Re: Know such a web's server tool?

From: Deus, Attonbitus (Thorat_private)
Date: Thu Jul 17 2003 - 10:01:45 PDT

Next message: Chad Schieken: "RE: Vuln scan tool for web"

Previous message: David Nester: "RE: Vuln scan tool for web"
In reply to: MARTIN M. Bénoni: "Know such a web's server tool?"
Next in thread: Mark Wolfgang: "Re: Know such a web's server tool?"
Reply: Mark Wolfgang: "Re: Know such a web's server tool?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

At 04:40 AM 7/17/2003, MARTIN M. Bénoni wrote:
>Hi list!
>
>I am currently writing an application which will allow to find out all 
>(well the maximum of them! :) ) the servers on a network. Here is how it works:
>1- I feed it with a list of targets (command-line or file): CIDR subnets, 
>hostnames, IP address(es),..

Though a bit different, this may help you as well-  I wrote a tool called 
TSEnum, originally for the purpose of finding "rouge" terminal server 
installations on a network.  I guess I should rename it, as it enumerates 
ALL servers (and workstations) in a network, and enumerates all the server 
services running on them.

Note this is only for MS domain structures.  Basically, when a domain 
member comes on line, it registers itself with the Master Browser.  This 
tool will query the master browse list and return all the boxes and server 
types in the list.  All you have to do is be able to establish a netbios 
session with any box on the domain; note that a null session will work as 
well :).

You do not have to hit the mb itself; any box will do, as the request will 
be proxied to the browse master for you.  So, basically, with a single 
command line, you can enumerate all server and workstation names, and all 
the server services and role (like BDC/Member Server, Terminal Services, 
SQL, RAS etc)  in the entire domain, a do so with a null session.  It is 
actually pretty powerful, and I have had really good results with it.

Available at http://www.hammerofgod.com/download.htm.  The tool is free- 
however, we do accept donations of vodka and rock music to facility 
research and development.

hth

t

---------------------------------------------------------------------------
Your network Firewall and IDS products do not prevent Web application
exploits - the most common form of online attack - resulting in Web
defacement, data theft, sabotage and fraud.

KaVaDo is the first and only company that provides a complete and an
integrated suite of Web application security products, allowing you to
assess your entire environment, automatically set positive security
policies and maintain it without compromising business performance.

For more information on KaVaDo and to download a FREE white paper on Web
applications - security policy automation, please visit:
http://www.kavado.com/ad.htm
----------------------------------------------------------------------------

Next message: Chad Schieken: "RE: Vuln scan tool for web"
Previous message: David Nester: "RE: Vuln scan tool for web"
In reply to: MARTIN M. Bénoni: "Know such a web's server tool?"
Next in thread: Mark Wolfgang: "Re: Know such a web's server tool?"
Reply: Mark Wolfgang: "Re: Know such a web's server tool?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Thu Jul 17 2003 - 12:12:32 PDT