BiDiBLAH is dead. Long live Yeti!
After many years of depending on the tool we've decided to end-of-life BiDiBLAH and replace it with a new, Java-based project named Yeti. Yeti serves the same basic purpose as BiDiBLAH but has been completely re-engineered and has exciting new modules that make it faster, more stable and more accurate, as well as being completely cross platform.
What is BiDiBLAH?
BiDiBLAH was developed by SensePost specifically to relieve our analysts from performing repetitive processes, thus increasing efficiency, improving accuracy and allowing them to concentrate on the areas of the assessment that require manual attention. It also means that important aspects of the methodology are contained and standardised in one entity: the tool. This in turn means that you eliminate the potential risk of data loss and ensure all assessments are conducted against the same accepted standard.
Working with large international companies and organizations, finding every single Internet Access Point and exposed Internet services became a big part of our assessments. Our customers realised that it was not only the complex vulnerability on a single host that bit them, but more often the single unsecured host somewhere on their vast perimeter that allowed attackers to breach the network. Thus, footprinting became such a big component of our services that we were often asked to perform projects that only entailed performing a footprint. Our methodology was well established and so we started putting many of the concepts into code.
The result of all this is BiDiBLAH, and today we use BiDiBLAH in some way on almost all our assessments. As we've refined our methodologies and techniques, so we update BiDiBLAH, adding new features and functionality on a continuous basis.
- You need to install the .NET Framework 2 for BiDiBLAH.
- If you want to use Nessus functionality you will need a Nessus server or a login to one.
- If you want to use the subdomain discovery module, you will need SPUD.
- Minimum 256MB of RAM is preferred.
- The raw packet driver only works on Windows XP.
- If you don't want to use HTML reporting you'll need Office 2003.