Penetration Testing mailing list archives

Re: [PEN-TEST] "Type of webserver"-scanner

From: Ken Cutler <kcutler () MISTI COM>
Date: Thu, 14 Dec 2000 22:28:54 -0500

Unless this tool has changed recently, I found it unrealiable for UDP scanning
(e.g., detecting tftp) and bulky in its output when I tested it last year.




"Waters, Simon" <Simon () WRETCHED DEMON CO UK> on 12/12/2000 02:37:00 PM

Please respond to Penetration Testers <PEN-TEST () SECURITYFOCUS COM>

To:   PEN-TEST () SECURITYFOCUS COM
cc:    (bcc: Ken Cutler/MISTI_BOS)

Subject:  [PEN-TEST] "Type of webserver"-scanner



YAPS is a small shareware port scanner. Not overly
sophisticated but produced fairly readable reports with http
server amongst other info retrieved.

If you already an nmap/perl wizard it isn't for you - who
knows your managers could probably run YAPS themselves
8-)

Any suggestions for good value (free?) tools testing for
common webserver vuln?

Current thread:

[PEN-TEST] "Type of webserver"-scanner Waters, Simon (Dec 13)
- <Possible follow-ups>
- Re: [PEN-TEST] "Type of webserver"-scanner Riley, Steven (Security) (Dec 14)
- Re: [PEN-TEST] "Type of webserver"-scanner Ken Cutler (Dec 16)
  - Re: [PEN-TEST] "Type of webserver"-scanner c0ncept (Dec 16)