[unisog] Quick-and-dirty to find vulnerable systems

Mark Fullmer maf at eng.oar.net
Tue Jul 31 05:45:46 GMT 2001


On Sun, Jul 29, 2001 at 06:54:29PM -0400, Anderson Johnston wrote:
> 
> If you're on a big network, chances are you barely know who is in charge
> of the systems on any given subnet, let alone what systems are actually
> there.  Below, I've outlined my first cut at finding potential Code Red
> fodder through the network.
> 
> 
> If anyone has another method, please share.

It's easy to spot with NetFlow.

http://www.pairlist.net/pipermail/flow-tools/2001-July/000010.html
http://www.pairlist.net/pipermail/flow-tools/2001-July/000011.html
http://www.pairlist.net/pipermail/flow-tools/2001-July/000012.html

Software links:
  http://www.splintered.net/sw/flow-tools/
  http://net.doit.wisc.edu/~plonka/Cflow/

mark



More information about the unisog mailing list