lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list]
Message-ID: <20080815142431.C36041@innu.org>
Date: Fri, 15 Aug 2008 14:31:41 -0400 (EDT)
From: Derek Callaway <super@...u.org>
To: bugtraq@...urityfocus.com
Cc: full-disclosure@...ts.grok.org.uk
Subject: Tool: PorkBind v1.3 Nameserver Security Scanner (New Version)

This program retrieves version information for the nameservers of a domain
and produces a report that describes possible vulnerabilities of each.
Vulnerability information is configurable through a configuration
file; the default is porkbind.conf. Each nameserver is tested for 
recursive queries and zone transfers. The code is parallelized with 
libpthread.

http://www.innu.org/~super/tools/porkbind-1.3.tar.gz

ChangeLog for this version:

porkbind-1.3
------------
Wrote in-a-bind shell script that scans random domain names from DMOZ
Implemented recursive query testing
Changed porkbind.conf to use CVE numbers in addition to CERT alerts
Modified text displayed on stdout to make it more parsable
Licensed with GNU Lesser General Public License
Fixed timeout/concurrency/memory corruption bugs
Fixed improper comparison of alpha/beta version numbering bug
Added typecasts to silence compiler warnings


- Derek

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ