Re: Suggestion for new program: NT-Hackable scanner based on modules

[Mattias Berge <sbe30510 () POST NETLINK SE>]

I wrote a IIS scanner wich tried +120 cgi exploits and 14 remote file parsing.
The idea with 14 remote file parsing is _taken_ from a perl script I found on packetstorm.

----- Original Message ----- 
From: "DeathLoad TP" <nickstakenburg () HOME NL>
To: <VULN-DEV () SECURITYFOCUS COM>
Sent: Friday, March 09, 2001 7:21 PM
Subject: Suggestion for new program: NT-Hackable scanner based on modules


> Hey yall
>
> I might have a nice idea for a new program.
> an NT Hackable Scanner
> I based my idea on an exploit for NT
> located here:
> http://neworder.box.sk/showme.php3?id=3143
> my idea was to check if it's hackable by using this 
> exploit with ........cmd.exe?/c+dir+c:\
>
> after I contacted some coders they said it was a nice 
> and they came up with more ideas:
>
> 1. Monitor the clipboard until a hostname (starts with 
> a-z and ends with
> .net, .org, .com, ...) or IP (will start with a number, 
> followed by a dot,
> followed by another number, followed by another dot, 
> and so on), and then
> pass that into a check_ip function.
>
> 2. The check_ip function would make sure the host is 
> up and try to
> determine its OS.  If the host is down or the OS 
> cannot be determined, it
> will abort and return to step 1.  If it can, the 
> appropriate OS-specific
> hack module will be loaded.
>
> 3. A collection of "hack modules" can be a DLL that 
> will have a hack()
> function that takes an IP, and from there, it will try 
> known techniques
> for that specific OS.  In that way, a separate module 
> can exist for Linux,
> BSD, Windows, etc.
>
> 4. More Idea's.
>
> Unfortunally I'm a newbie to coding :(, so I haven't the 
> slightest clue on how to even begin this project.
>
> I was told that it could take several months before a 
> project like this is completed. 
> I hope someone is interrested in this one :).
>
> DL