Hi all Does anybody know about a more powerful scanner than nmap? I need it to scan my own firewall. Thanx a lot Philipp Snizek
Hi,
Does anybody know about a more powerful scanner than nmap? I need it to scan my own firewall.
To check the in and OUT rules of your non-stateful packetfilter use AssItch (www.suse.de/~thomas) 2.5 makes trouble when you try to compile it, but I'll put version 2.6 on my site today or tomorrow. Also try Firewalk and fragrouter. (http://packetstorm.securify.com/) Bye, Thomas -- Thomas Biege, SuSE GmbH, Schanzaeckerstr. 10, 90443 Nuernberg E@mail: thomas@suse.de Function: Security Support & Auditing "lynx -source http://www.suse.de/~thomas/thomas.pgp | pgp -fka" Key fingerprint = 09 48 F2 FD 81 F7 E7 98 6D C7 36 F1 96 6A 12 47
Scanners: COPS http://metalab.unc.edu/pub/Linux/system/security/cops_104_linux.tgz ISS http://www.atomicfrog.com/archives/exploits/crack-scan/isss.tar.gz SATAN http://www.fish.com/satan/ SAINT http://www.wwdsi.com/saint/ Other interesting scanners checkXusers Connect dnswalk DOC exscan getethers Or if you prefer some good documentation may be you must by Maximum Security for Linux by Anonymous, ED Prentice Hall, a very good book about security in Linux environments (Also contains a CD with tools like Saint and Tigger) Have a nice IT day Cordially Diego García System Administrator Pontificia Universidad Javeriana Bogotá, Colombia t. (571) 3208320 ext 2362 Thomas Biege wrote:
Hi,
Does anybody know about a more powerful scanner than nmap? I need it to scan my own firewall.
To check the in and OUT rules of your non-stateful packetfilter use AssItch (www.suse.de/~thomas)
2.5 makes trouble when you try to compile it, but I'll put version 2.6 on my site today or tomorrow.
Also try Firewalk and fragrouter. (http://packetstorm.securify.com/)
Bye, Thomas -- Thomas Biege, SuSE GmbH, Schanzaeckerstr. 10, 90443 Nuernberg E@mail: thomas@suse.de Function: Security Support & Auditing "lynx -source http://www.suse.de/~thomas/thomas.pgp | pgp -fka" Key fingerprint = 09 48 F2 FD 81 F7 E7 98 6D C7 36 F1 96 6A 12 47
--------------------------------------------------------------------- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com
Scanners: Don't forget nessus (www.nessus.org) a real good piece of code. It uses it's own attacking language and uses a plugin technology, with the
On Tue, 3 Oct 2000, DIEGO GARCIA _ DIRECCION DE SISTEMAS-. wrote: possibility to update it via internet. CU Jens
A perl script for blank passwords #!/usr/bin/perl $count==0 open(MAIL, "|/usr/lib/sendmail root)||die "Cannot Open mail\n"; print MAIL " To: root\n"; print MAIL "Subject: Password Report \n"; #Beginning a mail to root open(PASSWORDS,'cat /etc/passwd'); while(<PASSWORDS>){ $linenumber=$.; @fields=split(/:/,$_); if($fields[1] eq " ") { $count++; print MAIL "\n***************WARNING**************\n"; print MAIL "\n Line $linenumber has a blank password \n; print MAIL "Here's the recor @fields"; } } close(PASWORDS); if (count<1) { print MAIL "\n There isn't a blank password"; } print MAIL ".\n"; close(MAIL); A gift from Diego García System Administrator Ponticia Universidad Javeriana Bogotá Colombia t. (571) 3208320 Thomas Biege wrote:
Hi,
Does anybody know about a more powerful scanner than nmap? I need it to scan my own firewall.
To check the in and OUT rules of your non-stateful packetfilter use AssItch (www.suse.de/~thomas)
2.5 makes trouble when you try to compile it, but I'll put version 2.6 on my site today or tomorrow.
Also try Firewalk and fragrouter. (http://packetstorm.securify.com/)
Bye, Thomas -- Thomas Biege, SuSE GmbH, Schanzaeckerstr. 10, 90443 Nuernberg E@mail: thomas@suse.de Function: Security Support & Auditing "lynx -source http://www.suse.de/~thomas/thomas.pgp | pgp -fka" Key fingerprint = 09 48 F2 FD 81 F7 E7 98 6D C7 36 F1 96 6A 12 47
--------------------------------------------------------------------- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com
Thomas Biege wrote:
Hi,
Does anybody know about a more powerful scanner than nmap? I need it to scan my own firewall.
To check the in and OUT rules of your non-stateful packetfilter use AssItch (www.suse.de/~thomas)
2.5 makes trouble when you try to compile it, but I'll put version 2.6 on my site today or tomorrow.
Also try Firewalk and fragrouter. (http://packetstorm.securify.com/)
Bye, Thomas -- Thomas Biege, SuSE GmbH, Schanzaeckerstr. 10, 90443 Nuernberg E@mail: thomas@suse.de Function: Security Support & Auditing "lynx -source http://www.suse.de/~thomas/thomas.pgp | pgp -fka" Key fingerprint = 09 48 F2 FD 81 F7 E7 98 6D C7 36 F1 96 6A 12 47
--------------------------------------------------------------------- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com
participants (4)
-
DIEGO GARCIA _ DIRECCION DE SISTEMAS-.
-
Jens Kuehnel
-
Philipp Snizek
-
Thomas Biege