winfingerprint.sourceforge.net
winfingerprint
PROJECT SUMMARY SUPPORT FORUMS CVS DOWNLOAD RELEASES MAILING LISTS CONTACT PGP
NEWS .:
Winfingerprint CLI version available for testing.   vacuum - 2005-07-18 10:06
MySQL + PHP Developer Needed   vacuum - 2004-11-25 07:09
Wininterrogate 0.1.7 Released   vacuum - 2004-09-26 08:55
Winfingerprint 0.5.12 Released   vacuum - 2004-07-29 10:21
Pixilate 0.4a   vacuum - 2003-07-17 06:36


NEWS RSS
RELEASE RSS

Valid HTML 4.01!
SourceForge Logo
Donate via PayPal



You will be redirected to winfingerprint.com, winfingerprint and wininterrogate's new homepage. Please update your bookmarks.

winfingerprintcli now available for testing with *most* of the 0.6.x features.


Winfingerprint

0.6.x is a SIGNIFICANT upgrade to 0.5.x see Changelog for details.

Detailed Information | Download 0.6.2 | ChangeLog | Released 05/19/2005
Winfingerprint is a Win32 Host/Network Enumeration Scanner. Winfingerprint is capable of performing SMB, TCP, UDP, ICMP, RPC, and SNMP scans. Using SMB, winfingerprint can enumerate OS, users, groups, SIDs, password policies, services, service packs and hotfixes, NetBIOS shares, transports, sessions, disks, security event log, and time of day utilizing NT Domain (Net*), Active Directory, or WMI APIs. Winfingerprint-cli is a command line version of winfingerprint and it is currently bundled with each release.
As of version 0.5.13, Winfingerprint will utilize WinPcap for TCP SYN scans if it is present, otherwise TCP portscans will be non-blocking connect() based.

WinInterrogate
Detailed Information | Download 0.1.7 | ChangeLog | Released 08/04/2004
Wininterrogate is a Win32 file system and process enumeration/integrity tool. A command line version of wininterrogate (currently available in CVS) will be bundled with the next release.
  • Filesystem Recursion and Process Enumeration
    Wininterrogate is able to enumerate filename, complete path, creation time, last access time, last write time, and attributes.
    Wininterrogate is able to enumerate processes, display linked DLLs, and show process to port mappings (Windows XP/2003 only).
  • Features available in Both Modes
    Wininterrogate can also enumerate additional information such as File Version, Internal Name, File Description, etc. and calculate SHA-1 (default) and MD5 Hash Digests.

Pixilate
View Details | Download 0.4a Released 07/17/2003
Pixilate is a command-line ACL validation tool currently tested on *BSD, Linux, and Win32 that parses an input file containing Cisco PIX 6.2(x) or Cisco IOS Router formatted access-list entries and generates the corresponding packets utilizing Libnet 1.1.0.
LINKS
Winfingerprint is recommended to help identify SANS top20
Insecure.org 2003 Top 75 Security Tools Survey
Cisco-centric Open Source Exchange Community
05/29/2000 Tools from the Underground by Greg Shipley.
06/25/2001 Building a Security Toolkit by Trevor Goering.
Anti-Hacker Toolkit by Keith J. Jones, Mike Shema, and Bradley C. Johnson
Infopackaging article: Network Scanning Shareware
Kirby Kuehl's Amazon.com Page
PRESENTATIONS
10/15/2001 SANS conference San Diego, CA
APTools Powerpoint presentation can be found here.
11/28/2001 Computer Security 2001 conference Mexico City, Mexico
Honeynet Powerpoint presentation can be found here.
05/08/2002 Networld+Interop 2002 conference Las Vegas, NV
Honeynet Powerpoint presentation on Intrusion Deception
09/17/2002 Cyber-Sabotage 2002 - Internet Crime Symposium presentation can be found here.
03/07/2003 Computer Security 2003 conference Mexico City, Mexico
Honeynet Tools Powerpoint presentation can be found here
05/26/2004 AusCERT2004 Powerpoint presentation can be found here
Copyright 1999-2005 Kirby Kuehl