[unisog] Updated NetReg Scanner

James Macdonell jmacdone at infosec.csusb.edu
Fri Sep 12 21:46:38 GMT 2003


On Thu, 2003-09-11 at 14:19, Jordan Wiens wrote:
> Turned that rpcscan_range2 into rpcscan_range2-b, a class B scanner.

I was having problems where rpcscan_range2 would hang for a long time...
probably crashing something on the remote host. So, I cleaned the
code up a bit and hard coded a 2 sec. recv timeout on the socket.
It works slick now.  Thanks for the code!

Also attaching a formatting script I tweaked from one I made
during our MS03-26 scanning. It makes pretty things like this for
each /24 in a /16:

.---------------+---------------. .---------------+---------------+---------------.
| MS03-26 & 39  | MS03-39 Only  | | Ptch 26 & 39  | DCOM Disabled |  Win95/98/ME  |
|---------------+---------------| |---------------+---------------+---------------|
|                192.168.100.16 | |192.168.100.18                                 |
|                192.168.100.17 | |                                               |
'---------------+---------------' '---------------+---------------+---------------'
           Vulnerable: 2                          Not-Vulnerable: 1   

Basically I run:

shell$ ./rpcscan -b 192.168.0.0 | tee today.rpcscan.txt
shell$ perl ptchCmp.pl today.rpcscan.txt > today.vuln_vs_ptch.txt

Enjoy.

-- 
James Macdonell <jmacdone at csusb.edu>
Information Security Operations Analyst 
CSU San Bernardino
P: 909.880.7262  F: 909.880.7189
PGP: http://security.csusb.edu/~jmacdone/jmacdone.asc
-------------- next part --------------
A non-text attachment was scrubbed...
Name: patchCmp.pl
Type: text/x-perl
Size: 3472 bytes
Desc: not available
Url : http://www.dshield.org/pipermail/unisog/attachments/20030912/ebd4c275/patchCmp-0003.bin
-------------- next part --------------
A non-text attachment was scrubbed...
Name: rpcscan_range2-b.c
Type: text/x-c
Size: 13158 bytes
Desc: not available
Url : http://www.dshield.org/pipermail/unisog/attachments/20030912/ebd4c275/rpcscan_range2-b-0003.bin


More information about the unisog mailing list