites

3 answers to this question

Recommended Posts

  • 1
+BudMan    3,614
Posted

Be interesting to see what the .gov sites shows ;)

 

Nice script and nice find - but to be honest are you actually surprised at the findings.. I mean really..

 

Did you get the idea from the scan of all of Austria?

https://blog.haschek.at/2019/i-scanned-austria.html

 

Most of the public facing stuff is shambles.. Be it gov controlled or not.

Share this post

Link to post
Share on other sites
  • 0
+John Teacake    454
Posted
On 3/24/2019 at 2:53 PM, BudMan said:

Be interesting to see what the .gov sites shows ;)

 

Nice script and nice find - but to be honest are you actually surprised at the findings.. I mean really..

 

Did you get the idea from the scan of all of Austria?

https://blog.haschek.at/2019/i-scanned-austria.html

 

Most of the public facing stuff is shambles.. Be it gov controlled or not.

Very good point! I didn't expect any less but it was nice to put some numbers behind the research and get picked up by New Scientist. 

 

 

Share this post

Link to post
Share on other sites
  • 0
+BudMan    3,614
Posted

oh fantastic!  you have to be over the moon!  And even if only small % of the sites get the hint and fix some stuff up its a huge win.

Share this post

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
Sign in to follow this  
Followers 0
Go To Question Listing

  • Recently Browsing   0 members

    No registered users viewing this page.