Hello lists. I tried to include relevant lists where this could be useful, please forgive me if I sent it where I shouldn't have. Tool Announce : ComLog 1.01 ComLog is a command prompt logger for Windows NT/2K, that takes the place of cmd.exe and redirects commands to a renamed cmd.exe for execution. ComLog can be used in a variety of ways, be it to monitor network users command prompt usage, or to monitor commands typed by a cracker via an abused IIS server or via a netcat tunnel. Sessions are kept in random-named text files in a fake windows directory in order to try to hide its presence. ComLog log files can be centralized and monitored in real-time with LogAgent. This tool is Open Source, and you can freely download the source code, the binary and the documentation (all in 1 .zip file) from my website http://securit.iquebec.com. Version History: Changes from version 1.0 to 1.01 include: - fixed a small bug that misinterpreted the '/C' parameter when arguments were passed via a UNICODE kind of exploit via IIS - less 'intrusive' installation process, you get to control the installation procedure (very simple) Adam Richard, aka Floydman SecurIT Informatique Inc. ----------------------------------------------------------------- This list is provided by the SecurityFocus ARIS analyzer service. For more information on this free incident handling, management and tracking system please see: http://aris.securityfocus.com
This archive was generated by hypermail 2b30 : Sun Mar 16 2003 - 09:59:14 PST