Re: Know such a web's server tool?
From: Bill Weiss (houdini_at_nmt.edu)
Date: 07/17/03
- Previous message: Paul Vet: "RE: Know such a web's server tool?"
- In reply to: MARTIN M. Bénoni: "Know such a web's server tool?"
- Next in thread: chaitan_at_nullcube.com: "Re: Know such a web's server tool?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 17 Jul 2003 10:13:28 -0600 To: pen-test@securityfocus.com
MARTIN M. B?noni(benoni_martin@hotmail.com)@Thu, Jul 17, 2003 at 11:40:17AM +0000:
> Hi list!
>
> I am currently writing an application which will allow to find out all
> (well the maximum of them! :) ) the servers on a network. Here is how it
> works:
> 1- I feed it with a list of targets (command-line or file): CIDR subnets,
> hostnames, IP address(es),..
> 2- I specify a type of scan: looking for FTP, HTTP, POP, ... servers /
> intrusive scan or not / ....
> 3- It tries to find them out.
> 4- Gets its OS and vulnerabilities. And if desired, it will try to breack
> down the systems using the found vulnerabilities.
> 5- Creates a simple HTML page with the results.
>
> I have been wandering around Internet, and I could not find any tool like
> that (well doing all these features). So, if you know such a tool, could
> you tell me about it? If you have any idea/clue/help, feel free to mail me!
That sounds sort of like a vulnerability scanner. Nessus, ISS, Retina all
do that (theoretically), but they won't do much exploitation. CORE Impact
says it does that sort of thing.
Where have you been looking?
-- Bill Weiss That ["because the customer is always right"] has been repealed by the Axiom Review Board and replaced with "because the customer is a probably a criminal". -- TheRaven64, slashdot --------------------------------------------------------------------------- Your network Firewall and IDS products do not prevent Web application exploits - the most common form of online attack - resulting in Web defacement, data theft, sabotage and fraud. KaVaDo is the first and only company that provides a complete and an integrated suite of Web application security products, allowing you to assess your entire environment, automatically set positive security policies and maintain it without compromising business performance. For more information on KaVaDo and to download a FREE white paper on Web applications - security policy automation, please visit: http://www.kavado.com/ad.htm ----------------------------------------------------------------------------
- Previous message: Paul Vet: "RE: Know such a web's server tool?"
- In reply to: MARTIN M. Bénoni: "Know such a web's server tool?"
- Next in thread: chaitan_at_nullcube.com: "Re: Know such a web's server tool?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
