Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Nessus-Users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Windows info from the registry

from [Andrew Court] Network Security [Permanent Link]
Subject: RE: Windows info from the registry
Date: Fri, 19 Oct 2007 11:58:43 +0100 
I have just discovered that my predecessor in this company asked a
similar question this time last year. Unfortunately we can not install
an SSH server on the windows boxes. Does anyone know how I can get some
of this information using smb_func.inc, or SMB in general?
 
Thanks and regards,
Andrew Court 

IT Security Specialist | BT Retail - Ireland |
E:Andrew.Court@bt.com |Mobile: +353 86 1720 692 | Fax: +353 1 432 5899|
www.btireland.com 

        -----Original Message-----
        From: Pavithra H [mailto:pavithra.chihan@gmail.com] 
        Sent: 19 October 2007 07:35
        To: Andrew Court; nessus@list.nessus.org
        Subject: Re: Windows info from the registry
        
        

         

        Basically u can write a simple plugin to execute a ssh command
using the fucntion, 'ssh_cmd' exists in ssh_func.inc. And execute the
necessary commands depending on what you are looking.

        For the function usage look into the plugin, ssh_get_info.nasl

        Commands listed below can be used to get the information which
you had asked for.

        hostname

        /sbin/ifconfig -a  

         ipconfig all  

        netsh diag show os /v

        systeminfo

        psinfo -h



        On 10/18/07, Andrew Court <andrew.court@bt.com> wrote: 



                Hi, 

                Sorry if this has been asked before but I could not find
it elsewhere. You can find various information by having nessus log into
a machine and search the registry for certain keys. Does anyone know is
it possible to obtain the following information from an existing plugin?
If not, would it be easy enough to modify a plugin to check for these
items? 

                1. hostname - I know this can be gotten from the SMB
share, but it would be nice to get the details in one report 
                2. List of Network cards, their Mac address, and any
IP/mask assigned 
                3. Routing table 
                4. Hardware spec - Make, model, cpu size, memory size
etc 
                5. Disk size, partitioning, and RAID number 

                I know these things should be gotten from a network
inventory, but I have been asked could nessus do these checks. 

                Thank in advance, 

                Andrew Court 

                IT Security Specialist | BT Retail - Ireland |
                E:Andrew.Court@bt.com |Mobile: +353 86 1720 692 | Fax:
+353 1 432 5899| www.btireland.com 



                _______________________________________________
                Nessus mailing list
                Nessus@list.nessus.org
                http://mail.nessus.org/mailman/listinfo/nessus
                




        -- 
        Thanks,
        Pavithra.H
        Research Analyst, Thirdbrigade Labs
        Bangalore 


_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: Windows info from the registry, Andrew Court
Next by Date:  Re: OpenSSH issue, Renaud Deraison
Previous by Thread:  RE: Windows info from the registry, Andrew Court
Next by Thread:  rules/signature, Jules
Indexes:  [Date] [Thread] [Top] [All Lists]