Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Feature Request: Detection and Categorization of Exposed (Potentially Risky) Interfaces #1709

Open
iamthefrogy opened this issue May 20, 2024 · 0 comments
Open

Feature Request: Detection and Categorization of Exposed (Potentially Risky) Interfaces #1709

iamthefrogy opened this issue May 20, 2024 · 0 comments
Assignees
@dogancanbakir
Labels
Type: Enhancement Most issues will probably ask for additions or changes.

Comments

@iamthefrogy
Copy link

Summary:

Implement a feature in httpx to detect and categorize exposed interfaces into four categories based on their intended accessibility and security requirements.

Description:

For large enterprises, managing the exposure of various applications is crucial. This feature will categorize detected interfaces into:

  • Customer-facing apps: Accessible on the Internet. (Just sharing this to know the problem statement for large companies)
  • Contractor and vendor-facing apps: Internet-accessible with IP whitelisting.
  • Colleague-facing apps (with valid justification): Internet-accessible but protected by SSO.
  • Colleague-facing apps (no justification): Must not be public-facing.

Examples of Colleague-facing Apps

  • GitHub: Internal repositories for source code and documentation.
  • Jenkins: Continuous integration and deployment pipelines.
  • Grafana: Internal dashboards for monitoring and analytics.
  • Oracle Cloud Login: Administrative access to cloud resources.
  • Jira: Internal project management and issue tracking.
  • Confluence: Internal documentation and collaboration platforms.
  • Salesforce Admin: Administrative access to CRM data.
  • Internal Wikis: Company-specific knowledge bases.
  • etc.

Use Cases:

  • Security Audits: Assist in identifying and securing exposed interfaces.
  • Compliance: Ensure compliance with internal and external security policies.
  • Asset Management: Facilitate the management and monitoring of application exposure.

Benefits:

  • Enhanced Security: Reduce the risk of unauthorized access to sensitive applications.
  • Efficiency: Streamline the process of categorizing and securing applications.
  • Proactive Management: Enable proactive measures to protect against potential security breaches.

Proposed Implementation:

  • Detection: Scan for exposed interfaces and categorize them based on predefined rules.
  • Categorization: Automatically categorize applications using heuristics and predefined criteria.
  • Incorporate machine learning to improve categorization accuracy over time.
  • Provide configuration options to define custom categorization rules.
@iamthefrogy iamthefrogy added the Type: Enhancement Most issues will probably ask for additions or changes. label May 20, 2024
@dogancanbakir dogancanbakir self-assigned this May 20, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@dogancanbakir dogancanbakir

Labels
Type: Enhancement Most issues will probably ask for additions or changes.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@iamthefrogy @dogancanbakir