Re: Software that scans for SSN

[Gary Golomb <coach () GWU EDU>]

We developed our own tools that we've run on a couple-hundred
departmental servers. We're using ftimes to parse SSNs on systems.
http://ftimes.sourceforge.net/FTimes/ We actually use it to search for
SSNs, credit card numbers, and a few other things - on top of certain
types of binaries we've found in various rootkits. Honestly, I found
that we could come up with a more functional tool than what was on the
market at the time, but that may have changed by now. I think I'll be
talking about the tool a little bit at the next VA Scan conference.
http://vascan.org/

-gary

------
Gary Golomb
Computer Forensics Engineer
ISS/Network Systems Security
Academic Center
801 22nd St NW Rm B204A
Washington, DC 20052
coach () gwu edu

------
A man's respect for law and order exists
in precise relationship to the size of
his paycheck.

--Adam Clayton Powell



Leila Lyons wrote:
> Colleagues:
>
> As part of the University of Delaware's project
>       http://www.udel.edu/pnpi/
> to protect personal non-public information, (e.g. SSNs, credit
> card/bank account numbers, medical/educational records, and other
> sensitive, confidential or protected data), we have been looking at
> software that would scan files and e-mail for SSNs in particular.
> The software would be used on systems that we know have been compromised.
>
> Those that we have found so far are:
> a) Ontrack Power Controls
> b) Sherpa Mail Attender
> c) Sherpa Discovery Attender
> d) Quest Recover Manager for Exchange
> e) Copernic
>
> Are any of you using one of these products, or a different one, and
> willing to share your experiences?
>
> You can respond to me and I will summarize to the list.
> Thank you!
>
> Leila Lyons
> Director, IT-User Services
> University of Delaware