[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] Tool: PorkBind Nameserver Security Scanner

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: [Full-disclosure] Tool: PorkBind Nameserver Security Scanner
From: super@xxxxxxxx
Date: Wed, 30 Jul 2008 08:54:25 -0400 (EDT)

In light of the new DNS cache poisoning issue and now that everyone has 
had plenty of time to apply patches, I've decided to release a new version 
of my nameserver security scanner called porkbind. It is a multi-threaded 
nameserver scanner that can recursively query nameservers of subdomains
for version strings. (i.e. sub.host.dom's nameservers then host.dom's 
nameservers) After acquiring the version strings it tests them against 
version numbers from CERT advisories and reports back to the user. Zone 
transfer capability is also tested for. It is available for download at:

http://innu.org/~super/porkbind-1.2.tar.gz

- Derek

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- Re: [Full-disclosure] Tool: PorkBind Nameserver Security Scanner
  - From: Arturo 'Buanzo' Busleiman
- Re: [Full-disclosure] Tool: PorkBind Nameserver Security Scanner
  - From: Jost Krieger

Prev by Date: [Full-disclosure] Fwd: Are Bug Disclosures Helping or Hurting?
Next by Date: [Full-disclosure] Recall: simple phishing fix
Previous by thread: Re: [Full-disclosure] Fwd: Are Bug Disclosures Helping or Hurting?
Next by thread: Re: [Full-disclosure] Tool: PorkBind Nameserver Security Scanner
Index(es):
- Date
- Thread