Tsunami VS Iodine

Https://github.com/google/tsunami-security-scanner (I bet it would be easy to write a plugin for https://github.com/projectdiscovery/nuclei as well.) To see if there are injection points statically, I work on a tool (https://github.com/returntocorp/semgrep) that someone else already wrote a check with: https://twitter.com/lapt0r/status/1469096944047779845 or look for the mitigation with `semgrep -e... - Source: Hacker News / over 2 years ago

Thanks to you I just reenabled Tsunami https://github.com/google/tsunami-security-scanner. Also had software called something like vuln (blue logo with a yellow eye in the middle) running. But the hard disk of the server died --sadly and I can't remember how it was called.-- https://vuls.io/. Source: over 2 years ago

Tsunami - General purpose network security scanner with an extensible plugin system for detecting high severity vulnerabilities with high confidence. - Source: dev.to / over 2 years ago

Reminds me of using https://code.kryo.se/iodine/ ( DNS tunnel ) and a empty prepaid card... - Source: Hacker News / 2 months ago

It's worth noting that you (re) invented what iodine does: https://code.kryo.se/iodine/. - Source: Hacker News / 5 months ago

Many years ago (2012) Delta inflight wifi would allow DNS queries out without paying. Being a very frequent flyer I used to run an ip-over-dns tunnel using Iodine[1]. It was slow but worked. I wonder if they’ve blocked that hole yet. [1] https://code.kryo.se/iodine/. - Source: Hacker News / almost 2 years ago

Iodine - Tunnel IPv4 data through a DNS server; useful for exfiltration from networks where Internet access is firewalled, but DNS queries are allowed. - Source: dev.to / over 2 years ago

Sorry I was on my smartphone and mistyped the url (it's kryo not kyro): https://code.kryo.se/iodine/. - Source: Hacker News / over 2 years ago