First release of Disco - Passive IP Discovery and fingerprinting tool
available for download.
Disco is a passive IP discovery utility designed to sit on segments
distributed throughout a network to discover unique IP's on the network,
in addition to IP discovery disco has the ability to passively
fingerprint TCP SYN packets. Disco was written to discover IP's on the
network, fingerprint the packet if necessary, and load into the Gherkin
Scan Manager (see: http://www.altmode.com/gherkin) database for targeted
host scans (Gherkin support not quite ready for this release).
Disco v1.0 Features
* Uniquely identify source IPs on the network
* Toggle discovery of only TCP SYN packets and fingerprint
* Ability to toggle fingerprinting on/off
* Output data to a flat text file
* Define TCPDUMP style rules to filter on a subset or range of IPs
* Able to turn "uniqueness" off when fingerprinting for
fingerprinting all TCP SYN packets
* Future plans to output data automatically to Gherkin scan manager
database for vuln scanning (not released in v1.0)
See http://www.altmode.com/disco for download.
Thanks,
Preston
---------------------------------------------------------------------------
Did you know that you have VNC running on your network?
Your hacker does.
Plug your security holes.
Download a free 15-day trial of VAM:
http://www.securityfocus.com/StillSecure-pen-test
----------------------------------------------------------------------------
This archive was generated by hypermail 2b30 : Thu May 01 2003 - 13:47:41 PDT