FM RPC Dcom Massive Scanner

06.08.2003

Okuyucu : 18.788
Günlük Okuyucu : 10,5
  1. About FM RPC Dcom Massive Scanner
  2. About RPC DCom Vuln
  3. About scanms.exe
  4. Sample Usages
  5. Download
  6. License
  7. Contact / Comments

 

About FM RPC Dcom Massive Scanner;

By : Ferruh Mavituna
Date : 06.08.2003
E-mail : ferruh {at} mavituna {dot} com

This tool is completly based on Internet Security Systems scanms.exe tool. fm_scan allows you to make massive RPC Dcom scans for networks. Give a IP(s) or IP Range(s) listed text file.

It will generate small reports for you. Target IP(s) vulnerable or not.

This is not an exploit, this is just a scanner. Please don't ask for an exploit.

No GUI, you need to run it on commad-line, Tested on Win2k SP4

In your output file DCOM versions 5.6s are generally Win2K systems and 0.0s are generally WinXP systems.

Attention : Use at own risk, Educational purposes only.

About RPC DCom Vuln

MS03-026, http://support.microsoft.com/default.aspx?scid=kb;en-us;823980

About scanms.exe

Rpc Dcom Vuln Scanner by Internet Security Systems
scanms.exe Page

Sample Usages

  1. Standart Output;
    C:\>fm_scan ip.txt
  2. Write report into a file;
    C:\>fm_scan ip.txt > results.txt

Download

.zip Package;
/opensource/fm_scan.zip - Full Package (48kb.)

File List;

  1. fm_scan.cpp (C++ Source File) (5kb.)
  2. fm_scan.exe (binary) (40kb.)
  3. scanms.exe (binary) (60kb.)
  4. ip.txt (Sample IP list) (1kb.)

License;

This program is free software; you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation; either version 2 of the License, or
(at your option) any later version.

This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
GNU General Public License for more details.

You should have received a copy of the GNU General Public License
along with this program; if not, write to the Free Software
Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA

Details : http://www.gnu.org/licenses/gpl.txt

Yorumlar

RSS Bu makalenin yorumlarını RSS ile takip et!

merhabalar benim sorunum nete bağlandığımda bi süre sonra bilgisayarım benim kontrolum dişinda
bir dakkia icersinde yeniden kapatıp başlatıyor. acaba solucan virusmu,bana yardımcı olursanız sevinirim
yanlızca ing.kursuna yeni başladım türkce yardım ederseniz sevinirim iyi çalişmalar.

ihsan karataş [ # | 10.12.2003 ]

Muhtemelen bir blaster varyantı, http://ferruh.mavituna.com/article.asp?265 adresindeki makale işinizi görecektir.

Ferruh Mavituna [ # | 10.12.2003 ]

İp aralıklarını hangi kriterlere göre seçeceğiz?
Örnek ip aralığı verebilirmisiniz?
Birde bu açık 01/12/2004 tarihiyle hala geçerlimidir?
Saygılar.

Ahmet Şanlısayoğlu [ # | 01.12.2004 ]

Ya soruma cevap alamadım bilen yok mu?

Ahmet Şanlısayoğlu [ # | 04.12.2004 ]

Ahmet Abi Walla
Local
10.0.0.2
192.168.1.1
192.168.0.1

Wan
195.175.1.???.???
217.131.???.??? gibisinden
Ornek Local [ 192.168.1.1 - 192.168.1.255 ]
Ornek Wan [ 195.175.110.1 - 195.175.110.255
yada 195.175.110.1 - 195.175.255.255
Yardim isterseniz Formatzede@hotmail.com hade kendinizi hackletmein...

Zc0bspz [ # | 16.12.2004 ]

pc de 135 nolu portum acık olarak gozukuyor bu port nedir? ne işe yarar? KAPATMALIMIYIM? KAPATMAK İÇİN NE YAPABİLİRİM sp2 yuklu

sedat aydemir [ # | 14.12.2005 ]

Yorum Ekle





Kullanılabilir Taglar : [<blockquote>] [<strong>] [<em>]

Diğer Yazılar

Neredeyim ?

Ferruh.Mavituna » Applications (Yazılımlar) » FM RPC Dcom Massive Scanner

RSS Feed site statistics RSS Subscribers
Siteyi E-mail ile Takip Et

Ferruh Mavituna
© 2002-2007, Ferruh Mavituna

Sabit IP Adresi : 81.22.99.133, SSL Erişimi, Hakkında