Security Basics mailing list archives

Re: Network Scan

From: ATD <simon () snosoft com>
Date: 13 Jan 2003 16:34:02 -0500

Interesting, 
        Instead of using a tool to search all of the drives on your
office/network, i'd suggest using an IDS system with porn signatures to
catch the IP's.  Snort is one example...   you'll get "kick ass porn!"
alerts.  ;o)



On Sun, 2003-01-12 at 16:42, WhtWlf2001 wrote:

All,

I'm looking to find a tool or the best way to accomplish the following:

Scan WindowsNT machines on the local network, authenticate with a known admin password, and search
for specific files on the local hard drive, log success, failures and file information. In this
first pass I am looking for .jpg and .mpg type files (we have an internal porn issue) but later I
envision using this tool to search for other specific files or file types, evidence of trojan
files etc... 

Ideally this tool would be able to handle either 1 IP address or a range of addresses and work in
an automated fashion. Optionally to be able to dictionary attack those machines that don't have
the default admin password would be helpful as well. 

Anyone know of such a tool or developed a custom script for this type of "audit"?

Thanks.

-- 
ATD <simon () snosoft com>
Secure Network Operations, Inc.

Attachment: signature.asc
Description: This is a digitally signed message part

Current thread:

Network Scan WhtWlf2001 (Jan 13)
- RE: Network Scan Jimmy Sansi (Jan 14)
- Re: Network Scan shawnmer (Jan 15)
  - RE: Network Scan Jimmy Sansi (Jan 16)
- Re: Network Scan Ivan Hernandez (Jan 15)
- Re: Network Scan ATD (Jan 20)
- <Possible follow-ups>
- RE: Network Scan John C. Dack (Jan 14)
  - RE: Network Scan Robert Buel (Jan 21)
- RE: Network Scan Nuno Ferreira (Jan 15)
  - Re: Network Scan Talisker (Jan 17)
- Re: Network Scan H C (Jan 19)
- RE: Network Scan H C (Jan 21)
- RE: Network Scan Flory D Jeffrey Contractor 59MDSS/MSISI (Jan 21)
- RE: Network Scan webbi (Jan 21)
- RE: Network Scan Andy Streule (Jan 23)