Network Security: Detailed info on Re: [Full-Disclosure] Tools for checking for presence of adware remotely

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security FullDisclosure

[Top] [All Lists]

Re: [Full-Disclosure] Tools for checking for presence of adware remotely

from [John Lampe] Network Security

[Permanent Link]

Subject:	Re: [Full-Disclosure] Tools for checking for presence of adware remotely
Date:	Wed, 30 Jun 2004 10:00:25 -0400 (EDT)


On Wed, 30 Jun 2004, Harlan Carvey wrote:

Does anyone out there know of any tools available to
probe network workstations for the presence of
adware/spyware?


Sure...Perl scripts.  As a security admin in an FTE
position, I had scripts that checked all systems
within the domain for entries in the ubiquitous 'Run'
key, as well as for BHOs.  Easy stuff, pretty trivial, actually.


And, using a similar methodology, Nessus checks for the top 20
spyware/adware progs.  Of course, as most of these checks involve looking
for a dll, exe, or registry entry, you'll need to configure Nessus with a
domain, account, and passwd.

John Lampe
jwlampe -at- nessus.org
http://f00dikator.aceryder.com/

"Truth is one, but error proliferates. Man tracks it down and cuts it up
into little pieces hoping to turn it into grains of truth. But the
ultimate atom will always essentially be an error, a miscalculation."

--Rene Daumal

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
[Full-Disclosure] Tools for checking for presence of adware remotely, Peter B. Harvey (Information Security) RE: [Full-Disclosure] Tools for checking for presence of adware remotely, Jeff Schreiner Re: [Full-Disclosure] Tools for checking for presence of adware remotely, Nancy Kramer Re: [Full-Disclosure] Tools for checking for presence of adware remotely, Joseph Pierini Re: [Full-Disclosure] Tools for checking for presence of adware remotely, hax Re: [Full-Disclosure] Tools for checking for presence of adware remotely, Harlan Carvey Re: [Full-Disclosure] Tools for checking for presence of adware remotely, John Lampe <= Re: [Full-Disclosure] Tools for checking for presence of adware remotely, Aditya, ALD [ Aditya Lalit Deshmukh ] Re: [Full-Disclosure] Tools for checking for presence of adware remotely, Aditya, ALD [ Aditya Lalit Deshmukh ] Re: [Full-Disclosure] Tools for checking for presence of adware remotely, Harlan Carvey Re: [Full-Disclosure] Tools for checking for presence of adware remotely, Aditya, ALD [ Aditya Lalit Deshmukh ] Re: [Full-Disclosure] Tools for checking for presence of adware remotely, Joseph Pierini

Previous by Date:	Re: [Full-Disclosure] Sandeep Sengupta has invited you to open a Gmail account, list
Next by Date:	RE: [Full-Disclosure] Name One Web Site Compromised by Download.Ject?, Carlos Kramer
Previous by Thread:	Re: [Full-Disclosure] Tools for checking for presence of adware remotely, Harlan Carvey
Next by Thread:	Re: [Full-Disclosure] Tools for checking for presence of adware remotely, Aditya, ALD [ Aditya Lalit Deshmukh ]
Indexes:	[Date] [Thread] [Top] [All Lists]