RE: Know such a web's server tool?
From: winter (shonky_sec_at_hotpop.com)
Date: 07/17/03
- Previous message: Alfred Huger: "Vacation Troller - Ignore (2 of 2)"
- In reply to: chaitan_at_nullcube.com: "Re: Know such a web's server tool?"
- Next in thread: Ty Bodell: "Re: Know such a web's server tool?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: <pen-test@securityfocus.com> Date: Fri, 18 Jul 2003 07:55:00 +1000
Gherkin should do this for you
http://www.altmode.com/gherkin/
-----Original Message-----
From: chaitan@nullcube.com [mailto:chaitan@nullcube.com]
Sent: Friday, 18 July 2003 2:15 AM
To: pen-test@securityfocus.com
Subject: Re: Know such a web's server tool?
- I think it gets mentioned everyday on this list but try "nessus".
It has a batch mode for doing exactly what you want.
- "Nmap" is useful is useful for doing broad scans and compiling target
service
lists for other tools to further explore.
- You may have to glue it together with some Python/Perl/Shell etc.
On Thu, Jul 17, 2003 at 11:40:17AM +0000, MARTIN M. B?noni wrote:
> Hi list!
>
> I am currently writing an application which will allow to find out all
> (well the maximum of them! :) ) the servers on a network. Here is how it
> works:
> 1- I feed it with a list of targets (command-line or file): CIDR subnets,
> hostnames, IP address(es),..
> 2- I specify a type of scan: looking for FTP, HTTP, POP, ... servers /
> intrusive scan or not / ....
> 3- It tries to find them out.
> 4- Gets its OS and vulnerabilities. And if desired, it will try to breack
> down the systems using the found vulnerabilities.
> 5- Creates a simple HTML page with the results.
>
> I have been wandering around Internet, and I could not find any tool
> like
> that (well doing all these features). So, if you know such a tool, could
> you tell me about it? If you have any idea/clue/help, feel free to mail
me!
>
> Cheers!
>
> B?noni-
>
---------------------------------------------------------------------------
Your network Firewall and IDS products do not prevent Web application
exploits - the most common form of online attack - resulting in Web
defacement, data theft, sabotage and fraud.
KaVaDo is the first and only company that provides a complete and an
integrated suite of Web application security products, allowing you to
assess your entire environment, automatically set positive security policies
and maintain it without compromising business performance.
For more information on KaVaDo and to download a FREE white paper on Web
applications - security policy automation, please visit:
http://www.kavado.com/ad.htm
----------------------------------------------------------------------------
---------------------------------------------------------------------------
KaVaDo is the first and only company that provides a complete and an
integrated suite of Web application security products, allowing you to:
- assess your entire Web environment with a Scanner,
- automatically set positive security policies for real-time protection,
and
- maintain such policies at the Application Firewall without compromising busines performance.
For more information on KaVaDo and to download a FREE white paper on Web applications - security policy automation, please visit:
http://www.kavado.com/ad.htm
----------------------------------------------------------------------------
- Previous message: Alfred Huger: "Vacation Troller - Ignore (2 of 2)"
- In reply to: chaitan_at_nullcube.com: "Re: Know such a web's server tool?"
- Next in thread: Ty Bodell: "Re: Know such a web's server tool?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
