Vulnerability Development mailing list archives
root.exe scanner
From: "w1re p4ir" <w1rep4ir () disinfo net>
Date: 8 Aug 2001 03:03:04 -0000
I also sent this message to incidents so sorry if you get it twice like I will ;). After seeing many posts on this "root.exe" backdoor, and encountering it 3 times in the field I decided to write a script that scans from startip to endip looking for root.exe in msadc/ and scripts/. It's not blazing fast but it definitely gets the job done. Feel free to modify it as you see fit. Just email me your modifications so i can see how you improved it and keep my name on it. Enjoy, ________________________________________________________ The Best News Source On The Web - http://www.disinfo.com
Attachment:
rootscanner.pl
Description: rootscanner.pl
Current thread:
- root.exe scanner w1re p4ir (Aug 08)