Re: Windows Patch Auditing & "File and Print Sharing" disabled

[intel96 <intel96 () bellsouth net>]

Something simple:

You could script something that calls systeminfo.exe.

http://technet.microsoft.com/en-us/library/bb491007.aspx

Something more advance:

You could write something in C# that queries the registry for missing
patches?

The registry key on my system that contains this information is: 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows XP


marcelo carvalho wrote:
> Do y try null section Netbios with MBSA Analayzer?
> --------------------------------------------------
> From: "Mike Drugov" <DRUGOVM () nychhc org>
> Sent: Thursday, April 30, 2009 1:01 PM
> To: <pen-test () securityfocus com>
> Subject: Windows Patch Auditing & "File and Print Sharing" disabled
>
> > Hello list,
> >
> > I need some advise
> >
> > I'm trying to scan a Windows Network where all end nodes except
> > Domain Controller have "File & Print Sharing" disabled.
> >
> > What I'm trying to get a list of Microsoft Updates that are missing.
> >
> >
> > So far I tried Nessus & Foundstone and none of them are able to
> > provide a report with missing patches.(I'm able to get a report from
> > Domain Controller)
> >
> > Nessus support stated that "File & Print Sharing" is required for
> > patch auditing
> >
> >
> > What is my other options?
> >
> > Thanks
> >
> >
> > -----------------------------------------
> > Visit www.nyc.gov/hhc
> >
> > CONFIDENTIALITY NOTICE: The information in this E-Mail may be
> > confidential and may be legally privileged. It is intended solely
> > for the addressee(s). If you are not the intended recipient, any
> > disclosure, copying, distribution or any action taken or omitted to
> > be taken in reliance on this e-mail, is prohibited and may be
> > unlawful. If you have received this E-Mail message in error, notify
> > the sender by reply E-Mail and delete the message.
> >
> > ------------------------------------------------------------------------
> > This list is sponsored by: InfoSec Institute
> >
> > Tired of using other people's tools? Why not learn how to write your
> > own exploits?
> > InfoSec Institute's Advanced Ethical Hacking class teaches you how to
> > write stack and heap buffer overflow exploits for Windows and Linux.
> > Gain your Certified Expert Penetration Tester (CEPT) cert as well.
> >
> > http://www.infosecinstitute.com/courses/advanced_ethical_hacking_training.html
> >
> > ------------------------------------------------------------------------
>
> ------------------------------------------------------------------------
> This list is sponsored by: Information Assurance Certification Review
> Board
>
> Prove to peers and potential employers without a doubt that you can
> actually do a proper penetration test. IACRB CPT and CEPT certs
> require a full practical examination in order to become certified.
> http://www.iacertification.org
> ------------------------------------------------------------------------


------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT 
and CEPT certs require a full practical examination in order to become certified. 

http://www.iacertification.org
------------------------------------------------------------------------