Re: slaper trafic

From: Jose Nazario (joseat_private)
Date: Tue Sep 17 2002 - 05:32:35 PDT

Next message: andy_mnat_private: "[Full-Disclosure] remote kernel exploits?"

Previous message: Matthew S Barnes: "Huge Autoexec.bat"
In reply to: james: "Re: slaper trafic"
Next in thread: Michael Katz: "Re: slaper trafic"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, 16 Sep 2002, james wrote:

> Is there yet a scanner to ID infected/vulnerable hosts ?

the arirang scanner is pretty quick:

	http://monkey.org/~pilot/arirang/

it's an http scanner and can gather information for you. on the
documentation page it shows how to check openssl versions:

	arirang -G -s 192.168.1.1 -e 192.168.2.255 -P 90 | grep OpenSSL

not a bad place to start for banner grabbing.

___________________________
jose nazario, ph.d.			joseat_private
					http://www.monkey.org/~jose/


----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see: http://aris.securityfocus.com

Next message: andy_mnat_private: "[Full-Disclosure] remote kernel exploits?"
Previous message: Matthew S Barnes: "Huge Autoexec.bat"
In reply to: james: "Re: slaper trafic"
Next in thread: Michael Katz: "Re: slaper trafic"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed Sep 18 2002 - 01:06:05 PDT