Tool: PorkBind Nameserver Security Scanner

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Tool: PorkBind Nameserver Security Scanner
From: super@xxxxxxxx
Date: Wed, 30 Jul 2008 12:34:54 -0400 (EDT)
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

In light of the new DNS cache poisoning issue and now that everyone has hadplenty of time to apply patches, I've decided to release a new version of mynameserver security scanner called porkbind. It is a multi-threaded nameserverscanner that can recursively query nameservers of subdomains for versionstrings. (i.e. sub.host.dom's nameservers then host.dom's nameservers)After acquiring the version strings it tests them against version numbersfrom CERT advisories and reports back to the user. Zone transfercapability is also tested for. It is available for download at:


http://innu.org/~super/tools/porkbind-1.2.tar.gz

- Derek

Prev by Date: RealNetworks RealPlayer ActiveX Illegal Resource Reference Vulnerability
Next by Date: Cisco IOS shellcode explanation - additional
Previous by thread: RealNetworks RealPlayer ActiveX Illegal Resource Reference Vulnerability
Next by thread: Cisco IOS shellcode explanation - additional
Index(es):
- Date
- Thread