[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-Disclosure] RPC scanners

To: <full-disclosure@xxxxxxxxxxxxxxxx>
Subject: [Full-Disclosure] RPC scanners
From: "Schmehl, Paul L" <pauls@xxxxxxxxxxxx>
Date: Fri, 12 Sep 2003 09:18:10 -0500

My $0.02.

The MS scanner covers a /16 in about two hours.  It *will* report Win9x
machines as vulnerable, but that's a price I'm willing to pay.
Unfortunately it gives you an IP list with no indication of what is
wrong with the box.  (Is it missing both 026 & 039?  Just 039?)  But it
allows you to script things that can help automate remediation
processes.

The eEye scanner works very well, but it limits you to a /24, which is a
bit of a pain.  We use it for monitoring the worst offenders (VLANS, not
people.)

The Foundstone scanner?  Well, I started scanning the /16 last night
around 6PM.  It's at 62582 addresses right now, so I suppose it will
finish some time today.  Not good.  I was surprised, because their SQL
scanner is very fast.  It covers a /16 in about an hour.  Don't know
what the problem is, but something is definitely wrong.

I haven't tried any other scanners.  I'll stick with the MS and eEye
scanners.

Paul Schmehl (pauls@xxxxxxxxxxxx)
Adjunct Information Security Officer
The University of Texas at Dallas
AVIEN Founding Member
http://www.utdallas.edu/~pauls/ 

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- RE: [Full-Disclosure] RPC scanners
  - From: deji

Prev by Date: [Full-Disclosure] // playing pocketc woops
Next by Date: Re: [Full-Disclosure] [ http://www.k-otik.com/exploits/07.21.win2kdos.c.php ]
Previous by thread: [Full-Disclosure] // playing pocketc woops
Next by thread: RE: [Full-Disclosure] RPC scanners
Index(es):
- Date
- Thread