Re: Vulnerability scanner for MS05-039

[David Taylor <ltr () ISC UPENN EDU>]

Great tool!  Thanks for the work you did on this and a special thanks in
sharing.  I scanned 4 Class B networks with it today!  Fast and seems to be
pretty accurate!


==================================================
David Taylor //Sr. Information Security Specialist
University of Pennsylvania Information Security 
Philadelphia PA USA
LTR () ISC UPENN EDU               (215) 898-1236
http://www.upenn.edu/computing/security/
================================================== 

SANS - The Twenty Most Critical Internet Security Vulnerabilities 
http://www.sans.org/top20/

SANS - Internet Storm Center
http://isc.sans.org


-----Original Message-----
From: Chris Russel [mailto:russel () YORKU CA] 
Sent: Tuesday, August 16, 2005 8:29 AM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] Vulnerability scanner for MS05-039


Our vuln scanning tool is here, updated to detect MS05-039:

http://infosec.yorku.ca/tools/

(also checks MS04-007, MS04-011 for good measure)

It is designed for speed and should do a class-B in 5-10 minutes or less
(run 
with 100+ threads). I got tired of renaming it after every new Microsoft 
security bulletin, so it is just called noxscan now (used to be 011scan). It
is 
somewhat of a hack but works well enough for us - standard disclaimer, YMMV,
no 
guarantees of any kind... Tested on Linux, OpenBSD, and Solaris.

Thanks to those on #unisog who helped test it.

-- 
Chris Russel
Manager CNS Information Security
York University, Toronto, Canada